$ rpki-client -vvf rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/D8B25C54EC2211EA84C17E26C4F9AE02.roa File: D8B25C54EC2211EA84C17E26C4F9AE02.roa (raw, json) Hash identifier: 8rMyLXRhDBgNo1OZW/Og41SCndsNpZ+BloQ2F9KYexc= Subject key identifier: F2:BC:1B:CA:74:E1:7A:B0:BF:99:50:12:6E:4A:63:02:AD:FF:EC:EC Certificate issuer: /CN=A915B536/serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Certificate serial: 08C6 Authority key identifier: 82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/D8B25C54EC2211EA84C17E26C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:43:07 +0000 ROA not before: Fri 04 Apr 2025 21:34:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24049 IP address blocks: 203.119.18.0/24 maxlen: 24 2001:dd8:1b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2246 (0x8c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B536, serialNumber=8210D43756654B10705D5AB3F37BF01A78B78C47 Validity Not Before: Apr 4 21:34:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45e8b-43fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:65:7c:2c:47:44:ce:ff:11:8b:89:27:ce:25: 08:c8:0b:c3:a7:20:f4:df:d0:2a:26:33:d9:c2:b9: 1d:18:c8:48:fa:83:9f:91:16:f8:ec:9a:59:48:aa: d3:77:bd:56:d9:af:2c:61:e3:c1:10:7a:32:46:b0: 3b:eb:9c:59:4f:ca:85:5e:81:eb:c1:8b:84:4b:f7: ee:7f:97:62:49:14:ed:34:99:76:92:e8:12:51:e8: 0d:6b:fd:d7:7f:5b:05:60:34:61:c9:72:22:c0:8f: 51:d1:87:42:02:dc:bf:d9:f4:0c:e9:4d:6d:6a:7b: 1c:93:66:7c:a4:d8:d8:62:0c:74:7f:e8:ab:ef:31: 71:3c:bd:bc:95:4d:f1:6f:ca:63:e0:21:3e:2e:f8: 4f:6a:7e:45:f5:a1:07:a9:03:7c:77:94:07:e6:24: 11:cc:bb:f4:db:ab:67:ce:62:60:27:ad:de:b4:ac: dc:10:85:a7:94:21:e6:62:87:97:36:02:44:1a:ca: 54:06:4d:b1:ec:03:f3:38:7b:d4:fb:1e:bd:e2:f3: 04:76:d4:93:f3:d6:b2:4f:70:40:89:e1:9e:29:88: 0e:09:19:d5:d8:7c:71:53:8b:12:51:21:02:4f:36: a6:56:ad:29:07:b3:60:ce:d5:11:32:7f:f4:86:e9: 1a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BC:1B:CA:74:E1:7A:B0:BF:99:50:12:6E:4A:63:02:AD:FF:EC:EC X509v3 Authority Key Identifier: keyid:82:10:D4:37:56:65:4B:10:70:5D:5A:B3:F3:7B:F0:1A:78:B7:8C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/ghDUN1ZlSxBwXVqz83vwGni3jEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghDUN1ZlSxBwXVqz83vwGni3jEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B536/E4C88972EB7411EABA0A9E48C4F9AE02/D8B25C54EC2211EA84C17E26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.119.18.0/24 IPv6: 2001:dd8:1b::/48 Signature Algorithm: sha256WithRSAEncryption d8:de:da:14:9a:52:ef:6d:ab:04:e1:14:78:6f:97:6b:07:86: bf:3c:9e:80:32:07:09:0d:48:59:86:8a:54:a0:7a:58:c5:cb: 36:7c:03:78:8e:51:95:ae:07:33:65:01:6d:7c:86:30:85:22: 4a:07:2e:9c:e2:00:f6:ee:60:a0:7c:38:bf:67:0c:d9:27:3a: 71:18:b0:3b:56:e5:cc:34:61:d5:1d:8c:2d:89:18:b3:7f:5b: 15:de:d3:b0:a9:b0:9c:ee:0b:ff:9e:b6:35:88:cd:5b:3c:d4: 55:f9:1d:67:b0:5f:7e:38:a3:6d:de:89:80:4c:30:7d:b1:5f: cd:d6:5f:4a:27:cc:3b:b2:13:b3:e2:b2:26:bf:94:77:86:78: 08:0d:e9:12:e6:e8:77:62:b7:3e:ed:a4:04:07:f2:1c:ac:ba: 78:dd:d3:e7:42:72:a7:22:a7:b5:c5:f3:be:07:f4:2e:f8:f9: 9d:81:be:67:77:c7:1f:cb:87:85:6d:cd:43:8a:76:f3:1d:e4: f8:98:64:e2:97:12:43:d1:ae:46:ab:d8:e6:2f:42:92:ba:91: 3f:df:48:cd:4a:d7:4d:67:e4:1a:d0:7a:bb:14:df:82:a2:4b: 4a:a3:59:ba:43:62:b0:c8:9d:77:6f:6d:88:3a:89:bc:c9:f8: 29:ae:09:9e -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MzYxMTAvBgNVBAUTKDgyMTBENDM3NTY2NTRCMTA3MDVENUFCM0YzN0JGMDFB NzhCNzhDNDcwHhcNMjUwNDA0MjEzNDMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWU4Yi00M2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmWV8LEdEzv8Ri4knziUIyAvDpyD039AqJjPZwrkdGMhI+oOfkRb47JpZSKrT d71W2a8sYePBEHoyRrA765xZT8qFXoHrwYuES/fuf5diSRTtNJl2kugSUegNa/3X f1sFYDRhyXIiwI9R0YdCAty/2fQM6U1tansck2Z8pNjYYgx0f+ir7zFxPL28lU3x b8pj4CE+LvhPan5F9aEHqQN8d5QH5iQRzLv026tnzmJgJ63etKzcEIWnlCHmYoeX NgJEGspUBk2x7APzOHvU+x694vMEdtST89ayT3BAieGeKYgOCRnV2HxxU4sSUSEC TzamVq0pB7NgztURMn/0hukaYQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFPK8G8p0 4Xqwv5lQEm5KYwKt/+zsMB8GA1UdIwQYMBaAFIIQ1DdWZUsQcF1as/N78Bp4t4xH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUzNi9FNEM4ODk3MkVC NzQxMUVBQkEwQTlFNDhDNEY5QUUwMi9naERVTjFabFN4QndYVnF6ODN2d0duaTNq RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doRFVOMVpsU3hCd1hWcXo4M3Z3R25pM2pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MzYvRTRDODg5NzJFQjc0MTFFQUJBMEE5RTQ4QzRGOUFFMDIvRDhCMjVDNTRF QzIyMTFFQTg0QzE3RTI2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAy3cSMA8EAgACMAkDBwAgAQ3YABswDQYJKoZIhvcNAQELBQADggEB ANje2hSaUu9tqwThFHhvl2sHhr88noAyBwkNSFmGilSgeljFyzZ8A3iOUZWuBzNl AW18hjCFIkoHLpziAPbuYKB8OL9nDNknOnEYsDtW5cw0YdUdjC2JGLN/WxXe07Cp sJzuC/+etjWIzVs81FX5HWewX344o23eiYBMMH2xX83WX0onzDuyE7Pisia/lHeG eAgN6RLm6Hditz7tpAQH8hysunjd0+dCcqcip7XF874H9C74+Z2Bvmd3xx/Lh4Vt zUOKdvMd5PiYZOKXEkPRrkar2OYvQpK6kT/fSM1K101n5BrQersU34KiS0qjWbpD YrDInXdvbYg6ibzJ+CmuCZ4= -----END CERTIFICATE-----Generated at Mon Mar 2 21:25:12 2026 by rpki-client