$ rpki-client -vvf rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/6C8EEADA8FE011F0A1C6120DC4F9AE02.roa File: 6C8EEADA8FE011F0A1C6120DC4F9AE02.roa (raw, json) Hash identifier: F+R2fk0YjqijE6FasKZCYAmvjOnVu/mYSIbi31Ovw6o= Subject key identifier: E2:3A:09:90:19:67:B7:40:37:A6:F4:75:9B:7A:AB:90:2D:CC:65:F2 Certificate issuer: /CN=A915ACE2/serialNumber=DAE1CE0ADA67B44713C61B1FAEC4F5D4D67A159F Certificate serial: 37 Authority key identifier: DA:E1:CE:0A:DA:67:B4:47:13:C6:1B:1F:AE:C4:F5:D4:D6:7A:15:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/6C8EEADA8FE011F0A1C6120DC4F9AE02.roa Signing time: Fri 12 Sep 2025 13:57:31 +0000 ROA not before: Fri 12 Sep 2025 13:57:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141342 IP address blocks: 202.63.213.0/24 maxlen: 24 202.63.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.crl rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:49:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915ACE2, serialNumber=DAE1CE0ADA67B44713C61B1FAEC4F5D4D67A159F Validity Not Before: Sep 12 13:57:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68c426ca-cc9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:45:06:df:c7:6e:51:54:a3:25:80:ef:38:4d: 52:2e:17:42:63:7a:33:79:55:61:9d:8e:44:44:82: f5:e8:6a:d8:0f:79:d6:ee:ce:03:53:69:5d:d9:f5: 46:7f:e5:38:b0:7b:84:9d:8a:63:ec:a1:94:37:bc: ff:80:0a:5a:1a:fb:0e:ad:2b:83:5c:97:be:5b:0e: a8:dc:d5:70:2a:4a:29:11:00:ef:b9:2b:d3:14:4a: 7f:91:a1:95:39:17:07:fb:28:3d:70:a1:1b:ff:7f: b9:f2:7d:15:89:8a:e9:bb:41:7e:ae:f0:56:dc:43: f9:cc:9d:67:04:a8:08:16:98:22:ab:9a:35:c1:7b: 51:4d:2f:08:0d:f8:fe:11:0c:2f:4e:96:8b:02:96: 62:aa:52:01:7d:2f:f6:90:e4:00:28:26:e0:af:4b: 02:7a:32:78:cd:2f:45:da:1b:db:84:1a:ac:3d:89: 34:eb:3e:86:bd:d6:4b:bb:71:69:5f:f9:5c:95:46: e0:e5:0b:ce:65:36:52:27:21:44:43:37:52:7c:37: 69:aa:21:ae:45:ee:60:4b:f6:b5:e7:c9:8b:18:fb: c0:fe:4c:78:a1:7f:12:02:05:75:fa:32:ff:51:c6: c3:b7:d8:32:3d:83:ce:0c:0d:ee:9e:04:e8:ed:0a: 37:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3A:09:90:19:67:B7:40:37:A6:F4:75:9B:7A:AB:90:2D:CC:65:F2 X509v3 Authority Key Identifier: keyid:DA:E1:CE:0A:DA:67:B4:47:13:C6:1B:1F:AE:C4:F5:D4:D6:7A:15:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/6C8EEADA8FE011F0A1C6120DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.63.213.0-202.63.214.255 Signature Algorithm: sha256WithRSAEncryption 90:64:0e:29:85:02:26:5b:25:d3:d0:b6:2c:ca:e4:ab:98:62: 92:37:3f:2c:46:15:fb:15:22:48:3c:60:5b:1a:d5:2f:08:5c: 04:61:70:e5:5b:05:14:14:c9:08:25:8d:68:f6:c0:d6:9f:c7: ff:4d:df:18:12:ee:a6:61:0d:8f:a4:a2:5a:31:64:f8:d4:c6: 3d:63:ed:8f:e6:cc:51:a9:e3:b2:a0:49:3b:86:54:2f:1c:63: 92:47:ba:6d:0b:f3:9c:65:4e:36:8f:cf:1b:b2:22:fd:c3:ba: 81:56:e2:50:f2:bd:df:1b:61:cd:c0:b0:fb:3b:c7:00:f6:d7: b7:a7:66:50:ec:7f:71:4c:44:ed:d2:68:f7:cf:c0:23:79:2f: da:31:e0:4f:b1:26:25:21:7d:46:45:4b:24:f9:1c:12:91:b7: 3d:11:ae:d0:8b:2e:e6:fc:e5:ad:cd:01:8d:2c:ca:42:7a:90: a4:0c:79:66:de:4e:d3:58:8f:3c:8e:28:b2:2d:8a:02:dd:16: e9:20:be:80:7d:36:46:da:16:97:a3:3f:30:c8:d8:5c:5c:f6: 0b:57:11:54:db:6c:cc:05:e6:ef:47:8a:87:b7:f8:75:cf:45: 16:0e:95:7d:0d:e0:dd:bf:f3:16:b6:6c:34:da:a2:01:ac:28: d5:fb:34:df -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QUNFMjExMC8GA1UEBRMoREFFMUNFMEFEQTY3QjQ0NzEzQzYxQjFGQUVDNEY1RDRE NjdBMTU5RjAeFw0yNTA5MTIxMzU3MzFaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzQyNmNhLWNjOWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGRQbfx25RVKMlgO84TVIuF0JjejN5VWGdjkREgvXoatgPedbuzgNTaV3Z9UZ/ 5Tiwe4SdimPsoZQ3vP+ACloa+w6tK4Ncl75bDqjc1XAqSikRAO+5K9MUSn+RoZU5 Fwf7KD1woRv/f7nyfRWJium7QX6u8FbcQ/nMnWcEqAgWmCKrmjXBe1FNLwgN+P4R DC9OlosClmKqUgF9L/aQ5AAoJuCvSwJ6MnjNL0XaG9uEGqw9iTTrPoa91ku7cWlf +VyVRuDlC85lNlInIURDN1J8N2mqIa5F7mBL9rXnyYsY+8D+THihfxICBXX6Mv9R xsO32DI9g84MDe6eBOjtCjdfAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQU4joJkBln t0A3pvR1m3qrkC3MZfIwHwYDVR0jBBgwFoAU2uHOCtpntEcTxhsfrsT11NZ6FZ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBQ0UyLzUxQ0Q3RkJBNzJD RTExRjA4NDIxQUE0OEM0RjlBRTAyLzJ1SE9DdHBudEVjVHhoc2Zyc1QxMU5aNkZa OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnVIT0N0cG50RWNUeGhzZnJzVDExTlo2Rlo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUNFMi81MUNEN0ZCQTcyQ0UxMUYwODQyMUFBNDhDNEY5QUUwMi82QzhFRUFEQThG RTAxMUYwQTFDNjEyMERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQAyj/VAwQAyj/WMA0GCSqGSIb3DQEBCwUAA4IBAQCQZA4p hQImWyXT0LYsyuSrmGKSNz8sRhX7FSJIPGBbGtUvCFwEYXDlWwUUFMkIJY1o9sDW n8f/Td8YEu6mYQ2PpKJaMWT41MY9Y+2P5sxRqeOyoEk7hlQvHGOSR7ptC/OcZU42 j88bsiL9w7qBVuJQ8r3fG2HNwLD7O8cA9te3p2ZQ7H9xTETt0mj3z8AjeS/aMeBP sSYlIX1GRUsk+RwSkbc9Ea7Qiy7m/OWtzQGNLMpCepCkDHlm3k7TWI88jiiyLYoC 3RbpIL6AfTZG2haXoz8wyNhcXPYLVxFU22zMBebvR4qHt/h1z0UWDpV9DeDdv/MW tmw02qIBrCjV+zTf -----END CERTIFICATE-----Generated at Wed Nov 5 09:25:21 2025 by rpki-client