$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/43C3A49A743511F0A334412FC4F9AE02.roa File: 43C3A49A743511F0A334412FC4F9AE02.roa (raw, json) Hash identifier: 3gfOEOxRSk4MF2FB5eLkGhkLd2oTiouXGU21A1Sfrag= Subject key identifier: 07:87:0D:E6:54:3C:99:17:CC:A0:0F:54:C5:8C:6A:53:65:FB:6B:EE Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1F50 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/43C3A49A743511F0A334412FC4F9AE02.roa Signing time: Fri 08 Aug 2025 08:54:17 +0000 ROA not before: Fri 08 Aug 2025 08:54:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154081 IP address blocks: 165.101.248.0/24 maxlen: 24 165.101.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8016 (0x1f50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 8 08:54:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6895bb39-2e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1b:d3:01:63:77:02:61:d1:3d:43:89:2d:1e: c1:7c:d6:88:b1:36:9f:dd:ca:17:68:20:89:e0:4b: f6:fa:24:0d:ef:86:10:c8:bf:e6:94:ea:65:26:82: ea:82:0c:c1:8d:4b:50:44:54:eb:8e:fe:83:ec:d6: 87:4e:06:5d:8e:0f:56:bb:ce:5a:00:25:f0:cc:92: 1e:68:e2:98:74:8a:78:df:73:01:7a:7d:36:12:85: 7f:3e:b0:ba:c5:65:01:cb:3c:68:0d:51:66:32:e7: 57:41:57:4c:06:c5:72:0f:a8:a5:26:71:ec:1f:b6: d9:67:e6:de:92:5f:c0:c5:02:25:8d:d0:f7:bf:b7: 62:45:f7:40:42:88:7e:21:74:23:05:f7:6b:d7:ee: b0:6b:08:87:a3:5c:49:5c:e9:b6:82:7c:47:6c:05: 36:01:52:c1:8b:0e:f7:6e:1e:b2:79:d8:25:b5:8b: 22:64:7d:61:36:ac:bf:af:97:4a:a5:6c:60:24:c8: 8a:60:82:73:79:96:1d:31:14:92:63:ad:29:63:dd: 92:b4:c9:83:f9:38:fd:6d:10:f0:02:b3:c8:45:1c: 98:83:ce:60:c2:a3:02:cb:0c:bf:1d:84:15:22:0f: 2c:e1:7d:3c:78:3b:3a:b4:bf:54:e8:39:8c:45:58: 14:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:87:0D:E6:54:3C:99:17:CC:A0:0F:54:C5:8C:6A:53:65:FB:6B:EE X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/43C3A49A743511F0A334412FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.248.0/23 Signature Algorithm: sha256WithRSAEncryption 06:c0:e1:4a:01:8a:c1:49:03:b5:c3:7b:a8:b9:29:12:ce:29: b1:23:53:a7:34:23:e8:2c:aa:dc:03:52:c7:93:83:03:2b:a9: ae:4d:be:09:d8:b6:dd:e3:10:58:bd:39:ca:ca:62:1a:1b:d3: 49:71:32:ac:e9:d8:bd:d5:d0:1d:94:b4:c0:b0:67:15:e4:0c: 3b:b7:be:00:9e:92:45:c4:6f:0e:99:5f:e2:fe:37:a1:4d:83: 3b:a8:6f:71:e8:11:ed:20:44:40:c8:58:07:e6:74:ba:d1:29: a5:96:ed:58:a8:62:61:55:4a:4d:b5:7c:83:13:ba:fd:56:4e: 9c:fd:12:ee:50:3a:85:f1:de:b4:80:81:31:62:a0:74:b7:b7: 3b:da:ac:70:49:6b:6b:8b:ce:ad:ea:72:48:38:94:1c:f7:b9: 16:73:84:c6:7e:32:79:71:4e:d6:fc:96:4e:38:aa:ff:ae:f2: 8a:96:19:03:57:33:b1:9a:db:96:be:84:05:57:4b:65:d4:54: 31:d8:a7:8b:1f:5d:1f:8e:1c:bb:1d:7f:1f:ac:67:3d:82:c0: c7:3c:c2:36:7e:b2:25:68:87:dc:48:f0:9b:64:3f:a6:0f:75: 60:3a:27:7d:4c:01:2d:81:15:7c:0d:ef:54:67:d5:96:76:ef: 94:3f:ad:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwODA4MDg1NDE3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk1YmIzOS0yZTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBvTAWN3AmHRPUOJLR7BfNaIsTaf3coXaCCJ4Ev2+iQN74YQyL/mlOplJoLq ggzBjUtQRFTrjv6D7NaHTgZdjg9Wu85aACXwzJIeaOKYdIp433MBen02EoV/PrC6 xWUByzxoDVFmMudXQVdMBsVyD6ilJnHsH7bZZ+bekl/AxQIljdD3v7diRfdAQoh+ IXQjBfdr1+6wawiHo1xJXOm2gnxHbAU2AVLBiw73bh6yedgltYsiZH1hNqy/r5dK pWxgJMiKYIJzeZYdMRSSY60pY92StMmD+Tj9bRDwArPIRRyYg85gwqMCywy/HYQV Ig8s4X08eDs6tL9U6DmMRVgURQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAeHDeZU PJkXzKAPVMWMalNl+2vuMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNDNDM0E0OUE3 NDM1MTFGMEEzMzQ0MTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlZfgwDQYJKoZIhvcNAQELBQADggEBAAbA4UoBisFJA7XD e6i5KRLOKbEjU6c0I+gsqtwDUseTgwMrqa5NvgnYtt3jEFi9OcrKYhob00lxMqzp 2L3V0B2UtMCwZxXkDDu3vgCekkXEbw6ZX+L+N6FNgzuob3HoEe0gREDIWAfmdLrR KaWW7VioYmFVSk21fIMTuv1WTpz9Eu5QOoXx3rSAgTFioHS3tzvarHBJa2uLzq3q ckg4lBz3uRZzhMZ+MnlxTtb8lk44qv+u8oqWGQNXM7Ga25a+hAVXS2XUVDHYp4sf XR+OHLsdfx+sZz2CwMc8wjZ+siVoh9xI8JtkP6YPdWA6J31MAS2BFXwN71Rn1ZZ2 75Q/rVo= -----END CERTIFICATE-----Generated at Sun Aug 10 13:51:19 2025 by rpki-client