$ rpki-client -vvf rpki.apnic.net/member_repository/A916DFDD/97EE0AC04A9011F0B288AC59C4F9AE02/3D44173A4A9111F085C19317C4F9AE02.roa File: 3D44173A4A9111F085C19317C4F9AE02.roa (raw, json) Hash identifier: FwH/enA0/FsCkLYjV+LnJ4sOG3fwQvbOVp0WkLtMY2o= Subject key identifier: A2:75:3E:6E:FB:5A:9A:8C:3F:85:68:6C:7A:0C:D0:2A:47:91:85:EB Certificate issuer: /CN=A916DFDD/serialNumber=1259BF2CE2E16EDE4BB6559130418155614BA3EA Certificate serial: 02 Authority key identifier: 12:59:BF:2C:E2:E1:6E:DE:4B:B6:55:91:30:41:81:55:61:4B:A3:EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Elm_LOLhbt5LtlWRMEGBVWFLo-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DFDD/97EE0AC04A9011F0B288AC59C4F9AE02/3D44173A4A9111F085C19317C4F9AE02.roa Signing time: Mon 16 Jun 2025 09:06:51 +0000 ROA not before: Mon 16 Jun 2025 09:06:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152479 IP address blocks: 165.101.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DFDD/97EE0AC04A9011F0B288AC59C4F9AE02/Elm_LOLhbt5LtlWRMEGBVWFLo-o.crl rsync://rpki.apnic.net/member_repository/A916DFDD/97EE0AC04A9011F0B288AC59C4F9AE02/Elm_LOLhbt5LtlWRMEGBVWFLo-o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Elm_LOLhbt5LtlWRMEGBVWFLo-o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:34:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DFDD, serialNumber=1259BF2CE2E16EDE4BB6559130418155614BA3EA Validity Not Before: Jun 16 09:06:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684fdeaa-b631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:82:4a:90:ff:56:99:7c:5f:c9:4f:d4:01:73: 3c:53:e3:56:bf:25:7a:d3:41:a7:2e:24:35:de:bb: 04:b6:61:3e:c0:77:bd:86:5d:2a:65:53:e0:82:30: b5:dc:ff:aa:a2:66:9e:c6:be:3b:21:53:01:21:2a: a7:10:dc:54:53:34:4d:e1:08:dc:5c:9c:c7:91:ed: c5:77:19:f9:f6:aa:23:80:31:54:f6:7d:dc:9b:90: 26:6d:23:50:44:90:f7:c1:3c:66:f5:9f:f1:16:62: f5:5e:be:34:a1:04:88:1d:c2:b5:b3:66:12:ac:5a: d3:5b:22:e5:83:9d:84:ec:33:1a:24:48:7e:23:23: a0:8d:4d:b8:bb:b2:c7:0c:56:69:27:6c:1d:2a:49: 6a:2e:36:39:44:16:30:1a:5c:90:5e:64:59:dc:24: fa:85:1f:fb:31:dd:30:17:20:c3:2e:41:3b:be:17: 26:84:8e:80:c2:46:28:fd:a0:ba:9a:60:1c:2b:ba: 60:17:d1:3f:df:93:5f:9d:38:1e:2d:fa:84:47:73: c3:e7:97:8f:ad:1c:5e:62:cf:f4:cc:5e:b3:1d:b5: 01:5d:17:b2:e9:3e:2a:63:71:0f:a2:c9:1a:ed:3c: 94:57:2c:49:68:bc:fd:39:85:bd:45:ec:c2:48:8f: db:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:75:3E:6E:FB:5A:9A:8C:3F:85:68:6C:7A:0C:D0:2A:47:91:85:EB X509v3 Authority Key Identifier: keyid:12:59:BF:2C:E2:E1:6E:DE:4B:B6:55:91:30:41:81:55:61:4B:A3:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DFDD/97EE0AC04A9011F0B288AC59C4F9AE02/Elm_LOLhbt5LtlWRMEGBVWFLo-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Elm_LOLhbt5LtlWRMEGBVWFLo-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DFDD/97EE0AC04A9011F0B288AC59C4F9AE02/3D44173A4A9111F085C19317C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.12.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:5e:e8:8e:11:d1:57:44:7d:27:0b:c6:a4:38:3b:51:7e:78: 2a:6a:95:05:d9:2b:b2:e6:b4:46:12:91:23:40:97:7e:2e:b1: 77:26:ae:4d:c2:18:ae:18:71:aa:e3:2c:e5:7f:2b:74:72:ef: f7:31:26:8a:7c:e9:58:27:f5:12:7e:20:14:b4:0d:63:99:9d: 6f:7d:ef:24:2e:8f:ce:0a:ab:da:bc:5c:84:0a:06:40:17:ca: 05:80:16:4e:b4:d6:21:28:56:94:d6:f2:57:bc:a6:ed:ce:31: 8b:4c:01:97:2b:f2:f0:aa:37:b5:39:80:5e:58:7e:33:2e:65: 80:26:24:e2:55:ba:8b:c2:25:96:6c:43:f1:62:29:c1:c1:34: 75:55:67:4f:21:c0:aa:3b:46:a7:2c:09:74:7d:83:08:c0:c2: 5b:66:cf:3d:90:54:4f:69:9a:80:1f:b4:c6:38:6c:7e:4d:2a: c5:e1:88:d1:6b:fa:61:64:4e:b9:be:68:8b:97:79:5f:88:5c: 8c:d1:26:7a:18:68:cd:9e:43:dd:1b:3b:10:d3:e3:12:7b:fc: e1:c7:48:72:df:58:ea:90:00:5c:7d:66:28:4f:1f:5a:c2:a4: ab:ab:e5:89:b6:34:a2:a6:92:3d:2b:9e:f3:e5:86:27:12:a6: f7:64:68:08 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 REZERDExMC8GA1UEBRMoMTI1OUJGMkNFMkUxNkVERTRCQjY1NTkxMzA0MTgxNTU2 MTRCQTNFQTAeFw0yNTA2MTYwOTA2NTFaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGZkZWFhLWI2MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYgkqQ/1aZfF/JT9QBczxT41a/JXrTQacuJDXeuwS2YT7Ad72GXSplU+CCMLXc /6qiZp7GvjshUwEhKqcQ3FRTNE3hCNxcnMeR7cV3Gfn2qiOAMVT2fdybkCZtI1BE kPfBPGb1n/EWYvVevjShBIgdwrWzZhKsWtNbIuWDnYTsMxokSH4jI6CNTbi7sscM VmknbB0qSWouNjlEFjAaXJBeZFncJPqFH/sx3TAXIMMuQTu+FyaEjoDCRij9oLqa YBwrumAX0T/fk1+dOB4t+oRHc8Pnl4+tHF5iz/TMXrMdtQFdF7LpPipjcQ+iyRrt PJRXLElovP05hb1F7MJIj9vnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUonU+bvta mow/hWhsegzQKkeRheswHwYDVR0jBBgwFoAUElm/LOLhbt5LtlWRMEGBVWFLo+ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZERkRELzk3RUUwQUMwNEE5 MDExRjBCMjg4QUM1OUM0RjlBRTAyL0VsbV9MT0xoYnQ1THRsV1JNRUdCVldGTG8t by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRWxtX0xPTGhidDVMdGxXUk1FR0JWV0ZMby1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REZERC85N0VFMEFDMDRBOTAxMUYwQjI4OEFDNTlDNEY5QUUwMi8zRDQ0MTczQTRB OTExMUYwODVDMTkzMTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlDDANBgkqhkiG9w0BAQsFAAOCAQEAb17ojhHRV0R9JwvG pDg7UX54KmqVBdkrsua0RhKRI0CXfi6xdyauTcIYrhhxquMs5X8rdHLv9zEminzp WCf1En4gFLQNY5mdb33vJC6Pzgqr2rxchAoGQBfKBYAWTrTWIShWlNbyV7ym7c4x i0wBlyvy8Ko3tTmAXlh+My5lgCYk4lW6i8IllmxD8WIpwcE0dVVnTyHAqjtGpywJ dH2DCMDCW2bPPZBUT2magB+0xjhsfk0qxeGI0Wv6YWROub5oi5d5X4hcjNEmehho zZ5D3Rs7ENPjEnv84cdIct9Y6pAAXH1mKE8fWsKkq6vlibY0oqaSPSue8+WGJxKm 92RoCA== -----END CERTIFICATE-----Generated at Sat Jun 21 02:03:58 2025 by rpki-client