$ rpki-client -vvf rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/2518C04062E011F08D04F42EC4F9AE02.roa File: 2518C04062E011F08D04F42EC4F9AE02.roa (raw, json) Hash identifier: YXoQ9r4tej6CnG1FdK26UeZMqNkqakqvZSbUkeab5Z8= Subject key identifier: A1:81:9D:73:46:36:2C:31:C8:EE:16:98:80:61:22:A2:29:57:6A:5D Certificate issuer: /CN=A919CE1D/serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Certificate serial: 02 Authority key identifier: 36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/2518C04062E011F08D04F42EC4F9AE02.roa Signing time: Thu 17 Jul 2025 07:32:08 +0000 ROA not before: Thu 17 Jul 2025 07:32:08 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 141433 IP address blocks: 165.101.214.0/23 maxlen: 23 165.101.214.0/24 maxlen: 24 165.101.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CE1D, serialNumber=36622F9900B46AADFCD05464F10D42B130625176 Validity Not Before: Jul 17 07:32:08 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6878a6f8-e328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:06:05:83:bc:5c:92:cc:2f:f7:5d:33:2c:d7: 8c:ce:8a:31:58:a8:94:91:ac:bc:77:ec:09:33:68: 13:46:9d:a0:d6:36:02:7b:81:d0:99:7a:e7:d8:ad: 20:db:77:7a:51:c3:e7:77:eb:c8:25:99:a7:ae:3a: d4:6f:d8:ad:9a:61:cf:f4:fc:a0:bf:1d:5e:ed:dc: aa:75:8f:70:69:0f:7b:e8:b5:9d:56:7f:1e:83:07: 28:19:f9:6c:fc:3f:2b:09:7d:86:c1:5c:e4:88:12: 19:32:e1:87:56:81:4e:b2:01:1c:74:7f:1c:ce:b0: b7:c7:71:fd:46:33:bf:91:42:a9:20:ca:67:c9:b2: d7:b6:19:8a:35:bf:1d:17:68:19:0f:20:c4:0f:d2: 16:ec:39:e8:b7:7c:44:ad:2d:ec:06:00:c6:70:52: 90:db:ad:ea:79:49:4e:28:82:b2:4f:29:30:f5:b0: 6d:2a:3f:b6:cf:82:be:56:fe:6c:21:c4:25:40:40: a5:5d:ac:59:10:b2:45:b0:73:32:c8:89:83:87:40: 72:f1:29:90:46:01:4d:4e:49:52:3c:38:9b:48:fb: 00:11:7d:80:03:63:c5:a6:e6:6c:fe:0f:ec:b2:69: c3:06:d3:d7:88:1f:92:11:2b:44:b9:f9:72:d9:7b: 14:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:81:9D:73:46:36:2C:31:C8:EE:16:98:80:61:22:A2:29:57:6A:5D X509v3 Authority Key Identifier: keyid:36:62:2F:99:00:B4:6A:AD:FC:D0:54:64:F1:0D:42:B1:30:62:51:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/NmIvmQC0aq380FRk8Q1CsTBiUXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NmIvmQC0aq380FRk8Q1CsTBiUXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CE1D/B548DBE262DF11F0A1E37E0EC4F9AE02/2518C04062E011F08D04F42EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.214.0/23 Signature Algorithm: sha256WithRSAEncryption 57:49:3b:52:4e:69:58:72:6d:ec:81:b0:a9:d9:a5:83:c7:12: b6:bb:3b:24:12:ed:fa:c4:0a:05:2f:90:6d:c6:cc:69:b6:c3: 40:23:06:e5:be:3a:6a:65:04:30:8e:1c:c9:20:0f:83:1b:63: d7:5b:4a:1b:b4:7a:9a:49:52:7b:5a:32:57:c1:86:39:a8:5a: 33:b5:b1:0b:23:92:68:6a:4f:4c:ab:02:1b:78:ae:ad:e5:21: 3e:0e:d8:e1:8b:47:b1:94:77:9c:27:ab:aa:81:bd:4c:c0:2a: 00:3b:e2:bf:1b:54:2b:bc:27:82:7f:e5:3a:79:4f:f3:cf:42: 67:08:d0:b6:ca:f4:f9:f4:04:f1:0c:21:90:38:4f:73:97:4a: 78:4c:79:0c:31:45:e1:c4:c9:ab:9d:75:f5:e6:1b:6c:57:18: ca:e6:a1:f4:34:84:df:85:bd:b2:bc:dc:2a:39:f8:f1:df:72: ff:f3:52:ae:d9:3b:e4:56:18:eb:d6:27:e9:03:81:20:e6:96: 45:71:06:48:a3:23:69:9f:66:c1:ec:ca:44:3d:d7:d0:4f:bc: 3f:41:51:17:c1:be:66:db:52:1b:74:d5:7a:57:ba:f8:c3:f1: c3:2b:97:9b:30:17:07:ff:08:1a:b9:20:0e:62:ec:56:4a:55: 0e:0e:96:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 Q0UxRDExMC8GA1UEBRMoMzY2MjJGOTkwMEI0NkFBREZDRDA1NDY0RjEwRDQyQjEz MDYyNTE3NjAeFw0yNTA3MTcwNzMyMDhaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzhhNmY4LWUzMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDwBgWDvFySzC/3XTMs14zOijFYqJSRrLx37AkzaBNGnaDWNgJ7gdCZeufYrSDb d3pRw+d368glmaeuOtRv2K2aYc/0/KC/HV7t3Kp1j3BpD3votZ1Wfx6DBygZ+Wz8 PysJfYbBXOSIEhky4YdWgU6yARx0fxzOsLfHcf1GM7+RQqkgymfJste2GYo1vx0X aBkPIMQP0hbsOei3fEStLewGAMZwUpDbrep5SU4ogrJPKTD1sG0qP7bPgr5W/mwh xCVAQKVdrFkQskWwczLIiYOHQHLxKZBGAU1OSVI8OJtI+wARfYADY8Wm5mz+D+yy acMG09eIH5IRK0S5+XLZexQpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUoYGdc0Y2 LDHI7haYgGEioilXal0wHwYDVR0jBBgwFoAUNmIvmQC0aq380FRk8Q1CsTBiUXYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDRTFEL0I1NDhEQkUyNjJE RjExRjBBMUUzN0UwRUM0RjlBRTAyL05tSXZtUUMwYXEzODBGUms4UTFDc1RCaVVY WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTm1Jdm1RQzBhcTM4MEZSazhRMUNzVEJpVVhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0UxRC9CNTQ4REJFMjYyREYxMUYwQTFFMzdFMEVDNEY5QUUwMi8yNTE4QzA0MDYy RTAxMUYwOEQwNEY0MkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVl1jANBgkqhkiG9w0BAQsFAAOCAQEAV0k7Uk5pWHJt7IGw qdmlg8cStrs7JBLt+sQKBS+QbcbMabbDQCMG5b46amUEMI4cySAPgxtj11tKG7R6 mklSe1oyV8GGOahaM7WxCyOSaGpPTKsCG3iureUhPg7Y4YtHsZR3nCerqoG9TMAq ADvivxtUK7wngn/lOnlP889CZwjQtsr0+fQE8QwhkDhPc5dKeEx5DDFF4cTJq511 9eYbbFcYyuah9DSE34W9srzcKjn48d9y//NSrtk75FYY69Yn6QOBIOaWRXEGSKMj aZ9mwezKRD3X0E+8P0FRF8G+ZttSG3TVele6+MPxwyuXmzAXB/8IGrkgDmLsVkpV Dg6WgA== -----END CERTIFICATE-----Generated at Mon Jul 21 03:23:03 2025 by rpki-client