$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/206969823B9411EB9F059D7EC4F9AE02.roa File: 206969823B9411EB9F059D7EC4F9AE02.roa (raw, json) Hash identifier: RxzJdhNL3XRe6UM0O5+yODZOZOT+QSs+nHTsvvP7oUM= Subject key identifier: 9E:87:E4:68:46:3A:AF:F5:46:EB:6D:0E:4B:DB:CA:43:0F:45:E5:A7 Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Certificate serial: 0C3E Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/206969823B9411EB9F059D7EC4F9AE02.roa Signing time: Sat 16 Aug 2025 19:30:01 +0000 ROA not before: Sat 16 Aug 2025 19:30:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 0 IP address blocks: 203.190.227.0/24 maxlen: 24 203.190.230.0/24 maxlen: 24 2001:de8:4::/64 maxlen: 64 2001:de8:5::/64 maxlen: 64 2001:de8:5:1::/64 maxlen: 64 2001:de8:6::/64 maxlen: 64 2001:de8:6:1::/64 maxlen: 64 2001:de8:6:2::/64 maxlen: 64 2001:de8:7::/64 maxlen: 64 2001:de8:7:1::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:34:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3134 (0xc3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E3F, serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Validity Not Before: Aug 16 19:30:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a0dc39-4bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4a:d1:59:90:23:03:82:97:6f:7e:c8:e7:dc: 5d:f6:de:b6:85:23:95:e1:b7:ac:31:69:a2:db:da: 7e:c3:86:dc:58:1c:f0:dc:c6:29:e0:f2:15:37:ae: 5e:dc:b8:60:78:aa:5d:4d:dc:70:51:26:57:79:7d: 5b:f0:a0:fa:eb:8b:87:1c:a2:14:48:f8:8c:3a:30: fb:dc:2f:93:4a:58:06:bb:8c:7c:83:dc:3b:ea:d0: 79:3f:a3:73:3a:65:17:89:57:62:0e:0f:87:c2:4f: 34:b9:d7:82:53:2f:6c:06:bb:a1:17:ae:f2:92:ad: fe:d9:1f:bf:62:2d:61:df:83:6d:f6:57:fa:30:bc: e7:60:aa:d4:b8:9d:c5:00:45:14:ed:04:90:e6:d0: c6:ac:65:53:10:fd:79:31:5d:8f:5d:52:0b:40:e1: 9f:6c:16:dc:06:c2:55:7a:55:35:ce:1e:f7:77:c4: 3a:5e:1e:ae:67:a4:3c:a8:c6:4e:9b:89:f3:77:b5: c1:51:26:5b:f0:74:22:d8:51:40:6b:55:94:73:32: bb:43:29:dd:a4:11:c1:aa:2c:55:10:e6:dc:11:74: 2d:95:c0:0c:2b:d1:28:f0:52:3c:67:65:47:57:2f: 55:a6:bd:96:4f:1b:d7:6f:c3:77:6f:6c:9a:94:60: 71:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:87:E4:68:46:3A:AF:F5:46:EB:6D:0E:4B:DB:CA:43:0F:45:E5:A7 X509v3 Authority Key Identifier: keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/206969823B9411EB9F059D7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.190.227.0/24 203.190.230.0/24 IPv6: 2001:de8:4::/64 2001:de8:5::/63 2001:de8:6::-2001:de8:6:2:ffff:ffff:ffff:ffff 2001:de8:7::/63 Signature Algorithm: sha256WithRSAEncryption 72:3f:04:63:2f:70:99:6d:d6:22:6c:b7:fe:5d:85:67:1c:19: 79:46:08:fa:31:27:e9:61:f6:43:a6:30:50:3a:8c:df:7b:3a: b7:40:9e:24:10:0b:64:d3:c2:08:26:36:80:20:9d:be:ee:28: 1e:2e:36:f1:e7:87:fb:4e:35:b0:2c:6c:0d:2c:b9:b4:65:50: 7d:c6:ed:05:cf:85:69:b6:fd:1a:a1:b8:4b:e4:81:38:a3:ce: ae:7a:2b:9a:60:be:78:8f:bf:6f:99:ed:70:6b:05:68:30:b5: 50:86:fd:ef:00:a1:e5:96:30:9e:8a:94:df:e7:39:08:6a:e4: f5:7d:a7:a9:b5:48:60:cf:ca:07:9b:33:2c:e9:2d:62:59:e3: 85:dd:8b:a7:43:95:59:a6:a8:d1:3f:30:bb:5b:c1:08:64:70: 6c:21:01:56:d4:e6:b0:ea:e5:ef:3c:aa:8c:3a:13:46:3e:7d: f0:00:9e:40:28:0a:93:00:57:0b:f6:96:36:89:1c:ab:b9:f2: ad:ac:b7:ee:11:98:2e:95:02:c9:df:d5:5e:0a:69:c5:b4:1e: 18:ff:ef:32:5b:c8:37:9c:e1:95:1d:5f:0d:b9:07:6a:11:91: 6a:e3:70:b8:a1:08:d7:74:1f:37:d3:8d:3e:40:57:46:b0:0e: bf:83:d8:d3 -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgICDD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFM0YxMTAvBgNVBAUTKDdFMzEzQUI3RkYyNkU3ODNFMDNDMDc4NTE2MTI3NTE4 ODFBRTQ5MTgwHhcNMjUwODE2MTkzMDAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEwZGMzOS00YmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukrRWZAjA4KXb37I59xd9t62hSOV4besMWmi29p+w4bcWBzw3MYp4PIVN65e 3LhgeKpdTdxwUSZXeX1b8KD664uHHKIUSPiMOjD73C+TSlgGu4x8g9w76tB5P6Nz OmUXiVdiDg+Hwk80udeCUy9sBruhF67ykq3+2R+/Yi1h34Nt9lf6MLznYKrUuJ3F AEUU7QSQ5tDGrGVTEP15MV2PXVILQOGfbBbcBsJVelU1zh73d8Q6Xh6uZ6Q8qMZO m4nzd7XBUSZb8HQi2FFAa1WUczK7QyndpBHBqixVEObcEXQtlcAMK9Eo8FI8Z2VH Vy9Vpr2WTxvXb8N3b2yalGBxIwIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFJ6H5GhG Oq/1RuttDkvbykMPReWnMB8GA1UdIwQYMBaAFH4xOrf/JueD4DwHhRYSdRiBrkkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEUzRi9DMjQzMjJCQTU0 NDYxMUVBOEMwNTY1MURDNEY5QUUwMi9makU2dF84bTU0UGdQQWVGRmhKMUdJR3VT UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqRTZ0XzhtNTRQZ1BBZUZGaEoxR0lHdVNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThFM0YvQzI0MzIyQkE1NDQ2MTFFQThDMDU2NTFEQzRGOUFFMDIvMjA2OTY5ODIz Qjk0MTFFQjlGMDU5RDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZAYIKwYBBQUHAQcBAf8E VTBTMBIEAgABMAwDBADLvuMDBADLvuYwPQQCAAIwNwMJACABDegABAAAAwkBIAEN 6AAFAAAwFAMHASABDegABgMJACABDegABgACAwkBIAEN6AAHAAAwDQYJKoZIhvcN AQELBQADggEBAHI/BGMvcJlt1iJst/5dhWccGXlGCPoxJ+lh9kOmMFA6jN97OrdA niQQC2TTwggmNoAgnb7uKB4uNvHnh/tONbAsbA0subRlUH3G7QXPhWm2/RqhuEvk gTijzq56K5pgvniPv2+Z7XBrBWgwtVCG/e8AoeWWMJ6KlN/nOQhq5PV9p6m1SGDP ygebMyzpLWJZ44Xdi6dDlVmmqNE/MLtbwQhkcGwhAVbU5rDq5e88qow6E0Y+ffAA nkAoCpMAVwv2ljaJHKu58q2st+4RmC6VAsnf1V4KacW0Hhj/7zJbyDec4ZUdXw25 B2oRkWrjcLihCNd0HzfTjT5AV0awDr+D2NM= -----END CERTIFICATE-----Generated at Sat Aug 23 09:06:59 2025 by rpki-client