$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa File: 2DCC0688B57211EEBB68526DC4F9AE02.roa (raw, json) Hash identifier: L3OPo6FNjWVCJWGluVhn9/6yPLkzSPOBxPP5CvzXBok= Subject key identifier: 58:A4:01:7E:D3:CC:DB:50:62:41:B0:31:FA:B6:79:5C:C9:E0:A4:7A Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 012A Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa Signing time: Fri 01 Aug 2025 06:12:59 +0000 ROA not before: Fri 01 Aug 2025 06:12:59 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 22003 IP address blocks: 216.200.189.0/24 maxlen: 24 216.200.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Aug 1 06:12:59 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688c5aea-5508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a6:e0:d6:92:64:1d:4b:7a:c1:e1:74:30:ec: 6b:17:93:8b:66:29:60:52:36:a9:68:f0:8a:bc:cf: 8f:ec:16:b7:f2:94:ed:9d:d6:bc:7e:b1:7e:81:5c: d1:3a:5f:ca:0c:2a:3d:16:bb:eb:8c:39:e8:11:3e: c0:ca:dc:ea:7f:25:1e:e0:12:cc:9a:c8:1b:fa:5c: 6e:4d:2e:34:a2:dd:b1:94:5d:05:7a:87:ff:fd:56: 62:67:63:8b:1c:78:a8:89:c7:22:46:64:9e:1d:55: 91:fa:06:ac:e9:c1:60:dd:5d:60:38:74:60:ed:0f: 60:88:2d:bc:b4:85:f4:5f:26:e8:f5:67:21:55:6e: 6f:06:d2:d3:67:d0:66:30:b9:cb:ea:95:36:e6:2d: 7b:f8:f5:b3:cc:90:69:00:a1:b0:2c:2a:75:2d:90: 3b:38:ea:6c:06:e1:c3:42:ee:5d:0b:42:5f:b1:c2: 68:e3:67:40:a1:75:5e:a1:94:43:2e:77:8c:c8:54: 8a:56:69:0f:9b:0b:27:e2:06:a5:c1:c3:be:cf:47: 80:ac:9c:32:12:0c:56:b5:e3:f5:c3:54:d1:ec:ae: 30:3f:96:25:89:de:bf:4c:a5:7f:44:26:45:40:ce: 87:21:0e:7a:93:3e:c2:37:f6:8f:fc:65:c2:a7:b1: 1d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A4:01:7E:D3:CC:DB:50:62:41:B0:31:FA:B6:79:5C:C9:E0:A4:7A X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.200.189.0-216.200.190.255 Signature Algorithm: sha256WithRSAEncryption 26:d5:63:de:d7:d5:ec:3f:6f:ff:87:99:dc:b4:50:61:ec:24: 54:06:1f:08:fa:74:57:82:88:ce:5f:06:c8:b7:6f:16:10:a4: 2d:45:33:70:d9:26:08:30:b5:3c:a4:d4:1f:23:00:d2:f0:cf: 9c:5a:a0:0a:cb:c5:37:f7:51:e3:dd:3f:1b:5e:74:94:38:1a: 22:2a:43:f6:7b:63:7f:7c:40:13:d3:f5:b9:9d:a0:c4:30:8e: d4:7c:9e:34:d9:d0:2e:98:b4:45:c7:da:6f:3b:b0:1a:f8:67: 24:69:6b:c9:9e:31:ac:24:5f:dc:4a:28:80:9b:61:d2:ae:66: 93:07:32:0e:77:5f:d5:40:87:c4:77:a9:6f:02:64:b0:c8:40: 9e:ae:d7:41:60:16:88:2a:35:11:1f:a9:da:bc:59:d3:31:62: 16:7c:5d:77:6f:9a:0b:91:93:60:ec:00:08:ec:b0:21:d8:d6: 7a:f3:2c:8a:54:6a:17:ab:29:fd:c7:72:aa:21:3e:8a:67:b6: 73:56:d1:ab:1f:33:32:a1:b5:83:06:f3:e5:60:a3:ce:a0:e6: ef:98:3a:f9:9d:7e:c5:71:49:c0:34:ef:bc:22:3a:a6:2f:b2: 5b:e6:c8:fe:1e:65:12:41:7c:55:b4:b6:a5:34:04:f8:88:ff: c8:f3:bd:2b -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwODAxMDYxMjU5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjNWFlYS01NTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqbg1pJkHUt6weF0MOxrF5OLZilgUjapaPCKvM+P7Ba38pTtnda8frF+gVzR Ol/KDCo9FrvrjDnoET7AytzqfyUe4BLMmsgb+lxuTS40ot2xlF0Feof//VZiZ2OL HHioicciRmSeHVWR+gas6cFg3V1gOHRg7Q9giC28tIX0Xybo9WchVW5vBtLTZ9Bm MLnL6pU25i17+PWzzJBpAKGwLCp1LZA7OOpsBuHDQu5dC0JfscJo42dAoXVeoZRD LneMyFSKVmkPmwsn4galwcO+z0eArJwyEgxWteP1w1TR7K4wP5Ylid6/TKV/RCZF QM6HIQ56kz7CN/aP/GXCp7EdAwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFFikAX7T zNtQYkGwMfq2eVzJ4KR6MB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyNzcvNDNBN0U4OTRCNTYwMTFFRTkxMUM1RDRGQzRGOUFFMDIvMkRDQzA2ODhC NTcyMTFFRUJCNjg1MjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEANjIvQMEANjIvjANBgkqhkiG9w0BAQsFAAOCAQEAJtVj 3tfV7D9v/4eZ3LRQYewkVAYfCPp0V4KIzl8GyLdvFhCkLUUzcNkmCDC1PKTUHyMA 0vDPnFqgCsvFN/dR490/G150lDgaIipD9ntjf3xAE9P1uZ2gxDCO1HyeNNnQLpi0 RcfabzuwGvhnJGlryZ4xrCRf3EoogJth0q5mkwcyDndf1UCHxHepbwJksMhAnq7X QWAWiCo1ER+p2rxZ0zFiFnxdd2+aC5GTYOwACOywIdjWevMsilRqF6sp/cdyqiE+ ime2c1bRqx8zMqG1gwbz5WCjzqDm75g6+Z1+xXFJwDTvvCI6pi+yW+bI/h5lEkF8 VbS2pTQE+Ij/yPO9Kw== -----END CERTIFICATE-----Generated at Mon Aug 11 13:11:56 2025 by rpki-client