$ rpki-client -vvf rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/C0FB557E03F211F08D0A9566C4F9AE02.roa File: C0FB557E03F211F08D0A9566C4F9AE02.roa (raw, json) Hash identifier: R+1VP9LHiaevMYdKlJuk8iImqVduU78fQg6WO1Eu+k0= Subject key identifier: 62:D9:F2:23:C4:D0:6B:85:15:0E:11:39:E3:53:AD:61:14:37:5C:61 Certificate issuer: /CN=A915201D/serialNumber=DB1B96E05A98D828BF57EA0A7155AF1D33223E2C Certificate serial: 7C Authority key identifier: DB:1B:96:E0:5A:98:D8:28:BF:57:EA:0A:71:55:AF:1D:33:22:3E:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/C0FB557E03F211F08D0A9566C4F9AE02.roa Signing time: Mon 03 Nov 2025 06:51:39 +0000 ROA not before: Mon 03 Nov 2025 06:51:39 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 8075 IP address blocks: 203.21.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.crl rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915201D, serialNumber=DB1B96E05A98D828BF57EA0A7155AF1D33223E2C Validity Not Before: Nov 3 06:51:39 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690850fb-01a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8a:09:6c:cb:82:1e:b2:4a:cf:41:70:8b:eb: 30:e1:e3:31:68:d4:f4:99:8c:6f:7e:56:25:19:e0: 16:ad:a2:8e:d9:71:2b:3e:d6:a5:7d:0b:a2:67:08: 55:ba:f8:a9:fa:91:aa:8a:7d:8b:eb:f0:2f:82:91: 3d:61:00:6e:6f:a8:33:ac:21:91:86:ed:c4:52:ae: 18:98:96:33:03:fc:29:0e:a8:8a:34:f8:58:28:a3: 3d:9f:7a:71:68:14:af:e9:ab:3d:ef:b9:5d:04:11: 14:9d:b0:b3:39:06:00:93:1d:9f:79:0c:e4:14:4a: 1b:2e:da:1b:a4:4b:0d:d4:da:03:61:20:b6:b6:d0: 4b:01:44:e6:de:c3:f8:16:e7:08:86:e0:f9:fc:0e: e0:f8:5d:a2:93:bb:c6:5a:e5:05:d0:62:11:fc:62: eb:69:25:b1:27:18:6c:5d:f3:53:e8:1c:cf:f2:5d: 5f:3e:ad:2a:ca:99:79:05:d6:c7:39:3c:8e:a8:90: a6:6f:b5:94:36:ad:cc:93:90:43:42:0e:1d:d3:2c: 6d:c8:ae:a4:54:0e:26:16:d5:b2:22:55:ee:0e:c7: d0:1a:98:1f:01:3c:a3:32:30:e8:32:25:9a:e2:f8: 21:8b:e5:df:26:67:f9:ea:b2:ff:33:55:2d:69:6d: bc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D9:F2:23:C4:D0:6B:85:15:0E:11:39:E3:53:AD:61:14:37:5C:61 X509v3 Authority Key Identifier: keyid:DB:1B:96:E0:5A:98:D8:28:BF:57:EA:0A:71:55:AF:1D:33:22:3E:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/C0FB557E03F211F08D0A9566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.15.0/24 Signature Algorithm: sha256WithRSAEncryption 39:ec:5a:36:13:84:7d:0d:fa:2b:ef:74:8f:be:25:29:29:ad: 47:c1:be:15:47:58:90:7c:ec:21:6c:a5:90:72:fd:2a:cf:d2: 90:4d:c8:48:c6:92:67:79:d7:39:78:5b:54:03:d3:5d:05:fb: 45:70:5b:3d:57:8f:f4:13:4d:51:46:68:bc:4a:e4:b4:71:a5: ad:d8:87:fa:82:b0:a1:85:41:18:a8:3b:c2:78:8d:2b:8a:f7: 5f:e7:75:dc:76:df:72:16:eb:ae:ed:79:fd:aa:86:a4:b3:7d: f1:f8:8b:86:fc:0e:ae:b9:71:f4:e0:a7:df:95:2d:d6:ae:fb: 15:27:52:10:cc:61:ec:b2:79:7f:85:44:ff:9d:ca:3e:3d:e0: 4f:78:57:db:0e:15:fd:9e:2c:07:4f:b0:67:37:73:99:86:fa: a8:af:b1:67:b9:02:44:bd:5f:d1:dd:e0:4e:50:d9:f4:3a:1e: fe:02:79:dd:3c:c8:02:72:c1:fb:4d:9a:f3:e4:94:f1:e0:f0: 3d:c8:1e:b9:f6:a5:f3:ad:2e:ed:6d:f9:14:c2:dc:4d:51:99: 4a:3e:c0:54:32:a5:a5:7e:fb:8a:9e:62:53:9c:da:cc:71:d6: 25:b6:02:7d:15:d4:ec:aa:bf:74:75:1c:29:ac:d8:ec:e9:82: 1a:f9:8d:08 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjAxRDExMC8GA1UEBRMoREIxQjk2RTA1QTk4RDgyOEJGNTdFQTBBNzE1NUFGMUQz MzIyM0UyQzAeFw0yNTExMDMwNjUxMzlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDg1MGZiLTAxYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgiglsy4IeskrPQXCL6zDh4zFo1PSZjG9+ViUZ4Batoo7ZcSs+1qV9C6JnCFW6 +Kn6kaqKfYvr8C+CkT1hAG5vqDOsIZGG7cRSrhiYljMD/CkOqIo0+Fgooz2fenFo FK/pqz3vuV0EERSdsLM5BgCTHZ95DOQUShsu2hukSw3U2gNhILa20EsBRObew/gW 5wiG4Pn8DuD4XaKTu8Za5QXQYhH8YutpJbEnGGxd81PoHM/yXV8+rSrKmXkF1sc5 PI6okKZvtZQ2rcyTkENCDh3TLG3IrqRUDiYW1bIiVe4Ox9AamB8BPKMyMOgyJZri +CGL5d8mZ/nqsv8zVS1pbbwzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYtnyI8TQ a4UVDhE541OtYRQ3XGEwHwYDVR0jBBgwFoAU2xuW4FqY2Ci/V+oKcVWvHTMiPiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyMDFELzg1QjhDMjkwMDNG MTExRjBBQjg1RUM1MkM0RjlBRTAyLzJ4dVc0RnFZMkNpX1Ytb0tjVld2SFRNaVBp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnh1VzRGcVkyQ2lfVi1vS2NWV3ZIVE1pUGl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAxRC84NUI4QzI5MDAzRjExMUYwQUI4NUVDNTJDNEY5QUUwMi9DMEZCNTU3RTAz RjIxMUYwOEQwQTk1NjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsVDzANBgkqhkiG9w0BAQsFAAOCAQEAOexaNhOEfQ36K+90 j74lKSmtR8G+FUdYkHzsIWylkHL9Ks/SkE3ISMaSZ3nXOXhbVAPTXQX7RXBbPVeP 9BNNUUZovErktHGlrdiH+oKwoYVBGKg7wniNK4r3X+d13Hbfchbrru15/aqGpLN9 8fiLhvwOrrlx9OCn35Ut1q77FSdSEMxh7LJ5f4VE/53KPj3gT3hX2w4V/Z4sB0+w ZzdzmYb6qK+xZ7kCRL1f0d3gTlDZ9Doe/gJ53TzIAnLB+02a8+SU8eDwPcgeufal 860u7W35FMLcTVGZSj7AVDKlpX77ip5iU5zazHHWJbYCfRXU7Kq/dHUcKazY7OmC GvmNCA== -----END CERTIFICATE-----Generated at Wed Nov 5 12:45:51 2025 by rpki-client