$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/1C089672407811F089B24D29C4F9AE02.roa File: 1C089672407811F089B24D29C4F9AE02.roa (raw, json) Hash identifier: surqk2//dkrsBXlyh0WsrSKPCbtFwCNa4gHd1+miQrQ= Subject key identifier: 4C:85:E7:13:5B:05:22:DE:68:B4:66:15:19:D6:08:2E:9D:70:56:68 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E81 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/1C089672407811F089B24D29C4F9AE02.roa Signing time: Tue 03 Jun 2025 12:41:46 +0000 ROA not before: Tue 03 Jun 2025 12:41:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153931 IP address blocks: 165.99.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7809 (0x1e81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jun 3 12:41:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683eed8a-b2b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:40:91:ba:f7:3f:e2:35:51:99:bf:6e:5e:77: d0:f8:f3:02:23:77:6d:a9:a2:c7:fc:16:4d:7a:6d: 94:26:a7:5e:88:1f:ac:23:e3:a0:a5:38:9d:bb:a9: bb:88:d6:8a:83:7d:99:b9:cf:a5:ee:ce:d4:8b:3c: d9:80:5b:6a:ce:bc:5d:b1:57:cc:9e:16:66:4a:f8: ae:76:f1:5b:ef:cc:3c:20:0c:ab:5b:e1:dd:d2:a8: 18:da:50:a8:6b:d2:e7:1e:0d:2b:68:ae:72:36:b2: d5:e7:f6:58:0e:f1:95:49:a6:1e:01:7e:cf:06:93: c0:ea:79:3f:6e:43:0e:40:e6:8a:5d:17:8d:9d:d5: d5:01:8f:69:97:2d:a1:dc:18:db:3f:93:16:37:db: a2:8c:05:1e:0f:41:e0:5c:7e:d7:c4:e8:57:4f:6a: df:ab:08:2f:ce:ed:aa:b8:6e:dd:8d:39:a2:57:46: 9f:c6:a8:79:d4:67:2b:d3:29:d9:c6:b3:a5:1b:4d: a6:3c:e9:d2:35:87:0e:70:1e:3d:2c:50:df:6d:5a: e6:79:bf:e7:46:75:5e:e0:97:f7:89:0d:6a:64:a3: 79:12:d9:10:5b:bd:c5:48:b7:9c:bd:45:b4:a4:7c: 02:86:ea:f2:e2:71:ba:89:2b:95:ee:7f:5f:2d:82: 25:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:85:E7:13:5B:05:22:DE:68:B4:66:15:19:D6:08:2E:9D:70:56:68 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/1C089672407811F089B24D29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.166.0/23 Signature Algorithm: sha256WithRSAEncryption a5:c0:8d:8f:20:b2:4a:71:4f:7d:ca:20:a5:0d:f6:b2:e3:73: 0b:99:97:25:41:a1:8a:13:a8:e1:ee:63:7c:46:61:79:56:df: 50:96:cd:41:8a:db:6d:09:b9:22:b0:1a:2a:b2:ad:97:d0:03: 6d:8c:f6:c9:9e:d3:e4:04:f4:ae:e7:16:05:14:55:22:1b:03: 46:16:47:9b:19:1b:04:f9:2e:6b:ae:c1:4d:67:9a:15:2f:d2: 53:64:ef:5e:ef:97:5c:b2:6c:9d:2d:87:f8:87:39:5e:ee:1f: c2:f9:17:88:8f:af:c4:65:bf:e2:a8:a2:11:c9:84:b9:94:28: 54:b3:13:b5:79:17:1e:76:47:e4:75:b1:20:af:41:3f:d0:82: b9:84:f9:57:a6:72:3d:eb:0f:97:21:27:4d:ae:e6:e7:1c:75: 88:f5:86:0f:7d:dd:58:dd:e4:dc:d5:cc:8a:b9:7b:8b:a4:e6: b3:bb:64:79:87:99:1f:b0:1d:9f:da:bc:fd:e7:48:b8:78:fe: ab:83:91:9d:53:10:d9:9f:8d:5f:82:36:79:62:75:c9:83:0b: 7d:43:44:12:0c:97:e9:3e:8c:03:90:ed:6f:2f:b3:fa:92:a2: 49:a6:f7:54:98:b6:98:84:84:5c:9d:c9:c7:60:d2:bf:d5:7a: d1:4f:0d:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNjAzMTI0MTQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlZWQ4YS1iMmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kCRuvc/4jVRmb9uXnfQ+PMCI3dtqaLH/BZNem2UJqdeiB+sI+OgpTidu6m7 iNaKg32Zuc+l7s7UizzZgFtqzrxdsVfMnhZmSviudvFb78w8IAyrW+Hd0qgY2lCo a9LnHg0raK5yNrLV5/ZYDvGVSaYeAX7PBpPA6nk/bkMOQOaKXReNndXVAY9ply2h 3BjbP5MWN9uijAUeD0HgXH7XxOhXT2rfqwgvzu2quG7djTmiV0afxqh51Gcr0ynZ xrOlG02mPOnSNYcOcB49LFDfbVrmeb/nRnVe4Jf3iQ1qZKN5EtkQW73FSLecvUW0 pHwChury4nG6iSuV7n9fLYIlmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEyF5xNb BSLeaLRmFRnWCC6dcFZoMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMUMwODk2NzI0 MDc4MTFGMDg5QjI0RDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlY6YwDQYJKoZIhvcNAQELBQADggEBAKXAjY8gskpxT33K IKUN9rLjcwuZlyVBoYoTqOHuY3xGYXlW31CWzUGK220JuSKwGiqyrZfQA22M9sme 0+QE9K7nFgUUVSIbA0YWR5sZGwT5LmuuwU1nmhUv0lNk717vl1yybJ0th/iHOV7u H8L5F4iPr8Rlv+KoohHJhLmUKFSzE7V5Fx52R+R1sSCvQT/QgrmE+Vemcj3rD5ch J02u5uccdYj1hg993Vjd5NzVzIq5e4uk5rO7ZHmHmR+wHZ/avP3nSLh4/quDkZ1T ENmfjV+CNnlidcmDC31DRBIMl+k+jAOQ7W8vs/qSokmm91SYtpiEhFydycdg0r/V etFPDWI= -----END CERTIFICATE-----Generated at Sun Jun 15 08:40:46 2025 by rpki-client