$ rpki-client -vvf rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/2EC1CE78CDB611ED8E2C0844C4F9AE02.roa File: 2EC1CE78CDB611ED8E2C0844C4F9AE02.roa (raw, json) Hash identifier: wnETTqWJtI3Udhyqfyf0Gf1ngQci7SXSxAE3DX4g/Ww= Subject key identifier: 3C:0C:A6:6E:60:25:F2:04:3C:2C:C0:13:97:A1:AB:C4:5E:24:71:FA Certificate issuer: /CN=A915D10D/serialNumber=70C8BDA2DE7895950536594BAEBF26290D9BA065 Certificate serial: 01BE Authority key identifier: 70:C8:BD:A2:DE:78:95:95:05:36:59:4B:AE:BF:26:29:0D:9B:A0:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cMi9ot54lZUFNllLrr8mKQ2boGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/2EC1CE78CDB611ED8E2C0844C4F9AE02.roa Signing time: Tue 29 Jul 2025 03:40:29 +0000 ROA not before: Tue 29 Jul 2025 03:40:29 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151052 IP address blocks: 203.56.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/cMi9ot54lZUFNllLrr8mKQ2boGU.crl rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/cMi9ot54lZUFNllLrr8mKQ2boGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cMi9ot54lZUFNllLrr8mKQ2boGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 03:29:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D10D, serialNumber=70C8BDA2DE7895950536594BAEBF26290D9BA065 Validity Not Before: Jul 29 03:40:29 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688842ac-ace0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:bf:c1:8c:28:b0:c7:7d:ba:ac:c9:d8:47:aa: de:81:7a:83:cd:6f:8a:fb:19:81:16:f7:8c:e8:a7: 77:4b:d0:21:81:eb:45:28:1d:76:b2:46:0c:b9:e4: 41:7d:f5:57:9c:bb:4a:2e:4e:8f:4a:e3:a2:c7:9d: 5d:5b:79:17:00:88:97:e7:99:30:48:11:0f:8b:a2: 3f:0d:d6:e9:b5:04:79:92:ea:c0:a7:8b:2c:2d:19: c7:71:20:85:11:a0:a2:aa:5f:ea:67:78:79:cd:a3: 0d:5a:b6:6d:ec:a6:b9:08:93:72:6c:f4:25:1c:23: 49:ef:3a:2a:79:a7:f8:5b:b9:cd:cc:e6:2d:39:4e: 00:ad:e8:84:62:e0:f4:67:ab:bd:23:ad:5d:24:9c: f4:b5:ca:25:fb:a0:8c:0b:0b:23:05:11:19:fe:bd: 90:70:23:9f:c3:0a:18:92:bc:3e:a6:8e:30:27:29: 91:ba:dd:04:96:82:22:20:e4:13:ca:61:15:0e:97: 0c:a7:21:88:1a:8d:28:e9:ad:12:38:b1:c9:34:75: 1c:36:71:2f:aa:e6:a7:15:f9:e9:ec:2f:19:60:9b: 50:4b:58:33:1e:9c:1f:47:ba:9c:f5:fa:1d:ec:df: 08:1a:d4:56:35:3f:7b:b1:a1:fd:e8:da:ae:e1:0d: a9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:0C:A6:6E:60:25:F2:04:3C:2C:C0:13:97:A1:AB:C4:5E:24:71:FA X509v3 Authority Key Identifier: keyid:70:C8:BD:A2:DE:78:95:95:05:36:59:4B:AE:BF:26:29:0D:9B:A0:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/cMi9ot54lZUFNllLrr8mKQ2boGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cMi9ot54lZUFNllLrr8mKQ2boGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D10D/9F712614CDB111EDB6DF913BC4F9AE02/2EC1CE78CDB611ED8E2C0844C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.56.123.0/24 Signature Algorithm: sha256WithRSAEncryption bf:02:3e:82:1b:52:6f:bc:a3:c5:3a:08:4b:5e:a6:ca:4a:47: 2e:8f:72:12:80:99:19:da:6d:74:7d:17:b3:aa:d0:34:f0:21: 97:76:05:ce:c9:a8:34:88:31:36:96:89:48:87:ad:ca:58:45: 6e:6b:91:d0:8f:26:c1:b8:62:54:b7:26:a0:00:45:1d:79:cc: af:33:97:b2:bc:76:7f:db:dc:96:db:ec:0b:5e:fa:2d:54:db: e9:e4:46:4d:52:b6:49:75:94:e3:39:2d:86:e9:45:09:04:8d: e0:db:69:4e:33:d5:04:a1:bf:4c:8d:80:cf:da:c6:be:91:62: 9b:4b:4e:d4:88:2d:df:ea:e7:2e:e0:e1:1f:c6:5e:c5:ee:eb: 36:4e:6c:29:57:76:3f:1c:38:fb:13:bf:5e:e9:de:fc:65:05: 96:78:f9:29:15:b1:ce:d0:cf:13:db:4a:51:e8:7b:00:be:80: 5f:1f:8a:d6:b5:5e:90:fb:ab:8c:11:85:27:a6:c6:58:33:c6: 39:d0:60:7e:a9:2e:6f:36:e1:03:85:61:56:5b:b9:8e:5e:8d: c8:5a:f2:11:df:06:05:d4:99:e5:25:24:be:75:2a:9a:5f:9d: 79:e5:c2:d8:56:a4:61:c9:86:7e:3c:70:ec:5c:59:9c:ff:b5: 93:61:89:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxMEQxMTAvBgNVBAUTKDcwQzhCREEyREU3ODk1OTUwNTM2NTk0QkFFQkYyNjI5 MEQ5QkEwNjUwHhcNMjUwNzI5MDM0MDI5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg4NDJhYy1hY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6b/BjCiwx326rMnYR6regXqDzW+K+xmBFveM6Kd3S9AhgetFKB12skYMueRB ffVXnLtKLk6PSuOix51dW3kXAIiX55kwSBEPi6I/DdbptQR5kurAp4ssLRnHcSCF EaCiql/qZ3h5zaMNWrZt7Ka5CJNybPQlHCNJ7zoqeaf4W7nNzOYtOU4AreiEYuD0 Z6u9I61dJJz0tcol+6CMCwsjBREZ/r2QcCOfwwoYkrw+po4wJymRut0EloIiIOQT ymEVDpcMpyGIGo0o6a0SOLHJNHUcNnEvquanFfnp7C8ZYJtQS1gzHpwfR7qc9fod 7N8IGtRWNT97saH96Nqu4Q2prQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDwMpm5g JfIEPCzAE5ehq8ReJHH6MB8GA1UdIwQYMBaAFHDIvaLeeJWVBTZZS66/JikNm6Bl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDEwRC85RjcxMjYxNENE QjExMUVEQjZERjkxM0JDNEY5QUUwMi9jTWk5b3Q1NGxaVUZObGxMcnI4bUtRMmJv R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNaTlvdDU0bFpVRk5sbExycjhtS1EyYm9HVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQxMEQvOUY3MTI2MTRDREIxMTFFREI2REY5MTNCQzRGOUFFMDIvMkVDMUNFNzhD REI2MTFFRDhFMkMwODQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLOHswDQYJKoZIhvcNAQELBQADggEBAL8CPoIbUm+8o8U6 CEtepspKRy6PchKAmRnabXR9F7Oq0DTwIZd2Bc7JqDSIMTaWiUiHrcpYRW5rkdCP JsG4YlS3JqAARR15zK8zl7K8dn/b3Jbb7Ate+i1U2+nkRk1Stkl1lOM5LYbpRQkE jeDbaU4z1QShv0yNgM/axr6RYptLTtSILd/q5y7g4R/GXsXu6zZObClXdj8cOPsT v17p3vxlBZZ4+SkVsc7QzxPbSlHoewC+gF8fita1XpD7q4wRhSemxlgzxjnQYH6p Lm824QOFYVZbuY5ejcha8hHfBgXUmeUlJL51KppfnXnlwthWpGHJhn48cOxcWZz/ tZNhiVw= -----END CERTIFICATE-----Generated at Wed Aug 13 13:26:00 2025 by rpki-client