$ rpki-client -vvf rpki.apnic.net/member_repository/A9196780/E61DC08C525B11F0A8362240C4F9AE02/8CB6031052AB11F0BFD3D952C4F9AE02.roa File: 8CB6031052AB11F0BFD3D952C4F9AE02.roa (raw, json) Hash identifier: 7wTyCg/0wP3GL3JeAUaulyMMeddiOEV7adzs5N2hvf8= Subject key identifier: 1F:FF:B0:DD:2A:6F:4D:7C:08:78:2F:98:38:E4:56:3B:45:D9:86:2E Certificate issuer: /CN=A9196780/serialNumber=9FCD8F67692DBD821E7BDE6A6FBBD67C780757F9 Certificate serial: 04 Authority key identifier: 9F:CD:8F:67:69:2D:BD:82:1E:7B:DE:6A:6F:BB:D6:7C:78:07:57:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n82PZ2ktvYIee95qb7vWfHgHV_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196780/E61DC08C525B11F0A8362240C4F9AE02/8CB6031052AB11F0BFD3D952C4F9AE02.roa Signing time: Thu 26 Jun 2025 16:35:20 +0000 ROA not before: Thu 26 Jun 2025 16:35:20 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153991 IP address blocks: 165.101.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196780/E61DC08C525B11F0A8362240C4F9AE02/n82PZ2ktvYIee95qb7vWfHgHV_k.crl rsync://rpki.apnic.net/member_repository/A9196780/E61DC08C525B11F0A8362240C4F9AE02/n82PZ2ktvYIee95qb7vWfHgHV_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n82PZ2ktvYIee95qb7vWfHgHV_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196780, serialNumber=9FCD8F67692DBD821E7BDE6A6FBBD67C780757F9 Validity Not Before: Jun 26 16:35:20 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=685d76c8-2bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:13:1a:c2:c0:92:ba:79:4d:f2:82:34:0c:b3: a2:cd:1f:c5:db:5d:3e:34:fd:c2:be:28:88:82:17: ae:16:10:c6:bb:8a:8f:5f:1a:c2:37:fe:85:c8:7e: 90:a1:f2:d9:26:92:2e:2d:08:9e:02:70:13:7a:16: 3a:2f:f3:47:72:b8:b8:a4:ed:12:b6:b7:ae:e3:4e: d4:60:26:22:09:cb:ad:97:45:65:57:b2:08:40:ad: 5b:84:34:97:9b:68:f9:26:79:e1:99:06:db:4f:95: 99:f0:fd:a3:30:2e:b7:6e:c6:88:5e:49:62:14:10: a4:2d:0a:e7:78:3f:64:a9:15:32:09:3c:96:c8:0a: f8:c4:5c:d2:7c:11:c4:dc:5f:79:b7:1e:64:1c:76: d8:d2:9a:d5:36:89:c9:47:64:bc:5e:37:8b:96:a0: 6b:91:65:94:62:97:69:a4:e1:08:0b:d7:86:b0:72: 2a:06:3a:06:84:c6:14:25:6d:80:5e:69:1a:5b:d8: 84:f2:c2:30:f2:7c:b4:7d:22:f5:8d:c4:80:03:dc: 19:13:8d:f8:bd:54:96:8d:57:87:56:ba:de:50:57: 8c:b7:b0:3b:b1:97:05:0d:3b:8b:9c:eb:d0:c0:23: 93:e4:f3:0a:59:ee:b5:98:be:dd:13:0d:c9:a1:55: 5c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:FF:B0:DD:2A:6F:4D:7C:08:78:2F:98:38:E4:56:3B:45:D9:86:2E X509v3 Authority Key Identifier: keyid:9F:CD:8F:67:69:2D:BD:82:1E:7B:DE:6A:6F:BB:D6:7C:78:07:57:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196780/E61DC08C525B11F0A8362240C4F9AE02/n82PZ2ktvYIee95qb7vWfHgHV_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n82PZ2ktvYIee95qb7vWfHgHV_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196780/E61DC08C525B11F0A8362240C4F9AE02/8CB6031052AB11F0BFD3D952C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.52.0/23 Signature Algorithm: sha256WithRSAEncryption 27:b7:65:a6:c0:8a:bc:f9:ca:a0:6f:42:91:12:0a:c0:8f:d8: 02:64:b6:14:b3:4b:26:f3:1e:64:9a:dc:23:7b:a8:ec:59:df: 28:92:b2:37:d7:42:a3:ef:40:44:dc:62:54:18:47:bc:43:c5: 08:07:fd:12:05:80:94:41:cf:d2:84:a9:dc:3a:9c:28:4f:10: 57:54:9c:b7:5f:29:e3:c6:f0:8d:6d:c1:00:6c:16:ad:db:d2: fa:ef:d2:1c:81:52:9e:d3:54:a8:5f:d0:42:0d:17:d2:99:78: a4:39:32:0e:cb:d1:28:28:65:65:c7:21:54:16:82:4e:44:7e: 5d:4c:2c:da:07:15:d6:36:70:c7:5d:3e:5d:c1:42:45:15:75: 76:e4:68:5d:98:42:59:29:19:0c:e2:47:ee:d0:b3:a8:75:82: cc:10:fe:42:92:8d:82:c7:0b:12:39:37:71:2c:6c:cd:ef:96: 4f:0d:fe:95:6d:34:5c:29:67:76:98:e6:0c:0c:f1:31:9f:2d: 49:fa:c9:50:4b:50:e8:fc:56:a1:3a:81:79:73:26:02:dc:90: 84:bf:68:ee:73:f9:e4:94:23:7a:67:e2:1e:7c:6e:78:74:b7: dc:80:20:ec:3b:31:0d:24:66:c6:fc:d3:29:e5:f2:48:9e:ce: 14:31:82:67 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 Njc4MDExMC8GA1UEBRMoOUZDRDhGNjc2OTJEQkQ4MjFFN0JERTZBNkZCQkQ2N0M3 ODA3NTdGOTAeFw0yNTA2MjYxNjM1MjBaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWQ3NmM4LTJiYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVExrCwJK6eU3ygjQMs6LNH8XbXT40/cK+KIiCF64WEMa7io9fGsI3/oXIfpCh 8tkmki4tCJ4CcBN6Fjov80dyuLik7RK2t67jTtRgJiIJy62XRWVXsghArVuENJeb aPkmeeGZBttPlZnw/aMwLrduxoheSWIUEKQtCud4P2SpFTIJPJbICvjEXNJ8EcTc X3m3HmQcdtjSmtU2iclHZLxeN4uWoGuRZZRil2mk4QgL14awcioGOgaExhQlbYBe aRpb2ITywjDyfLR9IvWNxIAD3BkTjfi9VJaNV4dWut5QV4y3sDuxlwUNO4uc69DA I5Pk8wpZ7rWYvt0TDcmhVVxPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUH/+w3Spv TXwIeC+YOORWO0XZhi4wHwYDVR0jBBgwFoAUn82PZ2ktvYIee95qb7vWfHgHV/kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2NzgwL0U2MURDMDhDNTI1 QjExRjBBODM2MjI0MEM0RjlBRTAyL244MlBaMmt0dllJZWU5NXFiN3ZXZkhnSFZf ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbjgyUFoya3R2WUllZTk1cWI3dldmSGdIVl9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njc4MC9FNjFEQzA4QzUyNUIxMUYwQTgzNjIyNDBDNEY5QUUwMi84Q0I2MDMxMDUy QUIxMUYwQkZEM0Q5NTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlNDANBgkqhkiG9w0BAQsFAAOCAQEAJ7dlpsCKvPnKoG9C kRIKwI/YAmS2FLNLJvMeZJrcI3uo7FnfKJKyN9dCo+9ARNxiVBhHvEPFCAf9EgWA lEHP0oSp3DqcKE8QV1Sct18p48bwjW3BAGwWrdvS+u/SHIFSntNUqF/QQg0X0pl4 pDkyDsvRKChlZcchVBaCTkR+XUws2gcV1jZwx10+XcFCRRV1duRoXZhCWSkZDOJH 7tCzqHWCzBD+QpKNgscLEjk3cSxsze+WTw3+lW00XClndpjmDAzxMZ8tSfrJUEtQ 6PxWoTqBeXMmAtyQhL9o7nP55JQjemfiHnxueHS33IAg7DsxDSRmxvzTKeXySJ7O FDGCZw== -----END CERTIFICATE-----Generated at Wed Nov 5 13:32:16 2025 by rpki-client