$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/70C5FD009D2811F0AD29AE30C4F9AE02.roa File: 70C5FD009D2811F0AD29AE30C4F9AE02.roa (raw, json) Hash identifier: k2qsTd9lvUkf1FytnOwDglI6fUuU0iY3gRf+BbH9GVk= Subject key identifier: B5:82:0B:77:AA:1B:DA:2D:C1:70:F4:02:44:2D:E6:ED:7F:BC:7D:DC Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1FA6 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/70C5FD009D2811F0AD29AE30C4F9AE02.roa Signing time: Mon 29 Sep 2025 11:35:46 +0000 ROA not before: Mon 29 Sep 2025 11:35:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154060 IP address blocks: 165.101.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8102 (0x1fa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Sep 29 11:35:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68da6f12-a053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:17:61:42:be:d9:aa:11:ba:40:78:13:20:7c: 45:93:fb:56:d2:29:ea:d9:db:a5:f0:d2:00:49:a0: 05:e9:97:ce:86:7b:e9:52:ad:3d:55:10:cc:d2:91: 80:d1:7b:8f:12:87:b5:06:55:30:7c:20:66:9a:aa: 22:c2:d0:e6:0a:5f:4c:7e:b1:9b:46:99:e8:22:36: 31:b1:7b:be:45:bc:60:92:d8:bf:f0:8b:1e:07:6a: 0e:eb:c3:6a:6f:4d:6c:d2:b8:f1:6d:2d:f8:b1:eb: 5c:f2:fa:65:7b:1f:b9:89:3f:24:98:14:fe:47:b8: d8:2a:d6:44:fc:26:38:8d:e6:9d:4c:0a:ea:c8:e5: ad:7b:10:d7:93:14:11:25:5f:b6:7f:d8:dd:c4:91: 87:76:59:6c:c9:a2:54:63:ef:21:3f:99:59:34:59: fa:2d:c5:c1:7c:f6:b8:90:3b:8a:4e:fb:af:7e:68: da:8b:fe:98:14:48:90:3a:f3:13:2d:f9:b8:be:1d: b0:1f:8b:ea:e3:ff:6c:c1:c0:a2:4c:36:b8:b2:23: 3b:9d:f9:34:9b:9a:ba:a0:2a:61:41:54:67:03:6e: bc:4b:fd:47:2c:21:51:83:a8:b2:bd:b9:45:68:5d: 08:ed:7b:33:af:19:0b:90:b1:79:22:11:02:23:1e: d9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:82:0B:77:AA:1B:DA:2D:C1:70:F4:02:44:2D:E6:ED:7F:BC:7D:DC X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/70C5FD009D2811F0AD29AE30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.205.0/24 Signature Algorithm: sha256WithRSAEncryption 78:1d:08:b3:d0:84:8b:27:ab:6a:e3:c3:b4:7e:23:b6:98:5b: 71:88:14:ed:4e:f3:30:81:cd:b9:c9:7b:db:2e:a7:a9:ba:3e: 87:ff:01:6c:77:53:ea:97:2c:32:a7:5d:95:cf:42:b3:84:e0: 7e:6a:ea:05:e5:2c:6f:f2:f8:4d:b4:0b:19:93:f0:e9:24:0c: 95:81:c1:c0:a0:3f:09:11:c5:65:85:a7:c9:20:a9:ca:3c:3c: 18:7a:11:1d:d0:95:75:22:48:62:7f:47:0d:21:85:bb:61:d6: 3c:54:7b:c7:ff:5a:74:ab:e0:ef:49:b3:bf:f9:25:cf:6f:e7: 88:48:58:8c:d3:36:af:69:ad:8c:cc:42:3a:3a:12:42:c3:0f: a3:09:aa:3b:3b:3c:15:ca:cb:7f:b3:7a:fe:28:8a:c9:98:7e: f3:89:44:53:4c:29:6f:e9:62:21:41:20:26:a5:6b:69:b3:04: ce:84:cc:14:56:93:72:c8:f2:a2:3c:83:c2:e6:07:88:3b:95: d1:22:51:55:8f:50:47:0b:b5:e7:0b:cd:03:35:63:11:c8:ff: c6:0a:6f:f4:ec:8c:b5:fa:00:c3:22:24:93:59:bc:4f:1b:63: 9a:87:a0:28:11:6d:80:a9:bb:80:fc:39:f2:0f:8e:46:9f:2b: b4:d6:30:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwOTI5MTEzNTQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRhNmYxMi1hMDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRdhQr7ZqhG6QHgTIHxFk/tW0inq2dul8NIASaAF6ZfOhnvpUq09VRDM0pGA 0XuPEoe1BlUwfCBmmqoiwtDmCl9MfrGbRpnoIjYxsXu+Rbxgkti/8IseB2oO68Nq b01s0rjxbS34setc8vplex+5iT8kmBT+R7jYKtZE/CY4jeadTArqyOWtexDXkxQR JV+2f9jdxJGHdllsyaJUY+8hP5lZNFn6LcXBfPa4kDuKTvuvfmjai/6YFEiQOvMT Lfm4vh2wH4vq4/9swcCiTDa4siM7nfk0m5q6oCphQVRnA268S/1HLCFRg6iyvblF aF0I7XszrxkLkLF5IhECIx7ZrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLWCC3eq G9otwXD0AkQt5u1/vH3cMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvNzBDNUZEMDA5 RDI4MTFGMEFEMjlBRTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAClZc0wDQYJKoZIhvcNAQELBQADggEBAHgdCLPQhIsnq2rj w7R+I7aYW3GIFO1O8zCBzbnJe9sup6m6Pof/AWx3U+qXLDKnXZXPQrOE4H5q6gXl LG/y+E20CxmT8OkkDJWBwcCgPwkRxWWFp8kgqco8PBh6ER3QlXUiSGJ/Rw0hhbth 1jxUe8f/WnSr4O9Js7/5Jc9v54hIWIzTNq9prYzMQjo6EkLDD6MJqjs7PBXKy3+z ev4oismYfvOJRFNMKW/pYiFBICala2mzBM6EzBRWk3LI8qI8g8LmB4g7ldEiUVWP UEcLtecLzQM1YxHI/8YKb/TsjLX6AMMiJJNZvE8bY5qHoCgRbYCpu4D8OfIPjkaf K7TWMHA= -----END CERTIFICATE-----Generated at Mon Oct 20 15:30:09 2025 by rpki-client