$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5A9096F8CF3711F0B1F0FA45C4F9AE02.roa File: 5A9096F8CF3711F0B1F0FA45C4F9AE02.roa (raw, json) Hash identifier: ZtXnwfP/GMnWLbe9utO74+VeG+hKptJPix6Tm5Y7owE= Subject key identifier: A7:57:7C:42:7F:FA:B3:65:69:02:E1:80:6F:CE:29:DA:BD:E6:E2:2C Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 2CDA Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5A9096F8CF3711F0B1F0FA45C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:50:15 +0000 ROA not before: Tue 02 Dec 2025 04:28:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154068 IP address blocks: 165.101.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11482 (0x2cda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Dec 2 04:28:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c2a7-aab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:78:f1:a8:37:cd:7c:39:cb:de:6b:2e:21:bc: 25:b5:4c:5f:04:f3:14:dd:ef:60:44:40:6c:77:14: 30:5a:e0:39:c4:39:f3:da:46:30:d2:a7:bf:21:9f: 65:33:bc:d9:12:21:ac:a4:38:04:5c:54:c5:a7:10: cc:e5:81:81:f3:5a:c3:a4:e0:ac:3d:b0:f3:e0:04: 28:4f:35:c7:b2:8c:03:aa:f6:3c:9d:12:4f:5c:33: 14:44:48:cf:a3:10:50:fb:1c:05:53:44:fd:8c:9b: 40:36:e8:55:c3:95:48:49:f7:f8:ae:5a:ce:77:2a: a9:de:12:67:6d:ad:ce:eb:61:44:29:3c:0a:2c:4a: 8b:d2:19:4c:f6:39:13:0a:17:08:ef:04:ae:94:41: 9e:a2:d9:c2:30:26:31:44:3f:66:b3:bf:25:c6:c5: 7e:3f:a2:aa:a8:d7:b0:fa:f1:cb:eb:8c:1d:33:3a: 91:96:56:93:68:68:d5:3d:ef:83:47:8d:65:ac:31: 9f:f8:73:46:f8:12:6c:26:19:71:e6:6b:b6:b0:2a: a8:b4:57:2d:75:13:7f:f7:9e:c4:a1:5d:ae:33:b5: 67:d1:cd:e4:a6:12:93:ad:9f:a2:00:c1:0c:0c:ed: 39:80:d2:b9:cc:a4:c5:87:01:54:af:65:f0:69:84: 50:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:57:7C:42:7F:FA:B3:65:69:02:E1:80:6F:CE:29:DA:BD:E6:E2:2C X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/5A9096F8CF3711F0B1F0FA45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.225.0/24 Signature Algorithm: sha256WithRSAEncryption 94:d7:44:71:ed:8f:85:01:2f:3b:8b:8c:6f:22:de:32:72:81: 00:26:ad:23:04:88:da:31:a8:e6:5e:d0:2b:26:04:df:dd:8a: 43:a9:a7:16:3c:e7:9a:2c:cf:a1:fd:22:a7:5b:ca:6d:88:80: b5:ca:88:4d:a1:25:e9:98:5e:39:1d:ea:20:a9:f8:1c:b6:f7: dc:8e:b5:ee:55:7c:96:bc:d5:00:0b:19:14:b4:1f:81:15:c4: 56:fe:30:f8:65:94:ea:3a:54:37:b7:5e:ad:49:aa:e4:b8:51: a4:bf:ed:68:86:18:e4:f3:f8:0f:22:97:0b:51:a9:0f:20:ab: 8a:c5:b3:87:3b:d8:13:fb:97:16:9b:7d:c8:c5:49:55:3d:a0: 9d:e2:b8:30:48:b7:d6:90:3b:86:6c:b2:e5:b9:32:1a:c2:0a: ae:7c:1d:4e:5d:ce:8a:24:40:be:1e:23:8e:28:e5:f8:e8:83: 92:cd:d9:c8:af:84:6e:bf:81:b9:85:29:98:f3:da:77:6d:1d: b7:1c:bb:66:f4:0c:7b:9f:8c:9c:06:7a:f9:19:b9:d8:1f:7f: 37:f3:10:1f:8f:58:6c:89:51:74:13:e2:87:e0:14:c9:50:37: b0:40:f9:30:b1:b7:73:a3:87:5b:99:93:cf:1a:d3:4d:44:43: 9b:e5:95:52 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICLNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMjAyMDQyODMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YzJhNy1hYWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnjxqDfNfDnL3msuIbwltUxfBPMU3e9gREBsdxQwWuA5xDnz2kYw0qe/IZ9l M7zZEiGspDgEXFTFpxDM5YGB81rDpOCsPbDz4AQoTzXHsowDqvY8nRJPXDMUREjP oxBQ+xwFU0T9jJtANuhVw5VISff4rlrOdyqp3hJnba3O62FEKTwKLEqL0hlM9jkT ChcI7wSulEGeotnCMCYxRD9ms78lxsV+P6KqqNew+vHL64wdMzqRllaTaGjVPe+D R41lrDGf+HNG+BJsJhlx5mu2sCqotFctdRN/957EoV2uM7Vn0c3kphKTrZ+iAMEM DO05gNK5zKTFhwFUr2XwaYRQ9wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKdXfEJ/ +rNlaQLhgG/OKdq95uIsMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNUE5MDk2RjhD RjM3MTFGMEIxRjBGQTQ1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQApWXhMA0GCSqGSIb3DQEBCwUAA4IBAQCU10Rx7Y+FAS87i4xvIt4y coEAJq0jBIjaMajmXtArJgTf3YpDqacWPOeaLM+h/SKnW8ptiIC1yohNoSXpmF45 HeogqfgctvfcjrXuVXyWvNUACxkUtB+BFcRW/jD4ZZTqOlQ3t16tSarkuFGkv+1o hhjk8/gPIpcLUakPIKuKxbOHO9gT+5cWm33IxUlVPaCd4rgwSLfWkDuGbLLluTIa wgqufB1OXc6KJEC+HiOOKOX46IOSzdnIr4Ruv4G5hSmY89p3bR23HLtm9Ax7n4yc Bnr5GbnYH3838xAfj1hsiVF0E+KH4BTJUDewQPkwsbdzo4dbmZPPGtNNREOb5ZVS -----END CERTIFICATE-----Generated at Mon Mar 2 17:08:27 2026 by rpki-client