$ rpki-client -vvf rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/2EC1CE78CDB611ED8E2C0844C4F9AE02.roa File: 2EC1CE78CDB611ED8E2C0844C4F9AE02.roa (raw, json) Hash identifier: DR6m9dTiQf0MQdfmKjC6TTSnRd3qda76E3er8flKLDE= Subject key identifier: 8D:CB:80:A3:10:D4:16:44:3C:C6:24:87:99:0C:50:FE:C0:7D:1A:0A Certificate issuer: /CN=A915D10D/serialNumber=70C8BDA2DE7895950536594BAEBF26290D9BA065 Certificate serial: 01E0 Authority key identifier: 70:C8:BD:A2:DE:78:95:95:05:36:59:4B:AE:BF:26:29:0D:9B:A0:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cMi9ot54lZUFNllLrr8mKQ2boGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/2EC1CE78CDB611ED8E2C0844C4F9AE02.roa Signing time: Wed 17 Sep 2025 04:18:35 +0000 ROA not before: Wed 17 Sep 2025 04:18:35 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151052 IP address blocks: 203.56.123.0/24 maxlen: 24 2001:df6:20c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/cMi9ot54lZUFNllLrr8mKQ2boGU.crl rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/cMi9ot54lZUFNllLrr8mKQ2boGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cMi9ot54lZUFNllLrr8mKQ2boGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:36:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D10D, serialNumber=70C8BDA2DE7895950536594BAEBF26290D9BA065 Validity Not Before: Sep 17 04:18:35 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ca369b-0e9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0f:0a:a3:d6:90:0b:4f:c6:70:4b:00:10:b7: 30:0e:0c:b0:44:42:83:46:55:0f:1e:02:e1:ff:33: 18:b0:48:b6:e6:0e:f0:08:56:e7:b8:44:0f:6b:cc: 44:df:62:c8:c0:41:46:a1:ab:1f:af:6d:4c:e0:3b: 66:b0:95:d8:a1:fb:d3:f8:47:07:02:50:40:f5:23: b5:b5:95:eb:f3:5e:e5:2b:6b:52:04:f0:48:09:69: 11:c7:cb:ee:98:e0:28:02:04:40:ce:39:3d:b7:cc: 02:5b:13:4a:8b:5e:b1:23:5e:93:b0:8e:99:19:0e: 24:50:cc:69:79:0d:25:cb:58:2c:96:08:99:0b:02: 6a:af:db:9a:f8:0b:68:44:c5:f9:ed:f0:09:93:32: 02:f4:84:cc:06:a0:60:70:47:e1:d7:af:ff:04:79: 29:7a:e6:4d:94:2a:67:fa:09:b7:3c:4a:5d:3b:a6: 22:b9:db:16:0e:13:fe:b5:d0:1e:cf:bb:df:fc:b4: 77:f9:af:c1:66:af:27:d3:e2:e8:5e:8c:94:02:e3: 4a:c9:cc:08:f3:f8:03:ae:f7:36:1e:58:ee:55:ed: 60:e0:77:12:1e:97:c4:6a:f6:9d:94:0f:4e:b7:b0: 68:d1:90:57:d0:b9:af:2e:1a:ee:20:bd:fb:a1:e9: fb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CB:80:A3:10:D4:16:44:3C:C6:24:87:99:0C:50:FE:C0:7D:1A:0A X509v3 Authority Key Identifier: keyid:70:C8:BD:A2:DE:78:95:95:05:36:59:4B:AE:BF:26:29:0D:9B:A0:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/cMi9ot54lZUFNllLrr8mKQ2boGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cMi9ot54lZUFNllLrr8mKQ2boGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/2EC1CE78CDB611ED8E2C0844C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.56.123.0/24 IPv6: 2001:df6:20c0::/48 Signature Algorithm: sha256WithRSAEncryption ce:1e:5d:13:83:a6:c3:c6:5b:fe:40:8a:06:12:56:a2:05:35: 34:91:72:b0:20:66:fa:a8:56:86:22:b2:f4:d2:2e:fa:71:df: 91:f7:c1:75:d5:5d:77:84:dc:03:cf:fc:f8:14:dd:20:26:76: 65:c5:66:76:a9:f9:3f:95:30:fa:68:4d:80:99:72:b6:ca:0a: 50:01:8a:c7:d8:50:23:1a:1a:c9:ab:51:65:e1:ee:b7:d8:c3: f0:bb:d5:18:a5:51:08:11:ce:da:db:f1:0b:1e:5d:30:2d:f3: a7:7f:4a:3d:ed:c6:20:18:84:5f:de:16:1b:e1:cc:e4:d6:1f: aa:8c:10:52:ee:11:94:9c:33:b8:95:f8:11:87:78:2a:43:3e: e4:f7:23:8d:5e:17:d0:b4:fc:55:e6:f0:39:cd:c8:d8:3c:02: 6d:b4:a2:6d:0a:e9:e9:ff:2b:2a:66:16:98:b9:0e:60:6e:1b: 25:48:ee:d5:9a:18:72:eb:78:05:07:bc:e1:b5:d1:a3:dc:ca: 38:b8:e7:20:eb:d0:bd:5c:8d:68:25:6f:a3:16:ea:ca:73:58: 33:85:b9:f2:97:96:80:43:2b:2e:59:e9:04:d0:63:78:18:79: 60:b3:91:97:eb:b6:c3:bf:36:a5:9a:f7:92:75:bf:c4:34:f7: 78:6f:bd:c8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxMEQxMTAvBgNVBAUTKDcwQzhCREEyREU3ODk1OTUwNTM2NTk0QkFFQkYyNjI5 MEQ5QkEwNjUwHhcNMjUwOTE3MDQxODM1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNhMzY5Yi0wZTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1g8Ko9aQC0/GcEsAELcwDgywREKDRlUPHgLh/zMYsEi25g7wCFbnuEQPa8xE 32LIwEFGoasfr21M4DtmsJXYofvT+EcHAlBA9SO1tZXr817lK2tSBPBICWkRx8vu mOAoAgRAzjk9t8wCWxNKi16xI16TsI6ZGQ4kUMxpeQ0ly1gslgiZCwJqr9ua+Ato RMX57fAJkzIC9ITMBqBgcEfh16//BHkpeuZNlCpn+gm3PEpdO6YiudsWDhP+tdAe z7vf/LR3+a/BZq8n0+LoXoyUAuNKycwI8/gDrvc2HljuVe1g4HcSHpfEavadlA9O t7Bo0ZBX0LmvLhruIL37oen7RQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFI3LgKMQ 1BZEPMYkh5kMUP7AfRoKMB8GA1UdIwQYMBaAFHDIvaLeeJWVBTZZS66/JikNm6Bl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDEwRC85RjcxMjYxNENE QjExMUVEQjZERjkxM0JDNEY5QUUwMi9jTWk5b3Q1NGxaVUZObGxMcnI4bUtRMmJv R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNaTlvdDU0bFpVRk5sbExycjhtS1EyYm9HVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQxMEQvOUY3MTI2MTRDREIxMTFFREI2REY5MTNCQzRGOUFFMDIvMkVDMUNFNzhD REI2MTFFRDhFMkMwODQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLOHswDwQCAAIwCQMHACABDfYgwDANBgkqhkiG9w0BAQsF AAOCAQEAzh5dE4Omw8Zb/kCKBhJWogU1NJFysCBm+qhWhiKy9NIu+nHfkffBddVd d4TcA8/8+BTdICZ2ZcVmdqn5P5Uw+mhNgJlytsoKUAGKx9hQIxoayatRZeHut9jD 8LvVGKVRCBHO2tvxCx5dMC3zp39KPe3GIBiEX94WG+HM5NYfqowQUu4RlJwzuJX4 EYd4KkM+5PcjjV4X0LT8VebwOc3I2DwCbbSibQrp6f8rKmYWmLkOYG4bJUju1ZoY cut4BQe84bXRo9zKOLjnIOvQvVyNaCVvoxbqynNYM4W58peWgEMrLlnpBNBjeBh5 YLORl+u2w782pZr3knW/xDT3eG+9yA== -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:52 2025 by rpki-client