$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0EE/4BCC444409C011EEBE12583AC4F9AE02/6A3BE658401B11F080319527C4F9AE02.roa File: 6A3BE658401B11F080319527C4F9AE02.roa (raw, json) Hash identifier: Zuvu+1mG5bNQwxNAUGP3582mVxfrnoDDzDua0CLltU4= Subject key identifier: 64:C3:17:E4:F4:1F:44:32:24:76:23:18:FB:CF:96:11:22:10:BD:3D Certificate issuer: /CN=A915A0EE/serialNumber=826E38EC71F2A485B4B24EFECE8463250A84A0BC Certificate serial: 019C Authority key identifier: 82:6E:38:EC:71:F2:A4:85:B4:B2:4E:FE:CE:84:63:25:0A:84:A0:BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gm447HHypIW0sk7-zoRjJQqEoLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0EE/4BCC444409C011EEBE12583AC4F9AE02/6A3BE658401B11F080319527C4F9AE02.roa Signing time: Tue 19 Aug 2025 04:11:04 +0000 ROA not before: Tue 19 Aug 2025 04:11:04 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 18081 IP address blocks: 139.101.0.0/16 maxlen: 16 139.101.0.0/18 maxlen: 18 139.101.64.0/18 maxlen: 18 139.101.128.0/18 maxlen: 18 139.101.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0EE/4BCC444409C011EEBE12583AC4F9AE02/gm447HHypIW0sk7-zoRjJQqEoLw.crl rsync://rpki.apnic.net/member_repository/A915A0EE/4BCC444409C011EEBE12583AC4F9AE02/gm447HHypIW0sk7-zoRjJQqEoLw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gm447HHypIW0sk7-zoRjJQqEoLw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:27:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0EE, serialNumber=826E38EC71F2A485B4B24EFECE8463250A84A0BC Validity Not Before: Aug 19 04:11:04 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a3f958-17c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1a:e7:19:f8:c6:1f:34:ff:63:45:ad:d8:bd: b4:b7:57:ff:11:8b:17:27:c9:ee:69:1a:ad:eb:47: 46:23:6e:6b:4a:ec:66:84:97:4d:a1:12:bc:1d:40: ea:e9:63:d6:9f:e4:de:ef:33:42:28:1e:d5:7e:6e: be:8a:c4:61:c2:91:4c:04:ae:42:08:2d:42:7f:1d: 1a:44:38:8b:dc:d0:4e:3b:1e:80:33:9f:18:d1:ea: 87:f1:ba:95:a2:98:f7:05:07:0c:5c:5a:23:77:00: 1b:cb:b6:80:9b:8f:0f:2b:18:3e:1e:68:1e:25:85: 0d:fa:1c:f4:66:8b:43:14:8a:8f:ec:48:f7:65:d4: 94:3d:2c:60:6b:e6:9a:f7:30:f0:f0:68:dd:1b:54: 6c:16:21:3b:90:27:52:58:4a:42:12:76:d7:c5:a9: 23:b3:f1:02:0d:5a:da:f3:f9:77:03:7c:b9:ac:1c: 61:ad:49:cc:eb:f9:0e:2c:ac:3c:a2:a3:ce:7f:12: f3:36:49:a4:4f:73:b7:78:ac:17:94:61:a6:65:4c: db:28:fb:93:c8:76:c3:9b:5a:0d:9f:12:55:47:4a: 2e:8a:48:fd:99:62:cf:33:25:47:7f:73:c5:4b:f1: 5d:89:2d:87:ec:08:6a:46:62:3d:55:a3:b4:d5:3e: 3e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C3:17:E4:F4:1F:44:32:24:76:23:18:FB:CF:96:11:22:10:BD:3D X509v3 Authority Key Identifier: keyid:82:6E:38:EC:71:F2:A4:85:B4:B2:4E:FE:CE:84:63:25:0A:84:A0:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0EE/4BCC444409C011EEBE12583AC4F9AE02/gm447HHypIW0sk7-zoRjJQqEoLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gm447HHypIW0sk7-zoRjJQqEoLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0EE/4BCC444409C011EEBE12583AC4F9AE02/6A3BE658401B11F080319527C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.101.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:cc:51:e4:7c:4c:87:f5:fb:18:55:69:b7:b7:da:d2:f4:53: 83:af:6e:de:45:98:e6:3c:6b:02:c8:a9:9a:e2:47:53:87:9d: 0e:b2:4a:28:ff:bd:ec:27:3c:54:48:bf:8d:db:ab:f6:a1:30: 95:56:19:ef:78:cf:7b:60:97:6f:16:88:bf:57:4e:13:82:65: c4:e1:26:08:16:ad:68:ec:66:a5:5d:e6:a5:9c:f9:ed:0a:5a: 74:a4:e2:b0:31:33:b2:92:d6:fe:b1:fc:f1:e1:98:92:42:08: c8:65:30:92:e3:72:b2:c3:d0:32:9d:51:4d:4a:14:20:07:57: 4b:83:b9:f5:68:72:1c:68:c1:eb:e4:ff:71:24:0b:f3:e4:5e: d2:12:71:fb:e1:3f:9d:97:19:2c:ed:46:b9:ee:74:57:c1:9d: ef:67:62:a2:cc:b5:f4:90:80:85:6a:48:1d:5c:97:f5:b8:63: f4:11:59:79:d2:21:52:12:79:73:63:e4:17:e9:7c:01:20:7f: d3:b5:ee:86:3a:a7:4a:6a:60:6d:a6:a3:e0:ed:c9:34:a8:a8: ac:54:53:86:86:22:bb:a9:b1:79:5c:8c:df:47:6d:4e:51:28: ed:da:36:72:c1:b4:fd:a2:59:22:b8:6d:25:36:f6:81:3a:ed: 0a:73:7a:bd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRUUxMTAvBgNVBAUTKDgyNkUzOEVDNzFGMkE0ODVCNEIyNEVGRUNFODQ2MzI1 MEE4NEEwQkMwHhcNMjUwODE5MDQxMTA0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzZjk1OC0xN2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhrnGfjGHzT/Y0Wt2L20t1f/EYsXJ8nuaRqt60dGI25rSuxmhJdNoRK8HUDq 6WPWn+Te7zNCKB7Vfm6+isRhwpFMBK5CCC1Cfx0aRDiL3NBOOx6AM58Y0eqH8bqV opj3BQcMXFojdwAby7aAm48PKxg+HmgeJYUN+hz0ZotDFIqP7Ej3ZdSUPSxga+aa 9zDw8GjdG1RsFiE7kCdSWEpCEnbXxakjs/ECDVra8/l3A3y5rBxhrUnM6/kOLKw8 oqPOfxLzNkmkT3O3eKwXlGGmZUzbKPuTyHbDm1oNnxJVR0ouikj9mWLPMyVHf3PF S/FdiS2H7AhqRmI9VaO01T4+AwIDAQABo4IClDCCApAwHQYDVR0OBBYEFGTDF+T0 H0QyJHYjGPvPlhEiEL09MB8GA1UdIwQYMBaAFIJuOOxx8qSFtLJO/s6EYyUKhKC8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBFRS80QkNDNDQ0NDA5 QzAxMUVFQkUxMjU4M0FDNEY5QUUwMi9nbTQ0N0hIeXBJVzBzazctem9SakpRcUVv THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dtNDQ3SEh5cElXMHNrNy16b1JqSlFxRW9Mdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwRUUvNEJDQzQ0NDQwOUMwMTFFRUJFMTI1ODNBQzRGOUFFMDIvNkEzQkU2NTg0 MDFCMTFGMDgwMzE5NTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCLZTANBgkqhkiG9w0BAQsFAAOCAQEAiMxR5HxMh/X7GFVp t7fa0vRTg69u3kWY5jxrAsipmuJHU4edDrJKKP+97Cc8VEi/jdur9qEwlVYZ73jP e2CXbxaIv1dOE4JlxOEmCBataOxmpV3mpZz57QpadKTisDEzspLW/rH88eGYkkII yGUwkuNyssPQMp1RTUoUIAdXS4O59WhyHGjB6+T/cSQL8+Re0hJx++E/nZcZLO1G ue50V8Gd72diosy19JCAhWpIHVyX9bhj9BFZedIhUhJ5c2PkF+l8ASB/07Xuhjqn Smpgbaaj4O3JNKiorFRThoYiu6mxeVyM30dtTlEo7do2csG0/aJZIrhtJTb2gTrt CnN6vQ== -----END CERTIFICATE-----Generated at Sun Aug 24 01:03:10 2025 by rpki-client