$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/52685F222E9111E999636910C4F9AE02.roa File: 52685F222E9111E999636910C4F9AE02.roa (raw, json) Hash identifier: tnJuonmKS/V0uoywfbn8ky35GlWjycjl3empqFomJY8= Subject key identifier: B9:73:1F:CB:B9:95:64:43:1D:B7:B6:4D:47:44:E9:0D:BA:2E:8F:69 Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 1100 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/52685F222E9111E999636910C4F9AE02.roa Signing time: Sat 24 May 2025 17:49:44 +0000 ROA not before: Sat 24 May 2025 17:49:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24081 IP address blocks: 121.97.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4352 (0x1100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 24 17:49:44 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683206b8-ab6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d7:b6:13:46:c8:f1:7f:1f:6b:53:2e:5f:6b: fc:e6:3d:2d:b2:7c:9d:e4:75:7e:ec:65:1f:ec:1d: 1b:61:1a:b7:65:ed:8e:fe:5c:68:63:84:af:46:53: 15:18:d3:12:bc:f6:b1:c6:ed:33:d6:79:54:1d:27: 84:b6:a3:c2:d3:49:23:89:4d:2e:bd:e2:bd:36:02: 73:07:fe:7b:7f:5f:4b:28:51:29:e4:fc:f6:4f:a5: 67:20:d5:17:7e:00:d7:f1:31:7a:5a:d6:96:f2:3d: 64:53:b9:a5:27:1a:84:46:95:b1:84:12:3f:b7:56: 4e:40:8b:cb:1b:63:9e:b2:e0:fa:dc:0b:3b:f1:ce: 35:73:82:62:67:32:b2:48:c6:14:e6:54:38:7c:77: 63:7e:6d:ae:b7:e1:a3:8d:1e:c6:75:63:11:6f:34: f6:a0:48:98:3b:5a:59:c6:d3:78:9b:b9:a9:b0:b3: 78:4b:42:5d:42:0d:72:17:86:75:5d:6a:c8:7e:9c: 3e:4f:3e:2e:06:c2:c6:f2:1e:f9:96:50:c3:f1:bc: 48:8f:0f:eb:db:74:a0:8b:94:1d:4d:63:59:4b:57: 0e:af:ad:be:cb:92:99:e9:77:a9:72:3e:4a:9c:98: fd:40:05:1e:27:9b:a7:ff:e1:3c:f1:0b:de:6f:01: 0b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:73:1F:CB:B9:95:64:43:1D:B7:B6:4D:47:44:E9:0D:BA:2E:8F:69 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/52685F222E9111E999636910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.97.32.0/24 Signature Algorithm: sha256WithRSAEncryption be:9d:33:f0:94:59:91:9e:53:6b:fa:48:b6:c5:c5:d4:7b:58: 97:7b:7c:19:19:5c:77:2b:52:29:63:51:b9:5b:cd:be:22:31: 47:c2:07:cb:da:1d:0c:29:1c:a9:87:a8:f9:06:96:34:6a:af: 66:9b:39:ce:64:1e:3e:67:1c:a1:83:d7:4c:4f:33:57:cf:42: 7a:18:60:5c:7d:ca:4d:dd:e0:90:f3:1a:0a:c3:29:80:98:85: b9:8e:67:f2:25:19:08:e5:63:24:ea:14:81:b5:ea:3f:ca:0d: 34:18:d3:4b:81:2b:05:98:db:fa:59:f0:49:cd:5e:da:79:23: de:9d:95:c1:99:fd:da:c7:81:20:a0:d9:f1:c9:cf:18:f7:f9: cd:30:0c:68:25:95:fd:d2:9e:df:3f:74:6d:ef:e5:cc:33:a9: 90:5c:2b:10:a9:41:b2:ee:9d:56:1f:73:83:9c:8f:d5:55:ee: 69:19:62:3d:c4:31:3b:6f:d8:f7:6d:53:3d:08:4d:ca:04:84: 66:1a:9b:5c:ec:76:b6:0e:9f:c1:7b:9b:30:6f:be:c7:34:a3: d1:2e:23:f3:b9:6e:36:31:25:da:78:01:62:66:04:c1:16:ed: ae:d7:24:c5:bd:10:5f:22:44:d6:6e:39:16:a8:c8:7d:64:25: 3f:ea:92:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNTI0MTc0OTQ0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMyMDZiOC1hYjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAste2E0bI8X8fa1MuX2v85j0tsnyd5HV+7GUf7B0bYRq3Ze2O/lxoY4SvRlMV GNMSvPaxxu0z1nlUHSeEtqPC00kjiU0uveK9NgJzB/57f19LKFEp5Pz2T6VnINUX fgDX8TF6WtaW8j1kU7mlJxqERpWxhBI/t1ZOQIvLG2OesuD63As78c41c4JiZzKy SMYU5lQ4fHdjfm2ut+GjjR7GdWMRbzT2oEiYO1pZxtN4m7mpsLN4S0JdQg1yF4Z1 XWrIfpw+Tz4uBsLG8h75llDD8bxIjw/r23Sgi5QdTWNZS1cOr62+y5KZ6Xepcj5K nJj9QAUeJ5un/+E88QvebwEL1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLlzH8u5 lWRDHbe2TUdE6Q26Lo9pMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvNTI2ODVGMjIy RTkxMTFFOTk5NjM2OTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB5YSAwDQYJKoZIhvcNAQELBQADggEBAL6dM/CUWZGeU2v6 SLbFxdR7WJd7fBkZXHcrUiljUblbzb4iMUfCB8vaHQwpHKmHqPkGljRqr2abOc5k Hj5nHKGD10xPM1fPQnoYYFx9yk3d4JDzGgrDKYCYhbmOZ/IlGQjlYyTqFIG16j/K DTQY00uBKwWY2/pZ8EnNXtp5I96dlcGZ/drHgSCg2fHJzxj3+c0wDGgllf3Snt8/ dG3v5cwzqZBcKxCpQbLunVYfc4Ocj9VV7mkZYj3EMTtv2PdtUz0ITcoEhGYam1zs drYOn8F7mzBvvsc0o9EuI/O5bjYxJdp4AWJmBMEW7a7XJMW9EF8iRNZuORaoyH1k JT/qko8= -----END CERTIFICATE-----Generated at Mon Nov 3 21:43:24 2025 by rpki-client