$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/4CF2D3B68C5411EF84ABE03CC4F9AE02.roa File: 4CF2D3B68C5411EF84ABE03CC4F9AE02.roa (raw, json) Hash identifier: 9gHoLg8JZHPr+J2x22rrHeXv+R5JGIJTxxftyvYwHuQ= Subject key identifier: CE:E2:30:BB:29:7F:E7:09:4C:4D:AE:E6:EC:F7:62:D5:D9:CF:49:EA Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 255F Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/4CF2D3B68C5411EF84ABE03CC4F9AE02.roa Signing time: Mon 04 Aug 2025 16:24:08 +0000 ROA not before: Mon 04 Aug 2025 16:24:08 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135645 IP address blocks: 203.177.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 16:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9567 (0x255f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:08 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6890dea8-9309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d0:66:5f:fa:f2:f5:22:af:f7:60:8a:e5:0e: 94:6b:51:6c:c2:4c:5a:b7:a5:f1:f6:c6:d7:e4:e1: 99:ae:cc:8f:f4:a8:df:6d:e4:2b:da:ca:fd:df:ce: 7d:94:7d:8f:1a:98:d6:e8:85:a4:44:94:3a:ee:98: 6e:ce:b0:d3:a1:46:a3:fa:42:26:99:83:3a:6d:18: d4:93:f4:c0:9e:42:b4:20:46:85:1f:fc:dd:ac:dc: 2a:02:4e:df:86:44:46:fa:88:36:73:c0:3d:01:b1: eb:76:b3:7e:c2:d7:8c:62:db:8b:94:c0:70:cd:62: e5:d4:25:c9:60:c4:48:cd:28:f6:c9:04:7a:57:ad: 49:f5:d6:65:8e:cf:a4:9c:f1:5d:c0:88:55:0e:21: 07:07:f0:ce:d6:27:6d:58:85:f0:dd:9b:2c:0d:43: dc:f5:dd:e1:3f:34:e9:9f:eb:8e:94:d2:df:79:7e: c8:89:79:5d:aa:72:12:34:93:ec:42:8e:3f:f3:1f: 2a:11:dd:16:d1:0d:99:56:ee:af:32:65:e4:1a:05: 76:2c:7c:7b:b7:7a:ea:6d:94:a8:6c:1c:21:ec:bd: 2f:d2:2d:34:cd:95:44:6a:95:29:ba:95:79:cb:ff: 53:a4:21:c5:3c:2b:5f:73:68:9a:08:3c:d2:e6:86: 99:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E2:30:BB:29:7F:E7:09:4C:4D:AE:E6:EC:F7:62:D5:D9:CF:49:EA X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/4CF2D3B68C5411EF84ABE03CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.177.125.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:9f:73:4c:d9:ee:ac:40:3e:ea:e9:9b:da:6c:62:a9:7c:07: cf:64:b6:f6:ce:11:5e:f6:91:7b:6a:97:8f:ae:1b:77:e0:af: f9:e9:88:c7:f5:90:83:16:df:a4:ab:0d:69:d6:41:a6:eb:9f: 8b:44:35:fa:b7:85:b4:46:e3:42:d7:59:49:57:a7:1f:b2:27: f9:fd:62:90:21:a2:d5:53:33:37:8f:49:f7:97:3c:73:76:1a: 35:f4:b7:de:d4:9f:26:ba:a9:3e:d2:ee:21:c0:a0:7c:ed:b7: 45:6f:bf:3a:24:65:43:8f:de:6e:4b:1d:4b:98:fd:1d:40:6b: 99:d6:f1:ce:6a:33:1a:3a:03:06:bd:6a:75:54:04:82:a0:99: 6f:9a:17:8a:97:ae:54:c9:61:fd:87:4c:37:ba:fb:13:32:28: ef:e3:f2:d0:0f:ea:10:b9:b4:2d:bb:2a:81:09:7a:c9:82:26: fa:7b:2d:95:27:2a:17:5e:76:2c:82:e5:6d:19:57:e5:8f:73: 41:db:cc:f9:73:e4:9d:51:18:93:91:f4:52:41:63:53:30:c5: 55:e0:14:a1:fd:c1:80:d5:13:96:af:01:6a:bc:06:76:a8:3d: 99:74:b7:7e:e8:90:90:28:0e:f2:63:97:2c:6f:3c:52:4f:5c: 5f:80:7a:bf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDA4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwZGVhOC05MzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdBmX/ry9SKv92CK5Q6Ua1Fswkxat6Xx9sbX5OGZrsyP9KjfbeQr2sr93859 lH2PGpjW6IWkRJQ67phuzrDToUaj+kImmYM6bRjUk/TAnkK0IEaFH/zdrNwqAk7f hkRG+og2c8A9AbHrdrN+wteMYtuLlMBwzWLl1CXJYMRIzSj2yQR6V61J9dZljs+k nPFdwIhVDiEHB/DO1idtWIXw3ZssDUPc9d3hPzTpn+uOlNLfeX7IiXldqnISNJPs Qo4/8x8qEd0W0Q2ZVu6vMmXkGgV2LHx7t3rqbZSobBwh7L0v0i00zZVEapUpupV5 y/9TpCHFPCtfc2iaCDzS5oaZVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM7iMLsp f+cJTE2u5uz3YtXZz0nqMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvNENGMkQzQjY4 QzU0MTFFRjg0QUJFMDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLsX0wDQYJKoZIhvcNAQELBQADggEBAAufc0zZ7qxAPurp m9psYql8B89ktvbOEV72kXtql4+uG3fgr/npiMf1kIMW36SrDWnWQabrn4tENfq3 hbRG40LXWUlXpx+yJ/n9YpAhotVTMzePSfeXPHN2GjX0t97Unya6qT7S7iHAoHzt t0VvvzokZUOP3m5LHUuY/R1Aa5nW8c5qMxo6Awa9anVUBIKgmW+aF4qXrlTJYf2H TDe6+xMyKO/j8tAP6hC5tC27KoEJesmCJvp7LZUnKhdediyC5W0ZV+WPc0HbzPlz 5J1RGJOR9FJBY1MwxVXgFKH9wYDVE5avAWq8BnaoPZl0t37okJAoDvJjlyxvPFJP XF+Aer8= -----END CERTIFICATE-----Generated at Wed Oct 22 21:25:34 2025 by rpki-client