$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/52863B4C9DBA11EB83364624C4F9AE02.roa File: 52863B4C9DBA11EB83364624C4F9AE02.roa (raw, json) Hash identifier: xgcAPmybhdKKX1LB8rArE+ilDIHuIkSGwEMHOrxxz6w= Subject key identifier: DA:F5:6F:36:F4:B8:81:0B:3E:2A:55:76:8C:09:64:0F:2C:08:0C:0F Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Certificate serial: 0C46 Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/52863B4C9DBA11EB83364624C4F9AE02.roa Signing time: Sat 16 Aug 2025 19:30:11 +0000 ROA not before: Sat 16 Aug 2025 19:30:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9989 IP address blocks: 202.177.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:34:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E3F, serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Validity Not Before: Aug 16 19:30:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a0dc42-c354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:32:fd:9e:eb:50:3b:59:de:a7:63:ba:03:1c: 85:01:e5:f1:c5:5d:fc:72:a8:b9:9b:6a:dc:0a:38: 85:d6:0d:01:4a:44:c2:6d:f8:c5:9d:59:cd:db:ea: 51:09:27:7e:9f:66:a2:29:77:a2:2d:35:d0:e8:6a: f9:af:cb:bf:83:a6:a8:d1:3b:6b:4e:e4:f2:17:92: 0e:0f:cd:b6:37:ce:d6:9f:b4:62:bd:6c:ce:cf:5a: f0:c8:db:20:72:65:e0:20:bb:59:38:7b:40:39:6f: 45:91:f1:90:28:67:d0:e6:50:bf:7d:cc:34:37:a7: 4a:48:73:14:6f:6e:5c:2c:30:a8:58:25:84:9f:84: 43:f7:73:42:87:f2:ee:7f:f9:b2:74:b4:8c:17:24: 0f:ac:20:63:4b:90:99:35:e7:4f:16:84:ca:38:63: eb:1c:ee:ea:08:97:93:df:f9:af:60:d6:ae:6e:56: 97:dc:f0:7f:a3:24:84:18:62:8c:4e:4d:9b:fe:bd: 85:e3:2a:8d:0d:96:a3:ec:65:0e:ba:9d:b0:e1:f4: ec:ec:41:52:9a:7f:b0:08:b4:12:8a:30:3b:e5:74: 38:ef:33:c6:7b:65:1d:73:1e:05:65:8f:7a:b8:29: 07:9e:7c:f1:75:55:0d:ec:6e:5b:a2:67:83:fd:cb: a0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F5:6F:36:F4:B8:81:0B:3E:2A:55:76:8C:09:64:0F:2C:08:0C:0F X509v3 Authority Key Identifier: keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/52863B4C9DBA11EB83364624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.177.206.0/24 Signature Algorithm: sha256WithRSAEncryption a6:4f:38:39:db:43:a4:c5:9b:bc:0c:51:c3:41:8f:0d:03:56: 8e:c5:d3:f6:a6:53:a2:7c:ec:30:da:47:50:e9:02:65:66:f0: cb:b5:d5:40:31:48:a1:ed:c7:8c:bc:e6:cd:e2:4b:35:a0:fc: 2b:f7:cf:0a:f6:15:a0:20:8a:e8:8f:b7:df:2f:46:07:bb:ee: 97:31:5c:47:79:77:d4:c6:96:2f:38:c8:4d:88:4c:d0:95:e9: 55:c9:f7:9f:fe:3b:0e:23:c5:8f:1f:70:25:4d:66:92:28:23: 9d:4e:e5:b4:d5:73:7c:a3:a3:44:c2:34:7b:5c:ae:06:4b:e4: 7e:d2:b7:c3:5c:a1:bc:45:89:7a:f9:c1:75:dd:73:f5:9d:4a: 9a:65:84:f0:d7:ec:8b:fe:be:13:8b:43:52:68:aa:f9:cf:88: 25:95:6c:b2:dc:df:ff:86:73:37:4e:aa:1b:9e:b5:1d:df:6a: 3f:f7:9c:3b:1c:9a:db:75:b3:d0:50:ef:cd:65:21:1e:b8:33: 12:52:f0:16:28:1b:11:c9:5b:67:1a:c0:01:ff:10:dc:1d:ca: c9:ff:be:a0:20:cb:99:af:f6:cc:45:5e:24:38:20:1f:15:66: 0b:d6:cd:97:c1:f7:3b:d4:90:aa:5d:33:c2:4f:dd:24:68:47: 02:06:36:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFM0YxMTAvBgNVBAUTKDdFMzEzQUI3RkYyNkU3ODNFMDNDMDc4NTE2MTI3NTE4 ODFBRTQ5MTgwHhcNMjUwODE2MTkzMDExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEwZGM0Mi1jMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDL9nutQO1nep2O6AxyFAeXxxV38cqi5m2rcCjiF1g0BSkTCbfjFnVnN2+pR CSd+n2aiKXeiLTXQ6Gr5r8u/g6ao0TtrTuTyF5IOD822N87Wn7RivWzOz1rwyNsg cmXgILtZOHtAOW9FkfGQKGfQ5lC/fcw0N6dKSHMUb25cLDCoWCWEn4RD93NCh/Lu f/mydLSMFyQPrCBjS5CZNedPFoTKOGPrHO7qCJeT3/mvYNaublaX3PB/oySEGGKM Tk2b/r2F4yqNDZaj7GUOup2w4fTs7EFSmn+wCLQSijA75XQ47zPGe2Udcx4FZY96 uCkHnnzxdVUN7G5bomeD/cugLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNr1bzb0 uIELPipVdowJZA8sCAwPMB8GA1UdIwQYMBaAFH4xOrf/JueD4DwHhRYSdRiBrkkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEUzRi9DMjQzMjJCQTU0 NDYxMUVBOEMwNTY1MURDNEY5QUUwMi9makU2dF84bTU0UGdQQWVGRmhKMUdJR3VT UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqRTZ0XzhtNTRQZ1BBZUZGaEoxR0lHdVNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThFM0YvQzI0MzIyQkE1NDQ2MTFFQThDMDU2NTFEQzRGOUFFMDIvNTI4NjNCNEM5 REJBMTFFQjgzMzY0NjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKsc4wDQYJKoZIhvcNAQELBQADggEBAKZPODnbQ6TFm7wM UcNBjw0DVo7F0/amU6J87DDaR1DpAmVm8Mu11UAxSKHtx4y85s3iSzWg/Cv3zwr2 FaAgiuiPt98vRge77pcxXEd5d9TGli84yE2ITNCV6VXJ95/+Ow4jxY8fcCVNZpIo I51O5bTVc3yjo0TCNHtcrgZL5H7St8NcobxFiXr5wXXdc/WdSpplhPDX7Iv+vhOL Q1JoqvnPiCWVbLLc3/+GczdOqhuetR3faj/3nDscmtt1s9BQ781lIR64MxJS8BYo GxHJW2cawAH/ENwdysn/vqAgy5mv9sxFXiQ4IB8VZgvWzZfB9zvUkKpdM8JP3SRo RwIGNus= -----END CERTIFICATE-----Generated at Sun Aug 24 07:02:27 2025 by rpki-client