$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/18F08CBC5B2911F0878FC358C4F9AE02.roa File: 18F08CBC5B2911F0878FC358C4F9AE02.roa (raw, json) Hash identifier: ymtXAUJK23Y/V6uogZu0U/w2LlUf5MqNRXWDWa2JoCI= Subject key identifier: 81:E3:C5:8C:E0:79:F5:2B:B6:C8:09:24:E4:3E:EC:68:BB:D4:F9:62 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1EEA Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/18F08CBC5B2911F0878FC358C4F9AE02.roa Signing time: Mon 07 Jul 2025 11:54:12 +0000 ROA not before: Mon 07 Jul 2025 11:54:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154028 IP address blocks: 165.101.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7914 (0x1eea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jul 7 11:54:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=686bb564-6ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4a:fe:ef:3f:47:f8:f6:6e:b6:4e:4e:6f:26: 11:e0:d3:16:43:de:1c:42:0f:ca:33:1d:91:76:7c: 2e:99:a4:09:c0:16:11:2b:63:ed:c7:a8:07:dd:5b: 66:28:fc:cf:e9:10:da:c4:20:7b:f1:6a:93:01:b9: bb:a6:71:2d:fc:07:df:18:42:1b:bd:f4:a6:75:6b: 82:ae:5c:38:e2:f1:e1:c7:77:88:c0:6b:d8:fb:1a: 90:62:20:6e:b1:8f:8e:5e:4e:8f:15:03:c8:b3:04: 2d:c4:9f:67:f7:59:09:5c:59:f7:00:65:c1:77:c7: 30:bc:24:1a:71:80:b1:18:01:15:f5:0c:fd:c5:07: 75:04:dd:92:ec:34:e8:53:52:ce:af:05:a7:86:27: 6a:e6:e3:f2:8d:a3:06:c6:08:f7:9a:1e:65:21:69: 9b:88:8e:22:19:f0:21:ab:86:5a:64:ee:0d:8c:31: f3:2d:0f:0f:98:df:fd:41:5b:b9:a8:ec:a1:4c:ab: 47:4c:16:4c:9f:21:a7:b3:fd:86:d2:a9:6f:1f:fd: 59:16:c6:1c:f6:c2:b3:4e:76:41:d4:20:e7:5c:5d: c0:93:82:2b:5a:c7:61:ed:5c:1d:0d:d0:eb:c1:fe: 20:dd:ed:d8:4a:34:38:ce:ae:40:e2:ab:02:87:70: ea:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:E3:C5:8C:E0:79:F5:2B:B6:C8:09:24:E4:3E:EC:68:BB:D4:F9:62 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/18F08CBC5B2911F0878FC358C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.140.0/24 Signature Algorithm: sha256WithRSAEncryption 73:1f:c4:7c:11:48:4e:ea:e2:c1:5a:03:de:5f:68:9b:b9:43: 23:b2:ed:83:20:1c:b6:34:14:b9:f7:fc:41:1c:b3:11:01:04: 07:07:4e:79:a4:f9:91:87:d4:f1:75:d9:66:e9:56:b5:88:09: df:24:ea:fd:c3:49:fe:c7:6f:1e:75:ac:de:d6:82:9c:22:3a: 1d:06:fb:75:53:20:e1:d7:9f:8f:1a:5a:9a:98:8f:9a:f1:79: 67:80:d8:68:db:5c:3e:b0:db:57:70:0e:66:c4:b0:31:c0:8e: 62:ea:55:d2:e2:4b:26:fc:c9:ef:42:83:da:13:16:84:61:55: cb:df:82:b1:76:40:82:3c:0c:c6:42:61:81:87:74:6c:bb:39: 24:8a:e3:05:25:47:c2:79:20:c0:c1:49:72:d3:8c:91:04:06: 96:cd:7d:10:f7:06:7a:9a:6b:11:dc:3d:6c:05:20:ce:94:53: 73:8f:5a:49:27:f9:77:c0:14:83:bc:56:5b:2d:04:e1:c7:1d: a2:99:83:b3:e3:ec:23:1f:76:ec:2e:b0:bd:38:11:c8:e6:3e: 23:a9:be:7b:cc:e2:77:1b:5f:5f:94:e2:0e:90:df:67:c9:7e: 93:7b:60:b9:d8:a0:f3:10:55:b7:a5:31:66:a7:2c:3d:75:1d: b9:4f:8c:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNzA3MTE1NDEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZiYjU2NC02Y2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0r+7z9H+PZutk5ObyYR4NMWQ94cQg/KMx2RdnwumaQJwBYRK2Ptx6gH3Vtm KPzP6RDaxCB78WqTAbm7pnEt/AffGEIbvfSmdWuCrlw44vHhx3eIwGvY+xqQYiBu sY+OXk6PFQPIswQtxJ9n91kJXFn3AGXBd8cwvCQacYCxGAEV9Qz9xQd1BN2S7DTo U1LOrwWnhidq5uPyjaMGxgj3mh5lIWmbiI4iGfAhq4ZaZO4NjDHzLQ8PmN/9QVu5 qOyhTKtHTBZMnyGns/2G0qlvH/1ZFsYc9sKzTnZB1CDnXF3Ak4IrWsdh7VwdDdDr wf4g3e3YSjQ4zq5A4qsCh3DqbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIHjxYzg efUrtsgJJOQ+7Gi71PliMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMThGMDhDQkM1 QjI5MTFGMDg3OEZDMzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAClZYwwDQYJKoZIhvcNAQELBQADggEBAHMfxHwRSE7q4sFa A95faJu5QyOy7YMgHLY0FLn3/EEcsxEBBAcHTnmk+ZGH1PF12WbpVrWICd8k6v3D Sf7Hbx51rN7WgpwiOh0G+3VTIOHXn48aWpqYj5rxeWeA2GjbXD6w21dwDmbEsDHA jmLqVdLiSyb8ye9Cg9oTFoRhVcvfgrF2QII8DMZCYYGHdGy7OSSK4wUlR8J5IMDB SXLTjJEEBpbNfRD3BnqaaxHcPWwFIM6UU3OPWkkn+XfAFIO8VlstBOHHHaKZg7Pj 7CMfduwusL04EcjmPiOpvnvM4ncbX1+U4g6Q32fJfpN7YLnYoPMQVbelMWanLD11 HblPjL4= -----END CERTIFICATE-----Generated at Sun Jul 20 18:23:56 2025 by rpki-client