$ rpki-client -vvf rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/0B4068BEC55D11F0B9FDE586C4F9AE02.roa File: 0B4068BEC55D11F0B9FDE586C4F9AE02.roa (raw, json) Hash identifier: MpkJnjcMThfx3LCJFdT72z/oCW4Tq8SqMkjTnc2yLCQ= Subject key identifier: 06:59:9B:4E:69:95:4F:69:09:91:E9:D8:32:B9:59:62:8B:3A:92:F0 Certificate issuer: /CN=A915ACE2/serialNumber=DAE1CE0ADA67B44713C61B1FAEC4F5D4D67A159F Certificate serial: A6 Authority key identifier: DA:E1:CE:0A:DA:67:B4:47:13:C6:1B:1F:AE:C4:F5:D4:D6:7A:15:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/0B4068BEC55D11F0B9FDE586C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:14:24 +0000 ROA not before: Wed 19 Nov 2025 15:33:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138985 IP address blocks: 202.63.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.crl rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915ACE2, serialNumber=DAE1CE0ADA67B44713C61B1FAEC4F5D4D67A159F Validity Not Before: Nov 19 15:33:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48200-5ab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:41:fc:13:8d:1c:d8:e4:66:4b:e6:d7:76:4f: 99:3e:31:aa:b6:f1:81:f5:4d:b1:aa:d2:1a:1d:36: 21:27:a9:76:b9:86:7c:2b:2d:74:3e:37:02:f4:ea: 84:5a:d0:98:c7:e2:b8:e6:f0:f0:05:0c:c8:56:51: 7f:8e:8b:65:fe:36:e6:72:b5:f3:28:1a:92:88:42: 90:d7:ab:25:e4:2f:6a:52:a6:be:bc:fd:6c:2e:b3: 72:06:45:c8:b5:70:22:99:00:49:a3:39:72:2f:e4: 41:ed:e4:73:2d:8a:9f:d0:42:c6:65:61:f3:8b:41: c2:81:6e:86:d1:47:f7:28:56:22:56:c4:74:98:8e: 9d:51:a5:76:ca:71:ea:f7:21:f9:99:7f:a6:92:cc: 94:7a:dc:4e:70:bc:2a:50:bd:30:ef:15:ca:d8:a5: f9:38:1b:33:15:14:93:47:3e:ba:6b:47:a4:cd:6c: 54:ad:20:1c:ac:d6:b0:6b:4f:8d:44:68:8a:bb:6b: 9d:ba:56:87:24:10:ea:a2:bf:44:a9:3f:52:ab:ea: 7d:67:4e:24:67:7d:0a:b5:ae:3c:6f:ea:93:b6:d0: 76:5f:a6:a8:a3:22:4a:94:97:a4:ca:e4:e6:98:ae: ad:a0:38:e4:78:e2:e9:1d:9f:38:c9:51:59:78:99: 87:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:59:9B:4E:69:95:4F:69:09:91:E9:D8:32:B9:59:62:8B:3A:92:F0 X509v3 Authority Key Identifier: keyid:DA:E1:CE:0A:DA:67:B4:47:13:C6:1B:1F:AE:C4:F5:D4:D6:7A:15:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/0B4068BEC55D11F0B9FDE586C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.63.211.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:83:4b:80:6a:7d:0c:70:46:69:08:d9:41:bf:4e:1e:f8:54: db:3e:55:17:fc:b0:ff:f5:e2:20:0e:d8:e2:6e:32:49:f8:4a: 85:08:47:5b:47:2a:6f:15:83:43:0a:79:07:3f:0f:72:5c:d4: 38:ba:03:9a:c9:b0:d2:e1:4b:f9:8e:e0:e0:34:80:de:78:91: da:e8:b8:b9:c6:d0:ec:dd:4b:4b:84:85:85:d3:3d:cf:db:83: c9:5f:9e:34:64:2d:a7:ca:45:f7:96:dd:cf:77:8a:91:8c:51: fd:cb:ee:41:75:62:f1:78:18:3d:4f:95:d2:95:fa:b2:24:15: 25:17:98:e0:7b:6e:1a:36:43:12:ce:23:d8:75:da:fc:07:0f: 70:a6:d6:fa:1c:cb:0d:8b:19:19:7c:3d:53:28:8c:d2:c7:23: 54:36:f3:b2:b0:c6:1f:29:c8:b9:f4:c0:f9:6c:b3:22:7b:24: 79:c3:34:e8:d1:bf:ee:cb:ea:5c:04:5f:ef:cf:c5:d1:55:2f: 89:3d:33:cd:ed:22:d6:73:df:d6:ea:6b:e9:68:8b:57:95:c8: b7:71:c7:0e:d6:3f:5d:0e:40:dc:77:24:3d:94:49:f4:37:07: 7f:94:4d:12:8e:f1:a3:70:2a:b7:43:c2:ae:22:79:b5:73:5a: e6:fc:a2:ba -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFDRTIxMTAvBgNVBAUTKERBRTFDRTBBREE2N0I0NDcxM0M2MUIxRkFFQzRGNUQ0 RDY3QTE1OUYwHhcNMjUxMTE5MTUzMzA2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODIwMC01YWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50H8E40c2ORmS+bXdk+ZPjGqtvGB9U2xqtIaHTYhJ6l2uYZ8Ky10PjcC9OqE WtCYx+K45vDwBQzIVlF/jotl/jbmcrXzKBqSiEKQ16sl5C9qUqa+vP1sLrNyBkXI tXAimQBJozlyL+RB7eRzLYqf0ELGZWHzi0HCgW6G0Uf3KFYiVsR0mI6dUaV2ynHq 9yH5mX+mksyUetxOcLwqUL0w7xXK2KX5OBszFRSTRz66a0ekzWxUrSAcrNawa0+N RGiKu2udulaHJBDqor9EqT9Sq+p9Z04kZ30Kta48b+qTttB2X6aooyJKlJekyuTm mK6toDjkeOLpHZ84yVFZeJmHOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAZZm05p lU9pCZHp2DK5WWKLOpLwMB8GA1UdIwQYMBaAFNrhzgraZ7RHE8YbH67E9dTWehWf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUNFMi81MUNEN0ZCQTcy Q0UxMUYwODQyMUFBNDhDNEY5QUUwMi8ydUhPQ3RwbnRFY1R4aHNmcnNUMTFOWjZG WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ1SE9DdHBudEVjVHhoc2Zyc1QxMU5aNkZaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFDRTIvNTFDRDdGQkE3MkNFMTFGMDg0MjFBQTQ4QzRGOUFFMDIvMEI0MDY4QkVD NTVEMTFGMEI5RkRFNTg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyj/TMA0GCSqGSIb3DQEBCwUAA4IBAQCOg0uAan0McEZpCNlBv04e +FTbPlUX/LD/9eIgDtjibjJJ+EqFCEdbRypvFYNDCnkHPw9yXNQ4ugOaybDS4Uv5 juDgNIDeeJHa6Li5xtDs3UtLhIWF0z3P24PJX540ZC2nykX3lt3Pd4qRjFH9y+5B dWLxeBg9T5XSlfqyJBUlF5jge24aNkMSziPYddr8Bw9wptb6HMsNixkZfD1TKIzS xyNUNvOysMYfKci59MD5bLMieyR5wzTo0b/uy+pcBF/vz8XRVS+JPTPN7SLWc9/W 6mvpaItXlci3cccO1j9dDkDcdyQ9lEn0Nwd/lE0SjvGjcCq3Q8KuInm1c1rm/KK6 -----END CERTIFICATE-----Generated at Mon Mar 2 10:36:40 2026 by rpki-client