$ rpki-client -vvf rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/62C61398C93A11EEA1A4CA4FC4F9AE02.roa File: 62C61398C93A11EEA1A4CA4FC4F9AE02.roa (raw, json) Hash identifier: jax3qkALNRFMNrAOXKyN2WiovYFpDRlk86jOWinHUwU= Subject key identifier: BB:C2:1D:3C:71:0B:CF:62:15:EE:7A:A6:43:EE:A2:0C:0B:A5:ED:08 Certificate issuer: /CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Certificate serial: 014C Authority key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/62C61398C93A11EEA1A4CA4FC4F9AE02.roa Signing time: Tue 17 Jun 2025 03:42:40 +0000 ROA not before: Tue 17 Jun 2025 03:42:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 202595 IP address blocks: 43.245.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 05:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158620, serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Validity Not Before: Jun 17 03:42:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6850e430-381c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:19:d8:c2:44:15:1c:f7:89:8e:70:5d:27:33: 6e:5c:9c:12:4d:5d:6c:ba:d5:b5:c6:72:e7:c0:c6: 40:77:b5:c0:8a:20:10:3a:fc:43:87:77:81:02:be: a6:53:2c:ee:f1:58:ab:0d:53:84:06:24:f5:47:7b: c6:1d:af:d6:5b:9a:7f:8f:b3:9d:7f:6b:76:43:e7: 9a:a3:27:c8:07:22:e4:cd:95:79:51:55:ff:4d:b4: 09:d2:89:f7:ad:c0:7d:7b:69:83:cb:13:73:9a:aa: e2:51:bf:db:35:68:b3:a1:4c:61:99:2b:8b:c5:60: 9e:ff:4c:b3:31:b5:8b:45:94:ce:7f:5f:b4:d8:b6: 0d:87:19:68:e7:81:dd:67:a9:7b:63:06:21:c1:86: 48:d5:ee:22:3f:c9:c5:c4:f9:32:58:7a:a7:67:8b: 93:33:1b:a4:e7:fa:71:07:55:0c:89:9c:16:86:14: 21:f0:db:5e:45:c2:db:68:2e:53:7f:0f:79:f0:2d: 20:fe:5a:5d:08:b2:5f:33:c4:89:f2:6a:4e:cc:96: 8d:5b:73:b6:9f:4e:bd:62:88:65:c7:80:5f:ff:94: 65:ec:cd:7c:3b:0a:ad:77:0f:70:13:f6:e1:fe:c7: 4e:b9:f5:85:0d:79:3b:bb:2e:64:0a:cd:ca:3a:d8: 58:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:C2:1D:3C:71:0B:CF:62:15:EE:7A:A6:43:EE:A2:0C:0B:A5:ED:08 X509v3 Authority Key Identifier: keyid:A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/62C61398C93A11EEA1A4CA4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.43.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:6b:18:c3:99:f0:d8:7d:c7:b3:44:2c:7f:f8:67:7b:34:db: 3f:df:51:66:a9:8d:ab:18:ea:47:e0:f7:c7:a0:b9:48:4f:fe: 6d:ef:83:63:33:8a:bc:fd:d8:d2:0a:e9:f3:bd:e7:d3:76:93: 67:b1:2c:8a:fb:7f:3d:8f:18:2f:ba:34:5d:c6:f8:46:57:0c: 61:b2:3c:29:b8:c1:64:28:57:62:77:74:6b:36:c6:7c:7f:65: 43:8a:9f:84:00:07:fc:02:0a:dc:56:f2:00:15:83:d1:33:82: 2a:7b:d4:f2:93:ae:67:64:04:ff:e4:5d:8a:75:d3:7e:3c:0c: 8b:84:40:e8:f3:8b:0a:aa:ad:27:27:10:e7:64:d2:8d:20:4c: 1b:e5:04:f0:ee:a1:05:5b:29:25:7c:40:9e:e6:38:80:11:f9: 4e:2d:24:ea:eb:14:19:19:eb:e3:7d:19:c6:99:60:04:85:ff: 1f:da:47:49:95:82:88:25:db:13:ff:22:73:4f:ea:b2:a2:75: 7d:62:f1:01:24:1c:48:7d:5c:a3:e3:d9:92:df:96:a4:8e:a4: c1:1f:99:d7:dd:a6:cd:4b:6b:6e:72:21:b1:8e:55:0e:8b:c7: a5:65:2d:b4:5f:9e:f0:4f:1b:31:21:83:fa:db:11:5b:60:57: db:78:f3:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2MjAxMTAvBgNVBAUTKEE0MDhBQzk0QTBEMzM2RjQ3MzI0OTA1QTkxOEFGMjQ5 MDJGMERFOEIwHhcNMjUwNjE3MDM0MjQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwZTQzMC0zODFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxnYwkQVHPeJjnBdJzNuXJwSTV1sutW1xnLnwMZAd7XAiiAQOvxDh3eBAr6m Uyzu8VirDVOEBiT1R3vGHa/WW5p/j7Odf2t2Q+eaoyfIByLkzZV5UVX/TbQJ0on3 rcB9e2mDyxNzmqriUb/bNWizoUxhmSuLxWCe/0yzMbWLRZTOf1+02LYNhxlo54Hd Z6l7YwYhwYZI1e4iP8nFxPkyWHqnZ4uTMxuk5/pxB1UMiZwWhhQh8NteRcLbaC5T fw958C0g/lpdCLJfM8SJ8mpOzJaNW3O2n069Yohlx4Bf/5Rl7M18Owqtdw9wE/bh /sdOufWFDXk7uy5kCs3KOthYLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLvCHTxx C89iFe56pkPuogwLpe0IMB8GA1UdIwQYMBaAFKQIrJSg0zb0cySQWpGK8kkC8N6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODYyMC8wRTkxOTkzNDg4 NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtEVE52UnpKSkJha1lyeVNRTHcz b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BBaXNsS0RUTnZSekpKQmFrWXJ5U1FMdzNvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg2MjAvMEU5MTk5MzQ4ODQyMTFFRUE3RDhDODE0QzRGOUFFMDIvNjJDNjEzOThD OTNBMTFFRUExQTRDQTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr9SswDQYJKoZIhvcNAQELBQADggEBAHxrGMOZ8Nh9x7NE LH/4Z3s02z/fUWapjasY6kfg98eguUhP/m3vg2Mzirz92NIK6fO959N2k2exLIr7 fz2PGC+6NF3G+EZXDGGyPCm4wWQoV2J3dGs2xnx/ZUOKn4QAB/wCCtxW8gAVg9Ez gip71PKTrmdkBP/kXYp10348DIuEQOjziwqqrScnEOdk0o0gTBvlBPDuoQVbKSV8 QJ7mOIAR+U4tJOrrFBkZ6+N9GcaZYASF/x/aR0mVgogl2xP/InNP6rKidX1i8QEk HEh9XKPj2ZLflqSOpMEfmdfdps1La25yIbGOVQ6Lx6VlLbRfnvBPGzEhg/rbEVtg V9t489E= -----END CERTIFICATE-----Generated at Mon Oct 27 12:00:01 2025 by rpki-client