$ rpki-client -vvf rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/C4C4028A5B4C11F0807A3A60C4F9AE02.roa File: C4C4028A5B4C11F0807A3A60C4F9AE02.roa (raw, json) Hash identifier: PluL4u9/W0M7wPOfAaOa3JDqqwKeth4r4yq9LLQTP5Q= Subject key identifier: 6C:DD:94:EB:D8:43:88:0B:B2:DE:D3:57:BD:E9:ED:B1:AE:8C:75:FC Certificate issuer: /CN=A9139661/serialNumber=0F914A1DC94F5BE42E883C2ADD5430BCDF6DF334 Certificate serial: 13 Authority key identifier: 0F:91:4A:1D:C9:4F:5B:E4:2E:88:3C:2A:DD:54:30:BC:DF:6D:F3:34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5FKHclPW-QuiDwq3VQwvN9t8zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/C4C4028A5B4C11F0807A3A60C4F9AE02.roa Signing time: Mon 07 Jul 2025 16:09:33 +0000 ROA not before: Mon 07 Jul 2025 16:09:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154020 IP address blocks: 165.101.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/D5FKHclPW-QuiDwq3VQwvN9t8zQ.crl rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/D5FKHclPW-QuiDwq3VQwvN9t8zQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5FKHclPW-QuiDwq3VQwvN9t8zQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139661, serialNumber=0F914A1DC94F5BE42E883C2ADD5430BCDF6DF334 Validity Not Before: Jul 7 16:09:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=686bf13c-3bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d7:a6:53:d7:35:60:02:33:8e:a1:c6:9d:19: e9:02:fc:15:b9:9d:46:29:17:f4:9f:08:52:a0:7a: 43:21:85:ab:60:a1:2b:b9:ae:0c:88:be:68:2d:ce: 90:aa:01:d8:11:61:59:15:4c:ca:29:b3:0a:89:9e: f1:93:33:ce:45:a8:ed:37:0d:22:a2:70:0b:74:22: d9:07:d5:71:e8:e3:f2:9d:a0:bf:ad:95:73:12:30: 06:4e:0d:9e:f1:7f:18:8b:5c:46:0d:e7:bc:94:48: db:9e:b0:c4:60:1a:2a:cd:db:43:56:04:ea:30:f3: 3f:6f:ba:51:d4:69:ea:ed:1e:5d:8b:39:a9:3e:71: 5f:d0:29:2f:12:38:c4:41:7a:db:1e:a9:75:69:0e: 2a:c1:6a:73:d5:bc:0e:d5:49:71:f3:52:63:2d:d7: d0:45:ce:f2:ae:00:d0:25:4d:9a:54:3a:40:11:1a: d9:c3:46:92:1e:78:e7:83:5b:ab:55:53:4e:49:b3: 31:2e:65:a5:83:f9:9c:d4:be:9c:7a:2a:ed:e0:70: c6:07:91:95:d2:c4:79:d3:f8:d1:29:8d:b9:dd:7e: 4b:ee:86:6c:7f:25:c6:79:3c:85:61:09:87:68:58: 4d:38:56:1d:f8:4a:c6:2f:95:c6:e5:73:c8:2b:1b: e4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:DD:94:EB:D8:43:88:0B:B2:DE:D3:57:BD:E9:ED:B1:AE:8C:75:FC X509v3 Authority Key Identifier: keyid:0F:91:4A:1D:C9:4F:5B:E4:2E:88:3C:2A:DD:54:30:BC:DF:6D:F3:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/D5FKHclPW-QuiDwq3VQwvN9t8zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5FKHclPW-QuiDwq3VQwvN9t8zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139661/0F43EC3C58E411F08726A57AC4F9AE02/C4C4028A5B4C11F0807A3A60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.128.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:08:0e:4a:50:f4:1d:b2:c2:22:69:22:8a:98:c9:2d:37:78: 5d:07:8c:d4:8a:f5:1c:0a:b5:b0:8e:c8:f1:43:59:b2:6c:6d: a1:05:18:9a:64:b9:54:d9:ae:ff:8d:c5:13:03:6b:4b:85:23: 37:c5:63:44:5c:34:53:7a:be:8f:38:5f:60:f1:22:27:83:61: fb:8e:ef:ea:94:39:20:09:6e:c2:85:91:c9:ae:a8:58:db:bf: a8:1d:cc:c1:10:4f:a5:d4:e8:ca:4c:29:ac:bf:7f:22:01:e7: c4:c9:1a:42:b9:dc:f0:5b:30:64:c7:59:78:39:d9:20:9d:9b: 2b:a9:cc:fc:12:bf:2c:47:fe:cb:fb:84:28:a2:fb:d5:11:76: 5e:20:92:ac:f3:5a:f0:e6:f3:77:2d:49:6b:fe:13:bb:54:8f: b9:6b:95:02:2e:5d:1c:3c:92:e8:11:83:0f:f5:89:80:cc:69: 6a:ed:94:0b:c5:5a:c2:f1:36:ee:88:23:aa:b2:21:51:37:70: cd:5a:86:87:1b:41:b4:ee:d0:32:09:f3:ae:6b:af:45:08:fe: 15:70:d4:d2:a9:40:e3:2c:14:6d:be:00:36:03:7b:d7:3e:ac: 4a:a7:59:2b:31:11:e2:a8:cd:69:d9:60:a2:7c:48:4c:bc:cb: cf:10:2b:09 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTY2MTExMC8GA1UEBRMoMEY5MTRBMURDOTRGNUJFNDJFODgzQzJBREQ1NDMwQkNE RjZERjMzNDAeFw0yNTA3MDcxNjA5MzNaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NmJmMTNjLTNiZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp16ZT1zVgAjOOocadGekC/BW5nUYpF/SfCFKgekMhhatgoSu5rgyIvmgtzpCq AdgRYVkVTMopswqJnvGTM85FqO03DSKicAt0ItkH1XHo4/KdoL+tlXMSMAZODZ7x fxiLXEYN57yUSNuesMRgGirN20NWBOow8z9vulHUaertHl2LOak+cV/QKS8SOMRB etseqXVpDirBanPVvA7VSXHzUmMt19BFzvKuANAlTZpUOkARGtnDRpIeeOeDW6tV U05JszEuZaWD+ZzUvpx6Ku3gcMYHkZXSxHnT+NEpjbndfkvuhmx/JcZ5PIVhCYdo WE04Vh34SsYvlcblc8grG+RdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbN2U69hD iAuy3tNXventsa6MdfwwHwYDVR0jBBgwFoAUD5FKHclPW+QuiDwq3VQwvN9t8zQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NjYxLzBGNDNFQzNDNThF NDExRjA4NzI2QTU3QUM0RjlBRTAyL0Q1RktIY2xQVy1RdWlEd3EzVlF3dk45dDh6 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDVGS0hjbFBXLVF1aUR3cTNWUXd2Tjl0OHpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTY2MS8wRjQzRUMzQzU4RTQxMUYwODcyNkE1N0FDNEY5QUUwMi9DNEM0MDI4QTVC NEMxMUYwODA3QTNBNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlgDANBgkqhkiG9w0BAQsFAAOCAQEAnwgOSlD0HbLCImki ipjJLTd4XQeM1Ir1HAq1sI7I8UNZsmxtoQUYmmS5VNmu/43FEwNrS4UjN8VjRFw0 U3q+jzhfYPEiJ4Nh+47v6pQ5IAluwoWRya6oWNu/qB3MwRBPpdToykwprL9/IgHn xMkaQrnc8FswZMdZeDnZIJ2bK6nM/BK/LEf+y/uEKKL71RF2XiCSrPNa8Obzdy1J a/4Tu1SPuWuVAi5dHDyS6BGDD/WJgMxpau2UC8VawvE27ogjqrIhUTdwzVqGhxtB tO7QMgnzrmuvRQj+FXDU0qlA4ywUbb4ANgN71z6sSqdZKzER4qjNadlgonxITLzL zxArCQ== -----END CERTIFICATE-----Generated at Wed Nov 5 21:18:30 2025 by rpki-client