$ rpki-client -vvf rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/CC9D872A468D11F0A82C5E5EC4F9AE02.roa File: CC9D872A468D11F0A82C5E5EC4F9AE02.roa (raw, json) Hash identifier: WRJujiiFl5+2lSEzqzn6bhm3g2H9MHSY7ug8yl3Oc8g= Subject key identifier: 35:93:57:DD:DD:1E:EB:03:BF:E4:E4:B9:C1:07:2F:69:D1:BC:A9:29 Certificate issuer: /CN=A911750B/serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD Certificate serial: 02 Authority key identifier: 68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/CC9D872A468D11F0A82C5E5EC4F9AE02.roa Signing time: Wed 11 Jun 2025 06:32:09 +0000 ROA not before: Wed 11 Jun 2025 06:32:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151660 IP address blocks: 165.99.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:33:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911750B, serialNumber=68C2188C04C20E4923ABB62DB4872498354B4AFD Validity Not Before: Jun 11 06:32:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=684922e8-2f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d7:e1:eb:61:a0:92:ac:f6:b0:85:63:d4:e9: b4:7f:1d:9e:ed:8d:52:16:a0:55:c4:35:ff:b2:f7: f4:b1:37:37:4f:82:23:0a:35:54:ca:84:d7:79:a8: 4d:e4:62:4d:c2:7a:e8:00:38:ea:4b:1c:70:8c:e3: aa:4c:d8:17:34:03:1a:f5:d1:55:9d:93:60:4c:99: 9e:4b:32:12:0a:9a:64:8e:f6:ac:c2:d1:9a:0c:94: 0b:40:71:9f:7e:e5:f5:9e:8f:f5:b9:5d:51:eb:1d: 0f:31:3f:e3:c1:1f:87:67:38:c5:3c:b0:d1:01:c3: 76:e5:dc:0a:45:1d:21:fc:5c:1a:a1:4b:e3:24:a2: 39:ff:93:4b:6c:4a:d1:2c:a1:25:5a:9a:7d:44:50: fd:d9:9e:65:a7:18:c7:f9:b2:79:17:95:31:28:41: 31:38:44:bc:16:9a:34:89:ef:c5:7d:cc:66:b6:08: 6a:65:c4:3d:86:7f:2c:57:a5:4f:35:81:65:30:8f: 3f:ad:1f:c7:97:e8:88:0b:2e:a6:81:0a:c4:85:5c: d2:c9:50:1d:af:d8:17:49:c2:55:63:eb:7a:71:9d: d3:3d:93:20:16:07:41:b9:79:81:6d:19:c2:5f:c3: b2:13:0b:3a:20:70:d9:7a:35:ad:2e:b6:fc:92:17: 5c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:93:57:DD:DD:1E:EB:03:BF:E4:E4:B9:C1:07:2F:69:D1:BC:A9:29 X509v3 Authority Key Identifier: keyid:68:C2:18:8C:04:C2:0E:49:23:AB:B6:2D:B4:87:24:98:35:4B:4A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/aMIYjATCDkkjq7YttIckmDVLSv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aMIYjATCDkkjq7YttIckmDVLSv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911750B/5B1C1FAE468C11F084B6A539C4F9AE02/CC9D872A468D11F0A82C5E5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.240.0/23 Signature Algorithm: sha256WithRSAEncryption a5:11:81:16:67:84:95:aa:3e:37:ec:05:ed:9d:e9:1b:e1:86: 2f:28:d0:56:56:3d:a4:e2:a5:d2:a8:46:4b:d9:c5:c4:b9:f5: a3:6f:b7:e6:a9:3a:75:c7:04:b3:0c:04:37:7d:d5:73:64:e9: a3:3b:4c:3f:86:1f:58:6b:0e:48:d1:bc:cc:66:f9:93:82:b9: 4a:10:27:46:d9:7d:9b:4d:10:db:38:5b:e5:da:12:98:52:ad: 68:6a:1f:a9:ae:dc:9f:71:2e:15:16:b0:90:61:68:42:c8:2a: 8e:9d:64:93:3c:de:8e:01:dd:c6:99:d1:6d:ba:fa:bb:40:cd: 10:b9:a7:bd:9d:25:99:30:b9:9a:7a:4c:58:a8:05:48:8c:d8: cc:dc:31:db:4f:e0:5b:2f:44:f5:24:1d:3e:93:5b:1c:a5:3a: 46:d7:e9:70:2c:e4:3f:6c:ee:8e:28:16:68:bd:fe:74:3a:18: a0:dc:ff:ad:a8:0d:f0:0d:03:4a:b4:92:9f:06:0e:13:53:af: 2a:3e:a9:88:3f:91:c2:fc:82:44:34:28:2b:cc:78:bb:d9:63: 56:fe:ea:e5:d5:cd:fe:64:14:55:27:dc:1d:98:3c:76:b7:f2: de:06:55:f9:36:70:59:ec:33:33:cf:3b:dc:54:b2:0b:f8:32: cf:f7:01:bd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzUwQjExMC8GA1UEBRMoNjhDMjE4OEMwNEMyMEU0OTIzQUJCNjJEQjQ4NzI0OTgz NTRCNEFGRDAeFw0yNTA2MTEwNjMyMDlaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDkyMmU4LTJmN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDz1+HrYaCSrPawhWPU6bR/HZ7tjVIWoFXENf+y9/SxNzdPgiMKNVTKhNd5qE3k Yk3CeugAOOpLHHCM46pM2Bc0Axr10VWdk2BMmZ5LMhIKmmSO9qzC0ZoMlAtAcZ9+ 5fWej/W5XVHrHQ8xP+PBH4dnOMU8sNEBw3bl3ApFHSH8XBqhS+Mkojn/k0tsStEs oSVamn1EUP3ZnmWnGMf5snkXlTEoQTE4RLwWmjSJ78V9zGa2CGplxD2GfyxXpU81 gWUwjz+tH8eX6IgLLqaBCsSFXNLJUB2v2BdJwlVj63pxndM9kyAWB0G5eYFtGcJf w7ITCzogcNl6Na0utvySF1wHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNZNX3d0e 6wO/5OS5wQcvadG8qSkwHwYDVR0jBBgwFoAUaMIYjATCDkkjq7YttIckmDVLSv0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NTBCLzVCMUMxRkFFNDY4 QzExRjA4NEI2QTUzOUM0RjlBRTAyL2FNSVlqQVRDRGtranE3WXR0SWNrbURWTFN2 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYU1JWWpBVENEa2tqcTdZdHRJY2ttRFZMU3YwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzUwQi81QjFDMUZBRTQ2OEMxMUYwODRCNkE1MzlDNEY5QUUwMi9DQzlEODcyQTQ2 OEQxMUYwQTgyQzVFNUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVj8DANBgkqhkiG9w0BAQsFAAOCAQEApRGBFmeElao+N+wF 7Z3pG+GGLyjQVlY9pOKl0qhGS9nFxLn1o2+35qk6dccEswwEN33Vc2TpoztMP4Yf WGsOSNG8zGb5k4K5ShAnRtl9m00Q2zhb5doSmFKtaGofqa7cn3EuFRawkGFoQsgq jp1kkzzejgHdxpnRbbr6u0DNELmnvZ0lmTC5mnpMWKgFSIzYzNwx20/gWy9E9SQd PpNbHKU6RtfpcCzkP2zujigWaL3+dDoYoNz/ragN8A0DSrSSnwYOE1OvKj6piD+R wvyCRDQoK8x4u9ljVv7q5dXN/mQUVSfcHZg8drfy3gZV+TZwWewzM8873FSyC/gy z/cBvQ== -----END CERTIFICATE-----Generated at Fri Jun 20 11:42:49 2025 by rpki-client