$ rpki-client -vvf rpki.apnic.net/member_repository/A9134FAF/8248E914449711F0A9757362C4F9AE02/4CB714B644AA11F0B7FB6E72C4F9AE02.roa File: 4CB714B644AA11F0B7FB6E72C4F9AE02.roa (raw, json) Hash identifier: yO04AY7QLHjRPUPcniLxzPjcVxS3CSh7vc358kz20Uw= Subject key identifier: 1B:A6:51:9C:17:91:43:97:4D:96:3B:8F:AE:71:E9:CA:D9:55:69:D9 Certificate issuer: /CN=A9134FAF/serialNumber=1566C161BBB3E35347A97AC4D5816D8EDE54218E Certificate serial: 03 Authority key identifier: 15:66:C1:61:BB:B3:E3:53:47:A9:7A:C4:D5:81:6D:8E:DE:54:21:8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FWbBYbuz41NHqXrE1YFtjt5UIY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134FAF/8248E914449711F0A9757362C4F9AE02/4CB714B644AA11F0B7FB6E72C4F9AE02.roa Signing time: Sun 08 Jun 2025 20:51:07 +0000 ROA not before: Sun 08 Jun 2025 20:51:07 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139008 IP address blocks: 165.99.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134FAF/8248E914449711F0A9757362C4F9AE02/FWbBYbuz41NHqXrE1YFtjt5UIY4.crl rsync://rpki.apnic.net/member_repository/A9134FAF/8248E914449711F0A9757362C4F9AE02/FWbBYbuz41NHqXrE1YFtjt5UIY4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FWbBYbuz41NHqXrE1YFtjt5UIY4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134FAF, serialNumber=1566C161BBB3E35347A97AC4D5816D8EDE54218E Validity Not Before: Jun 8 20:51:07 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6845f7bb-6eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bb:e7:8f:71:bd:e7:30:07:cb:ff:e7:5d:b6: 56:2c:ca:0f:87:4d:d2:b3:a6:93:b4:af:4f:d0:01: a1:ba:cc:86:d0:b3:ad:3f:48:3c:0c:0e:58:c2:a2: 44:0a:4c:10:36:f2:a4:c4:55:5d:2b:5a:bb:d1:5f: 89:c5:d8:36:79:70:11:ca:36:45:ba:52:ba:45:51: 8e:03:bc:3f:fc:b0:19:16:1b:34:97:6c:46:cb:b8: 16:39:44:1f:a8:41:fc:84:38:7e:af:48:b8:84:39: 9f:9f:80:69:35:95:8b:16:11:8e:10:fb:cc:5e:12: c3:d4:49:da:75:b6:50:bf:49:08:ac:00:ab:6e:c6: 49:16:c2:43:c5:4f:ab:4f:ed:74:eb:a4:c6:8b:7b: 42:b1:2f:64:38:0a:a6:98:9d:70:50:66:db:86:17: a9:ee:47:c4:b7:18:56:74:00:f1:99:81:e9:7f:6e: b1:f0:f7:6b:61:dc:69:04:1d:e7:86:7c:f3:5b:9f: 13:87:0d:cd:48:e7:4e:cd:1d:28:da:67:4a:0d:0c: 7e:70:81:ef:36:7f:6c:97:02:2c:af:48:b8:35:f0: 92:0d:04:c2:ba:f9:61:79:07:e3:0e:d2:66:94:f3: d1:02:8d:d3:34:88:31:87:4d:a7:41:bf:f5:be:52: 9b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A6:51:9C:17:91:43:97:4D:96:3B:8F:AE:71:E9:CA:D9:55:69:D9 X509v3 Authority Key Identifier: keyid:15:66:C1:61:BB:B3:E3:53:47:A9:7A:C4:D5:81:6D:8E:DE:54:21:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134FAF/8248E914449711F0A9757362C4F9AE02/FWbBYbuz41NHqXrE1YFtjt5UIY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FWbBYbuz41NHqXrE1YFtjt5UIY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134FAF/8248E914449711F0A9757362C4F9AE02/4CB714B644AA11F0B7FB6E72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.216.0/24 Signature Algorithm: sha256WithRSAEncryption 19:ba:89:59:26:d6:ee:69:e7:e7:d8:29:04:31:87:7f:69:a8: d4:f8:b4:8e:b8:f5:36:5a:d3:d0:ff:5b:80:ac:31:27:c0:af: 55:d8:f0:8c:2f:3e:46:52:56:08:81:58:91:ec:cd:e1:bd:19: 0e:a4:b9:d9:58:b9:cf:3b:d0:cf:21:56:ec:ea:ad:72:82:07: ba:0a:31:2f:75:fa:63:ed:2a:b0:99:42:ee:45:ee:37:98:af: 76:8a:0e:9a:cc:92:d7:48:ef:b6:eb:33:92:de:38:1c:fc:0b: 99:78:01:d9:5e:cf:45:96:d0:b2:f9:85:16:23:2b:39:17:8d: 1b:95:b2:42:57:b1:34:b4:2d:b3:5b:a5:9d:e6:27:ed:6d:22: 5f:f3:89:e2:2f:2f:a2:80:a2:0f:75:10:ec:35:a2:c8:fe:6a: 98:b8:2d:55:b2:67:5c:4d:18:ef:37:0a:ac:f3:39:c6:98:6e: 30:82:bb:f8:0d:ac:86:a3:4f:09:77:2c:46:bb:1a:0c:05:a1: 05:67:03:89:80:44:c7:b3:27:f9:70:d3:e2:44:b4:f1:9e:d0: e8:ed:de:76:6c:cf:fe:77:9a:c3:28:c5:d7:02:a6:60:5d:df: 76:3e:cc:c0:cf:ed:28:f2:42:35:83:0f:5b:31:98:63:00:16: 41:f2:e6:18 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NEZBRjExMC8GA1UEBRMoMTU2NkMxNjFCQkIzRTM1MzQ3QTk3QUM0RDU4MTZEOEVE RTU0MjE4RTAeFw0yNTA2MDgyMDUxMDdaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDVmN2JiLTZlZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmu+ePcb3nMAfL/+ddtlYsyg+HTdKzppO0r0/QAaG6zIbQs60/SDwMDljCokQK TBA28qTEVV0rWrvRX4nF2DZ5cBHKNkW6UrpFUY4DvD/8sBkWGzSXbEbLuBY5RB+o QfyEOH6vSLiEOZ+fgGk1lYsWEY4Q+8xeEsPUSdp1tlC/SQisAKtuxkkWwkPFT6tP 7XTrpMaLe0KxL2Q4CqaYnXBQZtuGF6nuR8S3GFZ0APGZgel/brHw92th3GkEHeeG fPNbnxOHDc1I507NHSjaZ0oNDH5wge82f2yXAiyvSLg18JINBMK6+WF5B+MO0maU 89ECjdM0iDGHTadBv/W+UpsTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUG6ZRnBeR Q5dNljuPrnHpytlVadkwHwYDVR0jBBgwFoAUFWbBYbuz41NHqXrE1YFtjt5UIY4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0RkFGLzgyNDhFOTE0NDQ5 NzExRjBBOTc1NzM2MkM0RjlBRTAyL0ZXYkJZYnV6NDFOSHFYckUxWUZ0anQ1VUlZ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRldiQllidXo0MU5IcVhyRTFZRnRqdDVVSVk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEZBRi84MjQ4RTkxNDQ0OTcxMUYwQTk3NTczNjJDNEY5QUUwMi80Q0I3MTRCNjQ0 QUExMUYwQjdGQjZFNzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVj2DANBgkqhkiG9w0BAQsFAAOCAQEAGbqJWSbW7mnn59gp BDGHf2mo1Pi0jrj1NlrT0P9bgKwxJ8CvVdjwjC8+RlJWCIFYkezN4b0ZDqS52Vi5 zzvQzyFW7OqtcoIHugoxL3X6Y+0qsJlC7kXuN5ivdooOmsyS10jvtuszkt44HPwL mXgB2V7PRZbQsvmFFiMrOReNG5WyQlexNLQts1ulneYn7W0iX/OJ4i8vooCiD3UQ 7DWiyP5qmLgtVbJnXE0Y7zcKrPM5xphuMIK7+A2shqNPCXcsRrsaDAWhBWcDiYBE x7Mn+XDT4kS08Z7Q6O3edmzP/neawyjF1wKmYF3fdj7MwM/tKPJCNYMPWzGYYwAW QfLmGA== -----END CERTIFICATE-----Generated at Sat Jun 21 00:10:31 2025 by rpki-client