$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF56/6D5E6A545BD211F0B737D45AC4F9AE02/6D18C6E88FF311F0B3309340C4F9AE02.roa File: 6D18C6E88FF311F0B3309340C4F9AE02.roa (raw, json) Hash identifier: c9l4QPfF5HgbdK2wjGcEEf1Z5xYqEsv1DWpNYE3IzBw= Subject key identifier: 21:E8:11:DA:92:4C:80:58:98:9A:A0:3D:62:85:A1:39:6A:8C:FF:46 Certificate issuer: /CN=A911DF56/serialNumber=1BD6336B97868C2F54EB3D9478D39E41731D4487 Certificate serial: 26 Authority key identifier: 1B:D6:33:6B:97:86:8C:2F:54:EB:3D:94:78:D3:9E:41:73:1D:44:87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G9Yza5eGjC9U6z2UeNOeQXMdRIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF56/6D5E6A545BD211F0B737D45AC4F9AE02/6D18C6E88FF311F0B3309340C4F9AE02.roa Signing time: Fri 12 Sep 2025 16:13:32 +0000 ROA not before: Fri 12 Sep 2025 16:13:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154010 IP address blocks: 165.101.122.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF56/6D5E6A545BD211F0B737D45AC4F9AE02/G9Yza5eGjC9U6z2UeNOeQXMdRIc.crl rsync://rpki.apnic.net/member_repository/A911DF56/6D5E6A545BD211F0B737D45AC4F9AE02/G9Yza5eGjC9U6z2UeNOeQXMdRIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G9Yza5eGjC9U6z2UeNOeQXMdRIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF56, serialNumber=1BD6336B97868C2F54EB3D9478D39E41731D4487 Validity Not Before: Sep 12 16:13:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c446ac-26bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e4:30:c3:30:91:5b:c0:d2:7d:00:10:0a:70: ec:bb:ca:97:01:88:71:16:3e:aa:71:dd:0d:b6:13: 5e:14:a1:e6:8e:36:d6:98:52:d3:39:ae:87:fa:c5: 2c:c4:f8:f2:41:74:83:5d:30:d7:f6:8c:82:d5:2d: 32:79:b6:b2:a7:ea:99:77:f8:fa:d0:bc:a8:76:a8: de:94:b9:74:c5:e0:bf:fd:74:97:e9:a2:2a:78:a7: 00:f7:86:63:87:37:e3:60:81:a4:e8:45:95:e8:78: 51:44:b6:a8:f6:f2:94:e3:ce:09:87:d9:d0:34:2c: 63:21:40:25:d5:d0:28:4a:5c:0f:89:c8:c1:c4:b6: c6:9b:d9:a4:40:72:f4:e2:d0:ca:2e:17:af:08:94: af:4f:d4:a5:67:65:c2:b1:78:35:cf:fa:e6:bc:5a: fa:13:ad:c4:ca:ff:9b:54:59:fc:70:9e:2b:2a:2f: 52:9d:ec:37:75:66:ee:e7:2a:fa:91:03:e8:7f:de: a4:7c:60:93:94:2a:8f:af:3d:e0:9c:f0:67:2b:6c: b3:29:59:87:43:32:fd:1c:c9:1c:08:cd:02:fa:75: 72:ad:15:4b:a8:e7:2c:1d:21:2d:86:f7:e5:6b:6d: 67:60:bd:de:67:50:5e:48:76:4a:ee:d8:57:2d:a6: 14:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E8:11:DA:92:4C:80:58:98:9A:A0:3D:62:85:A1:39:6A:8C:FF:46 X509v3 Authority Key Identifier: keyid:1B:D6:33:6B:97:86:8C:2F:54:EB:3D:94:78:D3:9E:41:73:1D:44:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF56/6D5E6A545BD211F0B737D45AC4F9AE02/G9Yza5eGjC9U6z2UeNOeQXMdRIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G9Yza5eGjC9U6z2UeNOeQXMdRIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF56/6D5E6A545BD211F0B737D45AC4F9AE02/6D18C6E88FF311F0B3309340C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.122.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:40:cf:2f:27:3c:7c:ef:f5:f0:a9:94:56:14:a3:2b:b3:58: ca:47:c5:4b:2b:23:45:1f:34:ce:04:9b:f2:db:6d:e6:9b:7c: b5:0c:f1:2b:4d:7e:cf:8b:03:8d:4f:df:1f:6b:bf:8a:d2:23: 5d:f1:ea:ee:9f:42:05:e9:0e:6d:64:56:37:ab:76:8a:b8:aa: 82:45:02:34:66:a5:f2:b7:52:08:54:98:02:77:7d:38:04:3d: 0d:3c:47:0b:99:ea:1e:85:ec:0a:63:d4:b1:ad:85:1f:75:a8: f9:0d:5f:bc:72:9a:c1:77:42:95:c7:65:0e:3f:19:6f:0c:dc: 4b:2f:a9:57:30:c7:f6:a0:d8:fb:a9:4d:12:cf:c5:e3:e9:e1: 45:d2:87:13:c7:40:96:7a:0b:56:02:4a:c4:c3:56:fd:03:0e: 90:48:b7:e0:e0:b3:0e:ce:af:b2:b3:9f:58:81:30:32:3a:f5: 68:c8:cb:53:9b:73:e3:ae:72:34:f0:93:42:ce:e6:1e:eb:12: 7b:ce:9a:d1:04:9a:bb:11:f6:97:32:22:16:ab:7e:c5:14:26: 5a:d9:6f:8a:d5:89:8d:76:85:64:7a:db:ab:33:d5:84:4d:7c: cd:da:ac:85:54:d5:ee:f5:ed:58:b4:f9:ae:36:69:b5:3a:27: f8:59:e7:ff -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REY1NjExMC8GA1UEBRMoMUJENjMzNkI5Nzg2OEMyRjU0RUIzRDk0NzhEMzlFNDE3 MzFENDQ4NzAeFw0yNTA5MTIxNjEzMzJaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzQ0NmFjLTI2YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC55DDDMJFbwNJ9ABAKcOy7ypcBiHEWPqpx3Q22E14UoeaONtaYUtM5rof6xSzE +PJBdINdMNf2jILVLTJ5trKn6pl3+PrQvKh2qN6UuXTF4L/9dJfpoip4pwD3hmOH N+NggaToRZXoeFFEtqj28pTjzgmH2dA0LGMhQCXV0ChKXA+JyMHEtsab2aRAcvTi 0MouF68IlK9P1KVnZcKxeDXP+ua8WvoTrcTK/5tUWfxwnisqL1Kd7Dd1Zu7nKvqR A+h/3qR8YJOUKo+vPeCc8GcrbLMpWYdDMv0cyRwIzQL6dXKtFUuo5ywdIS2G9+Vr bWdgvd5nUF5Idkru2FctphSTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUIegR2pJM gFiYmqA9YoWhOWqM/0YwHwYDVR0jBBgwFoAUG9Yza5eGjC9U6z2UeNOeQXMdRIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFERjU2LzZENUU2QTU0NUJE MjExRjBCNzM3RDQ1QUM0RjlBRTAyL0c5WXphNWVHakM5VTZ6MlVlTk9lUVhNZFJJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRzlZemE1ZUdqQzlVNnoyVWVOT2VRWE1kUkljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REY1Ni82RDVFNkE1NDVCRDIxMUYwQjczN0Q0NUFDNEY5QUUwMi82RDE4QzZFODhG RjMxMUYwQjMzMDkzNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlejANBgkqhkiG9w0BAQsFAAOCAQEAHkDPLyc8fO/18KmU VhSjK7NYykfFSysjRR80zgSb8ttt5pt8tQzxK01+z4sDjU/fH2u/itIjXfHq7p9C BekObWRWN6t2iriqgkUCNGal8rdSCFSYAnd9OAQ9DTxHC5nqHoXsCmPUsa2FH3Wo +Q1fvHKawXdClcdlDj8ZbwzcSy+pVzDH9qDY+6lNEs/F4+nhRdKHE8dAlnoLVgJK xMNW/QMOkEi34OCzDs6vsrOfWIEwMjr1aMjLU5tz465yNPCTQs7mHusSe86a0QSa uxH2lzIiFqt+xRQmWtlvitWJjXaFZHrbqzPVhE18zdqshVTV7vXtWLT5rjZptTon +Fnn/w== -----END CERTIFICATE-----Generated at Tue Oct 21 01:57:24 2025 by rpki-client