$ rpki-client -vvf rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/21C5B04263A311F096468248C4F9AE02.roa File: 21C5B04263A311F096468248C4F9AE02.roa (raw, json) Hash identifier: Xzb62xLJbAMEkevYXMmuNbI1IlT4POMgC4Yy3OA8C7k= Subject key identifier: 5A:0F:3A:6A:A0:EB:FD:79:BC:24:CC:D5:1E:27:6D:B7:30:35:1C:08 Certificate issuer: /CN=A9159309/serialNumber=7D8FA0BEF6AEF71BDF883858F73619D3B59E2777 Certificate serial: 05 Authority key identifier: 7D:8F:A0:BE:F6:AE:F7:1B:DF:88:38:58:F7:36:19:D3:B5:9E:27:77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fY-gvvau9xvfiDhY9zYZ07WeJ3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/21C5B04263A311F096468248C4F9AE02.roa Signing time: Fri 18 Jul 2025 06:47:55 +0000 ROA not before: Fri 18 Jul 2025 06:47:55 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 154019 IP address blocks: 165.101.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/fY-gvvau9xvfiDhY9zYZ07WeJ3c.crl rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/fY-gvvau9xvfiDhY9zYZ07WeJ3c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fY-gvvau9xvfiDhY9zYZ07WeJ3c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159309, serialNumber=7D8FA0BEF6AEF71BDF883858F73619D3B59E2777 Validity Not Before: Jul 18 06:47:55 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6879ee1a-f3cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e5:1d:f6:a0:97:de:87:6d:11:b2:44:a9:5b: f8:9f:49:5f:17:39:98:6e:38:60:48:b4:4f:8f:73: 96:ae:cc:e7:5e:e1:22:a4:4b:85:f8:96:43:b5:89: d4:1a:12:41:cb:3a:e1:e5:31:53:1c:57:61:d0:32: 57:3d:b5:80:59:16:f5:43:7d:97:b1:9c:c5:6a:db: dc:7b:c6:e3:3d:06:90:d5:9a:67:c2:6a:78:12:a0: 9d:98:a6:8d:c6:be:9f:f1:8a:e7:05:8a:63:d6:d1: 55:25:06:96:5d:e4:47:2e:5f:a5:a9:ff:33:aa:b0: 90:7a:06:27:87:c4:1d:22:2d:01:a4:9d:e8:a9:8f: 1b:a7:0a:58:91:d0:a8:3e:1d:62:c1:eb:82:b8:33: 4f:f0:43:a7:64:87:dc:41:9b:ce:dd:8d:e6:2f:d6: d9:ae:f9:b0:86:fa:93:9e:8c:31:fb:8b:36:6b:d8: 2c:ee:84:4b:e8:c3:dc:58:37:34:45:13:e0:5a:17: 54:30:4e:6d:10:ed:cf:7c:14:52:a2:ec:39:2d:57: 95:da:f9:57:d4:07:d0:47:c3:67:88:02:56:09:18: 13:1b:c3:78:30:6e:22:c3:ba:74:cb:b8:34:20:e5: 35:78:2f:b7:31:b8:fb:04:32:2b:3b:b7:dc:5d:97: 09:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0F:3A:6A:A0:EB:FD:79:BC:24:CC:D5:1E:27:6D:B7:30:35:1C:08 X509v3 Authority Key Identifier: keyid:7D:8F:A0:BE:F6:AE:F7:1B:DF:88:38:58:F7:36:19:D3:B5:9E:27:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/fY-gvvau9xvfiDhY9zYZ07WeJ3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fY-gvvau9xvfiDhY9zYZ07WeJ3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159309/9891E92E613D11F0B036B836C4F9AE02/21C5B04263A311F096468248C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.107.0/24 Signature Algorithm: sha256WithRSAEncryption 30:a7:0d:8a:15:0c:3a:c9:a1:3d:9e:af:e1:56:f0:d2:c5:3b: 23:da:75:9a:44:37:88:cb:a1:0a:13:ff:a1:14:6b:9e:1a:c0: 37:ba:74:18:59:d2:1a:a2:76:31:2c:42:94:ab:b2:a8:31:03: dd:3b:ce:ff:76:e0:e9:56:ac:8d:29:e3:84:cd:61:47:c4:cf: 03:dd:05:5c:1f:5a:91:6b:02:fd:ff:78:d2:ca:9a:75:53:eb: 4c:a1:c8:7c:61:b1:12:b7:f9:b2:83:13:a2:ad:e9:78:dd:e2: e9:59:df:9d:51:66:84:13:4b:01:fb:b7:92:21:cf:ae:06:ab: 0f:70:a4:07:31:e6:3f:b3:6a:b8:3c:68:8f:40:7b:4d:01:7f: 96:44:45:42:df:b1:4d:f7:61:16:69:ec:28:8c:b9:0b:07:ef: 50:d9:16:14:a4:76:bf:90:63:51:52:b2:2b:f1:cc:bb:88:20: 20:21:d4:f4:ee:a9:c7:3f:cd:e2:47:da:53:6a:2f:05:42:71: eb:55:2d:6c:3f:3e:c5:3a:a3:8d:69:e4:a4:53:3f:0b:89:3d: 99:a2:1d:ac:1e:50:e1:ef:92:df:74:49:dd:ed:69:7e:da:5d: 65:77:06:b0:74:9c:88:63:c7:6a:6f:ee:10:96:bf:d0:c1:2b: 13:c0:65:13 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OTMwOTExMC8GA1UEBRMoN0Q4RkEwQkVGNkFFRjcxQkRGODgzODU4RjczNjE5RDNC NTlFMjc3NzAeFw0yNTA3MTgwNjQ3NTVaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzllZTFhLWYzY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+5R32oJfeh20RskSpW/ifSV8XOZhuOGBItE+Pc5auzOde4SKkS4X4lkO1idQa EkHLOuHlMVMcV2HQMlc9tYBZFvVDfZexnMVq29x7xuM9BpDVmmfCangSoJ2Ypo3G vp/xiucFimPW0VUlBpZd5EcuX6Wp/zOqsJB6BieHxB0iLQGkneipjxunCliR0Kg+ HWLB64K4M0/wQ6dkh9xBm87djeYv1tmu+bCG+pOejDH7izZr2CzuhEvow9xYNzRF E+BaF1QwTm0Q7c98FFKi7DktV5Xa+VfUB9BHw2eIAlYJGBMbw3gwbiLDunTLuDQg 5TV4L7cxuPsEMis7t9xdlwm1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWg86aqDr /Xm8JMzVHidttzA1HAgwHwYDVR0jBBgwFoAUfY+gvvau9xvfiDhY9zYZ07WeJ3cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5MzA5Lzk4OTFFOTJFNjEz RDExRjBCMDM2QjgzNkM0RjlBRTAyL2ZZLWd2dmF1OXh2ZmlEaFk5ellaMDdXZUoz Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZlktZ3Z2YXU5eHZmaURoWTl6WVowN1dlSjNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTMwOS85ODkxRTkyRTYxM0QxMUYwQjAzNkI4MzZDNEY5QUUwMi8yMUM1QjA0MjYz QTMxMUYwOTY0NjgyNDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVlazANBgkqhkiG9w0BAQsFAAOCAQEAMKcNihUMOsmhPZ6v 4Vbw0sU7I9p1mkQ3iMuhChP/oRRrnhrAN7p0GFnSGqJ2MSxClKuyqDED3TvO/3bg 6VasjSnjhM1hR8TPA90FXB9akWsC/f940sqadVPrTKHIfGGxErf5soMToq3peN3i 6VnfnVFmhBNLAfu3kiHPrgarD3CkBzHmP7NquDxoj0B7TQF/lkRFQt+xTfdhFmns KIy5CwfvUNkWFKR2v5BjUVKyK/HMu4ggICHU9O6pxz/N4kfaU2ovBUJx61UtbD8+ xTqjjWnkpFM/C4k9maIdrB5Q4e+S33RJ3e1pftpdZXcGsHSciGPHam/uEJa/0MEr E8BlEw== -----END CERTIFICATE-----Generated at Wed Nov 5 15:24:36 2025 by rpki-client