$ rpki-client -vvf rpki.apnic.net/member_repository/A911082E/853FD95866E211F0BEABE93EC4F9AE02/2CD74E4E66E311F08F05EC49C4F9AE02.roa File: 2CD74E4E66E311F08F05EC49C4F9AE02.roa (raw, json) Hash identifier: 8+dSzRSc1+OXhRbW6N90YyrDk4oOdvcvAyZdFxbaVw0= Subject key identifier: 0D:D2:FD:90:CC:6B:FC:68:C7:F6:64:49:27:88:CF:E9:55:BB:72:08 Certificate issuer: /CN=A911082E/serialNumber=CAAD765A7305BC15254B15B25B5BD39B63A8C3AF Certificate serial: 02 Authority key identifier: CA:AD:76:5A:73:05:BC:15:25:4B:15:B2:5B:5B:D3:9B:63:A8:C3:AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yq12WnMFvBUlSxWyW1vTm2Oow68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911082E/853FD95866E211F0BEABE93EC4F9AE02/2CD74E4E66E311F08F05EC49C4F9AE02.roa Signing time: Tue 22 Jul 2025 10:03:55 +0000 ROA not before: Tue 22 Jul 2025 10:03:55 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 154072 IP address blocks: 165.101.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911082E/853FD95866E211F0BEABE93EC4F9AE02/yq12WnMFvBUlSxWyW1vTm2Oow68.crl rsync://rpki.apnic.net/member_repository/A911082E/853FD95866E211F0BEABE93EC4F9AE02/yq12WnMFvBUlSxWyW1vTm2Oow68.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yq12WnMFvBUlSxWyW1vTm2Oow68.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911082E, serialNumber=CAAD765A7305BC15254B15B25B5BD39B63A8C3AF Validity Not Before: Jul 22 10:03:55 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687f620a-8ef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7a:73:92:d5:a8:81:47:59:16:1e:d5:9d:9d: 3f:9c:d8:8c:6d:09:fc:38:be:10:30:5c:9e:33:57: c2:14:83:df:b5:83:a2:f6:0a:a3:63:51:96:f1:2b: 24:a5:6c:48:24:5b:04:93:a2:05:98:5a:86:1b:77: f5:2e:49:40:f0:02:5f:ef:81:09:bf:3c:4b:6e:27: 09:36:4e:ad:7a:41:a5:c4:17:44:56:a8:65:12:6a: 1a:49:05:d7:44:3d:6c:9f:1e:b4:22:b7:f1:6c:ae: 2e:e5:ff:0e:1b:81:50:ff:f1:80:dd:92:43:23:39: 3f:b5:e0:48:4c:4f:1b:c5:5e:9b:7b:93:1a:99:5c: c5:1a:86:65:62:70:d4:bb:d4:e9:eb:ba:77:d4:88: 61:16:44:3e:2a:94:fc:8b:51:21:3a:4e:8e:a2:6b: 92:a9:82:54:ca:39:71:26:44:fb:00:61:8d:c5:ce: 4e:79:e4:ba:21:9a:08:07:83:d9:d3:67:84:40:ea: 51:b4:35:0d:ec:a7:84:c5:cf:01:5e:04:94:ba:5b: c8:3c:1e:cd:23:c2:16:da:86:57:1a:a5:ab:ea:f0: 87:22:99:0f:d6:61:f7:22:ec:96:cb:bd:38:54:b0: e9:ab:46:ac:d1:1b:aa:f5:e2:08:8b:e1:7b:74:2b: aa:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D2:FD:90:CC:6B:FC:68:C7:F6:64:49:27:88:CF:E9:55:BB:72:08 X509v3 Authority Key Identifier: keyid:CA:AD:76:5A:73:05:BC:15:25:4B:15:B2:5B:5B:D3:9B:63:A8:C3:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911082E/853FD95866E211F0BEABE93EC4F9AE02/yq12WnMFvBUlSxWyW1vTm2Oow68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yq12WnMFvBUlSxWyW1vTm2Oow68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911082E/853FD95866E211F0BEABE93EC4F9AE02/2CD74E4E66E311F08F05EC49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.103.0/24 Signature Algorithm: sha256WithRSAEncryption c6:59:34:e3:8d:fd:72:46:62:7a:aa:6b:21:4c:a2:29:30:93: 7e:3d:6b:75:79:4e:9b:a5:fb:13:bd:1c:af:69:55:f6:39:6e: e9:2c:c8:44:91:55:da:ac:22:cf:a3:52:03:5f:fb:2b:50:66: 98:e6:14:98:86:32:02:cb:f4:5b:af:46:1a:ef:35:65:cd:07: 64:2b:ee:4b:1a:73:98:9f:5e:79:40:e7:e9:27:9d:53:23:5b: 99:00:ee:2e:e7:f9:06:3d:e7:d5:ad:fc:d1:49:dc:01:70:e7: 45:c4:81:7d:c4:58:64:b5:a2:7a:ed:94:c3:e8:2c:4f:69:b6: e0:f1:f8:06:04:32:66:52:ed:01:ea:ce:db:e0:d5:e5:e4:48: d0:47:db:d7:f5:b9:96:76:8c:95:06:96:0f:47:78:ea:47:08: 31:79:04:16:9f:19:5c:4d:32:c6:16:92:9c:cf:d6:fa:b9:85: 5c:7a:9f:df:1a:f7:37:12:23:01:a6:0e:d4:ef:f5:aa:35:50: 44:b4:43:e4:25:6f:c0:30:3a:8f:a1:05:89:e6:fd:fe:f8:a7: 22:7b:af:0b:a2:37:d1:f6:62:62:21:37:fc:cb:f8:e0:fa:0f: fe:33:2b:0f:f8:8f:4a:72:6c:33:bf:a5:4b:f1:97:a4:37:06: 35:61:6e:af -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDgyRTExMC8GA1UEBRMoQ0FBRDc2NUE3MzA1QkMxNTI1NEIxNUIyNUI1QkQzOUI2 M0E4QzNBRjAeFw0yNTA3MjIxMDAzNTVaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2Y2MjBhLThlZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0enOS1aiBR1kWHtWdnT+c2IxtCfw4vhAwXJ4zV8IUg9+1g6L2CqNjUZbxKySl bEgkWwSTogWYWoYbd/UuSUDwAl/vgQm/PEtuJwk2Tq16QaXEF0RWqGUSahpJBddE PWyfHrQit/Fsri7l/w4bgVD/8YDdkkMjOT+14EhMTxvFXpt7kxqZXMUahmVicNS7 1OnrunfUiGEWRD4qlPyLUSE6To6ia5KpglTKOXEmRPsAYY3Fzk555LohmggHg9nT Z4RA6lG0NQ3sp4TFzwFeBJS6W8g8Hs0jwhbahlcapavq8IcimQ/WYfci7JbLvThU sOmrRqzRG6r14giL4Xt0K6oXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUDdL9kMxr /GjH9mRJJ4jP6VW7cggwHwYDVR0jBBgwFoAUyq12WnMFvBUlSxWyW1vTm2Oow68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwODJFLzg1M0ZEOTU4NjZF MjExRjBCRUFCRTkzRUM0RjlBRTAyL3lxMTJXbk1GdkJVbFN4V3lXMXZUbTJPb3c2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveXExMlduTUZ2QlVsU3hXeVcxdlRtMk9vdzY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDgyRS84NTNGRDk1ODY2RTIxMUYwQkVBQkU5M0VDNEY5QUUwMi8yQ0Q3NEU0RTY2 RTMxMUYwOEYwNUVDNDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVlZzANBgkqhkiG9w0BAQsFAAOCAQEAxlk04439ckZieqpr IUyiKTCTfj1rdXlOm6X7E70cr2lV9jlu6SzIRJFV2qwiz6NSA1/7K1BmmOYUmIYy Asv0W69GGu81Zc0HZCvuSxpzmJ9eeUDn6SedUyNbmQDuLuf5Bj3n1a380UncAXDn RcSBfcRYZLWieu2Uw+gsT2m24PH4BgQyZlLtAerO2+DV5eRI0Efb1/W5lnaMlQaW D0d46kcIMXkEFp8ZXE0yxhaSnM/W+rmFXHqf3xr3NxIjAaYO1O/1qjVQRLRD5CVv wDA6j6EFieb9/vinInuvC6I30fZiYiE3/Mv44PoP/jMrD/iPSnJsM7+lS/GXpDcG NWFurw== -----END CERTIFICATE-----Generated at Sat Aug 9 10:34:54 2025 by rpki-client