$ rpki-client -vvf rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/8AE1E18AAB3411F085D6B647C4F9AE02.roa File: 8AE1E18AAB3411F085D6B647C4F9AE02.roa (raw, json) Hash identifier: qdsQCthBC52kL8uja5Ku+St+cMj/pRlfbfhDj8D1oMo= Subject key identifier: B4:4B:4A:C5:08:74:6A:67:2C:5E:F7:39:A7:F6:EA:C9:33:F8:5A:7A Certificate issuer: /CN=A91100B2/serialNumber=BC42188A48A7A99F96D6AFB2011E7DC9DEEE22A5 Certificate serial: 2E Authority key identifier: BC:42:18:8A:48:A7:A9:9F:96:D6:AF:B2:01:1E:7D:C9:DE:EE:22:A5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/vEIYikinqZ-W1q-yAR59yd7uIqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/8AE1E18AAB3411F085D6B647C4F9AE02.roa Signing time: Mon 03 Nov 2025 11:24:54 +0000 ROA not before: Mon 03 Nov 2025 11:24:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138160 IP address blocks: 79.109.0.0/22 maxlen: 22 79.109.0.0/24 maxlen: 24 79.109.8.0/22 maxlen: 22 79.109.16.0/22 maxlen: 22 79.109.24.0/22 maxlen: 22 79.109.32.0/22 maxlen: 22 79.109.48.0/22 maxlen: 22 79.109.56.0/22 maxlen: 22 79.109.128.0/22 maxlen: 22 79.109.128.0/24 maxlen: 24 79.109.136.0/22 maxlen: 22 79.109.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/vEIYikinqZ-W1q-yAR59yd7uIqU.crl rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/vEIYikinqZ-W1q-yAR59yd7uIqU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/vEIYikinqZ-W1q-yAR59yd7uIqU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91100B2, serialNumber=BC42188A48A7A99F96D6AFB2011E7DC9DEEE22A5 Validity Not Before: Nov 3 11:24:54 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69089105-2ad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f5:89:3d:d2:c4:c0:c5:c6:4d:63:25:b4:4e: 1c:ed:36:eb:7a:e5:aa:47:41:fa:26:06:38:59:68: 23:6e:e4:ab:a5:6d:a9:80:32:75:a2:d8:cd:b6:71: 1c:50:b0:92:0b:4a:4b:f8:9b:97:23:95:d9:c4:2b: fa:18:52:c3:b1:7d:e2:8f:d0:d1:7c:d2:36:07:26: 77:3c:1b:aa:57:9d:4e:46:62:b9:fe:55:d8:4c:bf: ff:45:2a:26:28:18:26:33:cf:5a:f6:1b:f2:48:56: a4:55:1e:28:cb:7f:cc:b0:27:6e:30:35:bb:f8:af: ef:bd:e6:8e:ea:fc:69:8e:d9:19:1c:56:8c:f2:1f: 98:20:35:c1:86:60:50:26:7f:bc:b3:f6:71:3f:55: 76:06:c3:2e:73:c9:59:c2:0b:66:86:89:78:f1:6b: 1f:2c:f0:34:0f:db:5f:9d:70:8d:af:50:59:6e:42: ad:ba:2a:0d:da:c0:de:03:b0:81:d1:5b:f7:00:22: 55:64:86:72:65:c2:ae:8b:b2:30:43:21:13:f4:71: c6:94:46:d4:c2:02:c8:ef:e8:75:9a:f6:e3:8c:17: ad:f4:b9:a7:9e:eb:9b:83:89:6d:cc:7b:01:da:65: 52:1e:57:4f:d4:9a:63:18:9e:3a:0f:e9:a2:ab:3e: 3c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:4B:4A:C5:08:74:6A:67:2C:5E:F7:39:A7:F6:EA:C9:33:F8:5A:7A X509v3 Authority Key Identifier: keyid:BC:42:18:8A:48:A7:A9:9F:96:D6:AF:B2:01:1E:7D:C9:DE:EE:22:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/vEIYikinqZ-W1q-yAR59yd7uIqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/vEIYikinqZ-W1q-yAR59yd7uIqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/8AE1E18AAB3411F085D6B647C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 79.109.0.0/22 79.109.8.0/22 79.109.16.0/22 79.109.24.0/22 79.109.32.0/22 79.109.48.0/22 79.109.56.0/22 79.109.128.0/22 79.109.136.0/22 79.109.248.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:07:94:a5:68:e0:0e:29:84:15:a1:b0:f3:07:38:a6:d0:93: fd:52:1a:0d:1b:a1:40:49:3b:ee:5d:cf:0e:31:17:4c:a0:cb: ea:68:29:d6:02:43:f3:63:f9:e1:f6:e3:7f:f7:1b:89:f3:94: a9:4e:2d:81:93:a6:7e:e6:fe:de:1a:2e:0f:1b:f4:69:e4:23: 09:ff:80:9b:83:8c:8a:3c:38:ed:2b:d0:0f:d0:79:51:f2:a6: ef:c7:67:0a:93:2d:f7:cb:3e:ed:c6:b5:4e:52:0d:cb:96:93: 62:7a:f1:0e:81:de:a0:96:44:25:a8:1a:eb:b8:4d:90:2f:6d: 06:60:ff:3d:15:16:ab:63:6e:bc:b1:24:60:9a:17:88:3a:cc: 89:a0:d3:9d:51:af:c9:41:97:20:90:97:6c:bc:f8:2c:18:8b: 44:a5:c0:21:98:50:8c:9d:18:27:6b:d9:69:0b:4f:96:9e:27: ae:1b:ea:3f:dd:bd:6c:1f:c0:b1:ad:72:23:d7:17:34:a1:14: 1c:74:91:11:ca:68:99:8f:65:bc:6d:4d:be:83:72:57:02:ed: 16:ad:e3:e6:98:17:6b:39:c7:24:70:43:51:37:49:dc:aa:45: 62:9a:6e:b6:ab:10:51:3a:9a:63:5c:f8:2f:fe:ed:b8:a0:ea: b9:a3:8f:d2 -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDBCMjExMC8GA1UEBRMoQkM0MjE4OEE0OEE3QTk5Rjk2RDZBRkIyMDExRTdEQzlE RUVFMjJBNTAeFw0yNTExMDMxMTI0NTRaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDg5MTA1LTJhZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDm9Yk90sTAxcZNYyW0ThztNut65apHQfomBjhZaCNu5KulbamAMnWi2M22cRxQ sJILSkv4m5cjldnEK/oYUsOxfeKP0NF80jYHJnc8G6pXnU5GYrn+VdhMv/9FKiYo GCYzz1r2G/JIVqRVHijLf8ywJ24wNbv4r++95o7q/GmO2RkcVozyH5ggNcGGYFAm f7yz9nE/VXYGwy5zyVnCC2aGiXjxax8s8DQP21+dcI2vUFluQq26Kg3awN4DsIHR W/cAIlVkhnJlwq6LsjBDIRP0ccaURtTCAsjv6HWa9uOMF630uaee65uDiW3MewHa ZVIeV0/UmmMYnjoP6aKrPjxhAgMBAAGjggLLMIICxzAdBgNVHQ4EFgQUtEtKxQh0 amcsXvc5p/bqyTP4WnowHwYDVR0jBBgwFoAUvEIYikinqZ+W1q+yAR59yd7uIqUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwMEIyLzcyMUYzQzlDQTYx QjExRjBBQzk5NTgzM0M0RjlBRTAyL3ZFSVlpa2lucVotVzFxLXlBUjU5eWQ3dUlx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdkVJWWlraW5xWi1XMXEteUFSNTl5ZDd1SXFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDBCMi83MjFGM0M5Q0E2MUIxMUYwQUM5OTU4MzNDNEY5QUUwMi84QUUxRTE4QUFC MzQxMUYwODVENkI2NDdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBVBggrBgEFBQcBBwEB/wRG MEQwQgQCAAEwPAMEAk9tAAMEAk9tCAMEAk9tEAMEAk9tGAMEAk9tIAMEAk9tMAME Ak9tOAMEAk9tgAMEAk9tiAMEA09t+DANBgkqhkiG9w0BAQsFAAOCAQEAmweUpWjg DimEFaGw8wc4ptCT/VIaDRuhQEk77l3PDjEXTKDL6mgp1gJD82P54fbjf/cbifOU qU4tgZOmfub+3houDxv0aeQjCf+Am4OMijw47SvQD9B5UfKm78dnCpMt98s+7ca1 TlINy5aTYnrxDoHeoJZEJaga67hNkC9tBmD/PRUWq2NuvLEkYJoXiDrMiaDTnVGv yUGXIJCXbLz4LBiLRKXAIZhQjJ0YJ2vZaQtPlp4nrhvqP929bB/Asa1yI9cXNKEU HHSREcpomY9lvG1NvoNyVwLtFq3j5pgXaznHJHBDUTdJ3KpFYpputqsQUTqaY1z4 L/7tuKDquaOP0g== -----END CERTIFICATE-----Generated at Wed Nov 5 03:08:18 2025 by rpki-client