$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8CD1AEC62E9511E9896EFA1DC4F9AE02.roa File: 8CD1AEC62E9511E9896EFA1DC4F9AE02.roa (raw, json) Hash identifier: AQJjv8c1H+P8QI0s3FB/4mPX+TV6GerHGXja71yYLBo= Subject key identifier: 29:6A:82:2A:B1:8D:05:15:48:CB:85:D2:F7:EC:DC:6D:93:D6:E4:32 Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 10FE Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8CD1AEC62E9511E9896EFA1DC4F9AE02.roa Signing time: Sat 24 May 2025 17:49:42 +0000 ROA not before: Sat 24 May 2025 17:49:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132716 IP address blocks: 202.78.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4350 (0x10fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 24 17:49:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683206b6-7b78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6b:fe:b9:a4:c5:78:8c:cf:11:00:7b:20:dd: ca:6c:85:64:fc:2e:e3:7f:ae:1b:6d:51:91:8c:33: 13:bb:5b:c0:e4:ef:e3:ea:21:6b:d2:85:0e:c1:0b: e8:a7:21:c4:a5:2c:4c:ff:8f:28:53:24:4e:53:0e: 60:e8:e2:c4:34:1d:c4:0c:d8:e4:40:47:bd:38:c4: a3:2e:5f:8c:7b:36:d6:3e:28:18:75:51:eb:d4:9b: 74:0b:6c:7f:20:3c:dc:e9:22:0c:75:76:07:9d:14: ac:94:c4:e8:80:19:dd:e2:2f:6f:59:57:be:37:34: 00:4b:66:81:4e:34:06:6d:cc:12:67:7a:cb:4a:eb: ae:ec:f3:82:cc:71:64:82:84:6f:27:62:53:4b:13: 4d:aa:10:ae:76:6f:86:59:5c:72:e3:7d:33:9f:99: a5:a3:02:81:69:91:f8:f4:49:b4:ec:ec:1a:35:99: 4d:c6:9a:c8:74:3e:14:2b:75:d8:62:17:22:85:6e: 80:8e:8c:8e:38:27:a4:c7:91:ba:74:d5:d4:c2:12: c5:67:69:67:fa:ea:ec:a5:d6:15:cb:77:e9:63:9f: b7:57:13:96:1c:29:1c:d1:ad:ac:26:32:f7:97:e3: 43:f7:43:31:ab:78:e3:68:6e:8f:fa:f3:f3:72:f4: 8f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:6A:82:2A:B1:8D:05:15:48:CB:85:D2:F7:EC:DC:6D:93:D6:E4:32 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8CD1AEC62E9511E9896EFA1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.78.79.0/24 Signature Algorithm: sha256WithRSAEncryption 79:f7:85:92:83:bb:cd:1f:bc:ba:b8:0c:20:91:cb:88:f9:da: f6:7c:0e:e2:54:2c:bd:02:bc:21:a6:35:36:24:57:69:13:51: a3:ba:a6:04:d6:fa:c3:0d:9f:34:dc:ca:d1:55:83:38:ad:56: a4:74:39:c5:21:d5:55:91:3b:62:21:f6:d6:a8:39:c8:a1:0f: 45:95:6a:04:ba:cd:ff:29:32:75:48:0c:b0:b1:71:a1:9e:84: 54:38:5d:33:d5:d0:61:6e:e5:72:18:e8:b2:92:29:16:4f:6d: 02:14:b5:0e:42:77:81:ce:50:b6:80:14:fe:5e:db:16:ee:e0: 4b:a6:24:07:bb:d5:fc:9c:b5:63:91:a5:ec:df:b0:22:fd:4f: 9f:26:ff:46:0f:0c:67:e4:86:9b:e7:22:8a:b3:6e:55:10:95: 84:76:5b:96:be:2d:f7:72:09:03:c1:e6:6c:84:78:81:ee:d9: 7d:d7:28:91:d0:f4:d8:22:27:8d:bd:20:e4:94:4f:64:e4:d0: 8e:18:fe:43:1b:b7:7c:68:00:13:74:e3:09:ea:62:73:36:43: a5:67:16:c3:0a:5e:7b:7d:73:05:f5:34:fa:64:62:b9:c4:88: a9:ed:26:61:f8:d0:33:c8:8a:56:e6:0b:08:b6:1d:52:a3:a2: 9b:1f:61:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNTI0MTc0OTQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMyMDZiNi03Yjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Wv+uaTFeIzPEQB7IN3KbIVk/C7jf64bbVGRjDMTu1vA5O/j6iFr0oUOwQvo pyHEpSxM/48oUyROUw5g6OLENB3EDNjkQEe9OMSjLl+MezbWPigYdVHr1Jt0C2x/ IDzc6SIMdXYHnRSslMTogBnd4i9vWVe+NzQAS2aBTjQGbcwSZ3rLSuuu7POCzHFk goRvJ2JTSxNNqhCudm+GWVxy430zn5mlowKBaZH49Em07OwaNZlNxprIdD4UK3XY YhcihW6AjoyOOCekx5G6dNXUwhLFZ2ln+urspdYVy3fpY5+3VxOWHCkc0a2sJjL3 l+ND90Mxq3jjaG6P+vPzcvSPAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFClqgiqx jQUVSMuF0vfs3G2T1uQyMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvOENEMUFFQzYy RTk1MTFFOTg5NkVGQTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKTk8wDQYJKoZIhvcNAQELBQADggEBAHn3hZKDu80fvLq4 DCCRy4j52vZ8DuJULL0CvCGmNTYkV2kTUaO6pgTW+sMNnzTcytFVgzitVqR0OcUh 1VWRO2Ih9taoOcihD0WVagS6zf8pMnVIDLCxcaGehFQ4XTPV0GFu5XIY6LKSKRZP bQIUtQ5Cd4HOULaAFP5e2xbu4EumJAe71fyctWORpezfsCL9T58m/0YPDGfkhpvn IoqzblUQlYR2W5a+LfdyCQPB5myEeIHu2X3XKJHQ9NgiJ429IOSUT2Tk0I4Y/kMb t3xoABN04wnqYnM2Q6VnFsMKXnt9cwX1NPpkYrnEiKntJmH40DPIilbmCwi2HVKj opsfYbs= -----END CERTIFICATE-----Generated at Mon Nov 3 21:43:25 2025 by rpki-client