$ rpki-client -vvf rpki.apnic.net/member_repository/A9177EF0/C0BEF3C01DA211E2AA639E9708B02CD2/2C49CD02723D11EB8F298B41C4F9AE02.roa File: 2C49CD02723D11EB8F298B41C4F9AE02.roa (raw, json) Hash identifier: 11YtS3I8Ib5ImdyS8Fv2jPKvZjt6nVrzUsLpJZymTkI= Subject key identifier: 25:D7:D9:A7:FA:DB:20:EB:F1:29:8E:3B:B2:32:96:3D:2C:2B:77:17 Certificate issuer: /CN=A9177EF0/serialNumber=B5A1D01F7BA2DD454CCBECD3186CE147AFFE1BAE Certificate serial: 34E4 Authority key identifier: B5:A1:D0:1F:7B:A2:DD:45:4C:CB:EC:D3:18:6C:E1:47:AF:FE:1B:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taHQH3ui3UVMy-zTGGzhR6_-G64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177EF0/C0BEF3C01DA211E2AA639E9708B02CD2/2C49CD02723D11EB8F298B41C4F9AE02.roa Signing time: Tue 04 Nov 2025 15:30:59 +0000 ROA not before: Tue 04 Nov 2025 15:30:59 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 7467 IP address blocks: 202.134.50.0/24 maxlen: 24 2001:df0:be::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177EF0/C0BEF3C01DA211E2AA639E9708B02CD2/taHQH3ui3UVMy-zTGGzhR6_-G64.crl rsync://rpki.apnic.net/member_repository/A9177EF0/C0BEF3C01DA211E2AA639E9708B02CD2/taHQH3ui3UVMy-zTGGzhR6_-G64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taHQH3ui3UVMy-zTGGzhR6_-G64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13540 (0x34e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177EF0, serialNumber=B5A1D01F7BA2DD454CCBECD3186CE147AFFE1BAE Validity Not Before: Nov 4 15:30:59 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a1c32-02b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:6d:b3:7b:a7:b9:dd:d6:f5:bd:9f:bd:05:c6: b9:35:e9:d3:44:7c:9a:28:e7:d1:0e:e9:32:96:a5: b6:6c:e0:a3:71:63:be:ae:8c:35:ac:a6:ce:0c:c5: b8:1c:15:89:cc:e1:7d:9a:8b:93:46:ef:88:df:2f: 3e:1e:fd:db:bd:85:51:66:18:ab:9c:24:23:8a:15: 17:85:69:6f:e1:3f:ae:f5:7f:75:69:62:c0:62:27: fd:73:e3:58:12:5f:8f:29:f7:ec:64:db:97:ab:c8: cb:dd:d6:88:6a:d6:b4:e4:9f:20:01:3d:55:5a:40: e9:1f:2b:ce:e7:23:1e:cb:a9:28:6b:7b:ff:68:ce: 45:56:5e:11:ee:2f:46:44:c7:3c:03:b0:10:21:58: 90:e5:11:1b:c4:01:e8:3e:05:3b:74:93:c9:52:d6: 3e:e3:ec:57:25:83:f0:9f:a4:a7:8c:a6:64:00:e5: 87:3a:5d:0d:31:f5:ed:34:c8:ee:50:58:7d:71:01: fa:59:78:10:02:ce:a1:a3:2d:fa:1f:02:9c:82:a4: 72:4e:fb:cc:36:15:57:7a:fc:ba:a6:a0:15:9f:1b: 48:2a:c3:a8:d5:2d:70:17:d3:0d:a4:7e:b2:9e:02: 23:18:9b:78:90:06:c0:f9:37:da:cd:11:0d:34:33: f4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D7:D9:A7:FA:DB:20:EB:F1:29:8E:3B:B2:32:96:3D:2C:2B:77:17 X509v3 Authority Key Identifier: keyid:B5:A1:D0:1F:7B:A2:DD:45:4C:CB:EC:D3:18:6C:E1:47:AF:FE:1B:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177EF0/C0BEF3C01DA211E2AA639E9708B02CD2/taHQH3ui3UVMy-zTGGzhR6_-G64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/taHQH3ui3UVMy-zTGGzhR6_-G64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177EF0/C0BEF3C01DA211E2AA639E9708B02CD2/2C49CD02723D11EB8F298B41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.50.0/24 IPv6: 2001:df0:be::/48 Signature Algorithm: sha256WithRSAEncryption b7:72:3a:22:c1:34:09:40:6a:ef:fb:c7:2c:dd:db:f6:e6:db: 51:c3:84:af:3a:17:37:bc:b5:f7:b4:a8:6c:da:09:30:27:d7: 78:40:30:83:8b:43:4d:07:c8:e0:be:34:f5:a9:9e:96:6e:9c: 54:63:83:41:39:80:50:10:51:bc:f6:7f:56:0c:dd:b5:23:a0: 8c:eb:10:32:79:cd:e2:98:ce:66:fb:bb:a4:fb:e8:46:31:d4: 66:95:79:c5:53:c3:d9:f3:e1:56:0d:37:dd:80:73:57:cc:a1: a4:0a:e8:67:a0:49:aa:fc:5c:dc:34:2f:48:ce:d8:39:c4:a1: 06:db:a3:f3:f5:c5:16:c4:03:84:43:71:19:73:6b:20:31:b0: 91:9e:9a:1e:ac:4b:d2:4e:8d:fe:fc:4b:5c:0d:99:80:2a:9a: fe:bf:be:06:dd:c9:c2:5c:e9:20:5f:d6:51:ab:61:a9:7c:46: 6b:9e:b7:75:1b:bb:e0:a1:c8:78:f8:82:5f:e8:13:45:12:ce: 7c:c6:00:97:2f:98:57:b0:81:c7:0f:19:e5:80:9c:86:34:8a: 3e:34:84:dc:ae:53:bd:29:e9:11:9c:b9:d7:88:8c:e5:80:60: 1f:b1:fd:70:39:56:a0:6f:ef:53:d6:5e:d6:93:9b:73:cf:80: 39:01:b7:d0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdFRjAxMTAvBgNVBAUTKEI1QTFEMDFGN0JBMkRENDU0Q0NCRUNEMzE4NkNFMTQ3 QUZGRTFCQUUwHhcNMjUxMTA0MTUzMDU5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhMWMzMi0wMmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+m2ze6e53db1vZ+9Bca5NenTRHyaKOfRDukylqW2bOCjcWO+row1rKbODMW4 HBWJzOF9mouTRu+I3y8+Hv3bvYVRZhirnCQjihUXhWlv4T+u9X91aWLAYif9c+NY El+PKffsZNuXq8jL3daIata05J8gAT1VWkDpHyvO5yMey6koa3v/aM5FVl4R7i9G RMc8A7AQIViQ5REbxAHoPgU7dJPJUtY+4+xXJYPwn6SnjKZkAOWHOl0NMfXtNMju UFh9cQH6WXgQAs6hoy36HwKcgqRyTvvMNhVXevy6pqAVnxtIKsOo1S1wF9MNpH6y ngIjGJt4kAbA+TfazRENNDP0dQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCXX2af6 2yDr8SmOO7Iylj0sK3cXMB8GA1UdIwQYMBaAFLWh0B97ot1FTMvs0xhs4Uev/huu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0VGMC9DMEJFRjNDMDFE QTIxMUUyQUE2MzlFOTcwOEIwMkNEMi90YUhRSDN1aTNVVk15LXpUR0d6aFI2Xy1H NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RhSFFIM3VpM1VWTXktelRHR3poUjZfLUc2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzdFRjAvQzBCRUYzQzAxREEyMTFFMkFBNjM5RTk3MDhCMDJDRDIvMkM0OUNEMDI3 MjNEMTFFQjhGMjk4QjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKhjIwDwQCAAIwCQMHACABDfAAvjANBgkqhkiG9w0BAQsF AAOCAQEAt3I6IsE0CUBq7/vHLN3b9ubbUcOErzoXN7y197SobNoJMCfXeEAwg4tD TQfI4L409amelm6cVGODQTmAUBBRvPZ/VgzdtSOgjOsQMnnN4pjOZvu7pPvoRjHU ZpV5xVPD2fPhVg033YBzV8yhpAroZ6BJqvxc3DQvSM7YOcShBtuj8/XFFsQDhENx GXNrIDGwkZ6aHqxL0k6N/vxLXA2ZgCqa/r++Bt3JwlzpIF/WUathqXxGa563dRu7 4KHIePiCX+gTRRLOfMYAly+YV7CBxw8Z5YCchjSKPjSE3K5TvSnpEZy514iM5YBg H7H9cDlWoG/vU9Ze1pObc8+AOQG30A== -----END CERTIFICATE-----Generated at Tue Nov 4 22:49:05 2025 by rpki-client