$ rpki-client -vvf rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/C92D041297BE11F08D37F648C4F9AE02.roa File: C92D041297BE11F08D37F648C4F9AE02.roa (raw, json) Hash identifier: XYmaKBczfnLlgbTmn4CJYfFYfwuWsZbvVOfQneBA5FM= Subject key identifier: 8D:D5:89:68:F3:67:5D:E6:97:32:9F:06:DB:53:42:A4:8C:5E:FA:A7 Certificate issuer: /CN=A9166279/serialNumber=474BF735ED28F3518BCE0AC462958BEC582CD765 Certificate serial: 30 Authority key identifier: 47:4B:F7:35:ED:28:F3:51:8B:CE:0A:C4:62:95:8B:EC:58:2C:D7:65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R0v3Ne0o81GLzgrEYpWL7Fgs12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/C92D041297BE11F08D37F648C4F9AE02.roa Signing time: Mon 22 Sep 2025 14:16:52 +0000 ROA not before: Mon 22 Sep 2025 14:16:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 142647 IP address blocks: 165.101.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/R0v3Ne0o81GLzgrEYpWL7Fgs12U.crl rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/R0v3Ne0o81GLzgrEYpWL7Fgs12U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R0v3Ne0o81GLzgrEYpWL7Fgs12U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166279, serialNumber=474BF735ED28F3518BCE0AC462958BEC582CD765 Validity Not Before: Sep 22 14:16:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68d15a54-9df3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a4:b5:65:b6:10:dc:d4:2a:31:9f:f3:9a:64: b5:61:ab:eb:5a:e2:ea:f7:12:bd:a4:df:24:d6:3e: 28:d0:63:16:d3:e8:48:19:69:83:70:93:30:30:f6: fc:d6:e9:e8:7a:ae:8d:87:cd:c7:a1:fc:5c:37:1e: c9:f6:2d:fa:81:82:e9:fe:6a:53:08:23:07:65:70: 81:2c:0f:6d:4d:36:03:9f:64:80:c1:cd:09:8f:d2: c3:bc:bf:72:35:54:bd:46:67:23:43:86:96:0d:b5: 71:1b:c4:40:0a:e0:94:1f:a7:ce:be:fb:2b:0c:c2: a4:f4:f8:a9:1b:d6:03:ef:dc:ae:e0:4c:11:d6:11: f8:c9:0a:bf:33:78:21:f7:ca:13:7d:d0:c1:9b:3b: 87:4c:ce:4c:8e:11:8d:d8:05:56:6d:71:c8:3b:ab: 98:75:04:cd:0d:c5:63:17:5d:0f:2e:85:e8:4c:eb: 9d:d7:53:57:c2:3e:04:0e:77:db:f2:1c:20:c9:2d: a0:b8:47:28:ee:4f:cf:1e:3e:29:ee:f7:af:bb:7b: 95:12:9f:77:5c:54:63:4d:2a:6a:65:9a:2b:db:d5: 2b:09:04:ed:c8:6d:52:e4:5e:fd:55:1b:76:52:48: a1:b1:51:11:ba:8a:42:f9:a9:82:f0:e3:e3:41:31: 76:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D5:89:68:F3:67:5D:E6:97:32:9F:06:DB:53:42:A4:8C:5E:FA:A7 X509v3 Authority Key Identifier: keyid:47:4B:F7:35:ED:28:F3:51:8B:CE:0A:C4:62:95:8B:EC:58:2C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/R0v3Ne0o81GLzgrEYpWL7Fgs12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R0v3Ne0o81GLzgrEYpWL7Fgs12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166279/38B2C7BC58CD11F0AD100877C4F9AE02/C92D041297BE11F08D37F648C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.118.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:7c:b4:85:ba:ae:63:74:18:ef:9a:2b:3d:a8:bd:cc:aa:ca: 8e:34:2e:ed:52:b7:2d:8f:e0:49:a8:98:9f:b9:65:2a:86:83: e1:43:40:ab:08:2e:d9:17:c2:c5:fb:a6:ee:63:2b:7e:d6:70: e9:a6:ee:13:f4:95:4b:9d:47:1b:f0:fa:ff:70:92:bc:f3:4b: f8:f3:f6:8b:e1:88:22:66:f1:ef:aa:ea:a5:02:f9:aa:aa:f3: 9a:47:39:63:57:18:4e:e8:08:da:7c:9e:10:16:02:ea:13:58: 59:97:fb:a8:c6:5f:0c:3f:41:1b:49:57:7c:9a:04:54:21:97: a1:6f:92:c7:7d:69:da:96:42:1c:3e:03:90:f5:b6:cd:32:9f: 81:4a:71:a9:cc:c8:50:2a:4e:30:6f:e8:e4:02:81:25:d6:1c: 3c:e3:26:61:fc:7f:38:75:04:46:a5:aa:63:68:a5:ed:e7:f1: 68:48:cb:b3:ea:34:de:a2:64:cb:b8:11:c1:7b:52:73:c6:da: d8:57:5f:11:3c:7d:03:42:2c:d2:01:ed:08:06:bc:45:ae:01: 00:7c:27:d7:95:b8:50:b1:7c:06:ed:58:0c:8d:ee:cb:99:fb: d7:fa:17:4f:dd:6e:6d:8c:c7:8f:9b:10:48:b8:09:be:f2:c4: da:67:d8:08 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NjI3OTExMC8GA1UEBRMoNDc0QkY3MzVFRDI4RjM1MThCQ0UwQUM0NjI5NThCRUM1 ODJDRDc2NTAeFw0yNTA5MjIxNDE2NTJaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDE1YTU0LTlkZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnpLVlthDc1Coxn/OaZLVhq+ta4ur3Er2k3yTWPijQYxbT6EgZaYNwkzAw9vzW 6eh6ro2Hzceh/Fw3Hsn2LfqBgun+alMIIwdlcIEsD21NNgOfZIDBzQmP0sO8v3I1 VL1GZyNDhpYNtXEbxEAK4JQfp86++ysMwqT0+Kkb1gPv3K7gTBHWEfjJCr8zeCH3 yhN90MGbO4dMzkyOEY3YBVZtccg7q5h1BM0NxWMXXQ8uhehM653XU1fCPgQOd9vy HCDJLaC4RyjuT88ePinu96+7e5USn3dcVGNNKmplmivb1SsJBO3IbVLkXv1VG3ZS SKGxURG6ikL5qYLw4+NBMXZFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjdWJaPNn XeaXMp8G21NCpIxe+qcwHwYDVR0jBBgwFoAUR0v3Ne0o81GLzgrEYpWL7Fgs12Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY2Mjc5LzM4QjJDN0JDNThD RDExRjBBRDEwMDg3N0M0RjlBRTAyL1IwdjNOZTBvODFHTHpnckVZcFdMN0ZnczEy VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUjB2M05lMG84MUdMemdyRVlwV0w3RmdzMTJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjI3OS8zOEIyQzdCQzU4Q0QxMUYwQUQxMDA4NzdDNEY5QUUwMi9DOTJEMDQxMjk3 QkUxMUYwOEQzN0Y2NDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVldjANBgkqhkiG9w0BAQsFAAOCAQEAK3y0hbquY3QY75or Pai9zKrKjjQu7VK3LY/gSaiYn7llKoaD4UNAqwgu2RfCxfum7mMrftZw6abuE/SV S51HG/D6/3CSvPNL+PP2i+GIImbx76rqpQL5qqrzmkc5Y1cYTugI2nyeEBYC6hNY WZf7qMZfDD9BG0lXfJoEVCGXoW+Sx31p2pZCHD4DkPW2zTKfgUpxqczIUCpOMG/o 5AKBJdYcPOMmYfx/OHUERqWqY2il7efxaEjLs+o03qJky7gRwXtSc8ba2FdfETx9 A0Is0gHtCAa8Ra4BAHwn15W4ULF8Bu1YDI3uy5n71/oXT91ubYzHj5sQSLgJvvLE 2mfYCA== -----END CERTIFICATE-----Generated at Tue Oct 21 03:31:32 2025 by rpki-client