$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0649562CC63A11EAB59CC262C4F9AE02.roa File: 0649562CC63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: FXMw4gU7m6cMDVIFR2ioRmioqgFmxJcgor2Nog9jRxk= Subject key identifier: 14:CE:D4:EE:51:AC:6C:90:17:69:2D:AE:5E:99:4C:2D:B9:9C:6F:73 Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 0932 Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0649562CC63A11EAB59CC262C4F9AE02.roa Signing time: Mon 02 Mar 2026 11:28:21 +0000 ROA not before: Tue 02 Sep 2025 21:12:05 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 21866 IP address blocks: 202.173.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 16:55:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2354 (0x932) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241, serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Sep 2 21:12:05 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a57455-789f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:77:e7:03:4c:2c:71:66:6a:c6:7f:53:4b:f2: b5:cb:2f:21:cd:7f:b3:78:ae:33:43:8e:68:d4:fe: b9:19:cc:e9:a4:a5:2c:14:ca:e5:83:cc:dd:0f:82: 73:f7:55:a1:fa:d5:0c:3e:53:37:0e:b1:e0:fc:ed: e3:c5:e0:ce:7e:51:5b:e3:52:ee:5c:70:0e:85:48: 09:17:24:5f:8d:33:d0:e8:da:93:c9:a3:ef:8a:23: 39:25:c4:b6:82:0a:77:d3:dc:90:91:69:11:4a:cb: c8:6a:5c:fe:56:59:fa:68:d4:36:7b:8b:d6:08:2c: 9d:23:a9:35:da:6e:85:75:96:3a:24:7a:67:bc:fe: 5f:a9:2a:02:59:0d:af:0f:cf:da:06:92:61:91:dc: 3a:c2:bd:25:6f:37:42:4a:71:77:00:4d:70:81:cc: a5:46:f0:08:e4:07:3d:b4:69:53:56:ac:3e:7c:e4: 2f:b7:d0:c9:21:ba:d1:46:93:93:06:6b:c7:2f:9e: 92:06:68:0d:a7:c2:92:ad:b8:d6:3c:2d:26:8b:db: 29:62:22:7d:e4:cc:0e:03:d5:e2:65:2e:f7:18:4f: 9c:cf:59:62:da:69:d4:41:9e:5a:3e:b0:1f:d7:c3: dd:07:30:24:8b:4b:cd:80:b1:bd:b1:68:d0:ca:43: 96:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:CE:D4:EE:51:AC:6C:90:17:69:2D:AE:5E:99:4C:2D:B9:9C:6F:73 X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0649562CC63A11EAB59CC262C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.173.25.0/24 Signature Algorithm: sha256WithRSAEncryption 31:96:de:ec:73:d1:84:aa:97:01:77:d1:61:8c:d2:42:39:ce: 6f:6d:22:b5:ef:bd:ee:91:4b:d1:2e:91:94:bd:de:32:f6:34: 94:14:22:09:e7:f3:18:a6:f0:49:55:9b:76:b5:1f:55:c8:5f: ec:06:5b:bd:ab:10:25:a0:22:ed:ab:e7:f9:b4:90:e2:40:34: 4e:14:bc:a0:69:0f:8e:79:1e:cf:7d:31:a0:4d:86:ba:ba:58: ec:30:41:91:65:37:e0:da:94:8e:73:ed:30:b2:0c:86:e5:55: 94:60:de:ad:71:fc:b6:31:30:98:2f:52:95:b1:9b:90:c3:cf: 37:61:67:2a:fa:af:4e:5b:bc:e2:5a:40:b1:9d:b0:fa:78:e6: d8:5a:c2:73:ed:3a:06:48:32:d3:4b:d0:ad:8b:a8:74:5b:54: 0e:fb:e0:f5:a8:a5:56:e6:19:41:17:f5:f0:0e:65:97:dc:e4: 7e:8e:1a:e0:5d:b4:3e:3e:4b:03:78:0b:87:2e:04:29:22:e7: 61:e4:9e:e0:fe:15:0e:24:d5:b3:94:82:bb:57:72:7e:bb:dc: 05:9d:e1:28:db:d7:3c:37:8b:81:d4:33:96:ef:39:ce:3f:ea: f0:5c:d9:25:7a:16:75:96:a3:ed:8b:15:1f:0c:ba:1b:27:9d: c1:cc:c7:a4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjUwOTAyMjExMjA1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1NzQ1NS03ODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHfnA0wscWZqxn9TS/K1yy8hzX+zeK4zQ45o1P65GczppKUsFMrlg8zdD4Jz 91Wh+tUMPlM3DrHg/O3jxeDOflFb41LuXHAOhUgJFyRfjTPQ6NqTyaPviiM5JcS2 ggp309yQkWkRSsvIalz+Vln6aNQ2e4vWCCydI6k12m6FdZY6JHpnvP5fqSoCWQ2v D8/aBpJhkdw6wr0lbzdCSnF3AE1wgcylRvAI5Ac9tGlTVqw+fOQvt9DJIbrRRpOT BmvHL56SBmgNp8KSrbjWPC0mi9spYiJ95MwOA9XiZS73GE+cz1li2mnUQZ5aPrAf 18PdBzAki0vNgLG9sWjQykOWvQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBTO1O5R rGyQF2ktrl6ZTC25nG9zMB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDY0OTU2MkND NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyq0ZMA0GCSqGSIb3DQEBCwUAA4IBAQAxlt7sc9GEqpcBd9FhjNJC Oc5vbSK1773ukUvRLpGUvd4y9jSUFCIJ5/MYpvBJVZt2tR9VyF/sBlu9qxAloCLt q+f5tJDiQDROFLygaQ+OeR7PfTGgTYa6uljsMEGRZTfg2pSOc+0wsgyG5VWUYN6t cfy2MTCYL1KVsZuQw883YWcq+q9OW7ziWkCxnbD6eObYWsJz7ToGSDLTS9Cti6h0 W1QO++D1qKVW5hlBF/XwDmWX3OR+jhrgXbQ+PksDeAuHLgQpIudh5J7g/hUOJNWz lIK7V3J+u9wFneEo29c8N4uB1DOW7znOP+rwXNklehZ1lqPtixUfDLobJ53BzMek -----END CERTIFICATE-----Generated at Wed Mar 11 01:12:04 2026 by rpki-client