$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/30695B4066BD11F0A139834EC4F9AE02.roa File: 30695B4066BD11F0A139834EC4F9AE02.roa (raw, json) Hash identifier: upF7INjaJPjdnRWZaaXQcPmKU9jI4UuuzoC8ZXDprO4= Subject key identifier: 95:DE:CD:CD:B9:F9:B3:C1:1B:6C:D0:DE:19:CC:9D:B0:34:99:B3:2E Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1F16 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/30695B4066BD11F0A139834EC4F9AE02.roa Signing time: Tue 22 Jul 2025 05:31:59 +0000 ROA not before: Tue 22 Jul 2025 05:31:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154069 IP address blocks: 165.101.228.0/24 maxlen: 24 165.101.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7958 (0x1f16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Jul 22 05:31:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=687f224f-42fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dd:25:c9:67:5b:a6:bf:a1:43:b0:a0:96:af: 31:48:ff:94:c2:14:59:c6:12:0e:dc:c1:18:4b:84: dd:9b:21:82:0c:7d:e8:de:76:da:15:32:fe:8f:f3: 8e:7a:de:08:95:41:d6:1b:86:3f:e3:21:8f:af:48: 8b:16:d5:75:41:a8:2c:cf:41:91:7d:94:e8:d0:20: c5:ae:a1:12:d3:c7:fc:07:33:76:a4:43:e4:9a:c3: 36:8f:44:c2:f6:6c:c0:3a:49:61:fc:c8:3a:fa:77: 65:f9:b0:5e:8d:8b:9f:72:45:45:81:5d:51:e5:b6: 70:e5:9a:eb:21:ed:db:d5:c9:b6:4d:e9:7c:15:54: d5:0d:89:25:f4:8a:ee:bf:d4:41:b3:f9:7a:81:20: e2:f7:3a:de:41:72:3c:5d:bb:d3:52:f0:b5:e4:31: c9:c3:95:d3:1c:57:5e:84:52:31:c8:c6:50:06:fd: c5:bc:05:42:1b:68:3d:c8:81:86:20:d3:10:a4:59: 7a:73:bf:f1:8e:b7:f2:d8:99:fa:e7:42:7a:78:cf: 2c:e1:a3:72:e5:6a:43:00:c7:7d:95:04:40:18:eb: 31:76:eb:54:a1:c3:c1:64:8c:d7:cb:fe:e9:9b:73: 64:78:ed:9c:67:b3:13:53:41:f2:61:75:62:82:7f: c3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:DE:CD:CD:B9:F9:B3:C1:1B:6C:D0:DE:19:CC:9D:B0:34:99:B3:2E X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/30695B4066BD11F0A139834EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.228.0/23 Signature Algorithm: sha256WithRSAEncryption 39:50:c0:ae:9a:e1:59:1d:61:3d:aa:20:93:22:22:37:2a:a1: 1e:15:bb:f5:fa:c7:93:1c:9b:b3:7b:73:c4:13:56:12:38:27: 8b:0b:10:ab:87:6e:b8:91:47:b4:94:5e:5b:10:8b:78:11:8a: f8:94:18:ae:f3:ea:3f:c3:82:9e:19:37:04:f3:a9:fc:4b:fa: 84:f1:8f:50:6a:4d:d0:eb:66:fb:8c:60:8c:89:c3:f5:52:0c: fd:23:17:90:61:aa:df:b4:05:69:6e:a9:90:62:fd:aa:69:7c: 81:6e:0b:89:71:0d:1c:5a:15:b5:49:72:aa:7b:d9:52:fa:7d: a8:e8:6e:72:4c:47:9c:a7:3f:90:63:b0:97:79:b6:a9:c1:72: 49:d8:09:b6:fc:29:c4:df:56:a9:7a:12:82:47:28:3b:ce:55: f0:01:c8:94:7f:73:91:e2:54:32:9c:72:7d:cc:9a:78:e2:2b: b9:4e:f2:1c:e0:c4:eb:7e:0c:84:de:90:39:90:55:92:d9:7d: 3c:e4:cf:92:c9:79:70:87:2c:60:02:d5:0b:5b:9a:24:77:e4: 1e:cf:57:47:d6:94:6f:41:dc:7c:6b:dd:9f:2f:c4:1f:0b:d7: 64:73:75:26:d1:71:01:2f:d8:7d:30:78:38:75:08:a0:68:53: 76:bc:27:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNzIyMDUzMTU5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmMjI0Zi00MmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu90lyWdbpr+hQ7Cglq8xSP+UwhRZxhIO3MEYS4TdmyGCDH3o3nbaFTL+j/OO et4IlUHWG4Y/4yGPr0iLFtV1Qagsz0GRfZTo0CDFrqES08f8BzN2pEPkmsM2j0TC 9mzAOklh/Mg6+ndl+bBejYufckVFgV1R5bZw5ZrrIe3b1cm2Tel8FVTVDYkl9Iru v9RBs/l6gSDi9zreQXI8XbvTUvC15DHJw5XTHFdehFIxyMZQBv3FvAVCG2g9yIGG INMQpFl6c7/xjrfy2Jn650J6eM8s4aNy5WpDAMd9lQRAGOsxdutUocPBZIzXy/7p m3NkeO2cZ7MTU0HyYXVign/DpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJXezc25 +bPBG2zQ3hnMnbA0mbMuMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzA2OTVCNDA2 NkJEMTFGMEExMzk4MzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlZeQwDQYJKoZIhvcNAQELBQADggEBADlQwK6a4VkdYT2q IJMiIjcqoR4Vu/X6x5Mcm7N7c8QTVhI4J4sLEKuHbriRR7SUXlsQi3gRiviUGK7z 6j/Dgp4ZNwTzqfxL+oTxj1BqTdDrZvuMYIyJw/VSDP0jF5Bhqt+0BWluqZBi/app fIFuC4lxDRxaFbVJcqp72VL6fajobnJMR5ynP5BjsJd5tqnBcknYCbb8KcTfVql6 EoJHKDvOVfAByJR/c5HiVDKccn3MmnjiK7lO8hzgxOt+DITekDmQVZLZfTzkz5LJ eXCHLGAC1QtbmiR35B7PV0fWlG9B3Hxr3Z8vxB8L12RzdSbRcQEv2H0weDh1CKBo U3a8Jxo= -----END CERTIFICATE-----Generated at Sun Aug 10 03:56:34 2025 by rpki-client