
$ rpki-client -vvf rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/6C8EEADA8FE011F0A1C6120DC4F9AE02.roa
File: 6C8EEADA8FE011F0A1C6120DC4F9AE02.roa (raw, json)
Hash identifier: myKIfxb3meeUUBjhH7MLfyukcMOtJkJ6GsFHuLAs3O8=
Subject key identifier: AA:56:39:E6:24:6A:A5:AB:8D:3B:F3:54:95:3B:F0:97:CC:EE:6D:CC
Certificate issuer: /CN=A915ACE2/serialNumber=DAE1CE0ADA67B44713C61B1FAEC4F5D4D67A159F
Certificate serial: A8
Authority key identifier: DA:E1:CE:0A:DA:67:B4:47:13:C6:1B:1F:AE:C4:F5:D4:D6:7A:15:9F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/6C8EEADA8FE011F0A1C6120DC4F9AE02.roa
Signing time: Sun 01 Mar 2026 18:14:26 +0000
ROA not before: Wed 18 Feb 2026 13:37:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 141342
IP address blocks: 202.63.200.0/24 maxlen: 24
202.63.202.0/24 maxlen: 24
202.63.205.0/24 maxlen: 24
202.63.207.0/24 maxlen: 24
202.63.209.0/24 maxlen: 24
202.63.210.0/24 maxlen: 24
202.63.213.0/24 maxlen: 24
202.63.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.crl
rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 09 Mar 2026 02:34:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168 (0xa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915ACE2, serialNumber=DAE1CE0ADA67B44713C61B1FAEC4F5D4D67A159F
Validity
Not Before: Feb 18 13:37:53 2026 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69a48202-ea97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c0:8f:22:cb:b2:ca:9c:54:45:a5:72:e7:d3:
78:bf:ae:78:c0:d1:db:8a:45:72:48:08:42:df:de:
88:84:b8:fb:e4:c4:0a:db:21:bf:e3:a8:9b:d0:b7:
74:55:1a:86:5c:db:59:b0:9a:8d:f3:b4:86:56:61:
a1:9c:13:d5:f8:52:63:c2:24:6c:fd:64:e6:1f:8d:
3d:aa:2f:b5:1e:9d:c4:46:9b:9f:b1:1b:39:52:4c:
d2:ea:06:4c:9b:84:71:71:e5:f8:5e:9e:56:42:42:
9a:f9:f5:d1:32:9f:41:5a:5e:23:9e:43:04:8a:4d:
7f:7c:8f:0c:7e:70:57:a9:94:03:6e:ff:4b:d5:6c:
c0:95:80:a1:5d:44:be:2f:ab:ec:34:54:35:ef:7d:
e5:0b:0c:2a:31:77:42:c7:43:57:ca:87:b6:78:a1:
02:37:af:fb:e5:55:f2:f8:c0:2a:7c:80:8f:b9:26:
e8:6f:24:92:d4:d0:19:a5:06:dc:85:d4:1c:4d:9b:
08:ad:35:b7:b8:20:9a:0a:63:62:85:42:ec:27:ac:
85:e6:1d:cc:eb:f1:9f:d8:71:38:3f:e1:bd:74:05:
a4:c8:dd:4e:60:34:c0:10:88:7e:8a:d0:d3:f3:a2:
69:7b:da:6e:bf:da:e7:93:02:d8:f0:d7:d2:1f:85:
90:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:56:39:E6:24:6A:A5:AB:8D:3B:F3:54:95:3B:F0:97:CC:EE:6D:CC
X509v3 Authority Key Identifier:
keyid:DA:E1:CE:0A:DA:67:B4:47:13:C6:1B:1F:AE:C4:F5:D4:D6:7A:15:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/2uHOCtpntEcTxhsfrsT11NZ6FZ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2uHOCtpntEcTxhsfrsT11NZ6FZ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915ACE2/51CD7FBA72CE11F08421AA48C4F9AE02/6C8EEADA8FE011F0A1C6120DC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
202.63.200.0/24
202.63.202.0/24
202.63.205.0/24
202.63.207.0/24
202.63.209.0-202.63.210.255
202.63.213.0-202.63.214.255
Signature Algorithm: sha256WithRSAEncryption
c2:a7:ef:00:83:b3:e5:36:60:55:ed:a6:1e:be:5e:4b:20:45:
a1:af:0e:b2:34:71:23:ae:80:03:31:dd:ec:af:71:f3:32:bb:
e6:bc:53:51:72:d9:72:d6:54:41:f8:6b:f3:c4:cd:b3:59:b4:
c3:14:a7:aa:59:74:3f:b8:60:c4:2a:da:fa:21:a3:ea:54:ec:
93:46:44:dc:48:d7:55:40:9a:b8:30:f7:0f:0c:fe:a6:cd:39:
fe:df:55:42:f1:76:b1:39:d3:d9:a9:72:e4:40:be:d5:98:aa:
70:f7:67:e7:6f:ff:ca:a9:5b:f2:a3:44:19:89:06:d0:79:83:
80:3b:09:4f:6d:ce:f5:57:2b:90:1f:d0:fc:f9:c5:18:49:80:
8e:ef:f9:74:3c:2f:23:0a:22:01:ca:17:d0:aa:03:a7:2f:55:
e9:db:c1:16:8c:40:81:f8:d1:06:d1:e7:7f:22:11:e7:ee:89:
75:29:7d:12:45:85:27:90:f4:39:5c:fe:37:68:06:83:e9:34:
57:f2:00:6f:aa:7c:d8:06:d5:66:3c:4d:79:16:98:07:75:b2:
73:ff:95:2f:82:b3:56:e4:83:0c:57:05:1c:22:0d:25:51:af:
f0:78:10:97:78:41:2a:ff:7b:37:23:39:25:22:55:16:92:29:
76:f2:55:ae
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:33:55 2026 by rpki-client