$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/0259CB6ABE7911E990831772C4F9AE02.roa File: 0259CB6ABE7911E990831772C4F9AE02.roa (raw, json) Hash identifier: YNvx/858xP7SrfZ3scUiiekDHr7EgHFX0Sb3n+6nBi8= Subject key identifier: 28:FB:71:DA:F7:48:5E:33:FB:4F:FC:3A:64:2F:A8:AB:1F:55:64:17 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 36B3 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/0259CB6ABE7911E990831772C4F9AE02.roa Signing time: Sat 02 Aug 2025 15:53:24 +0000 ROA not before: Sat 02 Aug 2025 15:53:24 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 55674 IP address blocks: 101.203.168.0/22 maxlen: 24 2405:b40::/32 maxlen: 32 2405:b40::/48 maxlen: 48 2405:b40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14003 (0x36b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Aug 2 15:53:24 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=688e3473-70f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d5:b3:53:3a:a5:3e:18:6e:b9:9b:10:b4:30: 38:29:94:90:d1:83:da:4d:44:0e:81:f1:6b:bd:12: e9:07:fb:47:70:cc:a1:21:ed:6b:34:ba:54:2c:6d: 1e:01:f0:c7:33:13:34:0e:c4:fb:b8:db:f5:aa:42: 8a:6a:85:6c:4f:52:43:7d:1d:3c:37:7b:2e:3e:e8: 24:ef:5b:d4:9e:82:46:f6:c5:5f:67:86:7c:ba:c4: e3:34:d4:75:65:06:95:6d:5e:8d:7e:ce:cb:15:7e: e4:a3:63:dc:9e:ff:0c:41:31:ae:28:ab:86:c2:9c: 1c:6f:85:f5:7c:66:98:21:6f:5b:1c:d3:28:53:7d: 10:24:15:d4:76:1d:c5:94:1e:f4:b4:21:87:83:aa: f1:1c:66:3f:4a:f1:e2:2f:f3:29:84:b3:cd:6e:f1: b7:e0:02:e9:cc:dd:49:bb:0f:7a:21:ef:09:61:59: 46:82:13:45:3f:5d:52:03:7f:ea:df:81:aa:91:a8: 3f:e1:0a:df:9b:73:9a:a9:56:a0:52:d6:ec:de:15: 06:56:b0:c2:84:af:9c:15:5b:d9:02:5d:cf:89:3d: 11:f6:8b:5f:41:33:b1:6c:ce:81:1e:9a:28:4d:82: 35:9c:52:1e:c7:9c:d0:85:f2:1d:86:dd:c3:e7:4a: 32:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:FB:71:DA:F7:48:5E:33:FB:4F:FC:3A:64:2F:A8:AB:1F:55:64:17 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/0259CB6ABE7911E990831772C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.203.168.0/22 IPv6: 2405:b40::/32 Signature Algorithm: sha256WithRSAEncryption 88:cb:1b:a3:5a:b9:d6:ca:bc:04:18:9e:59:b2:c7:05:55:f6: 06:e3:70:d0:97:3b:39:2a:ab:6c:db:72:21:22:d8:e9:42:9b: 0d:68:b0:a6:63:2a:54:04:5f:57:c9:23:87:d6:e6:5a:df:ae: 3d:cb:b8:37:0f:73:7c:e8:1b:c6:77:52:6f:32:e4:a3:f0:d6: af:85:6f:59:0c:2b:3e:49:60:d7:af:eb:28:28:87:43:4e:38: ee:ec:36:64:07:be:90:9c:d8:63:2d:7f:91:ef:2f:f8:56:e3: 74:e4:0e:60:35:7a:9e:0f:af:6c:05:40:c8:0a:1d:ec:e7:33: ca:cb:93:6e:e9:4f:57:77:4e:f0:37:bf:e0:f2:7e:ab:ff:bd: 4b:4a:07:97:38:0c:c0:6e:50:21:de:31:1e:c1:cd:52:58:ac: f3:49:08:af:5c:2e:9e:d9:4c:6d:b7:9a:2a:07:49:42:89:5e: 9d:ad:d7:d7:26:17:3a:1c:ab:52:b5:6e:98:56:10:21:75:03: 5e:9f:6b:fa:a8:cc:e1:22:0c:b4:0e:b0:23:fd:55:0e:de:00: e2:91:1d:21:67:ba:a5:23:ca:fb:b5:b6:3e:44:80:cb:73:aa: 23:08:39:fb:b5:bd:91:fc:79:ea:4d:33:88:f6:d9:77:b7:71: 94:0b:72:db -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwODAyMTU1MzI0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlMzQ3My03MGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9WzUzqlPhhuuZsQtDA4KZSQ0YPaTUQOgfFrvRLpB/tHcMyhIe1rNLpULG0e AfDHMxM0DsT7uNv1qkKKaoVsT1JDfR08N3suPugk71vUnoJG9sVfZ4Z8usTjNNR1 ZQaVbV6Nfs7LFX7ko2Pcnv8MQTGuKKuGwpwcb4X1fGaYIW9bHNMoU30QJBXUdh3F lB70tCGHg6rxHGY/SvHiL/MphLPNbvG34ALpzN1Juw96Ie8JYVlGghNFP11SA3/q 34Gqkag/4Qrfm3OaqVagUtbs3hUGVrDChK+cFVvZAl3PiT0R9otfQTOxbM6BHpoo TYI1nFIex5zQhfIdht3D50oyHQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCj7cdr3 SF4z+0/8OmQvqKsfVWQXMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvMDI1OUNCNkFC RTc5MTFFOTkwODMxNzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJly6gwDQQCAAIwBwMFACQFC0AwDQYJKoZIhvcNAQELBQAD ggEBAIjLG6NaudbKvAQYnlmyxwVV9gbjcNCXOzkqq2zbciEi2OlCmw1osKZjKlQE X1fJI4fW5lrfrj3LuDcPc3zoG8Z3Um8y5KPw1q+Fb1kMKz5JYNev6ygoh0NOOO7s NmQHvpCc2GMtf5HvL/hW43TkDmA1ep4Pr2wFQMgKHeznM8rLk27pT1d3TvA3v+Dy fqv/vUtKB5c4DMBuUCHeMR7BzVJYrPNJCK9cLp7ZTG23mioHSUKJXp2t19cmFzoc q1K1bphWECF1A16fa/qozOEiDLQOsCP9VQ7eAOKRHSFnuqUjyvu1tj5EgMtzqiMI Ofu1vZH8eepNM4j22Xe3cZQLcts= -----END CERTIFICATE-----Generated at Sat Aug 9 01:14:55 2025 by rpki-client