$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4DECB9805B1B11F086BA5E0FC4F9AE02.roa File: 4DECB9805B1B11F086BA5E0FC4F9AE02.roa (raw, json) Hash identifier: KhOeXw/xueocLkmU8ENblnyvWBNnmOakqIBHCPGtly8= Subject key identifier: 72:2C:08:9C:47:E4:06:38:2A:1E:5A:5A:EF:FD:CA:07:CB:45:5B:32 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2FC4 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4DECB9805B1B11F086BA5E0FC4F9AE02.roa Signing time: Sun 31 May 2026 16:28:39 +0000 ROA not before: Sun 31 May 2026 16:28:39 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 154026 IP address blocks: 165.101.136.0/24 maxlen: 24 165.101.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12228 (0x2fc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 31 16:28:39 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1c61b7-7eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:35:17:94:d9:c8:e6:c4:7b:3e:c4:cb:ee:d2: bc:86:b5:e4:fe:f2:de:da:ed:b5:08:9a:6b:38:5e: e6:85:8b:9c:fb:b9:8c:43:7b:7a:c5:b1:7b:a0:50: b8:3b:c8:10:1b:02:30:8b:2c:40:16:4b:91:69:98: 4b:30:ac:24:78:a3:69:25:e4:57:bc:93:33:f8:09: a7:62:fb:cd:d6:60:4b:18:ef:50:19:26:59:eb:5a: 76:f4:04:db:0f:b1:0a:c0:54:cc:75:10:e7:93:5e: 72:3b:3d:67:21:e2:24:b3:fe:48:2b:59:3b:1a:d2: 8a:4e:a7:3d:ae:6f:39:c9:58:67:2d:e4:00:a9:9a: de:f4:dd:ca:9d:1a:c2:8a:b6:fa:3a:5b:68:6a:b9: 44:c1:eb:6b:a6:f8:8d:52:f7:32:30:da:a3:76:34: 64:6d:a6:7c:02:25:15:db:7d:26:0b:f0:67:d6:16: 0f:19:47:85:cf:8a:c1:61:56:d2:3d:45:41:00:45: f1:ca:a2:07:81:b7:2d:bf:c9:ca:94:81:29:c1:50: 6d:de:bd:08:eb:8b:13:7f:57:65:e4:57:9a:d6:f8: c9:0e:5c:b4:97:45:39:fd:88:65:3a:d3:a8:df:6f: 50:7d:17:f6:c7:d0:f3:e8:7a:a8:85:ec:0a:cb:c2: 7c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2C:08:9C:47:E4:06:38:2A:1E:5A:5A:EF:FD:CA:07:CB:45:5B:32 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/4DECB9805B1B11F086BA5E0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.136.0/23 Signature Algorithm: sha256WithRSAEncryption a9:28:79:50:ad:47:de:64:4a:f5:60:71:ed:fd:ba:8b:e2:7e: 13:9c:9e:55:ba:1f:d6:9e:a7:b8:97:a8:62:c9:0c:02:03:f0: 5c:a8:a2:77:21:67:1b:3e:af:ff:08:8f:0f:ec:28:ba:b4:44: 85:c2:86:93:c1:bf:57:8a:7c:28:60:f9:0d:01:68:14:dc:02: db:39:0e:cb:41:30:90:e1:72:72:97:fb:97:b5:d5:cb:68:da: 74:c7:e1:f5:35:f9:fb:37:58:6c:ee:c4:06:0c:f9:f8:48:0b: 1c:1b:65:07:c8:11:49:ab:9d:5d:6c:92:8a:18:ff:2b:56:22: 2a:2b:2a:e2:3d:96:0b:68:35:f6:89:6f:27:92:5d:85:ae:fe: fd:50:24:c3:6a:c5:30:3d:97:03:a3:9b:da:bf:31:d3:8e:c1: 5e:d8:e8:02:43:13:d8:e1:9d:0b:2d:a0:3a:f1:c6:b9:8c:1d: d1:29:26:9c:d1:27:5d:f8:c9:e1:8b:f4:a3:94:45:92:32:2f: a9:1f:40:83:ee:07:f0:d8:c0:0e:47:28:91:e8:d1:d4:aa:28: 2a:c0:0c:53:98:ec:08:c6:61:95:9e:f2:d5:22:1c:c3:3a:8f: f2:13:d0:55:85:ba:1d:b0:68:c9:6f:72:a9:5d:bc:ab:d1:91: b5:4a:c3:8c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICL8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjYwNTMxMTYyODM5WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjNjFiNy03ZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDUXlNnI5sR7PsTL7tK8hrXk/vLe2u21CJprOF7mhYuc+7mMQ3t6xbF7oFC4 O8gQGwIwiyxAFkuRaZhLMKwkeKNpJeRXvJMz+AmnYvvN1mBLGO9QGSZZ61p29ATb D7EKwFTMdRDnk15yOz1nIeIks/5IK1k7GtKKTqc9rm85yVhnLeQAqZre9N3KnRrC irb6OltoarlEwetrpviNUvcyMNqjdjRkbaZ8AiUV230mC/Bn1hYPGUeFz4rBYVbS PUVBAEXxyqIHgbctv8nKlIEpwVBt3r0I64sTf1dl5Fea1vjJDly0l0U5/YhlOtOo 329QfRf2x9Dz6HqohewKy8J8hQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHIsCJxH 5AY4Kh5aWu/9ygfLRVsyMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNERFQ0I5ODA1 QjFCMTFGMDg2QkE1RTBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWWIMA0GCSqGSIb3DQEBCwUAA4IBAQCpKHlQrUfeZEr1YHHt/bqL 4n4TnJ5Vuh/Wnqe4l6hiyQwCA/BcqKJ3IWcbPq//CI8P7Ci6tESFwoaTwb9Xinwo YPkNAWgU3ALbOQ7LQTCQ4XJyl/uXtdXLaNp0x+H1Nfn7N1hs7sQGDPn4SAscG2UH yBFJq51dbJKKGP8rViIqKyriPZYLaDX2iW8nkl2Frv79UCTDasUwPZcDo5vavzHT jsFe2OgCQxPY4Z0LLaA68ca5jB3RKSac0Sdd+Mnhi/SjlEWSMi+pH0CD7gfw2MAO RyiR6NHUqigqwAxTmOwIxmGVnvLVIhzDOo/yE9BVhbodsGjJb3KpXbyr0ZG1SsOM -----END CERTIFICATE-----Generated at Sat Jun 6 08:23:00 2026 by rpki-client