$ rpki-client -vvf rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/02A3523ABC5C11EF9108934FC4F9AE02.roa File: 02A3523ABC5C11EF9108934FC4F9AE02.roa (raw, json) Hash identifier: YX0R72xh2Wv+PsOymTRXA/5mVC7q1Y9SjWtgUs9whWA= Subject key identifier: C2:62:94:4F:8B:C1:84:8F:2A:F3:FE:D8:AD:64:6C:7D:89:59:C7:56 Certificate issuer: /CN=A9173D12/serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2 Certificate serial: D1 Authority key identifier: 5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/02A3523ABC5C11EF9108934FC4F9AE02.roa Signing time: Wed 27 Aug 2025 06:12:44 +0000 ROA not before: Wed 27 Aug 2025 06:12:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.0.207.0/24 maxlen: 24 203.0.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 06:06:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173D12, serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2 Validity Not Before: Aug 27 06:12:44 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68aea1dc-5715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d0:e1:30:04:a2:25:6f:b7:0f:20:d5:d0:53: e8:cb:c7:be:1b:3c:61:c3:f5:2c:05:f7:c1:92:47: 4b:89:cc:e0:bf:59:0f:c1:a7:af:65:94:f5:d2:f6: da:61:65:35:b6:29:2f:9b:7b:bc:fa:8f:ef:64:44: 96:d8:57:01:e9:40:34:1f:95:0c:72:6f:44:66:47: 4f:33:d0:1c:c4:c3:05:54:96:a3:ef:0f:24:23:99: 85:2f:a9:2b:b5:ce:84:07:58:b5:f9:b0:da:0e:83: 0c:35:dc:73:05:e0:59:cf:55:dd:7b:6a:dd:9d:d3: d5:95:78:62:12:e2:fd:ad:75:0f:46:64:90:90:5c: 7c:c0:c0:fb:49:59:7a:fb:9a:d2:a1:5b:c9:e7:6a: 53:96:0a:30:b1:8f:39:d7:21:3d:b9:da:27:b9:21: 70:36:4d:6d:16:97:85:7f:31:ff:cf:92:c1:7e:14: 1a:28:8c:b7:fd:59:a0:3a:61:b6:0b:56:76:a9:55: 28:fb:91:ee:31:32:60:16:62:bb:1c:d4:d6:9e:f5: 3a:e6:9e:ae:13:ad:4a:ca:7a:f5:c5:11:1f:d9:4c: 8c:b9:56:23:e2:41:64:94:c0:7f:e0:7b:f7:04:76: 5e:24:0a:f7:20:5e:b5:6f:9a:0b:bd:33:ef:8c:70: 71:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:62:94:4F:8B:C1:84:8F:2A:F3:FE:D8:AD:64:6C:7D:89:59:C7:56 X509v3 Authority Key Identifier: keyid:5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/02A3523ABC5C11EF9108934FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.0.207.0-203.0.208.255 Signature Algorithm: sha256WithRSAEncryption 39:97:96:d9:8d:88:65:64:65:42:55:4d:6b:70:76:87:ec:78: aa:5c:bc:66:13:92:e4:b1:9c:de:d4:1d:ab:59:a7:86:0f:76: 48:56:60:ac:4a:9b:ab:b9:ff:04:49:a6:6d:48:69:88:9d:d1: f2:bd:ab:a3:a9:01:cb:8f:08:cb:1d:0d:16:00:09:d3:61:13: 1f:18:78:d2:a6:91:31:23:eb:e8:a2:49:f9:89:f9:48:5a:9d: d4:de:fe:d6:92:55:e4:c9:7d:b6:38:f3:f9:3a:d5:87:a2:02: 79:1d:9b:30:fd:61:32:9d:6e:fd:a5:ec:f4:d2:b5:5f:6a:94: 27:e5:d5:3f:b1:d0:51:38:a7:fc:05:32:48:6e:c2:5e:01:24: 7c:08:0d:49:9d:ed:92:3d:cf:0d:8a:01:2b:7c:25:45:13:f9: 93:08:c0:ba:14:f4:c2:71:97:df:67:75:f3:b3:3a:17:70:da: ff:3b:8a:9b:e6:1a:2e:8a:3e:80:6d:45:03:8a:19:1f:c1:2c: 1d:99:34:dd:9a:b5:22:a0:0f:07:45:43:c7:1b:fe:4d:9e:36: 34:90:db:fd:a0:07:35:79:2f:75:ca:3a:d2:a5:6d:e0:26:15: 38:a0:b8:6d:00:a4:4e:c9:54:7b:cc:a9:9c:44:67:e5:b9:42: ae:1b:23:32 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEMTIxMTAvBgNVBAUTKDVBOEI2MUJDNTNBMzI0RDdBMkI0RjQxNTNEMDc3NDZF QzJBMzM1RDIwHhcNMjUwODI3MDYxMjQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlYTFkYy01NzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdDhMASiJW+3DyDV0FPoy8e+Gzxhw/UsBffBkkdLiczgv1kPwaevZZT10vba YWU1tikvm3u8+o/vZESW2FcB6UA0H5UMcm9EZkdPM9AcxMMFVJaj7w8kI5mFL6kr tc6EB1i1+bDaDoMMNdxzBeBZz1Xde2rdndPVlXhiEuL9rXUPRmSQkFx8wMD7SVl6 +5rSoVvJ52pTlgowsY851yE9udonuSFwNk1tFpeFfzH/z5LBfhQaKIy3/VmgOmG2 C1Z2qVUo+5HuMTJgFmK7HNTWnvU65p6uE61Kynr1xREf2UyMuVYj4kFklMB/4Hv3 BHZeJAr3IF61b5oLvTPvjHBxvwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFMJilE+L wYSPKvP+2K1kbH2JWcdWMB8GA1UdIwQYMBaAFFqLYbxToyTXorT0FT0HdG7CozXS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0QxMi9BQjg5MzRGMjUy QzQxMUVGOERERkQ1M0ZDNEY5QUUwMi9Xb3RodkZPakpOZWl0UFFWUFFkMGJzS2pO ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dvdGh2Rk9qSk5laXRQUVZQUWQwYnNLak5kSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNEMTIvQUI4OTM0RjI1MkM0MTFFRjhEREZENTNGQzRGOUFFMDIvMDJBMzUyM0FC QzVDMTFFRjkxMDg5MzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAMsAzwMEAMsA0DANBgkqhkiG9w0BAQsFAAOCAQEAOZeW 2Y2IZWRlQlVNa3B2h+x4qly8ZhOS5LGc3tQdq1mnhg92SFZgrEqbq7n/BEmmbUhp iJ3R8r2ro6kBy48Iyx0NFgAJ02ETHxh40qaRMSPr6KJJ+Yn5SFqd1N7+1pJV5Ml9 tjjz+TrVh6ICeR2bMP1hMp1u/aXs9NK1X2qUJ+XVP7HQUTin/AUySG7CXgEkfAgN SZ3tkj3PDYoBK3wlRRP5kwjAuhT0wnGX32d187M6F3Da/zuKm+YaLoo+gG1FA4oZ H8EsHZk03Zq1IqAPB0VDxxv+TZ42NJDb/aAHNXkvdco60qVt4CYVOKC4bQCkTslU e8ypnERn5blCrhsjMg== -----END CERTIFICATE-----Generated at Sun Sep 7 16:24:07 2025 by rpki-client