$ rpki-client -vvf rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CAE10F4030E111F09B76D311C4F9AE02.roa File: CAE10F4030E111F09B76D311C4F9AE02.roa (raw, json) Hash identifier: juMHvZUG78CclBXRyslR4dpbF0KFYZrW0WvDaAAud4k= Subject key identifier: A7:A4:C9:21:BB:97:FC:B9:CE:85:77:9F:29:38:CF:48:D7:85:4C:48 Certificate issuer: /CN=A911DFC9/serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Certificate serial: EE Authority key identifier: 76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CAE10F4030E111F09B76D311C4F9AE02.roa Signing time: Fri 05 Jun 2026 07:39:19 +0000 ROA not before: Fri 05 Jun 2026 07:39:19 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 142032 IP address blocks: 165.99.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 06:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DFC9, serialNumber=7665E2835D160085E31EC245222D4B2F7E484409 Validity Not Before: Jun 5 07:39:19 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a227d27-acde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:32:2f:ec:b0:cc:96:5e:e0:68:79:b2:f7:74: 05:c3:99:a5:dc:a3:5a:2e:76:b2:f5:38:14:c6:18: bb:47:3d:b3:0f:e3:83:23:63:58:32:8b:50:5b:fb: b1:62:26:d8:8e:f1:25:64:34:2e:17:22:a0:86:5e: 27:f7:5e:66:07:b0:51:da:24:4d:4f:f1:b5:e4:c6: 07:4f:d2:fc:87:b6:5a:55:4a:a1:33:57:92:56:90: 77:56:a0:21:61:4a:81:57:90:ec:55:ba:0d:4a:27: 6a:ce:c8:e5:cc:63:97:f0:e3:fe:32:40:d7:23:51: 9f:9a:99:c2:c0:c6:5b:b3:1a:a0:80:ec:27:77:52: bb:74:a0:14:4e:19:58:6f:55:7d:00:97:db:a3:81: db:3e:c5:ea:3a:6d:b1:89:18:a9:60:e7:fa:57:92: ee:75:dd:9b:6b:eb:98:6c:61:fc:34:d8:86:80:6d: bc:04:ee:ec:ae:8b:30:4f:a7:36:e2:00:40:22:96: 51:81:9b:ce:6b:c0:a9:29:59:2c:de:13:34:58:3f: 6d:05:ff:5f:f2:99:67:87:55:52:51:63:aa:6f:24: 0c:81:6e:d2:4c:f2:2b:90:12:7f:ad:9b:90:d2:4d: 71:d2:5b:a1:af:6b:9e:a9:0b:91:55:b1:03:a9:6c: e6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A4:C9:21:BB:97:FC:B9:CE:85:77:9F:29:38:CF:48:D7:85:4C:48 X509v3 Authority Key Identifier: keyid:76:65:E2:83:5D:16:00:85:E3:1E:C2:45:22:2D:4B:2F:7E:48:44:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/dmXig10WAIXjHsJFIi1LL35IRAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dmXig10WAIXjHsJFIi1LL35IRAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DFC9/8D35E82E302C11F087764A2BC4F9AE02/CAE10F4030E111F09B76D311C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.99.42.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:dc:39:bc:54:e5:4c:07:4a:a7:fa:0b:53:d3:c6:9f:dc:ec: 99:41:15:d6:96:87:44:66:e2:28:e2:2b:58:2a:73:24:65:89: e1:2b:32:92:82:cd:12:a8:5c:aa:d6:49:3e:0e:52:94:6d:e1: c3:47:1f:53:f1:cb:26:e1:2a:b3:f8:9b:f6:37:dc:ac:90:c2: 73:a6:6c:4c:35:e2:50:ea:b7:d0:78:00:24:b7:60:e4:5a:12: 9e:f2:a4:10:1f:43:11:c2:ac:cc:e3:21:24:3f:1a:21:17:b5: bb:b3:a3:85:69:44:f6:eb:8d:bb:fa:d9:b9:4a:e4:eb:e5:6e: af:cc:13:0a:5c:9e:f4:e7:48:f3:76:1c:85:9c:1b:fd:00:c9: 98:83:2b:8b:70:08:78:c3:3c:64:20:bf:bd:d1:1a:e3:10:de: b2:d1:6c:05:72:19:98:69:fa:1d:54:af:4b:46:97:5d:13:54: 6f:c5:4e:b3:35:05:92:0d:4c:a2:21:12:b0:3b:1d:a6:41:2f: c7:41:91:82:2b:de:ed:dd:ea:67:d5:2c:1f:6f:22:29:c6:2f: 56:de:38:ab:da:45:ad:12:c4:d9:2d:36:54:2f:5b:4e:7e:0e: 89:a2:3a:2d:ef:99:91:a4:42:b3:c8:46:38:2f:17:cb:91:97: ee:be:ab:3d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGQzkxMTAvBgNVBAUTKDc2NjVFMjgzNUQxNjAwODVFMzFFQzI0NTIyMkQ0QjJG N0U0ODQ0MDkwHhcNMjYwNjA1MDczOTE5WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyN2QyNy1hY2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAozIv7LDMll7gaHmy93QFw5ml3KNaLnay9TgUxhi7Rz2zD+ODI2NYMotQW/ux YibYjvElZDQuFyKghl4n915mB7BR2iRNT/G15MYHT9L8h7ZaVUqhM1eSVpB3VqAh YUqBV5DsVboNSidqzsjlzGOX8OP+MkDXI1GfmpnCwMZbsxqggOwnd1K7dKAUThlY b1V9AJfbo4HbPsXqOm2xiRipYOf6V5Ludd2ba+uYbGH8NNiGgG28BO7sroswT6c2 4gBAIpZRgZvOa8CpKVks3hM0WD9tBf9f8plnh1VSUWOqbyQMgW7STPIrkBJ/rZuQ 0k1x0luhr2ueqQuRVbEDqWzmoQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKekySG7 l/y5zoV3nyk4z0jXhUxIMB8GA1UdIwQYMBaAFHZl4oNdFgCF4x7CRSItSy9+SEQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREZDOS84RDM1RTgyRTMw MkMxMUYwODc3NjRBMkJDNEY5QUUwMi9kbVhpZzEwV0FJWGpIc0pGSWkxTEwzNUlS QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RtWGlnMTBXQUlYakhzSkZJaTFMTDM1SVJBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGQzkvOEQzNUU4MkUzMDJDMTFGMDg3NzY0QTJCQzRGOUFFMDIvQ0FFMTBGNDAz MEUxMTFGMDlCNzZEMzExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWMqMA0GCSqGSIb3DQEBCwUAA4IBAQAd3Dm8VOVMB0qn+gtT08af 3OyZQRXWlodEZuIo4itYKnMkZYnhKzKSgs0SqFyq1kk+DlKUbeHDRx9T8csm4Sqz +Jv2N9yskMJzpmxMNeJQ6rfQeAAkt2DkWhKe8qQQH0MRwqzM4yEkPxohF7W7s6OF aUT26427+tm5SuTr5W6vzBMKXJ7050jzdhyFnBv9AMmYgyuLcAh4wzxkIL+90Rrj EN6y0WwFchmYafodVK9LRpddE1RvxU6zNQWSDUyiIRKwOx2mQS/HQZGCK97t3epn 1SwfbyIpxi9W3jir2kWtEsTZLTZUL1tOfg6Jojot75mRpEKzyEY4LxfLkZfuvqs9 -----END CERTIFICATE-----Generated at Sat Jun 13 13:15:12 2026 by rpki-client