$ rpki-client -vvf rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa File: 612992C6012A11EFB75C350FC4F9AE02.roa (raw, json) Hash identifier: FmAu1+agMeZ0VUhV+3w3+uo72UBKyPI2du/6wqmQecc= Subject key identifier: 9B:FD:22:80:ED:BD:38:FB:6B:27:09:34:5C:AD:C8:6D:5E:3C:32:EF Certificate issuer: /CN=A91D894F/serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Certificate serial: 010E Authority key identifier: 85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa Signing time: Fri 05 Sep 2025 05:41:41 +0000 ROA not before: Fri 05 Sep 2025 05:41:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 14618 IP address blocks: 117.74.104.0/24 maxlen: 24 117.74.105.0/24 maxlen: 24 117.74.106.0/24 maxlen: 24 117.74.107.0/24 maxlen: 24 117.74.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 05:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D894F, serialNumber=85B14A890B9BD4980D97E41BB391FCC9850FCB78 Validity Not Before: Sep 5 05:41:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ba7814-396e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a9:11:30:f8:c6:84:ab:ef:1b:f8:aa:db:7b: b6:bd:71:4d:68:ba:f5:83:67:55:7d:08:66:9e:4a: 9f:66:cd:58:8c:50:0a:90:62:d4:dd:95:fd:cd:ce: 2a:09:7c:37:a4:ef:30:f3:c8:c5:33:2b:53:e1:50: 40:bd:f9:ea:43:8f:ef:cd:c7:04:7e:d9:e9:e9:c0: 21:81:82:4f:ba:f3:67:99:bd:da:ac:fb:73:db:b6: da:57:a0:6a:11:fd:8a:7f:ba:c3:28:68:25:1f:0a: 24:ea:a7:8f:04:68:3f:70:b4:e6:65:c8:a0:6e:b5: da:29:de:34:73:ee:0d:89:30:53:91:fb:40:13:1c: 64:7b:02:70:7c:7b:44:51:4a:47:d9:55:f6:d3:3d: a5:36:b5:af:25:16:7e:f6:ac:79:ed:f0:8a:38:e5: 24:3d:03:66:fc:36:68:f3:15:df:b3:b0:73:02:de: 9f:84:6e:e6:3d:ed:e3:28:18:06:ac:2e:56:35:02: e0:8a:59:87:53:46:35:b4:28:b6:ba:3b:57:45:a4: 63:1f:ce:d7:0e:3f:58:e4:9c:7c:f9:2d:d4:99:e6: c0:4e:7f:9b:06:3a:d8:41:ad:e0:99:9a:73:7f:d0: e2:07:7c:91:35:6f:4b:2b:39:12:0f:0e:05:16:d3: 90:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:FD:22:80:ED:BD:38:FB:6B:27:09:34:5C:AD:C8:6D:5E:3C:32:EF X509v3 Authority Key Identifier: keyid:85:B1:4A:89:0B:9B:D4:98:0D:97:E4:1B:B3:91:FC:C9:85:0F:CB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/hbFKiQub1JgNl-Qbs5H8yYUPy3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hbFKiQub1JgNl-Qbs5H8yYUPy3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D894F/0AF45E36012A11EFA5FD916FC4F9AE02/612992C6012A11EFB75C350FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.74.104.0-117.74.108.255 Signature Algorithm: sha256WithRSAEncryption 27:67:de:8a:c8:1a:b1:35:1c:0e:41:1c:b6:29:e6:1b:49:49: 47:f7:82:1d:0e:0b:c4:f4:e1:d3:40:36:58:59:22:68:55:b7: bc:f9:60:5d:67:7c:88:fa:15:43:76:89:72:e7:29:02:7e:19: 42:73:cc:7f:9a:60:19:b4:da:c5:ac:e9:db:4d:e6:7d:49:55: 82:7d:cc:b6:cc:0d:7a:72:c9:87:70:1f:38:80:0a:a1:e9:ce: 04:17:a0:c8:da:a3:66:ae:5d:0f:33:89:8c:b7:22:32:17:6a: 4e:58:80:e2:9f:d8:89:07:43:b7:d3:4f:91:3b:94:0c:a5:79: b3:e2:3a:ae:1c:a8:0a:51:ec:d7:2b:64:ea:49:0a:21:91:c6: b9:06:04:8c:c7:26:98:0a:fe:ab:83:31:79:69:c3:7b:0f:9b: 50:2e:ac:1c:70:8f:c0:44:5c:4f:e0:9e:21:1c:c8:05:cb:00: b2:1c:8b:30:a0:4c:d8:e1:13:fe:ab:1f:cb:83:1d:d4:cd:c5: a4:a3:07:50:04:19:63:16:3b:e8:db:9f:61:e3:2b:25:75:fb: bc:ea:ce:d1:05:f0:ea:29:1f:0e:d2:14:2f:35:b4:84:99:0c: 19:02:1c:b5:3b:24:60:29:a6:2f:da:c1:4a:bc:47:e5:6c:d6: e8:17:10:83 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5NEYxMTAvBgNVBAUTKDg1QjE0QTg5MEI5QkQ0OTgwRDk3RTQxQkIzOTFGQ0M5 ODUwRkNCNzgwHhcNMjUwOTA1MDU0MTQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhNzgxNC0zOTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6kRMPjGhKvvG/iq23u2vXFNaLr1g2dVfQhmnkqfZs1YjFAKkGLU3ZX9zc4q CXw3pO8w88jFMytT4VBAvfnqQ4/vzccEftnp6cAhgYJPuvNnmb3arPtz27baV6Bq Ef2Kf7rDKGglHwok6qePBGg/cLTmZcigbrXaKd40c+4NiTBTkftAExxkewJwfHtE UUpH2VX20z2lNrWvJRZ+9qx57fCKOOUkPQNm/DZo8xXfs7BzAt6fhG7mPe3jKBgG rC5WNQLgilmHU0Y1tCi2ujtXRaRjH87XDj9Y5Jx8+S3UmebATn+bBjrYQa3gmZpz f9DiB3yRNW9LKzkSDw4FFtOQwQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFJv9IoDt vTj7aycJNFytyG1ePDLvMB8GA1UdIwQYMBaAFIWxSokLm9SYDZfkG7OR/MmFD8t4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODk0Ri8wQUY0NUUzNjAx MkExMUVGQTVGRDkxNkZDNEY5QUUwMi9oYkZLaVF1YjFKZ05sLVFiczVIOHlZVVB5 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hiRktpUXViMUpnTmwtUWJzNUg4eVlVUHkzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5NEYvMEFGNDVFMzYwMTJBMTFFRkE1RkQ5MTZGQzRGOUFFMDIvNjEyOTkyQzYw MTJBMTFFRkI3NUMzNTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA3VKaAMEAHVKbDANBgkqhkiG9w0BAQsFAAOCAQEAJ2fe isgasTUcDkEctinmG0lJR/eCHQ4LxPTh00A2WFkiaFW3vPlgXWd8iPoVQ3aJcucp An4ZQnPMf5pgGbTaxazp203mfUlVgn3MtswNenLJh3AfOIAKoenOBBegyNqjZq5d DzOJjLciMhdqTliA4p/YiQdDt9NPkTuUDKV5s+I6rhyoClHs1ytk6kkKIZHGuQYE jMcmmAr+q4MxeWnDew+bUC6sHHCPwERcT+CeIRzIBcsAshyLMKBM2OET/qsfy4Md 1M3FpKMHUAQZYxY76NufYeMrJXX7vOrO0QXw6ikfDtIULzW0hJkMGQIctTskYCmm L9rBSrxH5WzW6BcQgw== -----END CERTIFICATE-----Generated at Wed Oct 8 23:18:58 2025 by rpki-client