$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/7DF6251A74B311F0A365281CC4F9AE02.roa File: 7DF6251A74B311F0A365281CC4F9AE02.roa (raw, json) Hash identifier: zAfzIwWbsqduKym8Tq6NvhU1YHpokkZy+Zh0KEGQ0oM= Subject key identifier: AF:91:46:15:2B:DC:B9:63:0F:1F:48:69:1E:BD:5D:A0:61:B9:7A:EC Certificate issuer: /CN=A91F0BDE/serialNumber=19F2A46E2C490387535E945F6B14867000685761 Certificate serial: 6B Authority key identifier: 19:F2:A4:6E:2C:49:03:87:53:5E:94:5F:6B:14:86:70:00:68:57:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GfKkbixJA4dTXpRfaxSGcABoV2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/7DF6251A74B311F0A365281CC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:10:03 +0000 ROA not before: Fri 08 Aug 2025 23:57:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 54309 IP address blocks: 165.101.218.0/24 maxlen: 24 165.101.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/GfKkbixJA4dTXpRfaxSGcABoV2E.crl rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/GfKkbixJA4dTXpRfaxSGcABoV2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GfKkbixJA4dTXpRfaxSGcABoV2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0BDE, serialNumber=19F2A46E2C490387535E945F6B14867000685761 Validity Not Before: Aug 8 23:57:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a58c2a-f48a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:30:65:f0:ec:72:5b:d9:ca:a4:b3:77:f2:51: 3b:b8:4f:f6:36:b1:ae:51:2d:86:eb:64:68:57:89: fa:c2:58:9b:76:7b:32:3f:69:e6:46:66:0e:c4:24: 34:70:06:ee:89:c4:91:1e:9f:a3:72:07:26:b9:b4: dd:60:42:a8:98:28:38:f5:10:22:20:e9:a4:7a:23: 8e:43:ca:52:b5:d0:d9:ed:19:fa:fc:ba:ee:e2:2b: c8:99:15:49:da:42:3b:51:94:27:64:3d:da:91:53: 26:50:3c:75:14:cf:68:65:d3:74:bb:ee:6a:28:fa: 87:92:8d:c3:f1:90:35:09:3c:75:87:08:0c:d6:e1: 6a:51:9c:27:8b:aa:ba:d8:46:71:83:aa:66:4e:dc: bc:bc:48:a5:c6:97:95:3b:ec:e6:ad:9b:cb:01:10: 8d:77:d5:9c:f7:b4:92:b4:3c:dc:b5:57:75:bd:66: 14:02:2a:99:7c:d7:75:88:a5:91:4f:48:93:80:2c: 6e:94:40:1c:3a:97:c9:a7:9e:21:77:23:29:12:57: 98:68:1e:06:31:95:35:c0:8a:c1:cd:4d:74:4e:c4: 1b:51:41:c3:ca:6c:5e:13:e2:e0:2d:6c:c4:59:b6: 77:00:b5:91:8d:1c:f0:e5:e6:47:94:7d:7e:be:14: 29:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:91:46:15:2B:DC:B9:63:0F:1F:48:69:1E:BD:5D:A0:61:B9:7A:EC X509v3 Authority Key Identifier: keyid:19:F2:A4:6E:2C:49:03:87:53:5E:94:5F:6B:14:86:70:00:68:57:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/GfKkbixJA4dTXpRfaxSGcABoV2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GfKkbixJA4dTXpRfaxSGcABoV2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0BDE/29D1E76C74B311F0AE29521BC4F9AE02/7DF6251A74B311F0A365281CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.218.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:a0:52:39:19:46:b6:c2:c4:8e:63:85:7a:36:85:f4:91:21: b0:ab:a5:2a:35:c1:88:37:97:bb:88:29:06:ba:a2:e7:51:8a: 5b:7d:30:96:89:9b:43:2d:08:9b:c7:77:56:67:da:18:f8:1e: 07:55:f7:38:3a:dc:94:12:1c:cc:b8:8c:e7:60:4c:d6:00:d5: 3a:f9:59:d0:6a:40:3d:2d:21:0e:08:e5:48:6d:12:9c:37:d6: d9:2e:49:3f:74:41:ea:0b:be:a4:3e:62:52:97:63:84:00:8b: 2d:0b:d4:ea:84:66:a2:a3:0a:6d:65:8c:f3:af:37:71:09:75: ca:69:fd:6f:7c:d7:a4:d9:1d:3d:3e:11:eb:16:77:52:f1:0a: 55:16:21:88:b5:0f:6b:21:90:1d:16:b9:d8:65:38:2b:7f:2c: 02:a8:f8:b3:43:d5:99:0e:b8:81:3d:4f:6b:58:5f:ef:3e:c2: b0:28:ca:44:27:cb:46:cd:38:d8:ff:e6:93:b4:8b:23:ab:62: 99:c0:e6:9a:9a:50:da:a6:c8:28:65:ae:1f:ae:57:6a:83:d0: 46:78:49:de:6f:ab:ec:b8:28:48:f1:88:af:59:94:df:8d:b6: bf:d5:d9:fa:8a:c6:5c:7c:63:13:cf:3e:d6:0a:61:62:8c:50: 9c:26:ff:86 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MEJERTExMC8GA1UEBRMoMTlGMkE0NkUyQzQ5MDM4NzUzNUU5NDVGNkIxNDg2NzAw MDY4NTc2MTAeFw0yNTA4MDgyMzU3NTFaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4YzJhLWY0OGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8MGXw7HJb2cqks3fyUTu4T/Y2sa5RLYbrZGhXifrCWJt2ezI/aeZGZg7EJDRw Bu6JxJEen6NyBya5tN1gQqiYKDj1ECIg6aR6I45DylK10NntGfr8uu7iK8iZFUna QjtRlCdkPdqRUyZQPHUUz2hl03S77moo+oeSjcPxkDUJPHWHCAzW4WpRnCeLqrrY RnGDqmZO3Ly8SKXGl5U77Oatm8sBEI131Zz3tJK0PNy1V3W9ZhQCKpl813WIpZFP SJOALG6UQBw6l8mnniF3IykSV5hoHgYxlTXAisHNTXROxBtRQcPKbF4T4uAtbMRZ tncAtZGNHPDl5keUfX6+FCkjAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUr5FGFSvc uWMPH0hpHr1doGG5euwwHwYDVR0jBBgwFoAUGfKkbixJA4dTXpRfaxSGcABoV2Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwQkRFLzI5RDFFNzZDNzRC MzExRjBBRTI5NTIxQkM0RjlBRTAyL0dmS2tiaXhKQTRkVFhwUmZheFNHY0FCb1Yy RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2ZLa2JpeEpBNGRUWHBSZmF4U0djQUJvVjJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEJERS8yOUQxRTc2Qzc0QjMxMUYwQUUyOTUyMUJDNEY5QUUwMi83REY2MjUxQTc0 QjMxMUYwQTM2NTI4MUNDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGlZdowDQYJKoZIhvcNAQELBQADggEBAC6gUjkZRrbCxI5jhXo2hfSR IbCrpSo1wYg3l7uIKQa6oudRilt9MJaJm0MtCJvHd1Zn2hj4HgdV9zg63JQSHMy4 jOdgTNYA1Tr5WdBqQD0tIQ4I5UhtEpw31tkuST90QeoLvqQ+YlKXY4QAiy0L1OqE ZqKjCm1ljPOvN3EJdcpp/W9816TZHT0+EesWd1LxClUWIYi1D2shkB0WudhlOCt/ LAKo+LND1ZkOuIE9T2tYX+8+wrAoykQny0bNONj/5pO0iyOrYpnA5pqaUNqmyChl rh+uV2qD0EZ4Sd5vq+y4KEjxiK9ZlN+Ntr/V2fqKxlx8YxPPPtYKYWKMUJwm/4Y= -----END CERTIFICATE-----Generated at Thu Mar 26 20:36:48 2026 by rpki-client