$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B0177DBC2A4111EBA1B1BB3DC4F9AE02.roa File: B0177DBC2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: cw5dX24DydjnVSgn60Qr2Of5nVXYFjymiNM4+EpVYE8= Subject key identifier: 5A:CB:21:BE:F7:E3:A2:D5:82:B8:71:EE:86:5D:6A:EE:23:30:AA:7F Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 09AF Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B0177DBC2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:13:35 +0000 ROA not before: Tue 20 May 2025 21:50:53 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38184 IP address blocks: 203.150.35.0/24 maxlen: 24 203.151.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2479 (0x9af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:53 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48fdf-77ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:08:a4:fb:3d:24:ff:73:35:ba:21:60:3e:8c: 41:aa:e7:4b:fb:f3:30:2c:d7:b3:20:e5:9a:9c:64: 0a:1f:cd:38:c7:4b:78:e0:30:de:20:31:45:f0:9a: 17:ca:19:a5:09:4f:6e:2d:c8:00:25:41:13:d7:38: 99:33:f8:31:23:1c:88:01:98:8b:d4:01:72:a5:04: 52:37:ff:56:b7:45:df:0a:75:2f:2b:12:06:4b:cd: 12:5e:65:53:7a:18:da:cb:78:d2:04:99:3a:83:e1: 8f:b8:97:31:69:38:dc:09:18:97:01:62:fc:e3:a8: c6:8f:1c:3c:ee:4c:f6:66:05:ab:d6:33:0f:8f:c5: 3d:f8:db:9d:bf:b8:3d:12:fc:06:da:6f:b8:32:10: b4:fb:c6:e3:18:03:72:84:4d:50:5a:a7:da:8f:46: 77:db:32:34:10:cd:6b:99:78:fe:eb:28:7f:28:8c: dd:86:82:5d:1c:e2:f6:31:d3:49:b2:08:7b:a2:51: 3d:e3:b3:e6:d7:db:4a:0e:71:5c:87:ee:1a:e3:5c: 12:af:07:05:2b:ba:d9:68:3e:cf:62:2e:d1:c2:45: 7a:fc:d7:d8:bf:61:3c:15:55:11:00:dd:4b:9f:e9: 19:04:5a:51:a2:49:8a:29:18:c7:ac:72:e2:ed:59: 57:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CB:21:BE:F7:E3:A2:D5:82:B8:71:EE:86:5D:6A:EE:23:30:AA:7F X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B0177DBC2A4111EBA1B1BB3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.150.35.0/24 203.151.25.0/24 Signature Algorithm: sha256WithRSAEncryption 54:c2:a2:f1:d3:08:b4:b2:6c:ec:51:85:11:81:31:28:b1:b7: 42:af:e1:2f:ff:44:42:37:56:df:b4:3d:ed:98:6a:04:c3:62: d6:13:9c:4c:ee:5b:ea:30:bc:b6:aa:de:a1:cb:98:44:61:c8: b7:f4:66:c9:9e:cd:86:dc:c9:59:f6:be:03:9f:fc:ec:e1:7e: 7d:c6:e7:42:44:ce:d3:c0:bc:cb:22:be:e7:7b:f2:d2:9c:52: 18:50:cf:6b:8d:53:22:10:8a:29:20:fc:0a:4d:05:6e:88:da: aa:b6:ca:fe:1d:bc:4d:f6:3d:31:c7:c9:1d:08:e4:bd:5c:23: ec:e3:83:73:f7:f3:c0:b5:0b:80:c1:19:51:b9:16:fc:48:21: 60:1a:3f:6e:77:58:a4:be:d4:76:d7:3a:66:ec:c6:48:0e:a6: bf:f0:9d:72:69:72:5c:63:20:3b:d1:cb:bd:d4:3f:2c:ab:50: ec:f0:60:56:ae:cf:dd:da:b0:4d:8a:57:13:b1:f7:10:7a:9c: 10:5b:c5:8c:f6:12:59:35:4e:85:91:cc:f7:4d:af:4e:75:ae: 13:79:1a:06:b5:db:e2:b4:80:04:fa:df:cd:58:59:5e:2c:cd: 65:8b:01:17:d1:1f:bf:e7:89:7d:cb:ff:1c:84:aa:3a:0c:00: 70:b7:9c:20 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDUzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGZkZi03N2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowik+z0k/3M1uiFgPoxBqudL+/MwLNezIOWanGQKH804x0t44DDeIDFF8JoX yhmlCU9uLcgAJUET1ziZM/gxIxyIAZiL1AFypQRSN/9Wt0XfCnUvKxIGS80SXmVT ehjay3jSBJk6g+GPuJcxaTjcCRiXAWL846jGjxw87kz2ZgWr1jMPj8U9+Nudv7g9 EvwG2m+4MhC0+8bjGANyhE1QWqfaj0Z32zI0EM1rmXj+6yh/KIzdhoJdHOL2MdNJ sgh7olE947Pm19tKDnFch+4a41wSrwcFK7rZaD7PYi7RwkV6/NfYv2E8FVURAN1L n+kZBFpRokmKKRjHrHLi7VlX8wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFFrLIb73 46LVgrhx7oZdau4jMKp/MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQjAxNzdEQkMy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAy5YjAwQAy5cZMA0GCSqGSIb3DQEBCwUAA4IBAQBUwqLx0wi0smzs UYURgTEosbdCr+Ev/0RCN1bftD3tmGoEw2LWE5xM7lvqMLy2qt6hy5hEYci39GbJ ns2G3MlZ9r4Dn/zs4X59xudCRM7TwLzLIr7ne/LSnFIYUM9rjVMiEIopIPwKTQVu iNqqtsr+HbxN9j0xx8kdCOS9XCPs44Nz9/PAtQuAwRlRuRb8SCFgGj9ud1ikvtR2 1zpm7MZIDqa/8J1yaXJcYyA70cu91D8sq1Ds8GBWrs/d2rBNilcTsfcQepwQW8WM 9hJZNU6Fkcz3Ta9Oda4TeRoGtdvitIAE+t/NWFleLM1liwEX0R+/54l9y/8chKo6 DABwt5wg -----END CERTIFICATE-----Generated at Mon Mar 2 02:12:05 2026 by rpki-client