$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0649562CC63A11EAB59CC262C4F9AE02.roa File: 0649562CC63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: RJDI3i7hM1nBIPS/73ED0LFQix8Jwqczz+z+Slz7wW8= Subject key identifier: BD:CA:02:3E:20:78:83:04:82:F0:25:0C:68:27:8F:5D:86:A5:78:39 Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 08BC Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0649562CC63A11EAB59CC262C4F9AE02.roa Signing time: Tue 02 Sep 2025 21:12:05 +0000 ROA not before: Tue 02 Sep 2025 21:12:05 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 21866 IP address blocks: 202.173.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 20:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2236 (0x8bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241, serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Sep 2 21:12:05 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b75da5-16dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:52:a8:d4:42:60:ef:42:96:e6:1f:5d:ef:13: c9:21:df:cd:4f:a9:d6:6f:1f:d0:90:67:4f:80:cf: 85:3d:2f:22:75:cc:dd:25:bd:21:24:c9:96:4a:fb: 98:ab:9c:a0:be:91:dc:3f:49:e8:dd:15:c7:9d:a4: 0c:02:cf:d2:74:4b:53:a5:5d:65:20:1e:9e:23:bd: ea:f7:34:25:6b:0c:8b:72:0b:6a:98:9c:81:14:bd: 0a:41:31:98:d8:8c:bc:4c:7c:74:42:74:46:71:00: fc:91:89:9e:62:3e:04:54:81:fb:d3:f1:7c:49:b8: 6a:28:4e:0b:0d:3a:ff:43:de:3e:f0:10:96:91:ab: 8b:46:d0:eb:a9:0b:f2:d7:04:f0:55:87:3c:a2:dd: 59:3f:6b:cc:97:72:73:8c:4b:11:38:2d:ff:85:3c: 3f:28:57:bc:ed:27:c4:53:b1:2e:c4:35:68:f0:1c: 2f:15:ef:80:35:0d:77:87:a4:c3:d6:fc:c7:1f:06: 40:69:86:66:ac:92:91:f4:1a:b0:aa:1c:ae:59:a9: ee:5a:b9:8f:29:91:d8:02:cf:a5:5c:91:90:f2:ac: 95:30:41:34:6f:61:b0:ef:6e:2a:93:e5:b5:70:95: e9:18:10:d4:f8:34:9f:de:1b:da:d5:5c:74:3f:04: 72:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:CA:02:3E:20:78:83:04:82:F0:25:0C:68:27:8F:5D:86:A5:78:39 X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0649562CC63A11EAB59CC262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.25.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:2c:1a:77:87:3e:59:12:bf:25:5d:35:28:a7:70:51:8f:32: 01:b7:cb:35:28:a9:40:98:32:03:fb:2c:2b:c9:89:79:b2:cf: e0:4f:21:97:54:71:7b:a1:53:e3:78:64:a4:2c:24:28:25:90: 5e:06:ea:dd:c1:91:06:42:f0:55:6d:a8:c2:e8:d3:e0:7e:7d: f0:ce:17:ee:bb:a3:1a:23:e3:f6:23:4e:19:9e:67:36:e0:8b: 66:f9:24:45:35:79:3c:19:c1:0b:90:d2:a7:39:5b:e6:96:2e: 3f:e8:ad:db:65:ef:df:e1:ef:42:6a:55:bf:88:10:d7:f0:e2: ea:c8:44:66:8d:45:d4:70:22:99:7b:66:51:f0:1a:29:92:80: 96:92:ef:89:a5:ae:ef:41:a8:21:1e:c1:57:f1:40:33:17:4c: cf:33:df:35:33:41:50:7f:6b:69:94:39:41:be:1a:fb:2f:36: 89:f6:27:c0:8a:08:4b:5b:29:fb:4e:d1:77:11:45:ee:9a:d6: e5:df:de:f1:4d:30:12:80:61:b6:e6:df:a3:50:cc:4b:c7:42: 22:bc:90:85:12:7f:d9:a4:dd:81:fe:8d:3b:1c:39:16:9f:78: 90:2b:b6:82:15:d7:54:02:8c:1d:e6:a8:9f:ed:72:78:77:71: 51:45:99:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjUwOTAyMjExMjA1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NWRhNS0xNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFKo1EJg70KW5h9d7xPJId/NT6nWbx/QkGdPgM+FPS8idczdJb0hJMmWSvuY q5ygvpHcP0no3RXHnaQMAs/SdEtTpV1lIB6eI73q9zQlawyLcgtqmJyBFL0KQTGY 2Iy8THx0QnRGcQD8kYmeYj4EVIH70/F8SbhqKE4LDTr/Q94+8BCWkauLRtDrqQvy 1wTwVYc8ot1ZP2vMl3JzjEsROC3/hTw/KFe87SfEU7EuxDVo8BwvFe+ANQ13h6TD 1vzHHwZAaYZmrJKR9BqwqhyuWanuWrmPKZHYAs+lXJGQ8qyVMEE0b2Gw724qk+W1 cJXpGBDU+DSf3hva1Vx0PwRy7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFL3KAj4g eIMEgvAlDGgnj12GpXg5MB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDY0OTU2MkND NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKrRkwDQYJKoZIhvcNAQELBQADggEBACssGneHPlkSvyVd NSincFGPMgG3yzUoqUCYMgP7LCvJiXmyz+BPIZdUcXuhU+N4ZKQsJCglkF4G6t3B kQZC8FVtqMLo0+B+ffDOF+67oxoj4/YjThmeZzbgi2b5JEU1eTwZwQuQ0qc5W+aW Lj/ordtl79/h70JqVb+IENfw4urIRGaNRdRwIpl7ZlHwGimSgJaS74mlru9BqCEe wVfxQDMXTM8z3zUzQVB/a2mUOUG+GvsvNon2J8CKCEtbKftO0XcRRe6a1uXf3vFN MBKAYbbm36NQzEvHQiK8kIUSf9mk3YH+jTscORafeJArtoIV11QCjB3mqJ/tcnh3 cVFFmes= -----END CERTIFICATE-----Generated at Thu Sep 18 03:59:38 2025 by rpki-client