$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3CF264E6FCD211F0AE068C126C6F56BC.roa File: 3CF264E6FCD211F0AE068C126C6F56BC.roa (raw, json) Hash identifier: lHv8YpL3l+KIgLti3ZBVPTPszapjGT4aNuRWlAPrQuo= Subject key identifier: 1E:C4:7D:E0:AE:18:C3:3B:F7:F7:F7:E9:54:62:E5:21:8B:CB:DA:3A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2E77 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3CF264E6FCD211F0AE068C126C6F56BC.roa Signing time: Sun 31 May 2026 16:18:08 +0000 ROA not before: Sun 31 May 2026 16:18:08 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 133591 IP address blocks: 165.99.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11895 (0x2e77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:18:08 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c5f40-1493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6d:b7:f4:27:85:e3:41:69:b2:06:9b:8c:1f: f0:13:7a:ad:3e:6e:db:00:b7:96:ff:7e:bf:54:37: 86:72:c0:0a:0b:0b:d3:be:70:82:6f:87:cf:34:76: 1f:48:19:00:2e:91:a5:b8:89:a5:6a:fd:67:66:0d: fc:02:5d:e4:be:ca:6d:cc:be:77:1b:9f:3f:a9:ab: 4f:9b:36:ca:73:be:e3:6f:e6:75:d8:5b:9f:6b:6e: 53:1b:7a:7e:d3:5f:b7:b7:6a:d8:fc:95:de:18:a0: d0:6a:55:0d:96:2d:0b:6b:a3:9f:b8:23:83:27:22: ba:fa:04:42:ac:35:ec:70:f3:dc:67:01:3b:8c:47: a0:36:a1:5c:63:27:63:1b:e7:59:d6:0a:b2:c6:b6: bd:e7:01:ab:0f:54:f4:34:36:e9:11:b7:ee:4e:5b: f4:24:3b:dd:f2:ae:26:40:01:b9:ca:8a:95:07:45: 29:6a:88:b0:d8:81:04:f3:62:b9:65:c9:f1:f2:65: 30:65:55:a2:a5:1a:17:22:43:bb:26:d4:7a:58:82: c1:af:48:76:09:af:59:85:de:8f:ae:12:ab:34:fc: 2d:cf:d6:45:b0:1d:94:29:2b:66:50:21:d8:9a:ee: 21:49:3f:6d:70:61:9d:3f:25:1e:3d:c1:20:5d:13: ea:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C4:7D:E0:AE:18:C3:3B:F7:F7:F7:E9:54:62:E5:21:8B:CB:DA:3A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/3CF264E6FCD211F0AE068C126C6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 165.99.133.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:06:4d:3d:84:bb:06:a1:c0:5c:e9:10:17:f3:e5:8d:e9:f1: 44:e4:2c:fe:21:ac:67:d2:a9:1b:a1:d3:c7:93:9e:43:c8:69: 8c:a8:ab:8e:1b:f5:ae:86:4a:24:1d:6b:40:1f:55:53:c8:6e: 17:3a:45:d5:3c:40:83:eb:b0:cf:b1:fb:b5:f2:0c:e5:7a:4d: a9:d6:b6:a6:73:54:0c:71:ef:b6:45:5e:30:68:08:32:5c:fe: 39:08:38:2c:5c:66:9a:cb:92:7c:f6:9d:85:d9:db:96:28:43: 90:0b:ed:a7:69:55:36:89:b3:fd:f4:17:0e:4a:ca:a0:27:1a: 9a:ba:37:8d:b6:aa:2c:bd:0c:f3:c3:81:33:82:d6:67:7a:f4: 0d:87:c3:d8:b8:2b:de:d7:9d:65:14:58:a7:72:07:14:81:20: 8b:1e:cc:af:16:c2:46:82:e2:a6:a0:54:d4:a7:c7:9d:ef:5d: 90:ed:21:52:c3:02:f8:90:2b:17:b7:f0:68:7e:ea:65:dc:40: a2:88:c1:8b:6a:97:1c:cf:cb:28:10:35:05:4a:17:27:7a:d2: 0d:46:2c:cd:55:db:e8:62:f7:86:5c:35:a3:6f:e8:af:dc:24: 1a:c5:07:ec:ff:13:2d:88:85:ee:43:bc:87:4d:3c:c3:fa:cb: 8c:43:15:aa -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYxODA4WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNWY0MC0xNDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzG239CeF40FpsgabjB/wE3qtPm7bALeW/36/VDeGcsAKCwvTvnCCb4fPNHYf SBkALpGluImlav1nZg38Al3kvsptzL53G58/qatPmzbKc77jb+Z12Fufa25TG3p+ 01+3t2rY/JXeGKDQalUNli0La6OfuCODJyK6+gRCrDXscPPcZwE7jEegNqFcYydj G+dZ1gqyxra95wGrD1T0NDbpEbfuTlv0JDvd8q4mQAG5yoqVB0Upaoiw2IEE82K5 Zcnx8mUwZVWipRoXIkO7JtR6WILBr0h2Ca9Zhd6PrhKrNPwtz9ZFsB2UKStmUCHY mu4hST9tcGGdPyUePcEgXRPqmwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB7EfeCu GMM79/f36VRi5SGLy9o6MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvM0NGMjY0RTZG Q0QyMTFGMEFFMDY4QzEyNkM2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQApWOFMA0GCSqGSIb3DQEBCwUAA4IBAQBKBk09hLsGocBc6RAX8+WN 6fFE5Cz+Iaxn0qkbodPHk55DyGmMqKuOG/WuhkokHWtAH1VTyG4XOkXVPECD67DP sfu18gzlek2p1ramc1QMce+2RV4waAgyXP45CDgsXGaay5J89p2F2duWKEOQC+2n aVU2ibP99BcOSsqgJxqaujeNtqosvQzzw4EzgtZnevQNh8PYuCve151lFFincgcU gSCLHsyvFsJGguKmoFTUp8ed712Q7SFSwwL4kCsXt/Bofupl3ECiiMGLapccz8so EDUFShcnetINRizNVdvoYveGXDWjb+iv3CQaxQfs/xMtiIXuQ7yHTTzD+suMQxWq -----END CERTIFICATE-----Generated at Sat Jun 6 09:39:41 2026 by rpki-client