$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D38BF5DCA5D111F0A6C84E41C4F9AE02.roa File: D38BF5DCA5D111F0A6C84E41C4F9AE02.roa (raw, json) Hash identifier: 5iBPdbO+2/dLVIrDJru78RGhVicBtv+vm5diGKlh4B4= Subject key identifier: D5:00:3E:F1:6E:83:0A:41:66:EC:99:A0:0F:19:C6:FC:3C:57:B8:4E Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1FB1 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D38BF5DCA5D111F0A6C84E41C4F9AE02.roa Signing time: Fri 10 Oct 2025 12:08:27 +0000 ROA not before: Fri 10 Oct 2025 12:08:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154059 IP address blocks: 165.101.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8113 (0x1fb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Oct 10 12:08:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68e8f73a-5dee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b8:8b:70:c0:5f:25:ce:c1:68:53:db:05:97: 6b:ed:20:2c:2c:3e:a4:b0:bc:c8:37:e4:0f:f1:d3: 9a:ee:2e:71:63:8f:1d:e4:7f:ac:0f:e5:ea:c4:78: 33:c6:8e:69:e3:0f:8c:1b:e4:a1:97:4d:fd:bf:08: ff:83:fd:5b:73:8c:7a:0b:c2:ce:b0:4a:ab:0c:e3: 10:63:95:2f:43:ba:fa:08:dc:5b:e0:6b:03:f6:1b: b9:1f:7f:e0:d6:75:88:35:b0:f6:1e:77:c9:76:7c: ba:7e:6b:62:2d:b7:79:ef:c8:20:9a:cf:65:b1:46: c9:9a:ff:51:a2:19:8b:be:0a:1f:c4:a6:5b:be:5b: ba:ff:be:a1:ab:82:e4:e1:83:8c:fb:3b:5c:93:ce: 3d:99:6f:62:ad:56:84:e2:d2:45:f8:bd:e7:ee:24: 31:2b:4b:36:d2:c3:7e:6e:cb:93:ed:18:f7:a8:b1: 0e:41:e1:b6:09:12:96:a4:ad:ed:6d:75:c7:3c:9a: 32:25:7b:ae:47:05:7e:f7:ff:8d:0b:0d:93:da:dd: fe:6d:61:21:c2:bd:b3:57:01:9d:f1:7e:ba:f4:77: cc:2b:35:d8:fc:68:fb:79:a0:59:e9:f9:9f:37:b3: 83:44:e8:29:45:15:3b:af:ac:69:57:cf:12:6a:a4: 60:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:00:3E:F1:6E:83:0A:41:66:EC:99:A0:0F:19:C6:FC:3C:57:B8:4E X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/D38BF5DCA5D111F0A6C84E41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.199.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:f6:6a:5b:4e:9c:39:a3:84:dd:2b:8a:65:16:e7:40:3c:bc: dd:a1:c1:94:c4:24:de:68:0c:b0:cb:b6:e1:83:b8:2c:89:97: 90:0d:41:fa:3e:41:26:4c:2e:60:d7:4f:82:b7:b4:b8:b3:6b: 5e:d3:9d:0d:d4:9e:85:a3:85:fb:48:1e:1b:87:b5:ea:9e:d9: 20:18:c4:bc:69:04:d1:d0:24:29:f9:77:c3:43:ee:62:a2:64: 32:fa:8b:a2:ad:53:88:34:e8:34:c9:f2:93:e0:ff:1e:72:81: 72:49:5d:5f:f3:f7:0e:d0:a9:86:59:c2:92:d2:69:da:0f:18: ef:bd:5b:87:62:b8:34:8c:7e:8e:88:e8:83:2d:bd:71:66:69: 4b:c5:8e:68:1e:cd:09:40:37:32:28:f4:9c:cf:d3:6a:27:f9: 83:53:11:5e:42:e3:72:85:52:ba:26:d4:83:0e:f5:63:84:b6: 3b:6e:cc:41:fd:de:95:c0:e6:98:ab:20:36:ee:16:26:e2:7a: 8d:7a:51:0d:cb:17:93:68:f3:88:87:2b:f0:9c:db:ed:66:5a: 6f:b2:fe:8a:bb:e4:41:72:d2:65:ec:47:0e:72:c4:21:ac:b4: 41:4a:e5:8c:73:88:31:3c:f9:f6:f3:6a:3c:f0:aa:3d:0b:5f: 5b:67:6a:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMDEwMTIwODI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU4ZjczYS01ZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbiLcMBfJc7BaFPbBZdr7SAsLD6ksLzIN+QP8dOa7i5xY48d5H+sD+XqxHgz xo5p4w+MG+Shl039vwj/g/1bc4x6C8LOsEqrDOMQY5UvQ7r6CNxb4GsD9hu5H3/g 1nWINbD2HnfJdny6fmtiLbd578ggms9lsUbJmv9RohmLvgofxKZbvlu6/76hq4Lk 4YOM+ztck849mW9irVaE4tJF+L3n7iQxK0s20sN+bsuT7Rj3qLEOQeG2CRKWpK3t bXXHPJoyJXuuRwV+9/+NCw2T2t3+bWEhwr2zVwGd8X669HfMKzXY/Gj7eaBZ6fmf N7ODROgpRRU7r6xpV88SaqRg3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNUAPvFu gwpBZuyZoA8Zxvw8V7hOMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDM4QkY1RENB NUQxMTFGMEE2Qzg0RTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAClZccwDQYJKoZIhvcNAQELBQADggEBAFv2altOnDmjhN0r imUW50A8vN2hwZTEJN5oDLDLtuGDuCyJl5ANQfo+QSZMLmDXT4K3tLiza17TnQ3U noWjhftIHhuHteqe2SAYxLxpBNHQJCn5d8ND7mKiZDL6i6KtU4g06DTJ8pPg/x5y gXJJXV/z9w7QqYZZwpLSadoPGO+9W4diuDSMfo6I6IMtvXFmaUvFjmgezQlANzIo 9JzP02on+YNTEV5C43KFUrom1IMO9WOEtjtuzEH93pXA5pirIDbuFibieo16UQ3L F5No84iHK/Cc2+1mWm+y/oq75EFy0mXsRw5yxCGstEFK5YxziDE8+fbzajzwqj0L X1tnatQ= -----END CERTIFICATE-----Generated at Tue Nov 4 22:13:24 2025 by rpki-client