$ rpki-client -vvf rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/ACE7F9985DF711F084BC8A50C4F9AE02.roa File: ACE7F9985DF711F084BC8A50C4F9AE02.roa (raw, json) Hash identifier: JnKzQUCZZIkzk+PTJ2yOthp2jewtbhpdupguptGlDRA= Subject key identifier: 20:24:75:F8:C0:7F:D3:0B:BE:E5:BF:F4:5F:70:93:49:BE:EF:85:7C Certificate issuer: /CN=A918ABAC/serialNumber=B4038AB64039F3145622A20FF70ED7BE1D4E7F91 Certificate serial: 21 Authority key identifier: B4:03:8A:B6:40:39:F3:14:56:22:A2:0F:F7:0E:D7:BE:1D:4E:7F:91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/ACE7F9985DF711F084BC8A50C4F9AE02.roa Signing time: Fri 11 Jul 2025 01:37:59 +0000 ROA not before: Fri 11 Jul 2025 01:37:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 13335 IP address blocks: 165.101.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ABAC, serialNumber=B4038AB64039F3145622A20FF70ED7BE1D4E7F91 Validity Not Before: Jul 11 01:37:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68706af7-76eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f5:16:2c:69:86:16:e6:06:1b:be:f2:3e:2d: 0b:53:42:30:20:6a:13:e3:e8:5f:2a:85:ef:7a:86: 65:da:92:1e:89:58:97:bf:84:39:ed:2e:5a:ce:33: 3c:81:d5:d1:93:93:1f:eb:77:90:d0:54:74:85:eb: e4:53:a9:e1:8d:7c:3f:77:cf:8d:55:3e:f4:f4:44: 3b:2b:e6:72:fa:c2:9e:fe:42:eb:4a:0e:e6:d7:cf: 04:75:15:7d:c7:73:8a:65:e2:85:5d:36:96:fb:16: 26:27:c3:bb:73:c5:4d:7c:21:99:bb:ad:d3:ee:4c: 26:75:4e:bb:b9:2a:d5:d9:0c:e9:eb:e2:87:60:d6: a3:56:f9:00:41:72:08:71:35:0a:15:69:1c:ef:70: 95:4b:c0:b8:56:1f:c8:f3:43:19:47:c4:55:60:0d: bb:de:b0:d9:28:5d:22:4a:51:e5:a7:60:ab:68:6f: e2:b4:22:7b:a7:5a:92:16:97:2f:84:ac:9b:f4:56: 3f:e4:c1:ca:f0:cc:56:f5:0e:ce:b3:2b:d6:60:c2: f4:b8:71:a4:cb:8b:74:b2:1d:b0:5d:3c:69:e9:f7: 70:70:37:2a:0d:df:c1:3a:76:59:7e:0e:cd:5a:5b: 42:01:4c:8b:a2:51:1b:a5:31:58:78:a1:08:06:b4: 46:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:24:75:F8:C0:7F:D3:0B:BE:E5:BF:F4:5F:70:93:49:BE:EF:85:7C X509v3 Authority Key Identifier: keyid:B4:03:8A:B6:40:39:F3:14:56:22:A2:0F:F7:0E:D7:BE:1D:4E:7F:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/tAOKtkA58xRWIqIP9w7Xvh1Of5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tAOKtkA58xRWIqIP9w7Xvh1Of5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ABAC/649BC3B250C911F0B4730246C4F9AE02/ACE7F9985DF711F084BC8A50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.60.0/23 Signature Algorithm: sha256WithRSAEncryption 40:e4:7d:93:41:88:6f:78:db:21:b6:6f:6f:be:78:47:9d:71: 8d:d6:78:c0:c0:5d:c8:ce:a3:c1:2c:ae:40:c9:f6:36:d4:df: c3:99:32:f0:ca:88:a7:f2:03:29:97:b2:2c:59:d1:7d:03:b8: 59:f0:28:a7:03:3b:56:86:95:8a:25:3e:0b:42:3a:2a:da:d9: be:c1:e0:8a:44:8a:0b:f7:1d:e7:52:db:bd:bf:b5:f4:1f:58: f9:7f:df:7b:cb:b6:df:80:1f:47:3b:2c:6a:bd:16:15:f4:e0: 9e:20:b9:35:54:59:94:0f:8c:f4:bd:f8:12:a8:f9:2b:57:d0: 06:1d:3c:6e:c8:a4:af:95:a1:01:d0:75:e1:21:f1:04:d9:92: 7e:96:9f:ff:6f:05:6a:2f:8e:b2:cd:df:89:d2:da:f4:32:b0: 01:e2:2d:a7:e3:8d:41:5a:86:5e:0b:81:ef:b3:34:52:4b:a7: e8:fa:79:d5:0a:95:15:5b:9c:7c:4a:34:0a:77:65:9f:fb:5d: 2b:5d:0e:48:e6:c6:3f:cb:83:bc:5e:60:ac:8f:c2:d3:e4:ce: be:8c:33:58:e2:d3:6b:e8:7e:43:dc:8b:3b:d0:f4:db:f3:34: e8:5e:bc:97:2c:3a:d0:e0:1d:dd:7d:94:d4:c1:58:29:65:72: 4a:54:be:76 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUJBQzExMC8GA1UEBRMoQjQwMzhBQjY0MDM5RjMxNDU2MjJBMjBGRjcwRUQ3QkUx RDRFN0Y5MTAeFw0yNTA3MTEwMTM3NTlaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzA2YWY3LTc2ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDY9RYsaYYW5gYbvvI+LQtTQjAgahPj6F8qhe96hmXakh6JWJe/hDntLlrOMzyB 1dGTkx/rd5DQVHSF6+RTqeGNfD93z41VPvT0RDsr5nL6wp7+QutKDubXzwR1FX3H c4pl4oVdNpb7FiYnw7tzxU18IZm7rdPuTCZ1Tru5KtXZDOnr4odg1qNW+QBBcghx NQoVaRzvcJVLwLhWH8jzQxlHxFVgDbvesNkoXSJKUeWnYKtob+K0InunWpIWly+E rJv0Vj/kwcrwzFb1Ds6zK9ZgwvS4caTLi3SyHbBdPGnp93BwNyoN38E6dll+Ds1a W0IBTIuiURulMVh4oQgGtEapAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUICR1+MB/ 0wu+5b/0X3CTSb7vhXwwHwYDVR0jBBgwFoAUtAOKtkA58xRWIqIP9w7Xvh1Of5Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQkFDLzY0OUJDM0IyNTBD OTExRjBCNDczMDI0NkM0RjlBRTAyL3RBT0t0a0E1OHhSV0lxSVA5dzdYdmgxT2Y1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdEFPS3RrQTU4eFJXSXFJUDl3N1h2aDFPZjVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUJBQy82NDlCQzNCMjUwQzkxMUYwQjQ3MzAyNDZDNEY5QUUwMi9BQ0U3Rjk5ODVE RjcxMUYwODRCQzhBNTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlPDANBgkqhkiG9w0BAQsFAAOCAQEAQOR9k0GIb3jbIbZv b754R51xjdZ4wMBdyM6jwSyuQMn2NtTfw5ky8MqIp/IDKZeyLFnRfQO4WfAopwM7 VoaViiU+C0I6KtrZvsHgikSKC/cd51Lbvb+19B9Y+X/fe8u234AfRzssar0WFfTg niC5NVRZlA+M9L34Eqj5K1fQBh08bsikr5WhAdB14SHxBNmSfpaf/28Fai+Oss3f idLa9DKwAeItp+ONQVqGXguB77M0Ukun6Pp51QqVFVucfEo0Cndln/tdK10OSObG P8uDvF5grI/C0+TOvowzWOLTa+h+Q9yLO9D02/M06F68lyw60OAd3X2U1MFYKWVy SlS+dg== -----END CERTIFICATE-----Generated at Sun Jul 20 12:32:21 2025 by rpki-client