$ rpki-client -vvf rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/A7C3B19858CD11F083D7B477C4F9AE02.roa File: A7C3B19858CD11F083D7B477C4F9AE02.roa (raw, json) Hash identifier: 8KYhw05nY7mchDEJfru3ck598S7WS2QrgetgJkL5mmM= Subject key identifier: CB:70:98:25:78:C7:41:D9:73:60:2B:6D:1B:1F:4A:8A:78:76:E8:F5 Certificate issuer: /CN=A9166279/serialNumber=474BF735ED28F3518BCE0AC462958BEC582CD765 Certificate serial: 02 Authority key identifier: 47:4B:F7:35:ED:28:F3:51:8B:CE:0A:C4:62:95:8B:EC:58:2C:D7:65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R0v3Ne0o81GLzgrEYpWL7Fgs12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/A7C3B19858CD11F083D7B477C4F9AE02.roa Signing time: Fri 04 Jul 2025 11:54:36 +0000 ROA not before: Fri 04 Jul 2025 11:54:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17557 IP address blocks: 165.101.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/R0v3Ne0o81GLzgrEYpWL7Fgs12U.crl rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/R0v3Ne0o81GLzgrEYpWL7Fgs12U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R0v3Ne0o81GLzgrEYpWL7Fgs12U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166279, serialNumber=474BF735ED28F3518BCE0AC462958BEC582CD765 Validity Not Before: Jul 4 11:54:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6867c0fb-804c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:98:1a:b8:40:c9:5c:79:00:fa:6d:2e:5a:a7: 98:bf:ea:cb:99:4d:f5:74:7d:bb:a4:69:f1:64:68: ac:67:74:6f:9c:31:de:6e:c8:07:f0:fd:da:3c:1b: 0b:69:c7:c8:a9:f6:37:ba:6d:ce:fe:97:2c:2b:e6: 66:8c:5b:72:a5:b5:26:5b:25:bf:73:4e:9a:c1:d5: cc:40:ea:78:37:58:00:ad:e2:a3:a7:6a:85:95:d1: 64:de:78:7c:ab:c9:8b:0d:43:d3:f2:39:b8:8c:74: 39:e2:af:fe:e4:57:0b:f6:bd:20:83:97:c4:0f:55: 05:0b:9c:51:d1:0b:76:19:00:04:75:bf:fe:c7:c2: 91:d0:14:fe:c9:cd:b6:ef:92:24:b8:0b:66:e8:a9: f5:b8:e3:cc:b6:23:5d:e5:46:67:b9:04:d0:c1:11: ac:13:b1:9b:f2:82:96:e2:03:ab:88:5d:38:7a:19: ed:a2:17:52:4d:17:b2:13:a9:92:70:86:0a:62:77: 4d:ad:b9:a7:42:5f:15:25:96:8f:16:3c:46:69:69: be:b3:06:9d:19:2a:c1:85:93:8a:be:f9:89:8e:de: 55:d8:68:b8:43:b9:f0:72:be:6e:72:3b:8c:2e:cf: 97:93:8b:d2:86:f6:1a:11:d8:5a:a1:40:e5:a9:df: 5a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:70:98:25:78:C7:41:D9:73:60:2B:6D:1B:1F:4A:8A:78:76:E8:F5 X509v3 Authority Key Identifier: keyid:47:4B:F7:35:ED:28:F3:51:8B:CE:0A:C4:62:95:8B:EC:58:2C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/R0v3Ne0o81GLzgrEYpWL7Fgs12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R0v3Ne0o81GLzgrEYpWL7Fgs12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/A7C3B19858CD11F083D7B477C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.118.0/24 Signature Algorithm: sha256WithRSAEncryption ae:c8:89:1d:90:7d:58:7a:11:23:34:02:f7:6c:1e:bb:da:69: 82:66:8c:bc:ce:e4:90:79:2c:ae:fb:fc:d5:39:7f:58:75:1b: ae:6d:ef:67:0f:40:4b:66:9b:93:58:6f:28:fd:8b:e6:50:cd: df:f5:d8:48:fa:bf:89:cc:ab:16:1e:85:55:be:02:23:96:03: 45:15:c9:dd:42:b8:f4:ec:dc:2a:89:c6:41:1d:0e:ad:a3:d6: ed:75:35:fe:7b:63:51:dc:cd:33:de:4f:b7:f8:58:c0:ed:d5: bf:c3:cb:2d:3f:2d:69:c7:a7:11:36:79:78:c7:47:48:ae:92: 3a:5c:b1:ab:95:0f:9a:d5:e1:02:5c:9a:75:56:cc:27:de:d9: a3:df:1f:4f:98:06:e2:af:95:92:2e:13:b7:cd:d4:67:d9:c0: 43:db:05:1c:98:16:91:d7:72:84:aa:39:48:bf:b6:bd:e5:7a: 4f:b2:aa:c4:fa:44:cc:32:bb:d9:a5:18:3d:7e:bc:56:e5:24: f8:46:2b:4a:c2:11:0e:a3:61:ab:e1:c0:61:2f:b4:f4:0f:42: fe:01:88:36:3b:b0:c4:30:b1:b9:91:02:10:ae:32:da:0e:22: 54:4f:1a:a3:d1:20:11:13:1c:02:e3:14:19:26:c7:65:fa:f1: e3:fa:ec:3b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NjI3OTExMC8GA1UEBRMoNDc0QkY3MzVFRDI4RjM1MThCQ0UwQUM0NjI5NThCRUM1 ODJDRDc2NTAeFw0yNTA3MDQxMTU0MzZaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjdjMGZiLTgwNGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwmBq4QMlceQD6bS5ap5i/6suZTfV0fbukafFkaKxndG+cMd5uyAfw/do8Gwtp x8ip9je6bc7+lywr5maMW3KltSZbJb9zTprB1cxA6ng3WACt4qOnaoWV0WTeeHyr yYsNQ9PyObiMdDnir/7kVwv2vSCDl8QPVQULnFHRC3YZAAR1v/7HwpHQFP7Jzbbv kiS4C2boqfW448y2I13lRme5BNDBEawTsZvygpbiA6uIXTh6Ge2iF1JNF7ITqZJw hgpid02tuadCXxUllo8WPEZpab6zBp0ZKsGFk4q++YmO3lXYaLhDufByvm5yO4wu z5eTi9KG9hoR2FqhQOWp31qJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUy3CYJXjH QdlzYCttGx9Kinh26PUwHwYDVR0jBBgwFoAUR0v3Ne0o81GLzgrEYpWL7Fgs12Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY2Mjc5LzM4QjJDN0JDNThD RDExRjBBRDEwMDg3N0M0RjlBRTAyL1IwdjNOZTBvODFHTHpnckVZcFdMN0ZnczEy VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUjB2M05lMG84MUdMemdyRVlwV0w3RmdzMTJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjI3OS8zOEIyQzdCQzU4Q0QxMUYwQUQxMDA4NzdDNEY5QUUwMi9BN0MzQjE5ODU4 Q0QxMUYwODNEN0I0NzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVldjANBgkqhkiG9w0BAQsFAAOCAQEArsiJHZB9WHoRIzQC 92weu9ppgmaMvM7kkHksrvv81Tl/WHUbrm3vZw9AS2abk1hvKP2L5lDN3/XYSPq/ icyrFh6FVb4CI5YDRRXJ3UK49OzcKonGQR0OraPW7XU1/ntjUdzNM95Pt/hYwO3V v8PLLT8tacenETZ5eMdHSK6SOlyxq5UPmtXhAlyadVbMJ97Zo98fT5gG4q+Vki4T t83UZ9nAQ9sFHJgWkddyhKo5SL+2veV6T7KqxPpEzDK72aUYPX68VuUk+EYrSsIR DqNhq+HAYS+09A9C/gGINjuwxDCxuZECEK4y2g4iVE8ao9EgERMcAuMUGSbHZfrx 4/rsOw== -----END CERTIFICATE-----Generated at Sun Jul 20 12:40:55 2025 by rpki-client