$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B37/34CD08CE3CA311F08A495C2FC4F9AE02/83CD918C3CA311F0AA61F12FC4F9AE02.roa File: 83CD918C3CA311F0AA61F12FC4F9AE02.roa (raw, json) Hash identifier: ywFi/gtNdU8lkRVCHL6UwO/AhdTyOkF+YDOHO/p5BdE= Subject key identifier: E0:FC:34:E1:76:A3:17:75:5C:0C:D5:11:E0:F7:D6:28:1B:CD:FF:E2 Certificate issuer: /CN=A91C9B37/serialNumber=107DE26D17E31A048906ECAB59834FFEB148110F Certificate serial: 02 Authority key identifier: 10:7D:E2:6D:17:E3:1A:04:89:06:EC:AB:59:83:4F:FE:B1:48:11:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EH3ibRfjGgSJBuyrWYNP_rFIEQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B37/34CD08CE3CA311F08A495C2FC4F9AE02/83CD918C3CA311F0AA61F12FC4F9AE02.roa Signing time: Thu 29 May 2025 15:42:24 +0000 ROA not before: Thu 29 May 2025 15:42:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153912 IP address blocks: 165.99.138.0/23 maxlen: 23 165.99.138.0/24 maxlen: 24 165.99.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B37/34CD08CE3CA311F08A495C2FC4F9AE02/EH3ibRfjGgSJBuyrWYNP_rFIEQ8.crl rsync://rpki.apnic.net/member_repository/A91C9B37/34CD08CE3CA311F08A495C2FC4F9AE02/EH3ibRfjGgSJBuyrWYNP_rFIEQ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EH3ibRfjGgSJBuyrWYNP_rFIEQ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B37, serialNumber=107DE26D17E31A048906ECAB59834FFEB148110F Validity Not Before: May 29 15:42:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6838805f-c72c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:12:fc:a5:bc:01:24:4b:01:c9:8e:09:8c: cc:8b:ae:0f:c3:e9:cd:4b:8e:50:15:1f:7a:9e:be: 58:30:53:e2:93:46:b4:30:3a:45:22:e0:f2:71:ea: 3a:4c:66:bd:ec:bb:af:7a:82:29:d4:41:b1:0b:d8: 7c:04:7e:13:8d:3b:d0:03:46:b9:dd:ea:d9:3b:88: 13:89:66:b4:47:db:0b:fc:00:ac:bb:42:ef:9e:59: bf:87:15:6b:c4:01:bc:f3:0c:1a:fc:f0:d3:f1:8f: 69:b4:05:b0:fb:22:ca:c0:2a:64:50:93:50:51:a1: 62:5c:bb:98:b7:6e:41:1d:dc:94:fb:56:e1:ce:d3: f1:9c:25:d4:41:8a:ca:33:f7:ac:83:f1:df:8d:80: 0e:16:a2:8f:e3:38:fc:eb:73:06:f5:95:02:17:31: c8:23:54:d0:75:21:ff:87:55:ab:e4:33:66:c4:ff: 2f:b9:03:a3:86:b1:c0:fb:35:06:2e:ed:25:1e:fb: 2d:0d:f7:4e:07:72:e4:2d:99:ec:18:28:d4:5f:ba: 61:87:c3:dc:b0:51:46:f8:f4:5a:73:a1:0e:cf:26: e3:54:cb:56:50:42:0b:5b:f8:d3:f8:78:ff:0d:58: 89:d0:d6:e9:7d:9c:9d:d1:43:d3:04:f6:a7:db:36: 1e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:FC:34:E1:76:A3:17:75:5C:0C:D5:11:E0:F7:D6:28:1B:CD:FF:E2 X509v3 Authority Key Identifier: keyid:10:7D:E2:6D:17:E3:1A:04:89:06:EC:AB:59:83:4F:FE:B1:48:11:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B37/34CD08CE3CA311F08A495C2FC4F9AE02/EH3ibRfjGgSJBuyrWYNP_rFIEQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EH3ibRfjGgSJBuyrWYNP_rFIEQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B37/34CD08CE3CA311F08A495C2FC4F9AE02/83CD918C3CA311F0AA61F12FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.138.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:be:33:a3:20:b5:db:05:c9:66:f4:55:35:cd:e3:7a:32:6b: ed:0e:2a:7c:64:f5:bc:02:01:3c:b8:98:ea:a3:24:6b:0c:83: 4f:8e:8b:3a:3b:f1:2d:55:5a:58:30:3d:46:5b:b2:a6:19:e0: 6d:d4:9f:6e:7e:b7:58:a9:13:57:55:d9:74:1c:d5:b8:85:cc: 12:91:ce:8f:93:94:31:a5:23:f0:9c:0c:19:76:a1:f6:a0:c0: 1c:a5:c3:de:ea:43:d5:02:0b:93:72:60:7c:f0:01:3e:3e:36: 75:bb:2e:62:8a:99:ef:27:1b:49:3b:a2:ca:ef:75:a5:13:11: 82:8e:55:d9:bc:d0:4c:5b:1f:e9:8b:96:13:20:a6:39:bc:b9: b6:73:28:ac:93:ce:a8:8c:3f:74:b1:d5:25:6c:04:37:4f:7a: b6:dd:10:21:4a:05:04:14:85:63:fa:cb:62:28:d1:72:55:ec: 3a:78:ab:11:74:5c:c3:6b:0d:0d:9e:3a:a8:0b:cc:cf:f4:92: aa:bc:6e:6e:c7:d1:38:b9:f1:8a:86:16:bc:6e:7e:f7:9e:b0: 74:14:fd:7d:9e:65:c7:a8:6c:da:09:1c:07:e5:e7:1e:fa:a6: 0e:44:fc:ac:20:f4:51:f1:49:97:06:54:1f:ec:75:25:a8:cb: b8:98:99:81 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUIzNzExMC8GA1UEBRMoMTA3REUyNkQxN0UzMUEwNDg5MDZFQ0FCNTk4MzRGRkVC MTQ4MTEwRjAeFw0yNTA1MjkxNTQyMjRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Mzg4MDVmLWM3MmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6aBL8pbwBJEsByY4JjMyLrg/D6c1LjlAVH3qevlgwU+KTRrQwOkUi4PJx6jpM Zr3su696ginUQbEL2HwEfhONO9ADRrnd6tk7iBOJZrRH2wv8AKy7Qu+eWb+HFWvE AbzzDBr88NPxj2m0BbD7IsrAKmRQk1BRoWJcu5i3bkEd3JT7VuHO0/GcJdRBisoz 96yD8d+NgA4Woo/jOPzrcwb1lQIXMcgjVNB1If+HVavkM2bE/y+5A6OGscD7NQYu 7SUe+y0N904HcuQtmewYKNRfumGHw9ywUUb49FpzoQ7PJuNUy1ZQQgtb+NP4eP8N WInQ1ul9nJ3RQ9ME9qfbNh7TAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4Pw04Xaj F3VcDNUR4PfWKBvN/+IwHwYDVR0jBBgwFoAUEH3ibRfjGgSJBuyrWYNP/rFIEQ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QjM3LzM0Q0QwOENFM0NB MzExRjA4QTQ5NUMyRkM0RjlBRTAyL0VIM2liUmZqR2dTSkJ1eXJXWU5QX3JGSUVR OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRUgzaWJSZmpHZ1NKQnV5cldZTlBfckZJRVE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUIzNy8zNENEMDhDRTNDQTMxMUYwOEE0OTVDMkZDNEY5QUUwMi84M0NEOTE4QzND QTMxMUYwQUE2MUYxMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVjijANBgkqhkiG9w0BAQsFAAOCAQEAer4zoyC12wXJZvRV Nc3jejJr7Q4qfGT1vAIBPLiY6qMkawyDT46LOjvxLVVaWDA9RluyphngbdSfbn63 WKkTV1XZdBzVuIXMEpHOj5OUMaUj8JwMGXah9qDAHKXD3upD1QILk3JgfPABPj42 dbsuYoqZ7ycbSTuiyu91pRMRgo5V2bzQTFsf6YuWEyCmOby5tnMorJPOqIw/dLHV JWwEN096tt0QIUoFBBSFY/rLYijRclXsOnirEXRcw2sNDZ46qAvMz/SSqrxubsfR OLnxioYWvG5+956wdBT9fZ5lx6hs2gkcB+XnHvqmDkT8rCD0UfFJlwZUH+x1JajL uJiZgQ== -----END CERTIFICATE-----Generated at Wed Nov 5 16:26:56 2025 by rpki-client