$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa File: D64176D81B9911ECAB0E1678C4F9AE02.roa (raw, json) Hash identifier: Wde+/tbwO6emtqEAbVU9kd5LqQ/7rRJAB/r7M8LU5/8= Subject key identifier: A6:7F:B1:B8:22:8C:A7:23:04:41:8A:2E:CF:8E:22:C1:9E:16:98:A3 Certificate issuer: /CN=A919F0DA/serialNumber=082F1EE92FEA6373FDA1D5AEC46E2F2D8AE8AC87 Certificate serial: 0801 Authority key identifier: 08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa Signing time: Wed 30 Jul 2025 14:20:09 +0000 ROA not before: Wed 30 Jul 2025 14:20:09 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4758 IP address blocks: 164.100.0.0/16 maxlen: 16 164.100.0.0/17 maxlen: 17 164.100.0.0/18 maxlen: 24 164.100.64.0/19 maxlen: 24 164.100.96.0/19 maxlen: 19 164.100.96.0/20 maxlen: 20 164.100.96.0/23 maxlen: 24 164.100.98.0/24 maxlen: 24 164.100.99.0/24 maxlen: 24 164.100.100.0/22 maxlen: 24 164.100.104.0/21 maxlen: 24 164.100.112.0/20 maxlen: 24 164.100.128.0/17 maxlen: 23 164.100.128.0/19 maxlen: 24 164.100.160.0/20 maxlen: 24 164.100.176.0/21 maxlen: 24 164.100.184.0/22 maxlen: 24 164.100.188.0/24 maxlen: 24 164.100.190.0/23 maxlen: 24 164.100.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 14:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2049 (0x801) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=082F1EE92FEA6373FDA1D5AEC46E2F2D8AE8AC87 Validity Not Before: Jul 30 14:20:09 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688a2a19-3da3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ac:fb:02:5c:07:4d:8f:e0:cb:88:3d:48:c0: 52:85:c1:e7:c0:3a:1d:96:25:72:68:6e:e7:01:63: 7d:a5:96:26:b8:99:16:f2:1f:7c:17:f2:54:37:ac: c3:45:f8:f1:9a:83:91:b0:5a:43:2d:eb:3a:da:e8: e4:28:ed:7c:fc:52:37:fd:49:bb:77:62:eb:f7:99: 24:1f:d8:db:66:41:9e:47:53:f1:33:59:88:f5:ed: b7:0b:99:90:11:26:8b:6a:b3:0c:c7:b7:8b:b6:1e: 0d:e6:a0:e6:6c:05:2e:8b:d8:6f:cc:dc:70:9c:01: fb:9b:41:e4:84:aa:4b:2f:13:29:ac:cd:e7:d8:d3: 77:61:e8:89:4a:d7:24:5b:d0:db:a3:54:78:77:c2: 72:ae:9d:42:09:bf:0a:bb:d9:75:e0:f9:d1:ea:8a: f0:bb:8c:f2:32:25:f8:15:4c:e0:e8:d5:2b:c1:15: dd:c9:41:5b:a5:4c:c2:15:94:6b:bb:98:22:e4:d1: 27:c0:6f:ee:8c:0a:7e:3c:f9:48:17:77:0c:5b:95: 13:5d:84:64:53:18:5a:c5:d3:ed:a0:2c:34:10:41: 76:4c:55:4c:75:7d:72:8b:30:fc:90:ed:59:1d:51: 78:4f:d5:e0:86:06:9e:a3:93:24:42:33:ff:18:97: 04:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:7F:B1:B8:22:8C:A7:23:04:41:8A:2E:CF:8E:22:C1:9E:16:98:A3 X509v3 Authority Key Identifier: keyid:08:2F:1E:E9:2F:EA:63:73:FD:A1:D5:AE:C4:6E:2F:2D:8A:E8:AC:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/CC8e6S_qY3P9odWuxG4vLYrorIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CC8e6S_qY3P9odWuxG4vLYrorIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/FC61E0081D6711E28C1828A408B02CD2/D64176D81B9911ECAB0E1678C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5f:1a:5d:8c:e3:35:88:b1:f4:9a:b7:2c:0f:d3:79:f6:bf:60: f8:ea:1c:69:88:07:0f:bb:c3:bd:89:f0:6f:87:86:14:0e:7d: c5:d4:76:37:6b:20:78:30:6a:3d:fc:27:c0:49:1f:ba:d7:64: 16:38:b2:3d:48:c9:cb:3e:b3:62:31:59:9a:59:d0:e4:8d:93: 77:3e:0e:0e:30:84:8f:df:a5:1f:a7:3c:91:a3:c6:18:73:3b: a6:cd:a3:11:74:53:b0:7b:ae:63:99:d2:5f:3e:32:d8:c2:21: 8f:a8:fb:47:a0:d1:fc:5a:1b:84:3f:72:f5:34:61:1e:a1:38: f8:50:ef:35:b9:3e:1f:b6:0b:d3:ae:53:7f:38:2e:18:fa:01: 5e:ce:ee:1b:90:79:d8:e0:88:dc:99:e1:fa:04:5d:6f:b4:06: f0:3f:9b:8a:b7:33:2a:82:83:0f:2a:10:a8:5f:7e:93:ea:6a: 41:71:9b:a5:55:63:1b:44:bc:44:11:a3:23:ce:06:4f:6d:3f: 52:39:17:dd:74:a5:e6:d7:fd:69:d0:0f:03:1f:8f:72:31:75: e4:30:0c:2d:a2:e5:74:f8:8c:bc:65:c9:a6:3d:03:5a:74:4b: d3:b2:1c:f8:49:ee:11:a0:de:17:08:e7:eb:3a:d7:39:ad:5c: 07:d1:a6:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICCAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDA4MkYxRUU5MkZFQTYzNzNGREExRDVBRUM0NkUyRjJE OEFFOEFDODcwHhcNMjUwNzMwMTQyMDA5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhMmExOS0zZGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaz7AlwHTY/gy4g9SMBShcHnwDodliVyaG7nAWN9pZYmuJkW8h98F/JUN6zD RfjxmoORsFpDLes62ujkKO18/FI3/Um7d2Lr95kkH9jbZkGeR1PxM1mI9e23C5mQ ESaLarMMx7eLth4N5qDmbAUui9hvzNxwnAH7m0HkhKpLLxMprM3n2NN3YeiJStck W9Dbo1R4d8Jyrp1CCb8Ku9l14PnR6orwu4zyMiX4FUzg6NUrwRXdyUFbpUzCFZRr u5gi5NEnwG/ujAp+PPlIF3cMW5UTXYRkUxhaxdPtoCw0EEF2TFVMdX1yizD8kO1Z HVF4T9Xghgaeo5MkQjP/GJcE2wIDAQABo4IClDCCApAwHQYDVR0OBBYEFKZ/sbgi jKcjBEGKLs+OIsGeFpijMB8GA1UdIwQYMBaAFAgvHukv6mNz/aHVrsRuLy2K6KyH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS9GQzYxRTAwODFE NjcxMUUyOEMxODI4QTQwOEIwMkNEMi9DQzhlNlNfcVkzUDlvZFd1eEc0dkxZcm9y SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NDOGU2U19xWTNQOW9kV3V4RzR2TFlyb3JJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwREEvRkM2MUUwMDgxRDY3MTFFMjhDMTgyOEE0MDhCMDJDRDIvRDY0MTc2RDgx Qjk5MTFFQ0FCMEUxNjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCkZDANBgkqhkiG9w0BAQsFAAOCAQEAXxpdjOM1iLH0mrcs D9N59r9g+OocaYgHD7vDvYnwb4eGFA59xdR2N2sgeDBqPfwnwEkfutdkFjiyPUjJ yz6zYjFZmlnQ5I2Tdz4ODjCEj9+lH6c8kaPGGHM7ps2jEXRTsHuuY5nSXz4y2MIh j6j7R6DR/FobhD9y9TRhHqE4+FDvNbk+H7YL065TfzguGPoBXs7uG5B52OCI3Jnh +gRdb7QG8D+birczKoKDDyoQqF9+k+pqQXGbpVVjG0S8RBGjI84GT20/UjkX3XSl 5tf9adAPAx+PcjF15DAMLaLldPiMvGXJpj0DWnRL07Ic+EnuEaDeFwjn6zrXOa1c B9Gmtg== -----END CERTIFICATE-----Generated at Fri Aug 8 10:17:28 2025 by rpki-client