$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/262FD0CEFE5C11EFA373D67EC4F9AE02.roa File: 262FD0CEFE5C11EFA373D67EC4F9AE02.roa (raw, json) Hash identifier: lo15Nf+0CZOirk0eAvSgxMDUvp2nF6KYkcsnfZSUw20= Subject key identifier: BC:E6:A7:39:36:B4:7A:10:8A:7B:1A:E8:54:C2:61:FF:80:07:69:5D Certificate issuer: /CN=A9175F54/serialNumber=5DB57ED386039EA664D1EFF7570736D6F9F04C44 Certificate serial: 012F Authority key identifier: 5D:B5:7E:D3:86:03:9E:A6:64:D1:EF:F7:57:07:36:D6:F9:F0:4C:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XbV-04YDnqZk0e_3Vwc21vnwTEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/262FD0CEFE5C11EFA373D67EC4F9AE02.roa Signing time: Wed 09 Jul 2025 17:28:24 +0000 ROA not before: Wed 09 Jul 2025 17:28:24 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139672 IP address blocks: 36.50.8.0/23 maxlen: 23 36.50.8.0/24 maxlen: 24 36.50.9.0/24 maxlen: 24 2401:52a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/XbV-04YDnqZk0e_3Vwc21vnwTEQ.crl rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/XbV-04YDnqZk0e_3Vwc21vnwTEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XbV-04YDnqZk0e_3Vwc21vnwTEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F54, serialNumber=5DB57ED386039EA664D1EFF7570736D6F9F04C44 Validity Not Before: Jul 9 17:28:24 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=686ea6b8-0497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a6:29:55:9f:95:1d:5d:84:73:36:31:42:7b: b4:ec:89:6e:3b:8b:9d:7f:69:33:fa:1a:3c:8a:32: 8b:c5:16:d0:af:d1:17:6c:0e:08:16:d3:17:36:1a: c0:de:1a:a3:3a:3c:b3:fd:42:95:37:8f:05:97:68: 40:c7:84:be:c0:a3:67:f4:ef:4f:da:17:8a:42:49: b2:ef:b7:4d:1d:82:2f:aa:fe:ca:2d:0a:92:ad:23: 75:37:8e:99:ba:71:6b:9f:f1:e2:ef:45:fb:4f:b3: 7b:e5:22:b6:88:12:9c:0f:fd:b0:49:d0:50:98:ad: 74:38:dd:4f:8d:ab:db:a3:5f:a0:2c:9c:32:b0:9f: fd:08:85:12:a8:44:8e:be:43:21:ec:56:4f:af:d8: 36:f4:bf:a7:ef:c3:41:70:af:3d:a5:57:44:65:79: 8b:35:08:e5:6e:5c:a0:ac:2d:61:04:2a:73:36:71: 6c:3c:15:53:71:2a:db:08:30:0d:3a:8b:5f:cb:59: 6a:3f:a9:0f:60:f9:6b:82:c0:7e:f0:e3:8a:c8:06: d8:66:61:26:73:53:27:dd:91:85:49:b9:61:2c:80: 2b:9a:c1:44:96:46:98:bc:3c:c7:83:05:18:35:c3: 6d:1e:37:4a:0e:af:56:30:93:0c:4f:c9:30:0c:ef: ad:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E6:A7:39:36:B4:7A:10:8A:7B:1A:E8:54:C2:61:FF:80:07:69:5D X509v3 Authority Key Identifier: keyid:5D:B5:7E:D3:86:03:9E:A6:64:D1:EF:F7:57:07:36:D6:F9:F0:4C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/XbV-04YDnqZk0e_3Vwc21vnwTEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XbV-04YDnqZk0e_3Vwc21vnwTEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F54/51B6ECE49F2811EEA995D328C4F9AE02/262FD0CEFE5C11EFA373D67EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.8.0/23 IPv6: 2401:52a0::/32 Signature Algorithm: sha256WithRSAEncryption cf:24:61:95:e3:97:b9:13:54:ea:78:11:4d:46:a9:81:18:fe: 1f:15:89:1a:4d:f5:5a:63:74:a4:44:90:6a:ae:8a:0a:84:a7: e7:90:36:76:22:d0:6b:aa:23:24:c9:2e:0a:6d:70:81:d0:1f: 2d:a8:33:2a:78:b1:92:60:bb:48:d6:a7:96:d3:8b:a1:ab:46: ca:95:bd:ad:9e:5d:0e:d7:81:34:55:98:63:87:b7:a9:91:42: d3:e9:0d:0c:fc:01:30:d9:ab:6a:47:00:b6:79:c9:b6:b2:a2: 69:0c:45:00:60:d1:f0:77:e1:5b:fb:f4:b4:a6:6d:cb:be:59: 63:08:13:07:ba:35:ef:56:63:1d:1c:80:1d:ef:cb:75:40:df: 78:aa:eb:0e:bd:3d:0d:12:b0:82:26:a5:42:d4:24:1e:64:38: 1e:e2:a9:d2:69:df:0f:e6:f2:ba:6d:10:a0:2b:a0:3c:7a:19: 30:54:6e:2c:a4:cf:91:43:ee:6c:a5:c7:27:bd:39:94:89:5c: a0:22:fb:eb:11:e2:60:61:27:9b:39:7f:86:dd:56:fb:c5:6c: f9:70:7b:06:4b:a8:5e:6a:c7:ee:5a:41:7a:68:92:25:70:1b: 0c:6d:c7:3d:4f:18:09:1b:e7:2b:cf:23:9b:5c:75:62:82:36: b0:4e:0c:8c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGNTQxMTAvBgNVBAUTKDVEQjU3RUQzODYwMzlFQTY2NEQxRUZGNzU3MDczNkQ2 RjlGMDRDNDQwHhcNMjUwNzA5MTcyODI0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZlYTZiOC0wNDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6YpVZ+VHV2EczYxQnu07IluO4udf2kz+ho8ijKLxRbQr9EXbA4IFtMXNhrA 3hqjOjyz/UKVN48Fl2hAx4S+wKNn9O9P2heKQkmy77dNHYIvqv7KLQqSrSN1N46Z unFrn/Hi70X7T7N75SK2iBKcD/2wSdBQmK10ON1Pjavbo1+gLJwysJ/9CIUSqESO vkMh7FZPr9g29L+n78NBcK89pVdEZXmLNQjlblygrC1hBCpzNnFsPBVTcSrbCDAN Ootfy1lqP6kPYPlrgsB+8OOKyAbYZmEmc1Mn3ZGFSblhLIArmsFElkaYvDzHgwUY NcNtHjdKDq9WMJMMT8kwDO+tJwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLzmpzk2 tHoQinsa6FTCYf+AB2ldMB8GA1UdIwQYMBaAFF21ftOGA56mZNHv91cHNtb58ExE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUY1NC81MUI2RUNFNDlG MjgxMUVFQTk5NUQzMjhDNEY5QUUwMi9YYlYtMDRZRG5xWmswZV8zVndjMjF2bndU RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hiVi0wNFlEbnFaazBlXzNWd2MyMXZud1RFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGNTQvNTFCNkVDRTQ5RjI4MTFFRUE5OTVEMzI4QzRGOUFFMDIvMjYyRkQwQ0VG RTVDMTFFRkEzNzNENjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAEkMggwDQQCAAIwBwMFACQBUqAwDQYJKoZIhvcNAQELBQAD ggEBAM8kYZXjl7kTVOp4EU1GqYEY/h8ViRpN9VpjdKREkGquigqEp+eQNnYi0Guq IyTJLgptcIHQHy2oMyp4sZJgu0jWp5bTi6GrRsqVva2eXQ7XgTRVmGOHt6mRQtPp DQz8ATDZq2pHALZ5ybayomkMRQBg0fB34Vv79LSmbcu+WWMIEwe6Ne9WYx0cgB3v y3VA33iq6w69PQ0SsIImpULUJB5kOB7iqdJp3w/m8rptEKAroDx6GTBUbiykz5FD 7mylxye9OZSJXKAi++sR4mBhJ5s5f4bdVvvFbPlwewZLqF5qx+5aQXpokiVwGwxt xz1PGAkb5yvPI5tcdWKCNrBODIw= -----END CERTIFICATE-----Generated at Sun Jul 20 11:45:29 2025 by rpki-client