$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0454DCC4C63A11EAB59CC262C4F9AE02.roa File: 0454DCC4C63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: tqRni/vRCybcm/Qe5j/RJ1ji818pRaDVNQ0/GTu1HOQ= Subject key identifier: 20:78:FB:17:6E:57:15:D0:D4:DF:A7:89:E5:CA:C2:AF:6B:25:6A:BD Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 08B9 Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0454DCC4C63A11EAB59CC262C4F9AE02.roa Signing time: Tue 02 Sep 2025 21:12:01 +0000 ROA not before: Tue 02 Sep 2025 21:12:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 14618 IP address blocks: 202.173.24.0/24 maxlen: 24 202.173.26.0/24 maxlen: 24 202.173.27.0/24 maxlen: 24 202.173.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 20:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241, serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Sep 2 21:12:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b75da1-a4fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:17:3c:34:a8:6b:53:aa:99:6f:de:c1:02:b0: 14:e6:0d:d2:66:53:f6:4a:7a:55:00:09:bf:0f:7f: a2:22:b0:b6:27:f2:3e:d9:a5:3f:ea:df:fe:44:d8: 21:41:bd:81:b3:8c:f9:4a:d5:1d:57:31:57:42:25: ef:25:ed:28:1d:42:e9:5e:d6:5d:c5:26:47:77:30: 23:3b:90:67:e8:24:2b:e9:97:9d:82:0f:0d:97:de: 5c:d1:7d:ff:aa:31:12:01:e4:55:49:92:81:94:37: c0:3c:a6:29:18:ff:63:4c:4b:61:b5:a6:e1:08:66: f4:c9:3e:11:4d:57:d8:ba:b7:2a:2c:91:6e:51:9d: 86:cf:2a:87:c5:56:4a:0e:dc:0a:55:1b:67:20:a4: 29:bc:cb:8d:37:87:68:ea:c5:02:76:b7:1d:a7:ad: 30:ad:e1:0b:13:27:dd:8b:32:03:f1:10:c3:07:86: 95:1a:6c:1a:fb:c2:d3:8b:d1:23:5f:75:a8:d1:e8: a9:37:47:a3:4c:09:aa:b8:d4:18:51:a4:9d:12:35: 8d:a0:4c:38:6a:63:86:28:43:c9:e9:5b:26:74:24: cb:8f:70:0f:64:8e:31:52:08:c5:1d:a2:3b:5e:13: 55:de:cd:f7:bf:95:f6:ad:df:ce:c2:36:0d:9c:19: 2c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:78:FB:17:6E:57:15:D0:D4:DF:A7:89:E5:CA:C2:AF:6B:25:6A:BD X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0454DCC4C63A11EAB59CC262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.24.0/24 202.173.26.0/23 202.173.31.0/24 Signature Algorithm: sha256WithRSAEncryption 23:f6:dd:4d:bb:1a:85:a5:06:6d:4e:60:77:bc:80:49:66:1a: 1a:01:64:09:c7:75:6c:b8:7e:ce:d2:e1:59:a6:dd:31:c0:ab: 49:73:81:ba:e2:7e:0d:d2:b8:b4:69:8b:35:b9:e2:e6:41:95: 1e:5a:28:47:dd:a1:21:83:f2:8b:e1:47:bd:f9:61:b7:ad:83: bd:6c:f5:cb:1e:9e:b3:d5:fb:7b:42:8e:5b:9f:96:51:19:ae: de:89:a4:36:c7:5e:d5:a0:05:4b:0e:69:c2:fa:e6:01:4a:eb: 71:d2:89:b7:22:a4:d9:07:ff:17:0d:0d:80:2a:f5:83:a3:65: 20:5f:93:ea:4c:47:88:95:cd:f2:7b:4b:fb:59:b1:ee:48:41: 12:3f:e0:e4:22:d0:06:d0:64:53:20:43:ba:f9:3c:21:f7:04: 2d:45:62:4f:9d:08:3c:b2:5d:95:ac:53:57:de:94:10:ad:ba: f0:c4:43:ad:5c:7b:74:00:e0:58:05:8e:f6:67:af:33:4f:e3: b7:6c:0f:06:c9:41:d0:90:2a:f2:b2:56:0f:bb:18:35:04:53: 66:95:68:21:8f:37:46:d7:84:00:bc:ef:48:73:f2:17:d8:a9: 08:62:58:3a:bf:7b:fe:61:52:0e:dc:bd:29:af:bd:6e:f7:39: 49:15:c4:b6 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjUwOTAyMjExMjAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NWRhMS1hNGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Rc8NKhrU6qZb97BArAU5g3SZlP2SnpVAAm/D3+iIrC2J/I+2aU/6t/+RNgh Qb2Bs4z5StUdVzFXQiXvJe0oHULpXtZdxSZHdzAjO5Bn6CQr6Zedgg8Nl95c0X3/ qjESAeRVSZKBlDfAPKYpGP9jTEthtabhCGb0yT4RTVfYurcqLJFuUZ2GzyqHxVZK DtwKVRtnIKQpvMuNN4do6sUCdrcdp60wreELEyfdizID8RDDB4aVGmwa+8LTi9Ej X3Wo0eipN0ejTAmquNQYUaSdEjWNoEw4amOGKEPJ6VsmdCTLj3APZI4xUgjFHaI7 XhNV3s33v5X2rd/OwjYNnBksXwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCB4+xdu VxXQ1N+nieXKwq9rJWq9MB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDQ1NERDQzRD NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKrRgDBAHKrRoDBADKrR8wDQYJKoZIhvcNAQELBQADggEB ACP23U27GoWlBm1OYHe8gElmGhoBZAnHdWy4fs7S4Vmm3THAq0lzgbrifg3SuLRp izW54uZBlR5aKEfdoSGD8ovhR735Ybetg71s9csenrPV+3tCjlufllEZrt6JpDbH XtWgBUsOacL65gFK63HSibcipNkH/xcNDYAq9YOjZSBfk+pMR4iVzfJ7S/tZse5I QRI/4OQi0AbQZFMgQ7r5PCH3BC1FYk+dCDyyXZWsU1felBCtuvDEQ61ce3QA4FgF jvZnrzNP47dsDwbJQdCQKvKyVg+7GDUEU2aVaCGPN0bXhAC870hz8hfYqQhiWDq/ e/5hUg7cvSmvvW73OUkVxLY= -----END CERTIFICATE-----Generated at Wed Sep 17 23:42:26 2025 by rpki-client