$ rpki-client -vvf rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/69AF571603F211F09BC45354C4F9AE02.roa File: 69AF571603F211F09BC45354C4F9AE02.roa (raw, json) Hash identifier: dT/BONoh4iz/mCrFUa2bnRPY+g4+rGXpyhnWzue1M3M= Subject key identifier: B8:0D:4F:B0:DB:61:2C:48:67:FD:46:73:DB:6D:20:19:68:84:61:C5 Certificate issuer: /CN=A915201D/serialNumber=DB1B96E05A98D828BF57EA0A7155AF1D33223E2C Certificate serial: 7B Authority key identifier: DB:1B:96:E0:5A:98:D8:28:BF:57:EA:0A:71:55:AF:1D:33:22:3E:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/69AF571603F211F09BC45354C4F9AE02.roa Signing time: Mon 03 Nov 2025 06:51:39 +0000 ROA not before: Mon 03 Nov 2025 06:51:39 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 7545 IP address blocks: 203.21.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.crl rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915201D, serialNumber=DB1B96E05A98D828BF57EA0A7155AF1D33223E2C Validity Not Before: Nov 3 06:51:39 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690850fa-d1d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fc:71:13:ef:d0:03:35:aa:94:54:6b:20:7a: 49:09:ba:3b:5a:e1:9c:d4:2f:e3:00:a6:ed:38:7a: 98:49:5a:3b:f9:00:72:64:fc:8d:24:f4:32:98:4a: 04:7e:36:d3:9a:23:7e:73:e0:02:df:a6:d9:69:2e: e3:9e:df:0a:a0:16:c1:a1:c0:19:67:59:76:65:45: 40:98:fc:2f:e0:38:21:d4:44:6d:7e:aa:ea:68:4b: e9:4d:1d:8a:aa:23:37:a1:3f:68:84:87:91:4c:f5: d0:8c:d4:80:f2:61:58:e0:41:a2:f1:6e:40:38:8c: 40:81:49:e7:52:99:a8:9b:be:ee:69:59:f9:21:d2: d2:de:6a:6d:f9:a4:1b:95:ef:07:8a:c5:ae:f8:a7: 27:61:2b:96:0b:38:12:99:80:b6:a1:63:a3:79:c9: 7f:06:7f:9b:5e:22:73:83:76:ab:03:45:1d:bf:bb: 9d:f1:b0:0f:fb:ee:02:6f:cc:a6:70:00:81:5f:7c: 8c:be:cb:75:13:a0:23:89:72:3b:02:d7:30:a9:67: 99:46:f4:22:a4:4a:5f:bf:e0:9b:37:48:28:8d:10: 70:4c:58:30:8e:3b:1d:a7:f8:70:62:8d:d1:e3:9e: fd:6e:0e:22:fd:a1:b2:a8:6f:43:e0:e3:83:b9:ca: 56:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:0D:4F:B0:DB:61:2C:48:67:FD:46:73:DB:6D:20:19:68:84:61:C5 X509v3 Authority Key Identifier: keyid:DB:1B:96:E0:5A:98:D8:28:BF:57:EA:0A:71:55:AF:1D:33:22:3E:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/69AF571603F211F09BC45354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.15.0/24 Signature Algorithm: sha256WithRSAEncryption ac:e3:17:d7:11:e9:f8:2e:9e:87:3c:b4:dd:29:df:fc:55:d7: 7b:90:d2:f7:58:c9:9a:17:e4:fe:c1:da:0d:ba:56:37:80:9f: 07:c4:86:1f:ff:c6:b8:f3:73:b4:61:06:4d:06:c6:87:5e:95: 46:f4:f4:2a:59:18:18:de:b6:13:ea:62:a7:21:05:39:fe:ee: bd:40:57:68:31:81:35:34:88:41:81:cf:93:68:2f:bd:dd:92: 41:85:75:0a:fb:cb:c6:38:da:77:5c:cd:07:dd:21:8f:ca:8c: 20:10:f1:06:ba:e5:2b:38:89:05:c9:9a:7c:d2:63:d6:29:cb: 52:9f:44:17:45:52:97:23:97:de:83:e3:f7:a6:d8:a5:82:d4: 9f:58:9e:24:26:78:e1:ac:c9:be:c2:62:55:2d:dc:46:39:0d: 21:a0:37:71:8b:c1:10:ed:3b:01:94:9e:ab:29:63:37:69:7c: 4b:c0:a0:5e:23:31:2e:ea:99:dc:7e:2d:07:d0:3e:0f:41:22: 17:68:7e:83:3c:b9:77:a3:0e:99:3b:9a:48:47:c0:a8:dd:65: be:74:7a:7d:f2:e6:c9:2e:38:73:9c:a6:24:52:67:ce:1a:24: de:0d:6b:06:63:43:4e:99:33:6b:28:4c:5f:18:c1:68:62:a6: 99:83:ae:30 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjAxRDExMC8GA1UEBRMoREIxQjk2RTA1QTk4RDgyOEJGNTdFQTBBNzE1NUFGMUQz MzIyM0UyQzAeFw0yNTExMDMwNjUxMzlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDg1MGZhLWQxZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+/HET79ADNaqUVGsgekkJujta4ZzUL+MApu04ephJWjv5AHJk/I0k9DKYSgR+ NtOaI35z4ALfptlpLuOe3wqgFsGhwBlnWXZlRUCY/C/gOCHURG1+qupoS+lNHYqq IzehP2iEh5FM9dCM1IDyYVjgQaLxbkA4jECBSedSmaibvu5pWfkh0tLeam35pBuV 7weKxa74pydhK5YLOBKZgLahY6N5yX8Gf5teInODdqsDRR2/u53xsA/77gJvzKZw AIFffIy+y3UToCOJcjsC1zCpZ5lG9CKkSl+/4Js3SCiNEHBMWDCOOx2n+HBijdHj nv1uDiL9obKob0Pg44O5ylZHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuA1PsNth LEhn/UZz220gGWiEYcUwHwYDVR0jBBgwFoAU2xuW4FqY2Ci/V+oKcVWvHTMiPiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyMDFELzg1QjhDMjkwMDNG MTExRjBBQjg1RUM1MkM0RjlBRTAyLzJ4dVc0RnFZMkNpX1Ytb0tjVld2SFRNaVBp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnh1VzRGcVkyQ2lfVi1vS2NWV3ZIVE1pUGl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAxRC84NUI4QzI5MDAzRjExMUYwQUI4NUVDNTJDNEY5QUUwMi82OUFGNTcxNjAz RjIxMUYwOUJDNDUzNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsVDzANBgkqhkiG9w0BAQsFAAOCAQEArOMX1xHp+C6ehzy0 3Snf/FXXe5DS91jJmhfk/sHaDbpWN4CfB8SGH//GuPNztGEGTQbGh16VRvT0KlkY GN62E+pipyEFOf7uvUBXaDGBNTSIQYHPk2gvvd2SQYV1CvvLxjjad1zNB90hj8qM IBDxBrrlKziJBcmafNJj1inLUp9EF0VSlyOX3oPj96bYpYLUn1ieJCZ44azJvsJi VS3cRjkNIaA3cYvBEO07AZSeqyljN2l8S8CgXiMxLuqZ3H4tB9A+D0EiF2h+gzy5 d6MOmTuaSEfAqN1lvnR6ffLmyS44c5ymJFJnzhok3g1rBmNDTpkzayhMXxjBaGKm mYOuMA== -----END CERTIFICATE-----Generated at Wed Nov 5 09:41:31 2025 by rpki-client