$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/2F14B290801B11F0989DCE76C4F9AE02.roa File: 2F14B290801B11F0989DCE76C4F9AE02.roa (raw, json) Hash identifier: 5Up2xiMOjdnHTLm0XbREaBUtcIUU4ZYKJ2V16NY8kzs= Subject key identifier: 48:00:DA:1C:EA:07:D3:A6:BF:EC:66:7E:85:AC:FA:85:73:CC:88:73 Certificate issuer: /CN=A9142DC9/serialNumber=EB4B59335E8321745F776B020CE524CF73991FED Certificate serial: 05 Authority key identifier: EB:4B:59:33:5E:83:21:74:5F:77:6B:02:0C:E5:24:CF:73:99:1F:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60tZM16DIXRfd2sCDOUkz3OZH-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/2F14B290801B11F0989DCE76C4F9AE02.roa Signing time: Sat 23 Aug 2025 12:17:49 +0000 ROA not before: Sat 23 Aug 2025 12:17:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150142 IP address blocks: 49.213.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/60tZM16DIXRfd2sCDOUkz3OZH-0.crl rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/60tZM16DIXRfd2sCDOUkz3OZH-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60tZM16DIXRfd2sCDOUkz3OZH-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 12:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DC9, serialNumber=EB4B59335E8321745F776B020CE524CF73991FED Validity Not Before: Aug 23 12:17:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a9b16d-ac46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:83:43:89:23:b3:e5:1e:2c:6c:e6:d7:b9:15: 97:c2:88:f0:70:35:86:14:1a:38:53:d7:80:7b:b5: 61:55:b0:c5:9a:14:80:bd:57:38:40:f8:89:5d:34: 6a:f0:c1:08:e1:3f:21:57:07:28:3b:c2:f4:4f:ae: ca:99:a9:97:f0:29:42:ac:30:00:bd:5c:ff:3f:f6: ca:24:98:54:81:13:39:da:39:e1:27:ba:cf:b8:d7: 70:e6:08:be:75:c5:28:97:fc:b9:1a:f1:da:02:b8: 70:6b:de:a8:98:57:b6:6d:75:f9:81:e2:5e:0c:6b: 53:68:ae:38:cb:0a:70:e9:e3:08:b9:4a:14:ff:ea: 13:51:c7:55:84:62:42:c5:0e:b9:92:0a:4b:04:0d: b1:96:d1:0e:9e:3a:d7:b5:28:e5:41:ad:9b:3c:99: 4a:8d:00:d3:e2:29:03:75:55:8b:88:28:61:4f:59: 00:d1:5a:f9:a4:78:7a:c1:25:2f:65:c6:27:59:db: 0b:51:d7:3a:6e:cb:82:95:64:cc:54:81:6d:cc:b9: 37:b6:f3:e7:10:87:8b:99:09:b9:9a:13:bd:24:03: ae:fc:1e:a9:22:32:71:b3:91:74:24:0b:a9:cd:6d: 33:1d:30:14:88:9b:5b:aa:b7:1c:0d:d4:38:3a:60: 77:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:00:DA:1C:EA:07:D3:A6:BF:EC:66:7E:85:AC:FA:85:73:CC:88:73 X509v3 Authority Key Identifier: keyid:EB:4B:59:33:5E:83:21:74:5F:77:6B:02:0C:E5:24:CF:73:99:1F:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/60tZM16DIXRfd2sCDOUkz3OZH-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60tZM16DIXRfd2sCDOUkz3OZH-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/2F14B290801B11F0989DCE76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.213.52.0/24 Signature Algorithm: sha256WithRSAEncryption 10:25:6e:18:fd:c6:c3:9c:b1:0f:9c:cf:e0:d9:3a:28:62:be: 71:9b:1f:a5:84:27:30:31:64:5e:22:7b:d1:c2:e4:7d:98:8c: 03:18:67:02:d2:d5:62:be:12:ad:f6:e2:5e:49:dd:d2:48:fc: c4:f7:da:d6:f5:1c:c0:a1:7c:aa:87:d0:23:31:7c:76:31:1a: 68:21:f5:f8:d1:7a:8a:1a:6f:a4:4c:ea:5c:ce:27:2e:bc:2c: 1e:c9:22:65:d5:a8:c7:ad:08:7f:0c:1d:64:20:0e:0e:c6:a5: 3f:27:5f:c6:4a:fd:48:5e:37:98:ae:9a:da:0f:68:c4:99:e4: 08:fc:7e:e1:e3:03:43:d2:57:cb:a0:b7:ea:28:57:c8:f0:03: 86:bc:7f:50:0f:fe:3a:5c:24:d8:89:ec:d7:3f:37:a7:d7:7f: 94:40:14:e4:7d:b3:cd:99:e6:32:54:b2:bf:06:07:43:61:46: ad:33:ee:d6:a8:7d:4c:ef:b4:3c:b1:34:9c:e0:a2:b5:5e:2a: 41:b6:d2:dd:a6:b0:01:80:3f:e6:4c:3d:7d:82:1b:45:23:d9: ee:03:e0:4d:fb:4a:f6:b1:eb:91:dd:e5:f6:e9:b1:8d:df:2a: a7:3b:a4:62:c2:10:c0:04:9e:f3:87:c6:ff:40:f7:90:c9:f4: b3:a9:8f:aa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkRDOTExMC8GA1UEBRMoRUI0QjU5MzM1RTgzMjE3NDVGNzc2QjAyMENFNTI0Q0Y3 Mzk5MUZFRDAeFw0yNTA4MjMxMjE3NDlaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTliMTZkLWFjNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLg0OJI7PlHixs5te5FZfCiPBwNYYUGjhT14B7tWFVsMWaFIC9VzhA+IldNGrw wQjhPyFXByg7wvRPrsqZqZfwKUKsMAC9XP8/9sokmFSBEznaOeEnus+413DmCL51 xSiX/Lka8doCuHBr3qiYV7ZtdfmB4l4Ma1NorjjLCnDp4wi5ShT/6hNRx1WEYkLF DrmSCksEDbGW0Q6eOte1KOVBrZs8mUqNANPiKQN1VYuIKGFPWQDRWvmkeHrBJS9l xidZ2wtR1zpuy4KVZMxUgW3MuTe28+cQh4uZCbmaE70kA678HqkiMnGzkXQkC6nN bTMdMBSIm1uqtxwN1Dg6YHc1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSADaHOoH 06a/7GZ+haz6hXPMiHMwHwYDVR0jBBgwFoAU60tZM16DIXRfd2sCDOUkz3OZH+0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyREM5LzdBRjY3Qzc0N0M2 MTExRjA5MUQzNDEyOUM0RjlBRTAyLzYwdFpNMTZESVhSZmQyc0NET1VrejNPWkgt MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNjB0Wk0xNkRJWFJmZDJzQ0RPVWt6M09aSC0wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRDOS83QUY2N0M3NDdDNjExMUYwOTFEMzQxMjlDNEY5QUUwMi8yRjE0QjI5MDgw MUIxMUYwOTg5RENFNzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEADHVNDANBgkqhkiG9w0BAQsFAAOCAQEAECVuGP3Gw5yxD5zP 4Nk6KGK+cZsfpYQnMDFkXiJ70cLkfZiMAxhnAtLVYr4SrfbiXknd0kj8xPfa1vUc wKF8qofQIzF8djEaaCH1+NF6ihpvpEzqXM4nLrwsHskiZdWox60IfwwdZCAODsal Pydfxkr9SF43mK6a2g9oxJnkCPx+4eMDQ9JXy6C36ihXyPADhrx/UA/+Olwk2Ins 1z83p9d/lEAU5H2zzZnmMlSyvwYHQ2FGrTPu1qh9TO+0PLE0nOCitV4qQbbS3aaw AYA/5kw9fYIbRSPZ7gPgTftK9rHrkd3l9umxjd8qpzukYsIQwASe84fG/0D3kMn0 s6mPqg== -----END CERTIFICATE-----Generated at Sun Aug 24 06:36:30 2025 by rpki-client