$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/312F0E7E6E1C11F0AB99F682C4F9AE02.roa File: 312F0E7E6E1C11F0AB99F682C4F9AE02.roa (raw, json) Hash identifier: TPTw4itouUrT3zWp67Qh/kFVGTIQgN0gjeYV7fEtXi8= Subject key identifier: 82:44:02:79:B9:7F:6E:E7:AD:80:F5:24:24:E4:39:A0:D1:33:E2:81 Certificate issuer: /CN=A91758EC/serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Certificate serial: 0A Authority key identifier: D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/312F0E7E6E1C11F0AB99F682C4F9AE02.roa Signing time: Thu 31 Jul 2025 14:40:24 +0000 ROA not before: Thu 31 Jul 2025 14:40:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 150683 IP address blocks: 165.101.240.0/24 maxlen: 24 165.101.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=D827B6843EB7F6B9F0ED5F2FF72344A52C04B49F Validity Not Before: Jul 31 14:40:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688b8057-15f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:37:97:ca:8d:ba:e1:d3:94:e9:30:97:73:5e: e6:aa:90:86:cd:8a:71:9b:2c:37:e1:74:5f:12:9e: 4c:d7:5e:7f:9c:25:73:06:c5:da:2d:fa:33:ab:5e: d4:cc:ef:37:89:2c:15:de:cc:6e:df:6d:7c:3a:55: 56:a4:59:c8:48:a8:bf:82:fe:e6:dd:d7:16:bf:b1: 3b:b1:71:b1:02:7f:ec:0d:2c:50:1d:5d:cf:ce:20: 13:8d:cf:44:68:f5:e2:bc:1d:00:6d:db:c7:bb:21: d9:02:8c:0d:ca:58:07:db:9a:9a:6c:c5:1c:61:3a: 34:aa:2c:41:09:81:b1:3f:41:b4:7a:26:4f:81:29: 8a:e6:31:60:70:b1:20:dc:7f:b4:f2:ad:60:a8:cc: 46:68:85:a7:dd:b0:fa:0b:75:80:da:17:00:01:82: 5a:c8:86:52:4e:d1:1d:04:2d:97:cc:97:f8:2e:9c: b4:29:72:68:38:ca:f3:9a:c0:94:ca:4c:04:f3:1a: 1e:0d:bb:27:79:aa:7c:fb:92:4f:7d:90:1b:51:49: 39:2e:bb:6a:e6:e5:af:ee:83:d5:e4:63:1f:78:24: cb:e0:a8:df:13:d5:1a:57:56:88:25:ab:a3:03:a5: bd:16:5e:c5:69:d6:3f:d9:3b:9e:b1:e7:18:5d:92: 1b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:44:02:79:B9:7F:6E:E7:AD:80:F5:24:24:E4:39:A0:D1:33:E2:81 X509v3 Authority Key Identifier: keyid:D8:27:B6:84:3E:B7:F6:B9:F0:ED:5F:2F:F7:23:44:A5:2C:04:B4:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/2Ce2hD639rnw7V8v9yNEpSwEtJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Ce2hD639rnw7V8v9yNEpSwEtJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/6BF86B84663011F0B9DC4E64C4F9AE02/312F0E7E6E1C11F0AB99F682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.240.0/23 Signature Algorithm: sha256WithRSAEncryption 43:d7:71:34:86:f3:48:04:65:63:4e:58:cc:97:b8:4a:2b:bd: 50:83:9b:61:ee:13:f9:03:b7:15:76:99:29:e9:7c:3d:96:02: 97:32:9b:d0:13:b0:36:c1:cf:ad:9d:62:d0:43:8d:63:00:2d: 91:29:00:a2:a8:5e:c5:87:89:a4:ac:bd:ae:aa:5e:76:7c:eb: 85:5f:d4:d9:84:ef:f9:cb:7e:ef:ac:74:06:e5:74:d5:70:90: 27:21:a9:ed:6e:03:bb:f2:bb:9f:29:92:6e:af:06:69:fd:dd: ab:c4:e9:c1:d2:cc:6c:46:8a:03:e8:cd:12:e5:2b:35:2f:19: cc:eb:0c:e4:c2:3d:8f:06:32:09:64:81:41:a9:fd:9e:17:c6: b8:28:e4:38:6d:98:f4:1e:cd:72:d8:7c:09:74:35:b7:a6:11: ef:85:e1:e1:05:f0:be:c8:82:d3:9c:2f:96:b1:e9:46:2f:cc: 8f:fc:8f:10:1d:ed:5c:ca:91:d1:18:41:ed:42:59:86:21:ed: 71:65:6a:b1:db:62:91:8e:c4:92:3c:a6:45:9f:14:f2:a0:0d: 0e:94:48:6c:29:84:7b:8a:73:e2:29:60:bf:b8:a0:27:2a:47: 33:49:d3:d9:13:45:34:11:54:3a:6c:e6:88:31:e0:e9:85:9d: a7:0e:fb:57 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoRDgyN0I2ODQzRUI3RjZCOUYwRUQ1RjJGRjcyMzQ0QTUy QzA0QjQ5RjAeFw0yNTA3MzExNDQwMjRaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OGI4MDU3LTE1ZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIN5fKjbrh05TpMJdzXuaqkIbNinGbLDfhdF8SnkzXXn+cJXMGxdot+jOrXtTM 7zeJLBXezG7fbXw6VVakWchIqL+C/ubd1xa/sTuxcbECf+wNLFAdXc/OIBONz0Ro 9eK8HQBt28e7IdkCjA3KWAfbmppsxRxhOjSqLEEJgbE/QbR6Jk+BKYrmMWBwsSDc f7TyrWCozEZohafdsPoLdYDaFwABglrIhlJO0R0ELZfMl/gunLQpcmg4yvOawJTK TATzGh4Nuyd5qnz7kk99kBtRSTkuu2rm5a/ug9XkYx94JMvgqN8T1RpXVoglq6MD pb0WXsVp1j/ZO56x5xhdkhsVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgkQCebl/ buetgPUkJOQ5oNEz4oEwHwYDVR0jBBgwFoAU2Ce2hD639rnw7V8v9yNEpSwEtJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzZCRjg2Qjg0NjYz MDExRjBCOURDNEU2NEM0RjlBRTAyLzJDZTJoRDYzOXJudzdWOHY5eU5FcFN3RXRK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkNlMmhENjM5cm53N1Y4djl5TkVwU3dFdEo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThFQy82QkY4NkI4NDY2MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi8zMTJGMEU3RTZF MUMxMUYwQUI5OUY2ODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVl8DANBgkqhkiG9w0BAQsFAAOCAQEAQ9dxNIbzSARlY05Y zJe4Siu9UIObYe4T+QO3FXaZKel8PZYClzKb0BOwNsHPrZ1i0EONYwAtkSkAoqhe xYeJpKy9rqpednzrhV/U2YTv+ct+76x0BuV01XCQJyGp7W4Du/K7nymSbq8Gaf3d q8TpwdLMbEaKA+jNEuUrNS8ZzOsM5MI9jwYyCWSBQan9nhfGuCjkOG2Y9B7Ncth8 CXQ1t6YR74Xh4QXwvsiC05wvlrHpRi/Mj/yPEB3tXMqR0RhB7UJZhiHtcWVqsdti kY7EkjymRZ8U8qANDpRIbCmEe4pz4ilgv7igJypHM0nT2RNFNBFUOmzmiDHg6YWd pw77Vw== -----END CERTIFICATE-----Generated at Mon Aug 11 04:10:58 2025 by rpki-client