$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C1D5C450A99911F0A4476A73C4F9AE02.roa File: C1D5C450A99911F0A4476A73C4F9AE02.roa (raw, json) Hash identifier: ZbOj/dXrguNqmtfLGgb5eXo1khHhmGkppNNgAULntls= Subject key identifier: B5:E1:54:CF:A5:EA:80:CE:C8:3D:15:44:6F:64:78:95:9D:E3:40:12 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1FB8 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C1D5C450A99911F0A4476A73C4F9AE02.roa Signing time: Wed 15 Oct 2025 07:37:10 +0000 ROA not before: Wed 15 Oct 2025 07:37:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132562 IP address blocks: 165.99.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8120 (0x1fb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Oct 15 07:37:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68ef4f25-9dd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0f:8a:8c:12:7e:5d:79:eb:be:1f:8b:66:b4: 51:82:72:03:32:4e:87:4e:cb:bf:bb:56:3a:ad:34: ed:15:71:58:97:7a:92:60:a8:ee:c5:53:79:07:28: 10:ef:16:fb:b7:74:aa:6f:12:0d:de:b6:c4:81:ac: 61:0c:da:a0:4b:7d:20:e5:16:52:54:98:c6:46:14: 1f:16:fa:42:d9:07:43:4c:d8:ba:03:44:a7:3e:22: 30:ae:4a:73:45:ee:57:a5:a2:b2:73:c7:f8:66:9d: bb:04:b3:93:59:1f:0a:92:0d:45:93:0d:d5:4e:de: 0c:24:53:00:e6:b1:20:56:03:60:19:13:2a:76:8f: 6a:ea:c8:73:04:9e:f6:44:4f:89:73:67:62:d7:48: dd:a3:65:c4:e9:98:dd:b0:cb:8a:aa:68:bf:48:fa: d6:ca:55:73:80:f2:0b:4f:8d:c4:93:9e:8f:2c:2c: 8b:74:f6:36:b7:30:83:50:a9:df:34:cc:ad:45:7c: 6a:c5:a0:de:d7:79:8b:af:4d:08:fa:e7:d7:65:a4: b2:32:dd:3f:77:b7:45:45:1e:02:7a:79:88:2b:17: 86:33:c3:86:4d:be:ec:ec:56:45:dc:35:72:10:14: 38:5f:4b:68:13:6f:d1:50:68:8d:3c:c5:31:07:b0: c9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E1:54:CF:A5:EA:80:CE:C8:3D:15:44:6F:64:78:95:9D:E3:40:12 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C1D5C450A99911F0A4476A73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.99.178.0/23 Signature Algorithm: sha256WithRSAEncryption 64:ba:0a:4a:1c:a2:91:bf:e3:55:28:6d:0e:4b:cf:cb:b3:37: 0a:4f:1a:89:da:94:23:23:74:c9:99:f3:45:44:e7:fa:ad:21: 97:fa:54:a1:4d:61:ff:5a:06:ca:78:7f:e3:da:b2:57:78:79: b0:d7:80:53:de:a7:f5:f0:e0:6e:1c:96:8d:f7:d0:9c:b1:10: 8d:0d:bb:5f:d0:23:63:78:96:2c:f5:50:50:28:b3:8c:50:d6: 49:9c:75:d3:b9:6c:4d:94:00:85:92:ff:48:5f:39:91:60:47: 23:da:01:2d:3f:a0:98:1d:b6:23:ea:34:21:d3:d8:8d:80:3d: 42:75:07:b9:0b:c7:98:ca:45:9e:7a:bb:6f:4d:92:60:21:16: bc:50:6a:81:28:47:2d:07:f3:90:d8:21:0b:34:c4:4f:66:33: 5b:d5:3c:45:db:5d:36:f3:0d:5f:2f:c7:8c:a6:c1:0e:65:0d: e5:e3:2b:35:f8:37:92:d0:ae:da:0b:bd:c8:c9:3d:de:69:1f: 18:b1:d1:5a:ad:da:a5:20:4a:bb:9b:69:14:bf:a6:d6:4c:d7: 54:80:d1:fb:d5:52:51:9b:0c:36:71:71:60:bb:23:19:b6:1e: 3e:1f:2d:8a:0a:ad:05:be:92:e7:cc:0a:8b:96:5b:f9:94:bd: 3e:48:8f:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMDE1MDczNzEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVmNGYyNS05ZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvw+KjBJ+XXnrvh+LZrRRgnIDMk6HTsu/u1Y6rTTtFXFYl3qSYKjuxVN5BygQ 7xb7t3SqbxIN3rbEgaxhDNqgS30g5RZSVJjGRhQfFvpC2QdDTNi6A0SnPiIwrkpz Re5XpaKyc8f4Zp27BLOTWR8Kkg1Fkw3VTt4MJFMA5rEgVgNgGRMqdo9q6shzBJ72 RE+Jc2di10jdo2XE6ZjdsMuKqmi/SPrWylVzgPILT43Ek56PLCyLdPY2tzCDUKnf NMytRXxqxaDe13mLr00I+ufXZaSyMt0/d7dFRR4CenmIKxeGM8OGTb7s7FZF3DVy EBQ4X0toE2/RUGiNPMUxB7DJ/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLXhVM+l 6oDOyD0VRG9keJWd40ASMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzFENUM0NTBB OTk5MTFGMEE0NDc2QTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlY7IwDQYJKoZIhvcNAQELBQADggEBAGS6CkocopG/41Uo bQ5Lz8uzNwpPGonalCMjdMmZ80VE5/qtIZf6VKFNYf9aBsp4f+Pasld4ebDXgFPe p/Xw4G4clo330JyxEI0Nu1/QI2N4liz1UFAos4xQ1kmcddO5bE2UAIWS/0hfOZFg RyPaAS0/oJgdtiPqNCHT2I2APUJ1B7kLx5jKRZ56u29NkmAhFrxQaoEoRy0H85DY IQs0xE9mM1vVPEXbXTbzDV8vx4ymwQ5lDeXjKzX4N5LQrtoLvcjJPd5pHxix0Vqt 2qUgSrubaRS/ptZM11SA0fvVUlGbDDZxcWC7Ixm2Hj4fLYoKrQW+kufMCouWW/mU vT5Ij8U= -----END CERTIFICATE-----Generated at Tue Nov 4 22:13:23 2025 by rpki-client