$ rpki-client -vvf rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/65AF30D422D211EAB3ABA447C4F9AE02.roa File: 65AF30D422D211EAB3ABA447C4F9AE02.roa (raw, json) Hash identifier: mEi1yyBBjQB47AmUbRYgPuxNDt10SIZ3Uh51JCDgmJY= Subject key identifier: 65:66:E0:5F:66:17:5A:C8:5A:93:1E:AB:6C:54:AE:36:91:63:E3:BF Certificate issuer: /CN=A9171560/serialNumber=E9C410C7DDD52670AB8F8216C87614B10EC3177A Certificate serial: 0D8E Authority key identifier: E9:C4:10:C7:DD:D5:26:70:AB:8F:82:16:C8:76:14:B1:0E:C3:17:7A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6cQQx93VJnCrj4IWyHYUsQ7DF3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/65AF30D422D211EAB3ABA447C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:22:18 +0000 ROA not before: Sat 08 Mar 2025 18:07:40 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136255 IP address blocks: 65.18.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/6cQQx93VJnCrj4IWyHYUsQ7DF3o.crl rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/6cQQx93VJnCrj4IWyHYUsQ7DF3o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6cQQx93VJnCrj4IWyHYUsQ7DF3o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3470 (0xd8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171560, serialNumber=E9C410C7DDD52670AB8F8216C87614B10EC3177A Validity Not Before: Mar 8 18:07:40 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4054a-758d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:db:86:ad:fb:dc:4d:ec:41:da:0a:79:ef:65: 5a:d4:51:01:a1:03:d5:31:8d:bb:9a:c8:80:6f:4a: ea:00:93:71:00:c6:4f:74:b2:98:96:85:92:35:2d: e7:99:09:49:bb:53:3f:a7:da:17:30:45:f5:5f:a0: ff:bc:d6:8c:54:b6:ea:b6:47:ae:db:2f:a5:c5:15: ce:14:10:59:0d:98:81:da:50:0a:5e:18:7e:a4:11: 75:c3:ee:17:08:50:40:33:fb:18:f6:9a:ac:1e:86: 3c:46:f6:a9:15:0a:e8:79:12:4b:8e:ae:dd:c8:7a: 06:f8:e2:c3:72:fd:96:58:da:94:31:e8:18:01:7f: c0:0f:cd:1e:74:23:4f:5a:bf:63:42:7c:db:a5:e8: e3:f5:ab:59:33:58:2b:8a:b6:f3:63:1d:3e:05:5a: 79:c2:c4:16:29:07:3b:51:81:fe:fa:14:c6:de:45: de:65:3e:f5:9e:68:ca:cb:cf:5b:64:8c:68:69:c2: 04:8d:4c:dd:c6:bd:64:df:df:b3:9f:bb:98:4e:f5: 43:b5:f2:83:b7:0b:eb:80:71:dc:e3:57:66:1a:2e: bc:af:7d:a2:92:34:40:29:cb:07:39:d3:3f:9c:76: 4a:a0:0a:74:30:db:82:2a:1a:6c:f3:6a:12:8b:0f: ed:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:66:E0:5F:66:17:5A:C8:5A:93:1E:AB:6C:54:AE:36:91:63:E3:BF X509v3 Authority Key Identifier: keyid:E9:C4:10:C7:DD:D5:26:70:AB:8F:82:16:C8:76:14:B1:0E:C3:17:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/6cQQx93VJnCrj4IWyHYUsQ7DF3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6cQQx93VJnCrj4IWyHYUsQ7DF3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171560/A7703E9EE41D11E98F5B9819C4F9AE02/65AF30D422D211EAB3ABA447C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 65.18.112.0/20 Signature Algorithm: sha256WithRSAEncryption cc:57:03:cb:a0:4d:58:c4:9f:ef:ef:3e:ea:41:e3:e9:91:27: d9:6c:48:58:c0:41:36:85:bd:a3:3e:07:da:93:52:7f:a3:79: bd:00:55:b2:38:9e:9d:5c:dd:fa:b8:80:ab:b9:ae:76:51:c2: 91:10:da:d9:ba:3c:46:68:43:c6:1f:84:4d:fd:dc:90:d7:f6: 2e:20:cb:6f:0b:9e:b3:dc:2f:34:b4:80:80:7c:4a:40:b6:ab: 6e:aa:47:b0:87:d4:30:dd:01:73:ea:5e:c5:fd:56:a4:e5:c1: 60:a8:f7:c9:56:28:09:d9:33:ae:3a:97:8f:2d:c2:86:34:55: ea:a6:36:63:7b:f5:ce:dc:1b:3b:0b:2d:15:2d:77:79:df:d7: fb:65:57:bc:ec:3a:e9:3a:33:48:49:b6:d9:3e:45:10:0c:ad: 5c:de:d0:c8:21:73:df:04:59:eb:85:4d:d1:c6:dc:87:10:7b: a9:7d:76:e7:b9:e4:88:11:ea:13:da:3d:be:50:83:34:3b:86: c8:98:e8:0b:a0:8f:0e:8a:32:1f:3e:d2:40:a8:a1:2a:cf:04: e6:cc:4f:56:1a:74:9c:1c:26:0b:b6:a6:4a:39:ee:8d:6f:c1: eb:13:8e:a2:d0:fe:38:2f:2e:a2:93:5f:94:59:42:ee:c1:d7: 23:bd:32:92 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE1NjAxMTAvBgNVBAUTKEU5QzQxMEM3RERENTI2NzBBQjhGODIxNkM4NzYxNEIx MEVDMzE3N0EwHhcNMjUwMzA4MTgwNzQwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDU0YS03NThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NuGrfvcTexB2gp572Va1FEBoQPVMY27msiAb0rqAJNxAMZPdLKYloWSNS3n mQlJu1M/p9oXMEX1X6D/vNaMVLbqtkeu2y+lxRXOFBBZDZiB2lAKXhh+pBF1w+4X CFBAM/sY9pqsHoY8RvapFQroeRJLjq7dyHoG+OLDcv2WWNqUMegYAX/AD80edCNP Wr9jQnzbpejj9atZM1grirbzYx0+BVp5wsQWKQc7UYH++hTG3kXeZT71nmjKy89b ZIxoacIEjUzdxr1k39+zn7uYTvVDtfKDtwvrgHHc41dmGi68r32ikjRAKcsHOdM/ nHZKoAp0MNuCKhps82oSiw/tMwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGVm4F9m F1rIWpMeq2xUrjaRY+O/MB8GA1UdIwQYMBaAFOnEEMfd1SZwq4+CFsh2FLEOwxd6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTU2MC9BNzcwM0U5RUU0 MUQxMUU5OEY1Qjk4MTlDNEY5QUUwMi82Y1FReDkzVkpuQ3JqNElXeUhZVXNRN0RG M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZjUVF4OTNWSm5Dcmo0SVd5SFlVc1E3REYzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE1NjAvQTc3MDNFOUVFNDFEMTFFOThGNUI5ODE5QzRGOUFFMDIvNjVBRjMwRDQy MkQyMTFFQUIzQUJBNDQ3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEQRJwMA0GCSqGSIb3DQEBCwUAA4IBAQDMVwPLoE1YxJ/v7z7qQePp kSfZbEhYwEE2hb2jPgfak1J/o3m9AFWyOJ6dXN36uICrua52UcKRENrZujxGaEPG H4RN/dyQ1/YuIMtvC56z3C80tICAfEpAtqtuqkewh9Qw3QFz6l7F/Vak5cFgqPfJ VigJ2TOuOpePLcKGNFXqpjZje/XO3Bs7Cy0VLXd539f7ZVe87DrpOjNISbbZPkUQ DK1c3tDIIXPfBFnrhU3RxtyHEHupfXbnueSIEeoT2j2+UIM0O4bImOgLoI8OijIf PtJAqKEqzwTmzE9WGnScHCYLtqZKOe6Nb8HrE46i0P44Ly6ik1+UWULuwdcjvTKS -----END CERTIFICATE-----Generated at Mon Mar 2 19:08:46 2026 by rpki-client