$ rpki-client -vvf rpki.apnic.net/member_repository/A9134309/D41FA32C3EE311F0B9398442C4F9AE02/0322BF5A6D3411F0A208C05DC4F9AE02.roa File: 0322BF5A6D3411F0A208C05DC4F9AE02.roa (raw, json) Hash identifier: WQ8BuE65YXtQyTIurkyDNftfUcfnYZp85uvlHfPR7PU= Subject key identifier: CB:67:3A:81:3A:51:DB:E3:59:49:3F:84:02:25:58:BE:AF:87:A3:AF Certificate issuer: /CN=A9134309/serialNumber=077BCD663B0E63BDF5E9B809AF71AEF1E5ADF63B Certificate serial: 21 Authority key identifier: 07:7B:CD:66:3B:0E:63:BD:F5:E9:B8:09:AF:71:AE:F1:E5:AD:F6:3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/B3vNZjsOY7316bgJr3Gu8eWt9js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134309/D41FA32C3EE311F0B9398442C4F9AE02/0322BF5A6D3411F0A208C05DC4F9AE02.roa Signing time: Wed 30 Jul 2025 10:57:41 +0000 ROA not before: Wed 30 Jul 2025 10:57:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135341 IP address blocks: 165.99.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134309/D41FA32C3EE311F0B9398442C4F9AE02/B3vNZjsOY7316bgJr3Gu8eWt9js.crl rsync://rpki.apnic.net/member_repository/A9134309/D41FA32C3EE311F0B9398442C4F9AE02/B3vNZjsOY7316bgJr3Gu8eWt9js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/B3vNZjsOY7316bgJr3Gu8eWt9js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134309, serialNumber=077BCD663B0E63BDF5E9B809AF71AEF1E5ADF63B Validity Not Before: Jul 30 10:57:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6889faa4-b0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e5:63:55:de:fe:d2:be:ff:3a:4d:62:54:e4: 9a:42:9a:60:bf:80:a7:c3:38:72:4d:fc:be:3f:dc: 1e:80:5c:94:b6:2a:8a:d2:3e:a9:8e:6f:d2:95:5d: 71:4f:f1:f0:cf:4d:f9:f7:2e:73:4e:8a:89:4d:2e: 94:df:12:61:f3:e1:a0:a1:95:9c:c3:e7:61:f9:bb: b3:7f:ca:eb:b8:ec:56:53:83:9a:79:55:71:d9:4e: 2f:cc:1e:53:8b:d2:1e:94:33:aa:cd:a4:f2:cd:ce: 95:fd:93:9c:41:2e:af:f6:02:db:ac:9f:3e:ad:5c: 40:e8:9d:2f:2a:ff:d2:a7:db:bb:f1:7d:37:26:ed: b0:6e:be:63:8c:13:f1:7a:49:08:f3:36:a4:c6:c4: b7:b1:96:18:a0:fb:eb:17:36:24:c1:50:c7:60:41: 90:ae:0c:4a:58:3e:cb:64:53:4c:d5:b6:56:9f:dd: 68:ac:66:07:bc:21:b3:33:a8:3d:02:8e:6d:b9:65: da:a3:aa:28:84:f3:d0:2b:eb:a8:35:45:37:44:ff: 65:00:61:8f:a1:27:8f:d7:04:f1:80:0b:26:cf:30: a5:99:34:b9:24:4d:d9:16:c1:dc:71:7d:46:4e:6f: 78:42:63:36:a4:79:40:6a:95:49:41:eb:81:1f:79: 9f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:67:3A:81:3A:51:DB:E3:59:49:3F:84:02:25:58:BE:AF:87:A3:AF X509v3 Authority Key Identifier: keyid:07:7B:CD:66:3B:0E:63:BD:F5:E9:B8:09:AF:71:AE:F1:E5:AD:F6:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134309/D41FA32C3EE311F0B9398442C4F9AE02/B3vNZjsOY7316bgJr3Gu8eWt9js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/B3vNZjsOY7316bgJr3Gu8eWt9js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134309/D41FA32C3EE311F0B9398442C4F9AE02/0322BF5A6D3411F0A208C05DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.34.0/24 Signature Algorithm: sha256WithRSAEncryption 38:cd:f7:cb:53:d5:2b:7f:15:4d:0d:cf:36:11:e2:09:dd:36: 40:fd:80:f6:49:62:98:8b:80:a5:da:14:7d:88:50:53:5f:45: c9:7a:44:b2:8e:da:f9:ce:55:4d:74:b8:b3:de:8f:1c:1b:b7: 4e:27:c2:ec:02:45:32:bb:e5:7c:82:ac:4a:21:f1:a6:8d:43: 6b:71:4c:5f:1f:ea:7b:0e:72:3d:91:60:3c:76:f6:6b:dc:bd: c3:bc:47:79:9f:34:f7:d1:76:65:f1:36:80:ea:eb:23:19:0f: a5:0f:54:cf:b0:23:22:f1:39:d0:83:9c:af:ee:4b:71:07:69: 3e:61:15:95:d8:73:d8:6d:07:2d:f8:66:3a:e4:99:f1:f0:d9: 9b:08:8b:e4:b2:54:8f:b6:0f:2b:b7:77:0c:e0:58:38:75:83: 30:f4:65:ff:33:bb:e7:74:d1:f2:05:4c:d4:96:b5:75:5f:fd: ea:f0:16:2a:f3:ea:78:e9:04:98:23:58:24:d0:ba:8a:41:42: f9:e7:e4:2a:74:24:e9:40:ea:34:e4:4d:70:a1:a2:00:06:b6: f3:18:4a:6f:c7:2e:33:df:a8:02:aa:3f:5d:9b:6b:e9:ce:ed: 5f:47:a0:c8:c9:87:f1:47:dd:34:fc:eb:14:98:71:6c:86:bd: db:20:ab:bb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NDMwOTExMC8GA1UEBRMoMDc3QkNENjYzQjBFNjNCREY1RTlCODA5QUY3MUFFRjFF NUFERjYzQjAeFw0yNTA3MzAxMDU3NDFaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ODlmYWE0LWIwZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh5WNV3v7Svv86TWJU5JpCmmC/gKfDOHJN/L4/3B6AXJS2KorSPqmOb9KVXXFP 8fDPTfn3LnNOiolNLpTfEmHz4aChlZzD52H5u7N/yuu47FZTg5p5VXHZTi/MHlOL 0h6UM6rNpPLNzpX9k5xBLq/2Atusnz6tXEDonS8q/9Kn27vxfTcm7bBuvmOME/F6 SQjzNqTGxLexlhig++sXNiTBUMdgQZCuDEpYPstkU0zVtlaf3WisZge8IbMzqD0C jm25ZdqjqiiE89Ar66g1RTdE/2UAYY+hJ4/XBPGACybPMKWZNLkkTdkWwdxxfUZO b3hCYzakeUBqlUlB64EfeZ+vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUy2c6gTpR 2+NZST+EAiVYvq+Ho68wHwYDVR0jBBgwFoAUB3vNZjsOY7316bgJr3Gu8eWt9jsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0MzA5L0Q0MUZBMzJDM0VF MzExRjBCOTM5ODQ0MkM0RjlBRTAyL0Izdk5aanNPWTczMTZiZ0pyM0d1OGVXdDlq cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQjN2Tlpqc09ZNzMxNmJnSnIzR3U4ZVd0OWpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDMwOS9ENDFGQTMyQzNFRTMxMUYwQjkzOTg0NDJDNEY5QUUwMi8wMzIyQkY1QTZE MzQxMUYwQTIwOEMwNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVjIjANBgkqhkiG9w0BAQsFAAOCAQEAOM33y1PVK38VTQ3P NhHiCd02QP2A9klimIuApdoUfYhQU19FyXpEso7a+c5VTXS4s96PHBu3TifC7AJF MrvlfIKsSiHxpo1Da3FMXx/qew5yPZFgPHb2a9y9w7xHeZ8099F2ZfE2gOrrIxkP pQ9Uz7AjIvE50IOcr+5LcQdpPmEVldhz2G0HLfhmOuSZ8fDZmwiL5LJUj7YPK7d3 DOBYOHWDMPRl/zO753TR8gVM1Ja1dV/96vAWKvPqeOkEmCNYJNC6ikFC+efkKnQk 6UDqNORNcKGiAAa28xhKb8cuM9+oAqo/XZtr6c7tX0egyMmH8UfdNPzrFJhxbIa9 2yCruw== -----END CERTIFICATE-----Generated at Sun Aug 10 18:53:45 2025 by rpki-client