$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/43C3A49A743511F0A334412FC4F9AE02.roa File: 43C3A49A743511F0A334412FC4F9AE02.roa (raw, json) Hash identifier: 3REpKzj4iKHb5sfiMBSr61+oy9+cP87dJaM4bv7gkFQ= Subject key identifier: CD:E8:5A:54:9C:9E:C3:0F:D0:31:56:29:5B:26:A5:5F:D7:A1:65:47 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CB0 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/43C3A49A743511F0A334412FC4F9AE02.roa Signing time: Sun 01 Mar 2026 22:49:17 +0000 ROA not before: Fri 08 Aug 2025 08:54:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154081 IP address blocks: 165.101.248.0/24 maxlen: 24 165.101.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11440 (0x2cb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 8 08:54:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c26d-b912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:97:13:e7:36:44:79:a2:b6:13:c9:f9:73:f5: 1c:c7:f2:94:f9:c6:9f:41:41:6b:04:51:ec:2d:51: 0d:08:3e:a0:ba:19:85:f6:51:d0:15:4d:0a:02:b1: a3:10:ef:7c:2b:ce:82:0e:a1:b7:12:ed:9b:2e:ac: 75:cb:7a:61:2c:dc:b5:70:8c:89:f1:a5:65:25:17: c2:43:8f:f3:be:5a:f9:f8:f1:d9:e5:6e:08:fb:1b: e0:ef:f9:7d:29:db:7f:4e:5d:3d:19:76:fe:18:f6: a7:20:39:58:71:02:91:34:c1:ee:2c:b0:d8:34:fd: f1:c4:36:bc:f7:eb:f8:e4:f8:31:bf:4a:e4:23:1b: 3a:b5:92:18:cf:3c:f4:78:17:94:ab:f2:33:86:91: b2:a2:e8:76:0a:42:fe:ca:71:28:f4:3a:34:06:31: 93:1e:64:44:eb:40:c8:9a:d7:ca:de:2d:b4:96:b1: 65:40:03:2e:6d:06:f0:d0:29:2a:5d:1e:27:cb:d5: 0d:b7:f7:62:6f:2d:61:d6:ad:ed:06:95:be:cd:c0: 42:21:44:55:2c:ac:73:3f:83:c5:a1:19:f2:cc:bc: be:8e:d2:f1:f0:70:34:e8:92:20:60:a8:84:c3:f4: 9c:3b:eb:d2:81:ed:6d:e2:d7:43:81:0a:a6:c6:d6: 13:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E8:5A:54:9C:9E:C3:0F:D0:31:56:29:5B:26:A5:5F:D7:A1:65:47 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/43C3A49A743511F0A334412FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.248.0/23 Signature Algorithm: sha256WithRSAEncryption 86:63:2c:6f:3e:4f:6b:d3:01:5b:4b:fd:e1:c8:0b:c7:af:fa: 4c:14:4d:90:26:01:01:b7:a0:95:5f:ea:54:d4:98:39:75:80: 96:11:93:41:de:be:8c:82:3c:f0:af:c4:dd:9f:6d:34:5b:71: c9:4d:1f:63:b3:df:a2:45:e1:56:67:bf:57:37:22:2a:1f:b9: bc:30:9d:46:ca:5f:9f:6c:a0:e5:33:7c:cc:24:fb:3f:a2:bd: 69:f0:b5:32:2b:45:d5:90:97:6c:58:da:90:f2:7e:04:30:69: 36:ea:8d:b2:ad:bc:49:3b:50:c7:59:61:7d:56:b0:1b:03:47: 23:b3:d6:65:76:b2:9f:f6:ec:d9:ea:7e:8e:75:77:32:62:a5: 7e:a7:f8:dc:70:5a:98:51:62:d7:f2:62:75:fb:a6:c8:20:6f: ba:d1:c9:f1:58:53:a9:e2:c7:ed:ec:3a:32:a8:20:8f:03:51: 7b:10:35:9d:5d:56:d4:79:af:7f:5e:3b:b8:62:59:dc:4f:87: c7:5f:8e:3f:dc:56:0a:52:c3:19:8f:2e:e1:b5:6f:70:5c:1d: 10:d3:61:cb:a6:bb:ba:cb:ad:01:21:be:a6:fd:63:0c:a7:85: f3:35:77:38:64:0f:6b:9c:0e:b0:be:3e:a5:c0:7b:9b:39:23: 65:85:0c:c8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwODA4MDg1NDE3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzI2ZC1iOTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZcT5zZEeaK2E8n5c/Ucx/KU+cafQUFrBFHsLVENCD6guhmF9lHQFU0KArGj EO98K86CDqG3Eu2bLqx1y3phLNy1cIyJ8aVlJRfCQ4/zvlr5+PHZ5W4I+xvg7/l9 Kdt/Tl09GXb+GPanIDlYcQKRNMHuLLDYNP3xxDa89+v45Pgxv0rkIxs6tZIYzzz0 eBeUq/IzhpGyouh2CkL+ynEo9Do0BjGTHmRE60DImtfK3i20lrFlQAMubQbw0Ckq XR4ny9UNt/diby1h1q3tBpW+zcBCIURVLKxzP4PFoRnyzLy+jtLx8HA06JIgYKiE w/ScO+vSge1t4tdDgQqmxtYTswIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM3oWlSc nsMP0DFWKVsmpV/XoWVHMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDNDM0E0OUE3 NDM1MTFGMEEzMzQ0MTJGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWX4MA0GCSqGSIb3DQEBCwUAA4IBAQCGYyxvPk9r0wFbS/3hyAvH r/pMFE2QJgEBt6CVX+pU1Jg5dYCWEZNB3r6Mgjzwr8Tdn200W3HJTR9js9+iReFW Z79XNyIqH7m8MJ1Gyl+fbKDlM3zMJPs/or1p8LUyK0XVkJdsWNqQ8n4EMGk26o2y rbxJO1DHWWF9VrAbA0cjs9ZldrKf9uzZ6n6OdXcyYqV+p/jccFqYUWLX8mJ1+6bI IG+60cnxWFOp4sft7DoyqCCPA1F7EDWdXVbUea9/Xju4YlncT4fHX44/3FYKUsMZ jy7htW9wXB0Q02HLpru6y60BIb6m/WMMp4XzNXc4ZA9rnA6wvj6lwHubOSNlhQzI -----END CERTIFICATE-----Generated at Mon Mar 2 15:09:53 2026 by rpki-client