$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2CD0468858BC11F091143F84C4F9AE02.roa File: 2CD0468858BC11F091143F84C4F9AE02.roa (raw, json) Hash identifier: ZgblUGL0+3PpIGyImV79FJBkhlWrLAaDTwNCk/t9v3c= Subject key identifier: 67:4E:DA:39:C0:C2:4A:3F:9D:02:67:AA:DE:1F:52:E0:45:CE:7B:D1 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2C94 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2CD0468858BC11F091143F84C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:48:39 +0000 ROA not before: Fri 04 Jul 2025 09:49:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141841 IP address blocks: 165.101.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11412 (0x2c94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jul 4 09:49:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c247-3767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:47:59:4c:19:d7:cf:a4:83:fc:ef:aa:55:d1: 11:07:fc:64:9a:7f:6d:b4:89:e4:c5:5b:5a:88:56: 3b:81:87:77:78:f8:a6:1c:1d:c3:e4:85:46:77:dd: ba:3d:96:8d:44:fd:12:f8:1c:06:2b:f0:46:ca:c4: 09:78:ef:d4:e8:60:0b:51:22:60:ae:4b:bc:6a:84: 56:16:b4:d7:b2:cc:a1:8f:20:72:70:10:63:9d:fc: cd:77:a0:6e:35:5a:51:f8:21:8c:27:3e:db:41:6b: 2d:dd:c3:a7:3c:d6:c2:43:35:f4:5b:9a:e2:6f:ff: 36:cf:6a:a7:1b:31:74:83:92:cd:c6:57:cc:94:fc: c8:d7:1c:1b:a0:78:16:7e:a8:87:4a:b4:1a:7a:c2: 65:e4:31:c3:a6:de:25:b8:70:7e:76:7e:44:a0:f0: 49:54:88:5e:42:55:03:e9:10:d8:6a:d1:e7:ee:5a: ac:ee:fc:4f:f5:a8:e1:65:d2:2b:cc:64:b8:10:4c: 23:1c:86:e3:3a:50:6f:0a:f0:f6:13:a2:79:1b:3c: 11:e9:af:29:10:ad:a3:e5:05:eb:1b:d6:41:43:de: a1:78:0a:d6:c7:22:e1:b8:3b:d8:07:18:ef:cf:3e: 94:95:49:0b:89:09:82:d1:8b:8b:54:21:31:29:0d: 77:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:4E:DA:39:C0:C2:4A:3F:9D:02:67:AA:DE:1F:52:E0:45:CE:7B:D1 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/2CD0468858BC11F091143F84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.96.0/24 Signature Algorithm: sha256WithRSAEncryption a1:4a:ad:5e:2d:c3:74:0e:81:d6:6f:8e:d8:1c:b9:83:31:86: 77:c6:41:ab:f6:08:49:7b:6c:07:0c:18:22:ab:68:0e:3d:db: 9b:0a:2d:56:99:e7:bc:52:51:0b:21:0f:af:38:ca:9c:38:96: 5d:b1:e3:de:b4:a0:91:57:ca:44:2f:a6:72:fe:75:7a:ae:c4: ac:e0:61:97:0a:8c:e9:12:5d:fa:da:fd:1d:f3:ae:f4:88:55: 8b:1d:1f:03:bb:92:c4:de:ec:85:c2:ae:a9:c3:c6:85:48:dc: b4:68:d3:28:b6:76:a0:a7:b6:6d:af:50:ba:81:c9:31:ff:af: 18:d2:99:fc:96:c4:d1:05:03:b3:b6:2b:88:d1:46:a5:a8:fd: eb:36:03:d1:64:a3:65:65:b7:82:ad:34:30:3e:5d:a4:67:51: 83:bc:b3:c3:c9:9b:3e:20:82:19:84:cb:1e:c8:27:27:83:a7: b5:96:1f:4a:61:4b:44:30:4e:4c:20:eb:c0:28:91:e2:07:fa: c6:01:4f:cd:86:77:f5:44:88:91:7f:30:5d:ff:e3:b2:8a:65: 79:3b:a1:1d:36:4a:79:5c:69:2b:e3:18:d6:33:40:09:b7:8e: 4b:9e:89:65:99:f3:cf:7c:50:ae:19:9e:ba:cb:d5:46:58:6c: 5e:79:08:12 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNzA0MDk0OTI4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzI0Ny0zNzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUdZTBnXz6SD/O+qVdERB/xkmn9ttInkxVtaiFY7gYd3ePimHB3D5IVGd926 PZaNRP0S+BwGK/BGysQJeO/U6GALUSJgrku8aoRWFrTXssyhjyBycBBjnfzNd6Bu NVpR+CGMJz7bQWst3cOnPNbCQzX0W5rib/82z2qnGzF0g5LNxlfMlPzI1xwboHgW fqiHSrQaesJl5DHDpt4luHB+dn5EoPBJVIheQlUD6RDYatHn7lqs7vxP9ajhZdIr zGS4EEwjHIbjOlBvCvD2E6J5GzwR6a8pEK2j5QXrG9ZBQ96heArWxyLhuDvYBxjv zz6UlUkLiQmC0YuLVCExKQ13BwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGdO2jnA wko/nQJnqt4fUuBFznvRMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMkNEMDQ2ODg1 OEJDMTFGMDkxMTQzRjg0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQApWVgMA0GCSqGSIb3DQEBCwUAA4IBAQChSq1eLcN0DoHWb47YHLmD MYZ3xkGr9ghJe2wHDBgiq2gOPdubCi1Wmee8UlELIQ+vOMqcOJZdsePetKCRV8pE L6Zy/nV6rsSs4GGXCozpEl362v0d8670iFWLHR8Du5LE3uyFwq6pw8aFSNy0aNMo tnagp7Ztr1C6gckx/68Y0pn8lsTRBQOztiuI0UalqP3rNgPRZKNlZbeCrTQwPl2k Z1GDvLPDyZs+IIIZhMseyCcng6e1lh9KYUtEME5MIOvAKJHiB/rGAU/Nhnf1RIiR fzBd/+OyimV5O6EdNkp5XGkr4xjWM0AJt45LnollmfPPfFCuGZ66y9VGWGxeeQgS -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:37 2026 by rpki-client