$ rpki-client -vvf rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/6C510F98B51C11EAA1649251C4F9AE02.roa File: 6C510F98B51C11EAA1649251C4F9AE02.roa (raw, json) Hash identifier: F1C9gg2kIzcE7dZNTOK9MxUtKleWFfTF43eCI9Ja9n8= Subject key identifier: 2B:D8:57:A2:8B:5F:67:8B:E6:74:D4:15:93:4E:A7:BE:FC:C4:05:42 Certificate issuer: /CN=A912B600/serialNumber=477E22E1BD3AD5204E3ADC2DECD6D2A194ACFA58 Certificate serial: 11B7 Authority key identifier: 47:7E:22:E1:BD:3A:D5:20:4E:3A:DC:2D:EC:D6:D2:A1:94:AC:FA:58 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/R34i4b061SBOOtwt7NbSoZSs-lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/6C510F98B51C11EAA1649251C4F9AE02.roa Signing time: Wed 24 Sep 2025 15:00:58 +0000 ROA not before: Wed 24 Sep 2025 15:00:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38466 IP address blocks: 188.214.64.0/20 maxlen: 20 188.214.64.0/24 maxlen: 24 188.214.65.0/24 maxlen: 24 188.214.66.0/24 maxlen: 24 188.214.67.0/24 maxlen: 24 188.214.68.0/24 maxlen: 24 188.214.69.0/24 maxlen: 24 188.214.70.0/24 maxlen: 24 188.214.71.0/24 maxlen: 24 188.214.72.0/24 maxlen: 24 188.214.73.0/24 maxlen: 24 188.214.74.0/24 maxlen: 24 188.214.75.0/24 maxlen: 24 188.214.76.0/24 maxlen: 24 188.214.77.0/24 maxlen: 24 188.214.78.0/24 maxlen: 24 188.214.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/R34i4b061SBOOtwt7NbSoZSs-lg.crl rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/R34i4b061SBOOtwt7NbSoZSs-lg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/R34i4b061SBOOtwt7NbSoZSs-lg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4535 (0x11b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B600, serialNumber=477E22E1BD3AD5204E3ADC2DECD6D2A194ACFA58 Validity Not Before: Sep 24 15:00:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d407aa-1a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0b:66:64:6e:95:ef:58:39:f7:4f:d5:9e:a4: fb:7b:2c:7a:04:41:36:10:75:9d:00:c8:20:1e:52: ec:fe:15:d4:ec:5a:f7:cf:d4:71:bb:a2:3f:e8:37: 03:56:ea:76:3a:56:4b:bb:54:57:50:68:04:8b:8e: db:76:d0:b0:8c:15:66:0f:7b:2a:f8:ea:5d:ce:d6: 15:c8:e6:a0:d0:c8:b3:91:73:2b:4c:2f:c8:1b:a3: e7:65:69:de:ff:c5:64:24:2a:a2:4c:62:e8:94:11: 5e:8b:5c:f5:03:2d:d2:1d:48:d8:e3:ec:46:5d:4b: b3:ed:d5:3a:93:f0:fc:51:cd:73:e9:c5:60:ea:1c: be:60:d7:ef:6e:c7:b1:64:30:de:68:13:3e:02:af: 80:44:09:f7:78:b5:70:e6:c7:1d:54:3d:e2:7c:cc: 0b:36:b6:49:c8:e4:f3:a6:3b:82:52:93:2c:4b:b3: a8:9a:ea:a2:76:26:1b:a8:20:04:b2:cb:fa:02:10: b9:9a:6b:eb:f4:a6:a1:bb:71:23:a9:81:0c:54:fc: 81:d6:8a:7a:b1:3c:a4:3e:06:57:37:ea:28:a2:ae: 02:35:43:38:86:10:e2:ee:9d:9a:b1:d6:bc:b9:17: 8e:e9:37:c3:55:9d:42:b2:86:54:a0:c9:63:13:12: 5b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D8:57:A2:8B:5F:67:8B:E6:74:D4:15:93:4E:A7:BE:FC:C4:05:42 X509v3 Authority Key Identifier: keyid:47:7E:22:E1:BD:3A:D5:20:4E:3A:DC:2D:EC:D6:D2:A1:94:AC:FA:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/R34i4b061SBOOtwt7NbSoZSs-lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/R34i4b061SBOOtwt7NbSoZSs-lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B600/3B06F306043511E99E09CC63C4F9AE02/6C510F98B51C11EAA1649251C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 188.214.64.0/20 Signature Algorithm: sha256WithRSAEncryption dd:5d:61:c5:8f:36:b5:30:fa:b9:fb:b9:4c:2d:f5:05:d5:b6: 74:13:73:cb:b9:ee:c7:f7:c0:6a:30:74:db:ee:e2:9f:8e:39: 14:79:30:39:9b:b7:9e:58:26:e0:be:51:60:23:2e:94:a1:51: 64:78:d2:d5:8e:0c:8c:eb:f8:af:4f:66:26:6f:7e:a6:9d:d1: 61:e7:f5:4f:2d:f1:86:40:3f:aa:8e:77:88:78:da:5e:0f:b6: ed:37:67:da:0f:7b:ec:90:61:a0:ae:4a:61:22:9a:74:41:d4: 88:2e:99:00:32:05:f1:d2:15:e1:36:65:9b:5a:e2:f9:47:77: 2f:bc:95:5b:b9:c6:d6:2d:4c:d7:64:17:2f:b8:a3:f4:d0:3a: e7:62:e8:ff:e9:f0:26:ac:b0:68:5e:91:db:7b:f6:d4:97:ee: 33:be:a4:53:05:4e:c7:0c:81:e1:99:37:ff:eb:37:e0:f6:07: 4b:10:ee:86:29:eb:a1:95:da:ea:af:c7:68:b0:bb:3f:50:66: 35:97:b6:b0:0d:36:b0:9a:e8:ce:bb:92:c5:ae:b8:78:53:7d: 53:df:21:aa:b0:0f:16:d2:35:b7:e1:20:64:19:d4:ed:9c:c2: 2a:1e:ba:4d:43:6e:44:73:4d:33:51:8c:12:21:c4:55:5d:cc: 57:d4:95:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2MDAxMTAvBgNVBAUTKDQ3N0UyMkUxQkQzQUQ1MjA0RTNBREMyREVDRDZEMkEx OTRBQ0ZBNTgwHhcNMjUwOTI0MTUwMDU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0MDdhYS0xYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wtmZG6V71g590/VnqT7eyx6BEE2EHWdAMggHlLs/hXU7Fr3z9Rxu6I/6DcD Vup2OlZLu1RXUGgEi47bdtCwjBVmD3sq+OpdztYVyOag0MizkXMrTC/IG6PnZWne /8VkJCqiTGLolBFei1z1Ay3SHUjY4+xGXUuz7dU6k/D8Uc1z6cVg6hy+YNfvbsex ZDDeaBM+Aq+ARAn3eLVw5scdVD3ifMwLNrZJyOTzpjuCUpMsS7OomuqidiYbqCAE ssv6AhC5mmvr9Kahu3EjqYEMVPyB1op6sTykPgZXN+oooq4CNUM4hhDi7p2asda8 uReO6TfDVZ1CsoZUoMljExJbXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCvYV6KL X2eL5nTUFZNOp778xAVCMB8GA1UdIwQYMBaAFEd+IuG9OtUgTjrcLezW0qGUrPpY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjYwMC8zQjA2RjMwNjA0 MzUxMUU5OUUwOUNDNjNDNEY5QUUwMi9SMzRpNGIwNjFTQk9PdHd0N05iU29aU3Mt bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1IzNGk0YjA2MVNCT090d3Q3TmJTb1pTcy1sZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI2MDAvM0IwNkYzMDYwNDM1MTFFOTlFMDlDQzYzQzRGOUFFMDIvNkM1MTBGOThC NTFDMTFFQUExNjQ5MjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAS81kAwDQYJKoZIhvcNAQELBQADggEBAN1dYcWPNrUw+rn7 uUwt9QXVtnQTc8u57sf3wGowdNvu4p+OORR5MDmbt55YJuC+UWAjLpShUWR40tWO DIzr+K9PZiZvfqad0WHn9U8t8YZAP6qOd4h42l4Ptu03Z9oPe+yQYaCuSmEimnRB 1IgumQAyBfHSFeE2ZZta4vlHdy+8lVu5xtYtTNdkFy+4o/TQOudi6P/p8CassGhe kdt79tSX7jO+pFMFTscMgeGZN//rN+D2B0sQ7oYp66GV2uqvx2iwuz9QZjWXtrAN NrCa6M67ksWuuHhTfVPfIaqwDxbSNbfhIGQZ1O2cwioeuk1DbkRzTTNRjBIhxFVd zFfUlVw= -----END CERTIFICATE-----Generated at Mon Oct 20 21:35:35 2025 by rpki-client