$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa File: 2DCC0688B57211EEBB68526DC4F9AE02.roa (raw, json) Hash identifier: 3pfVChkV7zELWja+oHQv3Km6INJzdWSQS1Y4XK0gQXg= Subject key identifier: 30:69:E0:E0:34:48:6D:F2:CF:55:18:3F:38:95:C4:AF:D7:EE:5D:48 Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 0136 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa Signing time: Fri 15 Aug 2025 05:12:57 +0000 ROA not before: Fri 15 Aug 2025 05:12:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 22003 IP address blocks: 216.200.189.0/24 maxlen: 24 216.200.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Aug 15 05:12:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689ec1d9-f4f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c0:dc:aa:b9:20:49:50:ec:ca:ae:2d:44:d3: a6:18:00:ad:4e:55:11:f2:28:7c:56:8a:a8:ec:3e: 58:47:4f:ed:44:78:2b:b1:d3:a9:78:19:9d:82:f8: 84:33:45:32:fb:39:74:59:9b:eb:ea:84:43:90:3a: 45:83:74:74:85:f6:75:96:46:53:62:76:57:02:bb: 3f:d9:2f:d3:4a:1e:00:ca:eb:0d:32:e5:f4:0e:a8: a6:34:6a:09:e0:c5:1a:e9:fa:f4:cc:d4:54:6d:58: 11:97:b5:2d:85:80:62:27:f1:b6:13:a9:ec:4f:83: 5c:8b:0f:3c:73:11:ee:db:0b:38:db:67:a8:85:cf: 2b:0c:77:65:bc:ec:14:19:e9:78:55:20:cc:51:d0: cb:52:3f:c3:10:47:39:18:4d:56:01:81:ba:2d:3f: 5a:8a:cc:6a:af:5b:b9:65:5e:0a:04:95:00:ed:4a: 79:e2:51:58:48:2f:b5:bf:c2:0d:07:cf:78:47:e1: 85:96:90:76:a3:aa:ae:f3:63:9b:06:21:d1:bc:ed: 71:b0:38:89:32:62:e6:97:d3:23:75:9a:50:46:4a: 9d:d0:11:70:90:af:91:3a:80:9e:d6:59:15:b6:24: 1e:69:92:38:56:d9:f2:bc:5d:8b:c6:5c:6b:08:2d: f5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:69:E0:E0:34:48:6D:F2:CF:55:18:3F:38:95:C4:AF:D7:EE:5D:48 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.200.189.0-216.200.190.255 Signature Algorithm: sha256WithRSAEncryption bb:35:74:6c:aa:a2:97:34:7e:e1:14:4d:e7:6e:18:b1:19:ad: 0e:6e:ab:ee:17:41:85:cd:c3:e9:47:f7:96:a8:bb:14:e9:81: 2d:2d:55:ba:c0:60:7f:70:a7:b1:c7:c0:2b:14:c8:3b:26:2a: 58:2f:a4:dc:11:c1:a5:85:26:8e:c6:32:22:ea:4e:59:7d:a7: 2f:b6:2a:03:f3:4a:88:de:3b:b8:45:65:18:ab:18:9b:b8:90: 1a:3e:c3:88:dd:4a:e5:17:16:4c:f9:5a:2b:c6:28:01:69:65: 2f:7f:96:dd:11:63:99:9e:88:f5:60:c5:4d:64:8c:f9:2d:1c: 62:c1:2e:4e:8a:1e:0c:59:d2:a9:51:72:f2:6c:bf:fb:80:d7: 5b:b6:96:83:b8:21:6a:00:70:49:90:32:13:72:0f:50:8b:f6: 41:a7:de:4e:35:67:0e:7b:87:00:14:44:9a:67:86:1b:24:29: 7e:e2:4b:59:6e:66:e7:69:6f:fe:15:7c:c8:e0:6f:93:12:f1: 9f:54:71:03:94:c7:c5:29:34:64:03:5e:10:a8:6c:8d:4d:c1: 55:d2:f8:46:5d:5b:c2:ec:a9:02:49:ba:37:f5:7c:00:c8:8a: db:b9:20:5d:1c:af:a9:61:27:31:47:df:96:5c:15:f7:24:00: 27:af:7e:ca -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwODE1MDUxMjU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllYzFkOS1mNGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMDcqrkgSVDsyq4tRNOmGACtTlUR8ih8Voqo7D5YR0/tRHgrsdOpeBmdgviE M0Uy+zl0WZvr6oRDkDpFg3R0hfZ1lkZTYnZXArs/2S/TSh4AyusNMuX0DqimNGoJ 4MUa6fr0zNRUbVgRl7UthYBiJ/G2E6nsT4Nciw88cxHu2ws422eohc8rDHdlvOwU Gel4VSDMUdDLUj/DEEc5GE1WAYG6LT9aisxqr1u5ZV4KBJUA7Up54lFYSC+1v8IN B894R+GFlpB2o6qu82ObBiHRvO1xsDiJMmLml9MjdZpQRkqd0BFwkK+ROoCe1lkV tiQeaZI4VtnyvF2LxlxrCC315wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFDBp4OA0 SG3yz1UYPziVxK/X7l1IMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyNzcvNDNBN0U4OTRCNTYwMTFFRTkxMUM1RDRGQzRGOUFFMDIvMkRDQzA2ODhC NTcyMTFFRUJCNjg1MjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEANjIvQMEANjIvjANBgkqhkiG9w0BAQsFAAOCAQEAuzV0 bKqilzR+4RRN524YsRmtDm6r7hdBhc3D6Uf3lqi7FOmBLS1VusBgf3CnscfAKxTI OyYqWC+k3BHBpYUmjsYyIupOWX2nL7YqA/NKiN47uEVlGKsYm7iQGj7DiN1K5RcW TPlaK8YoAWllL3+W3RFjmZ6I9WDFTWSM+S0cYsEuTooeDFnSqVFy8my/+4DXW7aW g7ghagBwSZAyE3IPUIv2QafeTjVnDnuHABREmmeGGyQpfuJLWW5m52lv/hV8yOBv kxLxn1RxA5THxSk0ZANeEKhsjU3BVdL4Rl1bwuypAkm6N/V8AMiK27kgXRyvqWEn MUffllwV9yQAJ69+yg== -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:22 2025 by rpki-client