$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/5FE97B5A1DB911EF9C94EB7AC4F9AE02.roa File: 5FE97B5A1DB911EF9C94EB7AC4F9AE02.roa (raw, json) Hash identifier: Ug8T2jAnxBEFXcI9OyfxIdrB1/QKIOy0uEZRs/AiI9w= Subject key identifier: DC:54:85:40:79:F6:E5:6B:F4:DD:20:1B:00:FE:21:B3:A7:B0:8A:75 Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 08BD Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/5FE97B5A1DB911EF9C94EB7AC4F9AE02.roa Signing time: Tue 02 Sep 2025 21:12:06 +0000 ROA not before: Tue 02 Sep 2025 21:12:06 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 31898 IP address blocks: 202.173.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 20:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2237 (0x8bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241, serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Sep 2 21:12:06 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b75da6-e059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:75:f2:e7:d5:85:ac:b0:51:35:83:e8:be:21: b0:42:cb:d4:b3:a0:3c:ba:c1:a0:0c:e1:9c:62:33: e2:b1:ce:ef:d9:08:30:04:ef:42:06:93:0a:95:6d: 8d:2f:6b:40:b9:19:bb:4b:90:13:0a:e9:62:3f:8d: 9d:16:c9:6a:17:d9:23:e4:3b:fe:a5:6f:7d:ef:89: b6:5b:f2:c9:7d:a4:87:8b:45:9e:c8:87:ec:ab:d8: 63:3c:91:ed:e6:ea:66:9a:6a:ae:85:6c:38:83:fc: 5a:b8:a1:7e:8f:1a:0e:7c:6a:eb:4c:3b:ab:41:5a: c2:f9:6d:d1:81:e9:93:81:5f:32:85:cb:92:2b:7b: 94:5a:71:67:76:ac:a6:b6:df:d5:e3:a3:b8:20:e3: 28:04:d4:99:8d:76:1b:44:ba:4d:68:90:eb:3d:ce: 96:eb:0a:68:85:17:92:c1:04:f5:25:70:be:2b:08: b9:ce:fe:84:4b:bf:83:56:c8:81:80:c3:68:2b:3b: a8:01:a4:98:bf:44:04:4e:1b:34:31:c9:54:16:63: c6:be:1b:5a:c3:bd:eb:da:28:74:6d:4e:99:60:62: c1:9a:ce:f9:43:0b:28:32:b8:4b:e5:4c:30:99:c7: 24:e7:61:dc:c6:ab:ba:19:b0:e4:a2:09:17:bb:4e: 9b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:54:85:40:79:F6:E5:6B:F4:DD:20:1B:00:FE:21:B3:A7:B0:8A:75 X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/5FE97B5A1DB911EF9C94EB7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.27.0/24 Signature Algorithm: sha256WithRSAEncryption a5:d2:21:19:96:d1:b2:c8:a9:05:30:b9:0e:f3:dd:a9:cc:1c: 8b:f4:23:a6:38:9e:18:7a:9e:4f:52:e4:e2:da:ea:bf:1e:8e: b5:f2:05:9a:b5:3f:6e:bb:9b:3c:80:5f:78:aa:cc:81:0b:33: 89:0f:71:33:6d:4f:64:72:6d:5e:6d:af:44:15:82:7b:fe:3e: 7a:00:e5:6b:f0:48:cd:ca:ef:90:51:1d:d4:34:1f:da:c7:2e: ee:b8:39:5d:8b:d1:cc:2d:cc:eb:31:fe:56:e4:09:74:2c:a0: bd:61:a5:78:db:72:26:71:de:01:1f:00:5b:c4:80:fa:6a:f4: b0:59:02:ea:2e:f9:d7:c7:a0:23:69:9b:b5:71:22:9b:18:0a: a5:93:50:63:83:56:e9:85:cd:eb:b8:9e:08:0b:77:6a:b0:7f: 29:3f:e7:43:78:6e:8f:38:3a:4d:89:8a:32:e3:4e:7e:c7:10: 2c:40:25:c2:2e:cb:75:c8:67:13:df:0e:d5:99:0c:b4:7b:da: d6:c4:13:cd:2a:d5:9b:1d:07:29:9f:de:56:29:90:a1:0c:bb: 60:48:ab:78:20:e3:95:cd:21:9e:db:41:f1:13:b8:bc:83:d5: e8:90:56:ea:ba:56:80:07:f9:84:d1:1f:aa:14:d3:2a:b2:3c: 6e:3d:1a:c8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjUwOTAyMjExMjA2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NWRhNi1lMDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3Xy59WFrLBRNYPoviGwQsvUs6A8usGgDOGcYjPisc7v2QgwBO9CBpMKlW2N L2tAuRm7S5ATCuliP42dFslqF9kj5Dv+pW9974m2W/LJfaSHi0WeyIfsq9hjPJHt 5upmmmquhWw4g/xauKF+jxoOfGrrTDurQVrC+W3RgemTgV8yhcuSK3uUWnFndqym tt/V46O4IOMoBNSZjXYbRLpNaJDrPc6W6wpohReSwQT1JXC+Kwi5zv6ES7+DVsiB gMNoKzuoAaSYv0QEThs0MclUFmPGvhtaw73r2ih0bU6ZYGLBms75QwsoMrhL5Uww mcck52Hcxqu6GbDkogkXu06bhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNxUhUB5 9uVr9N0gGwD+IbOnsIp1MB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvNUZFOTdCNUEx REI5MTFFRjlDOTRFQjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKrRswDQYJKoZIhvcNAQELBQADggEBAKXSIRmW0bLIqQUw uQ7z3anMHIv0I6Y4nhh6nk9S5OLa6r8ejrXyBZq1P267mzyAX3iqzIELM4kPcTNt T2RybV5tr0QVgnv+PnoA5WvwSM3K75BRHdQ0H9rHLu64OV2L0cwtzOsx/lbkCXQs oL1hpXjbciZx3gEfAFvEgPpq9LBZAuou+dfHoCNpm7VxIpsYCqWTUGODVumFzeu4 nggLd2qwfyk/50N4bo84Ok2JijLjTn7HECxAJcIuy3XIZxPfDtWZDLR72tbEE80q 1ZsdBymf3lYpkKEMu2BIq3gg45XNIZ7bQfETuLyD1eiQVuq6VoAH+YTRH6oU0yqy PG49Gsg= -----END CERTIFICATE-----Generated at Thu Sep 18 03:42:59 2025 by rpki-client