$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/04F19212C63A11EAB59CC262C4F9AE02.roa File: 04F19212C63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: /rsO1xFmt4Wd2M5OBk3RGt2QvbZOZFnfqTaQeAfy5hE= Subject key identifier: EF:90:85:63:93:5A:C7:ED:8E:31:2D:71:92:95:C4:70:2B:1B:80:3C Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 08BA Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/04F19212C63A11EAB59CC262C4F9AE02.roa Signing time: Tue 02 Sep 2025 21:12:03 +0000 ROA not before: Tue 02 Sep 2025 21:12:03 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 202.173.24.0/24 maxlen: 24 202.173.26.0/24 maxlen: 24 202.173.27.0/24 maxlen: 24 202.173.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2234 (0x8ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241, serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Sep 2 21:12:03 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b75da3-3189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:61:3b:74:c7:e8:56:c8:c2:2c:7a:9d:1c:f4: 04:d9:07:69:91:e2:f7:e0:72:05:08:d3:6a:dd:bf: 1f:90:67:d8:f2:be:17:c2:6f:e3:83:b9:82:71:10: b1:cb:ca:12:10:82:b6:07:9e:d1:19:3a:81:56:63: 9d:93:20:d2:ef:76:95:4b:15:69:79:f8:ea:e4:9b: 3b:8c:5c:6b:84:76:a4:1b:6b:c9:c1:91:1d:f1:4b: 33:fc:33:56:d0:70:cb:42:f8:63:c8:b2:78:c8:ac: 7e:74:0b:6b:69:7c:bd:a0:6e:c2:67:09:b2:47:a3: dd:6e:a0:46:21:35:f6:c2:34:64:e0:27:ff:f5:c6: b3:00:5c:67:84:21:67:0b:95:24:cf:2e:66:85:f8: f0:8e:a3:a4:cb:13:62:de:ed:26:7b:c7:4b:5f:0a: fd:43:e8:46:1b:10:48:5b:43:79:be:70:49:23:33: 9f:21:d5:6b:19:0d:dd:20:c8:c2:90:be:a3:3c:45: 02:c4:cc:53:0c:33:f1:68:e5:38:4f:88:2d:8e:24: 3a:7d:bc:2f:0a:e6:03:f0:b0:e4:7f:4d:76:46:81: e7:3a:4f:05:1b:93:e6:f4:eb:af:33:05:e9:14:48: b9:32:89:40:c7:c0:5b:ae:1c:45:c4:6d:c5:7e:33: 48:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:90:85:63:93:5A:C7:ED:8E:31:2D:71:92:95:C4:70:2B:1B:80:3C X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/04F19212C63A11EAB59CC262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.24.0/24 202.173.26.0/23 202.173.31.0/24 Signature Algorithm: sha256WithRSAEncryption ae:af:8d:8c:30:0b:09:d2:73:a4:fd:04:11:aa:9d:f5:56:1c: a1:2b:09:67:28:b4:dc:3d:a1:a4:c4:98:c9:2e:09:37:bc:99: aa:e0:1a:02:86:bb:c9:6a:67:b0:27:4e:f1:ea:9a:fc:d4:0d: 5b:ee:bd:4e:ee:f2:d2:2a:67:0f:46:9b:9b:9e:0b:61:ba:fd: 52:74:a4:1c:f2:75:f1:ae:75:7c:f7:e2:19:40:47:78:32:c2: 18:6e:47:cc:30:53:49:04:2b:ea:ee:aa:b2:9a:15:ea:2d:4a: 42:20:04:87:2b:94:b5:99:8a:8c:7b:ca:f9:c3:15:3e:e2:69: a2:a7:ae:e0:36:18:96:de:07:95:60:a6:3b:35:75:61:9c:cf: 78:60:c1:2d:01:04:24:77:eb:f8:47:64:2d:e7:cb:bb:60:1c: 2c:b5:d5:44:6f:f7:85:a0:78:31:fa:c7:b6:03:cb:e4:59:56: 0e:5f:15:a2:b9:3c:36:20:64:ef:db:42:0e:17:1b:be:b7:0e: 31:da:62:d2:2c:be:3c:63:77:90:0c:bc:01:79:1f:59:18:49: a4:17:00:89:82:53:33:ea:e3:67:c9:99:81:e1:0a:f4:cf:e7: d8:00:2c:19:a3:5c:27:82:6e:15:c1:74:c3:3a:10:1c:e3:05: 60:15:e0:5c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjUwOTAyMjExMjAzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NWRhMy0zMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5WE7dMfoVsjCLHqdHPQE2QdpkeL34HIFCNNq3b8fkGfY8r4Xwm/jg7mCcRCx y8oSEIK2B57RGTqBVmOdkyDS73aVSxVpefjq5Js7jFxrhHakG2vJwZEd8Usz/DNW 0HDLQvhjyLJ4yKx+dAtraXy9oG7CZwmyR6PdbqBGITX2wjRk4Cf/9cazAFxnhCFn C5Ukzy5mhfjwjqOkyxNi3u0me8dLXwr9Q+hGGxBIW0N5vnBJIzOfIdVrGQ3dIMjC kL6jPEUCxMxTDDPxaOU4T4gtjiQ6fbwvCuYD8LDkf012RoHnOk8FG5Pm9OuvMwXp FEi5MolAx8BbrhxFxG3FfjNI8wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFO+QhWOT WsftjjEtcZKVxHArG4A8MB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDRGMTkyMTJD NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKrRgDBAHKrRoDBADKrR8wDQYJKoZIhvcNAQELBQADggEB AK6vjYwwCwnSc6T9BBGqnfVWHKErCWcotNw9oaTEmMkuCTe8margGgKGu8lqZ7An TvHqmvzUDVvuvU7u8tIqZw9Gm5ueC2G6/VJ0pBzydfGudXz34hlAR3gywhhuR8ww U0kEK+ruqrKaFeotSkIgBIcrlLWZiox7yvnDFT7iaaKnruA2GJbeB5Vgpjs1dWGc z3hgwS0BBCR36/hHZC3ny7tgHCy11URv94WgeDH6x7YDy+RZVg5fFaK5PDYgZO/b Qg4XG763DjHaYtIsvjxjd5AMvAF5H1kYSaQXAImCUzPq42fJmYHhCvTP59gALBmj XCeCbhXBdMM6EBzjBWAV4Fw= -----END CERTIFICATE-----Generated at Mon Oct 20 19:10:53 2025 by rpki-client