$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/06239EBADFEA11ED835B4D0EC4F9AE02.roa File: 06239EBADFEA11ED835B4D0EC4F9AE02.roa (raw, json) Hash identifier: P7O96Yfngs36i1Yso6tRUdR0UTcCnWvkqMzJTMS0hUc= Subject key identifier: 10:7D:CC:BB:12:5E:AB:EE:42:BE:1A:09:73:67:DD:23:F9:9B:1E:5C Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 24F7 Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/06239EBADFEA11ED835B4D0EC4F9AE02.roa Signing time: Tue 16 Sep 2025 15:53:49 +0000 ROA not before: Tue 16 Sep 2025 15:53:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 63673 IP address blocks: 203.208.157.0/24 maxlen: 24 203.208.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9463 (0x24f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B, serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: Sep 16 15:53:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c9880d-3c15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e4:3a:ba:c5:fa:fe:77:69:be:c1:10:a8:1b: 3b:fb:95:f7:5f:53:44:99:cf:c3:ad:2c:24:ce:58: a9:7b:6c:9a:42:5e:9b:44:84:61:f0:bc:3f:8f:82: 9c:98:d8:c6:95:2c:39:b2:cd:41:c1:d7:4d:c0:bd: 69:c8:fa:22:56:0e:de:05:e9:c6:9f:3a:35:75:b5: ac:aa:8a:6e:ec:8f:c9:9b:79:96:68:45:e4:58:37: 07:1e:f5:c1:9b:b5:c4:a4:ae:7f:a9:e2:38:b6:ab: 3a:06:e5:7d:46:81:e9:40:dd:b4:85:e6:34:50:d6: 72:68:43:d0:51:f9:2c:d0:20:a3:17:95:e6:11:79: 94:fd:9f:f9:a5:2e:e9:ce:27:c2:d8:d7:d1:2f:66: af:48:26:8b:1c:39:b8:97:7d:be:91:82:42:53:f0: bc:39:26:df:51:0b:34:53:b8:2d:a2:5b:b5:cf:2d: 26:96:31:85:45:de:89:6f:e0:ee:4e:f8:67:08:1c: 9d:9f:12:5f:78:13:45:8c:48:1f:a9:bc:58:c9:3f: 7a:2d:f3:a5:42:51:6c:98:9e:b8:e3:2f:93:65:c8: a3:2e:8b:d1:f4:5c:a4:40:00:6a:20:ce:d8:d5:b4: 57:8a:66:38:b9:31:8c:b3:34:26:ba:0e:8b:eb:1e: 0b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:7D:CC:BB:12:5E:AB:EE:42:BE:1A:09:73:67:DD:23:F9:9B:1E:5C X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/06239EBADFEA11ED835B4D0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.208.157.0/24 203.208.170.0/24 Signature Algorithm: sha256WithRSAEncryption c6:aa:37:90:7c:e8:de:ab:da:10:cc:a6:6c:f0:85:3e:3a:d9: 0f:8f:0c:c4:86:9e:40:61:0a:27:f2:fa:c8:f0:89:ed:34:bd: 08:ab:35:86:23:d1:a9:5d:57:0d:49:f8:cc:62:c7:5c:ce:7f: d8:67:b3:09:10:6e:1f:a0:25:a8:00:ea:42:88:82:9e:63:20: f5:9a:01:f2:de:dc:21:a1:88:b1:30:6b:e2:b9:93:31:d6:f8: 99:ff:f3:e4:b0:ac:e7:a6:37:b7:31:d4:6b:23:2f:46:89:04: cf:1c:a6:7f:ed:74:6c:4c:3f:bf:33:d1:99:41:1a:27:27:16: 79:fe:ac:cc:bf:31:e5:e4:68:87:0e:ed:60:61:c3:f7:c9:f7: 45:d6:86:b7:26:6d:3a:fa:b7:f2:42:6a:ee:95:4b:04:3e:43: 2d:c2:b4:c2:2b:b6:63:48:c6:56:d6:46:18:d4:52:c3:a6:bb: 5a:ed:ec:28:6d:a5:b4:c0:9c:77:46:67:30:18:24:ba:1f:5d: 5a:2f:e5:26:f5:e7:58:72:04:c7:2e:54:6e:6c:e6:69:fb:d7: 4b:e0:d7:cf:a9:d5:73:98:86:94:ad:8f:ec:9f:07:d0:e4:1a: e0:3b:65:66:9e:51:11:73:3e:7f:b1:d5:b4:3f:fb:65:7e:b8: ef:5d:79:f5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjUwOTE2MTU1MzQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5ODgwZC0zYzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuQ6usX6/ndpvsEQqBs7+5X3X1NEmc/DrSwkzlipe2yaQl6bRIRh8Lw/j4Kc mNjGlSw5ss1BwddNwL1pyPoiVg7eBenGnzo1dbWsqopu7I/Jm3mWaEXkWDcHHvXB m7XEpK5/qeI4tqs6BuV9RoHpQN20heY0UNZyaEPQUfks0CCjF5XmEXmU/Z/5pS7p zifC2NfRL2avSCaLHDm4l32+kYJCU/C8OSbfUQs0U7gtolu1zy0mljGFRd6Jb+Du TvhnCBydnxJfeBNFjEgfqbxYyT96LfOlQlFsmJ644y+TZcijLovR9FykQABqIM7Y 1bRXimY4uTGMszQmug6L6x4LvQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBB9zLsS XqvuQr4aCXNn3SP5mx5cMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MkIvNjRBMDUxNDY2MDEyMTFFNUJFOTI1MDcwQzRGOUFFMDIvMDYyMzlFQkFE RkVBMTFFRDgzNUI0RDBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADL0J0DBADL0KowDQYJKoZIhvcNAQELBQADggEBAMaqN5B8 6N6r2hDMpmzwhT462Q+PDMSGnkBhCify+sjwie00vQirNYYj0aldVw1J+Mxix1zO f9hnswkQbh+gJagA6kKIgp5jIPWaAfLe3CGhiLEwa+K5kzHW+Jn/8+SwrOemN7cx 1GsjL0aJBM8cpn/tdGxMP78z0ZlBGicnFnn+rMy/MeXkaIcO7WBhw/fJ90XWhrcm bTr6t/JCau6VSwQ+Qy3CtMIrtmNIxlbWRhjUUsOmu1rt7ChtpbTAnHdGZzAYJLof XVov5Sb151hyBMcuVG5s5mn710vg18+p1XOYhpStj+yfB9DkGuA7ZWaeURFzPn+x 1bQ/+2V+uO9defU= -----END CERTIFICATE-----Generated at Mon Oct 20 17:55:02 2025 by rpki-client