$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/6D5014F2146F11EDB756F727C4F9AE02.roa File: 6D5014F2146F11EDB756F727C4F9AE02.roa (raw, json) Hash identifier: YZYraaTW4N+SBvMTqXTfavIL9Ycht4bd0iE5EB0Igv0= Subject key identifier: C9:EC:95:96:2A:39:8F:56:62:BF:FA:77:E8:48:6D:A6:37:6E:F7:81 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 029A Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/6D5014F2146F11EDB756F727C4F9AE02.roa Signing time: Wed 03 Sep 2025 02:18:27 +0000 ROA not before: Wed 03 Sep 2025 02:18:27 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 56132 IP address blocks: 203.23.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F, serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: Sep 3 02:18:27 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7a573-d46c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:63:8f:8f:5e:4c:a3:a6:7b:04:71:1b:21:b9: 1e:5b:00:8c:4a:53:78:f0:7b:bb:32:50:50:67:e8: 67:bb:8e:e9:fe:c4:0f:88:15:27:22:ee:94:e2:b7: b8:11:6d:1e:0c:62:35:9c:65:07:06:c6:5d:7d:c0: 39:a2:e8:04:22:07:9f:88:2c:eb:9d:96:cb:74:81: cd:61:c7:5b:41:a7:5e:36:f1:05:63:d4:5f:66:0b: 0d:55:e6:fc:e4:59:5d:d4:d0:07:7f:7a:94:3c:00: 6a:d8:a7:94:0e:3f:83:58:71:e7:12:a6:ac:12:f8: 70:1d:46:64:2e:8e:76:c4:4e:24:0a:5c:25:15:39: b2:9b:eb:3f:a7:9f:77:4f:be:3e:54:5a:5a:85:47: eb:cb:a6:c2:2f:8e:a2:1b:87:7a:c9:61:fd:45:75: 54:8f:18:9a:18:18:45:3e:61:bd:fc:db:bd:54:e4: 2e:dc:9a:3e:5d:45:d4:e0:1a:2f:5e:5e:e8:67:fa: 28:64:51:c2:60:05:fb:9e:83:11:25:9e:1b:6c:cd: 79:1f:4d:1c:05:10:11:f0:fb:d3:2f:4a:2e:f3:6f: ec:06:ca:e6:30:09:c3:e7:9a:3d:ec:16:88:51:a1: 2f:97:24:e8:4a:e3:a9:24:cb:7f:32:b5:2e:9b:cb: b4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EC:95:96:2A:39:8F:56:62:BF:FA:77:E8:48:6D:A6:37:6E:F7:81 X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/6D5014F2146F11EDB756F727C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.136.0/24 Signature Algorithm: sha256WithRSAEncryption 09:e7:31:8c:57:27:92:a9:d8:4e:c1:bb:26:86:39:ab:66:5d: 45:53:a6:0b:b5:88:cf:c4:93:90:41:27:7f:15:4c:82:2f:c9: 02:c6:46:e7:2a:bb:ca:ef:79:5f:4c:9e:8c:dd:a9:bc:64:f1: 48:b9:35:86:bc:cb:f6:73:a1:d0:ce:a8:50:49:ad:72:a5:c1: 64:a9:7d:89:95:54:cc:b4:05:d7:8a:e1:22:5f:b0:a2:ae:d5: 21:2d:0c:b6:af:eb:89:4e:ad:5f:77:45:0e:5a:0f:ad:b5:2e: 38:e7:95:ce:8b:98:c5:9a:df:28:fa:e9:88:83:f6:4c:76:a3: a8:f4:32:20:a3:97:c9:53:49:3e:f7:61:21:8a:a6:75:98:5f: 12:2f:7d:b1:09:b0:58:1b:9a:ec:e3:a2:5c:e8:c9:e1:69:da: 91:0d:97:32:47:4b:fa:5f:e6:12:09:f4:2a:62:ab:0a:6f:c1: 13:92:b2:90:c0:7a:0d:08:4f:96:b6:ab:66:fb:dd:53:72:6d: 96:0e:a0:7f:9f:9c:7c:12:e3:79:69:53:7d:3f:30:22:4f:b2: a7:3d:8b:d4:1f:0c:24:38:5f:cf:23:d1:0c:5e:34:74:0c:f1: f0:4d:b0:f5:e2:f3:63:65:99:c4:50:4b:e5:3d:96:2a:db:a2: 7b:f8:6f:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjUwOTAzMDIxODI3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YTU3My1kNDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmOPj15Mo6Z7BHEbIbkeWwCMSlN48Hu7MlBQZ+hnu47p/sQPiBUnIu6U4re4 EW0eDGI1nGUHBsZdfcA5ougEIgefiCzrnZbLdIHNYcdbQadeNvEFY9RfZgsNVeb8 5Fld1NAHf3qUPABq2KeUDj+DWHHnEqasEvhwHUZkLo52xE4kClwlFTmym+s/p593 T74+VFpahUfry6bCL46iG4d6yWH9RXVUjxiaGBhFPmG9/Nu9VOQu3Jo+XUXU4Bov Xl7oZ/ooZFHCYAX7noMRJZ4bbM15H00cBRAR8PvTL0ou82/sBsrmMAnD55o97BaI UaEvlyToSuOpJMt/MrUum8u0cQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMnslZYq OY9WYr/6d+hIbaY3bveBMB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZGNkYvMTJFMjUxN0MxNDZDMTFFREI3QzQwQTIzQzRGOUFFMDIvNkQ1MDE0RjIx NDZGMTFFREI3NTZGNzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLF4gwDQYJKoZIhvcNAQELBQADggEBAAnnMYxXJ5Kp2E7B uyaGOatmXUVTpgu1iM/Ek5BBJ38VTIIvyQLGRucqu8rveV9Mnozdqbxk8Ui5NYa8 y/ZzodDOqFBJrXKlwWSpfYmVVMy0BdeK4SJfsKKu1SEtDLav64lOrV93RQ5aD621 Ljjnlc6LmMWa3yj66YiD9kx2o6j0MiCjl8lTST73YSGKpnWYXxIvfbEJsFgbmuzj olzoyeFp2pENlzJHS/pf5hIJ9CpiqwpvwROSspDAeg0IT5a2q2b73VNybZYOoH+f nHwS43lpU30/MCJPsqc9i9QfDCQ4X88j0QxeNHQM8fBNsPXi82NlmcRQS+U9lirb onv4b8A= -----END CERTIFICATE-----Generated at Mon Sep 8 15:29:34 2025 by rpki-client