$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ECAACAF0832311F0A2DEEC38C4F9AE02.roa File: ECAACAF0832311F0A2DEEC38C4F9AE02.roa (raw, json) Hash identifier: nHcM6t/O1ctZflvTxFVNCe6JM/tfUvBxZQFj3Ytb1VE= Subject key identifier: 68:A4:8B:89:6E:2D:9E:12:6C:A5:70:DE:A8:38:78:C9:1F:B9:83:CD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C361 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ECAACAF0832311F0A2DEEC38C4F9AE02.roa Signing time: Wed 27 Aug 2025 08:57:57 +0000 ROA not before: Wed 27 Aug 2025 08:57:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154142 IP address blocks: 203.5.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50017 (0xc361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 27 08:57:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68aec894-1b3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:69:6b:1d:e9:06:3e:0d:89:48:d7:d1:18:cc: 05:30:96:7e:68:8d:3c:b7:64:da:97:6c:d0:6a:96: 8a:fd:0d:a2:10:10:98:45:5a:07:6a:b7:ca:10:99: dc:f2:84:ea:c8:fa:64:27:98:a7:d7:38:a1:05:2c: 98:8f:ba:9c:2d:46:05:ef:f4:9c:20:fb:33:64:fd: f9:0f:de:b1:ae:17:6a:df:83:67:71:61:be:70:38: fe:77:8e:35:6c:2a:59:86:fa:98:c7:a8:86:ed:6a: c2:94:ab:f4:a1:26:1d:97:78:52:4f:cf:34:f6:c9: ed:c1:42:53:bf:c4:ac:71:b1:b5:70:67:1c:43:a5: 23:e5:01:29:c4:f6:32:4c:c7:44:e9:ee:b6:be:50: 96:31:23:1c:f3:12:a6:b4:0e:61:e7:1b:85:59:6a: a8:33:b8:23:70:4c:25:1e:9d:7f:12:79:18:bd:b3: cf:c9:14:4b:0c:b6:e1:47:4a:50:1a:47:c9:21:79: bd:51:67:c2:f4:d0:dd:a3:af:8d:a0:28:b9:4d:61: b5:62:b3:a8:3b:31:1f:35:20:88:08:1f:75:82:ff: 81:ac:d7:08:c2:bd:46:04:b3:0c:20:58:e0:bd:2a: 12:3d:bd:99:fc:22:17:cc:4e:cf:d6:e1:7b:2d:ca: 67:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A4:8B:89:6E:2D:9E:12:6C:A5:70:DE:A8:38:78:C9:1F:B9:83:CD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/ECAACAF0832311F0A2DEEC38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.199.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:09:7a:dd:80:ea:a2:32:17:7e:64:9b:bc:ce:e4:2f:45:2e: d1:e4:15:ab:b0:12:e3:c4:e0:90:cf:fe:d6:ad:f2:d9:2b:5d: 0c:67:6d:dc:50:1b:f0:1a:3e:76:0e:35:e0:0a:96:da:ce:a1: 48:df:9a:c7:24:c8:32:9f:f0:99:42:41:38:de:98:28:44:79: 79:0e:06:8d:22:3c:41:3c:02:a6:c7:36:3b:9d:0f:8c:26:65: ef:b0:00:dd:f6:66:01:03:07:3b:c9:cc:55:f0:b2:f1:dc:96: 75:fe:8b:27:52:e5:f3:27:ab:15:e0:bd:82:6d:c8:6f:a3:db: 52:c8:90:96:23:73:ae:4a:a8:88:4d:da:48:83:2b:b0:4a:d2: 4c:32:af:b8:9a:cf:36:90:b6:1b:34:57:55:10:30:74:2e:19: 5d:1d:e8:0d:de:2a:73:36:e1:9c:fc:56:a0:5f:79:f4:a4:73: 71:d0:d8:1e:e1:96:dd:e9:bd:e5:85:a3:bb:9e:cc:3a:6c:7a: 26:51:19:f3:a8:5f:d0:4d:27:10:cc:00:2f:0f:e4:32:9b:f8: b7:9a:b7:ad:39:20:a6:96:0c:b8:60:6a:f4:24:f6:c0:af:3f: 5d:0d:cf:49:e9:c5:d9:d1:53:bc:40:13:84:f3:53:7d:5c:3e: 83:83:d2:69 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAMNhMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDgyNzA4NTc1N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhhZWM4OTQtMWIzZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMRpax3pBj4NiUjX0RjMBTCWfmiNPLdk2pds0GqWiv0NohAQmEVaB2q3yhCZ 3PKE6sj6ZCeYp9c4oQUsmI+6nC1GBe/0nCD7M2T9+Q/esa4Xat+DZ3FhvnA4/neO NWwqWYb6mMeohu1qwpSr9KEmHZd4Uk/PNPbJ7cFCU7/ErHGxtXBnHEOlI+UBKcT2 MkzHROnutr5QljEjHPMSprQOYecbhVlqqDO4I3BMJR6dfxJ5GL2zz8kUSwy24UdK UBpHySF5vVFnwvTQ3aOvjaAouU1htWKzqDsxHzUgiAgfdYL/gazXCMK9RgSzDCBY 4L0qEj29mfwiF8xOz9bhey3KZ6MCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRopIuJ bi2eEmylcN6oOHjJH7mDzTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VDQUFDQUYw ODMyMzExRjBBMkRFRUMzOEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAywXHMA0GCSqGSIb3DQEBCwUAA4IBAQANCXrdgOqiMhd+ ZJu8zuQvRS7R5BWrsBLjxOCQz/7WrfLZK10MZ23cUBvwGj52DjXgCpbazqFI35rH JMgyn/CZQkE43pgoRHl5DgaNIjxBPAKmxzY7nQ+MJmXvsADd9mYBAwc7ycxV8LLx 3JZ1/osnUuXzJ6sV4L2Cbchvo9tSyJCWI3OuSqiITdpIgyuwStJMMq+4ms82kLYb NFdVEDB0LhldHegN3ipzNuGc/FagX3n0pHNx0Nge4Zbd6b3lhaO7nsw6bHomURnz qF/QTScQzAAvD+Qym/i3mretOSCmlgy4YGr0JPbArz9dDc9J6cXZ0VO8QBOE81N9 XD6Dg9Jp -----END CERTIFICATE-----Generated at Sun Sep 7 16:36:19 2025 by rpki-client