$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa File: AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa (raw, json) Hash identifier: 6vL95HASIeMq5sE95QjJyODMvxYaOtsSaHmjFpdm+bI= Subject key identifier: 31:85:BC:BE:5A:FC:20:CC:9B:4D:C2:60:84:A1:37:11:51:85:9B:E5 Certificate issuer: /CN=A91B4053/serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Certificate serial: 1B Authority key identifier: 72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa Signing time: Tue 05 Aug 2025 08:45:07 +0000 ROA not before: Tue 05 Aug 2025 08:45:07 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153996 IP address blocks: 165.101.64.0/23 maxlen: 23 165.101.64.0/24 maxlen: 24 165.101.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=720AA66F36C1460AD4BC3AC692F965B7174A58E0 Validity Not Before: Aug 5 08:45:07 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6891c493-56eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3d:2e:c5:c5:51:39:dc:44:79:d4:95:2c:47: 3b:03:8a:c6:ad:c3:da:fd:d7:a9:2d:8f:b9:43:85: a4:62:27:28:62:09:5e:6b:19:7e:0d:11:af:c3:13: 7f:4f:2e:d7:6d:58:26:5c:21:4c:64:90:40:b0:43: 87:c8:91:f8:17:18:00:92:c1:a4:24:79:79:4e:07: 9b:14:fa:ce:22:9e:80:48:72:4e:78:03:cf:4c:a1: ed:8f:eb:de:2c:85:fd:15:ae:3b:5f:b5:8e:92:3c: 39:a7:36:a2:a4:f8:4b:90:55:11:4c:91:9c:b3:08: fd:35:35:7c:bc:b5:20:76:76:a4:5d:0d:76:c3:4a: d2:12:49:25:4f:7a:e9:72:c9:fb:9e:a6:91:93:a5: 47:1b:c9:98:2e:31:a4:74:21:59:60:f2:07:59:8f: e9:ed:e3:2f:bf:a5:33:95:2d:98:36:e1:1d:fc:67: 6d:78:ff:2a:4b:84:8d:2f:1b:31:1f:b5:5c:97:4b: ca:ac:a1:76:ad:ff:88:3e:e4:15:a0:e9:08:d1:75: 83:87:45:46:92:19:a6:d0:b0:66:73:dc:ca:f3:2e: 4a:a0:7c:3d:a3:3a:70:eb:06:dd:4a:29:87:37:ec: 33:04:64:46:a1:4c:cf:c9:16:d0:78:59:ce:18:91: c1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:85:BC:BE:5A:FC:20:CC:9B:4D:C2:60:84:A1:37:11:51:85:9B:E5 X509v3 Authority Key Identifier: keyid:72:0A:A6:6F:36:C1:46:0A:D4:BC:3A:C6:92:F9:65:B7:17:4A:58:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/cgqmbzbBRgrUvDrGkvlltxdKWOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cgqmbzbBRgrUvDrGkvlltxdKWOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3640CB9450E111F091C4BB74C4F9AE02/AC8BCC2E50E411F0B8E7D45DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.64.0/23 Signature Algorithm: sha256WithRSAEncryption 12:e5:87:2f:f1:49:52:67:15:c8:f0:0b:c2:90:bc:f3:c8:66: d3:8c:7a:f5:3e:34:3f:dd:21:15:27:32:43:6f:8d:1b:13:14: 9e:b4:72:60:e5:d4:f1:ed:f8:a5:b2:d9:a4:ee:35:d5:1b:16: 1f:ea:7d:76:8e:07:83:76:fb:be:a1:4b:71:5a:33:cd:57:a1: e5:f6:9e:9b:65:43:38:e4:b5:b7:3f:51:41:78:bc:3d:93:33: 17:03:07:d1:f3:1b:6d:65:4a:eb:32:21:b5:5c:46:b6:ae:a7: bd:09:75:36:3e:e6:28:14:4d:77:82:d2:2c:e5:ff:7e:f9:74: 8b:8b:28:21:25:a3:8e:a6:59:6e:b0:1f:6f:0c:1d:de:05:1e: c2:40:c2:b4:8b:55:f4:71:89:f3:85:38:20:20:df:61:e4:27: 30:9c:6b:93:9d:b7:5f:27:4e:05:fb:84:14:4c:2a:6c:ef:9f: 7a:12:33:9f:c6:20:fb:1e:39:fc:ed:e3:ba:51:98:17:33:5c: cf:71:73:71:11:6b:25:f9:3b:af:8a:52:e9:9a:35:af:cc:f9: bd:be:05:1e:c3:01:f4:5e:ce:40:21:94:fd:fb:9d:ec:21:2d: 98:43:7d:ae:41:1b:e1:09:54:b3:bf:03:c8:0b:00:cb:d0:97: cd:72:78:ed -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoNzIwQUE2NkYzNkMxNDYwQUQ0QkMzQUM2OTJGOTY1Qjcx NzRBNThFMDAeFw0yNTA4MDUwODQ1MDdaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTFjNDkzLTU2ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbPS7FxVE53ER51JUsRzsDisatw9r916ktj7lDhaRiJyhiCV5rGX4NEa/DE39P LtdtWCZcIUxkkECwQ4fIkfgXGACSwaQkeXlOB5sU+s4inoBIck54A89Moe2P694s hf0VrjtftY6SPDmnNqKk+EuQVRFMkZyzCP01NXy8tSB2dqRdDXbDStISSSVPeuly yfueppGTpUcbyZguMaR0IVlg8gdZj+nt4y+/pTOVLZg24R38Z214/ypLhI0vGzEf tVyXS8qsoXat/4g+5BWg6QjRdYOHRUaSGabQsGZz3MrzLkqgfD2jOnDrBt1KKYc3 7DMEZEahTM/JFtB4Wc4YkcF5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMYW8vlr8 IMybTcJghKE3EVGFm+UwHwYDVR0jBBgwFoAUcgqmbzbBRgrUvDrGkvlltxdKWOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzM2NDBDQjk0NTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyL2NncW1iemJCUmdyVXZEckdrdmxsdHhkS1dP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY2dxbWJ6YkJSZ3JVdkRyR2t2bGx0eGRLV09BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDA1My8zNjQwQ0I5NDUwRTExMUYwOTFDNEJCNzRDNEY5QUUwMi9BQzhCQ0MyRTUw RTQxMUYwQjhFN0Q0NURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlQDANBgkqhkiG9w0BAQsFAAOCAQEAEuWHL/FJUmcVyPAL wpC888hm04x69T40P90hFScyQ2+NGxMUnrRyYOXU8e34pbLZpO411RsWH+p9do4H g3b7vqFLcVozzVeh5faem2VDOOS1tz9RQXi8PZMzFwMH0fMbbWVK6zIhtVxGtq6n vQl1Nj7mKBRNd4LSLOX/fvl0i4soISWjjqZZbrAfbwwd3gUewkDCtItV9HGJ84U4 ICDfYeQnMJxrk523XydOBfuEFEwqbO+fehIzn8Yg+x45/O3julGYFzNcz3FzcRFr Jfk7r4pS6Zo1r8z5vb4FHsMB9F7OQCGU/fud7CEtmEN9rkEb4QlUs78DyAsAy9CX zXJ47Q== -----END CERTIFICATE-----Generated at Sun Aug 10 18:57:32 2025 by rpki-client