$ rpki-client -vvf rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/C7990BE8AFF411F0B040B258C4F9AE02.roa File: C7990BE8AFF411F0B040B258C4F9AE02.roa (raw, json) Hash identifier: Wq3EKlnp72r4x00pZr4LkZ0amG0X3r7k+6EpCz110VM= Subject key identifier: 0B:25:47:64:60:C7:DF:D0:4A:C0:D8:44:27:0E:08:EB:DF:F6:93:90 Certificate issuer: /CN=A91100B2/serialNumber=BC42188A48A7A99F96D6AFB2011E7DC9DEEE22A5 Certificate serial: 1E Authority key identifier: BC:42:18:8A:48:A7:A9:9F:96:D6:AF:B2:01:1E:7D:C9:DE:EE:22:A5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/vEIYikinqZ-W1q-yAR59yd7uIqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/C7990BE8AFF411F0B040B258C4F9AE02.roa Signing time: Thu 23 Oct 2025 09:44:30 +0000 ROA not before: Thu 23 Oct 2025 09:44:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138542 IP address blocks: 79.109.232.0/21 maxlen: 21 79.109.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/vEIYikinqZ-W1q-yAR59yd7uIqU.crl rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/vEIYikinqZ-W1q-yAR59yd7uIqU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/vEIYikinqZ-W1q-yAR59yd7uIqU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91100B2, serialNumber=BC42188A48A7A99F96D6AFB2011E7DC9DEEE22A5 Validity Not Before: Oct 23 09:44:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f9f8fe-72a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:34:fe:68:f4:ac:34:a7:ae:17:7e:be:77:8d: 40:da:74:d3:c8:41:88:95:7f:96:33:94:78:1d:14: 5e:fa:55:49:d9:dd:90:6c:00:10:17:e6:1d:4a:b9: 05:c2:17:c2:8a:48:f6:9f:e7:be:84:71:28:19:f3: 6c:9c:b1:aa:86:52:89:38:19:8f:b0:64:29:83:79: 4d:2d:9b:0d:39:87:ff:ae:7a:c9:7e:35:23:89:64: 83:56:db:0e:d1:32:c7:06:ba:66:36:3f:6e:9b:41: f8:3c:aa:a2:74:ee:e9:2a:dc:ef:70:29:a8:b9:35: fe:d0:10:55:b8:7b:fa:cf:fd:ec:f0:3a:ae:24:68: 89:43:84:96:43:04:e3:4e:b2:6a:ab:12:47:db:b1: 7d:21:a7:5c:db:0b:10:f3:25:c6:31:e4:bf:f8:45: fe:ba:37:5e:4b:c5:42:e3:00:81:8f:84:62:33:aa: 0c:30:97:1e:1e:73:b4:72:5e:3a:08:0f:95:94:ae: 96:d0:e9:c6:5b:da:22:1e:d4:86:51:76:9f:79:2b: 95:28:cf:bf:46:49:69:ef:41:8e:7e:08:52:a0:3a: 20:3e:bc:7f:86:16:ce:0e:f5:06:b2:7a:ca:58:ae: 81:d7:d8:d1:49:d4:5c:a5:2e:cd:6b:56:79:b8:04: 7c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:25:47:64:60:C7:DF:D0:4A:C0:D8:44:27:0E:08:EB:DF:F6:93:90 X509v3 Authority Key Identifier: keyid:BC:42:18:8A:48:A7:A9:9F:96:D6:AF:B2:01:1E:7D:C9:DE:EE:22:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/vEIYikinqZ-W1q-yAR59yd7uIqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/vEIYikinqZ-W1q-yAR59yd7uIqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91100B2/721F3C9CA61B11F0AC995833C4F9AE02/C7990BE8AFF411F0B040B258C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 79.109.232.0-79.109.247.255 Signature Algorithm: sha256WithRSAEncryption ca:6b:fc:1d:67:96:1b:a6:7f:00:93:65:6f:fb:55:16:5c:2a: 8a:d0:e0:de:91:2a:48:41:5c:f5:42:cf:dc:0a:4e:ea:77:a7: 77:61:a4:f3:e2:04:f0:35:0a:0c:f8:25:ae:2c:35:be:48:d8: 73:28:99:2d:ef:d4:ab:c7:04:06:10:e4:67:4d:71:48:45:08: b9:8a:9c:b2:89:35:ec:85:48:36:6c:39:5f:ac:c2:45:28:f8: a9:0a:f2:c1:7a:15:5f:fe:a8:ca:75:08:ac:84:b9:00:27:25: 6a:3d:38:22:03:56:a0:6e:47:cb:d7:fe:2e:44:89:83:f1:a5: e3:18:5b:76:5f:11:28:d9:c3:b4:43:d3:bb:15:83:02:fb:f6: db:43:0a:f2:aa:19:f7:ba:38:85:cd:2e:59:37:c6:af:2e:38: b7:17:86:4e:d8:ab:b2:38:47:52:9e:02:1f:67:1b:82:d1:b2: d7:9f:a6:8d:e3:1f:31:a4:11:55:e8:82:1b:fb:d6:e3:1b:b0: 67:b5:31:72:7e:f2:ae:cd:d2:45:8b:d0:c9:35:2b:1d:13:21: 7c:86:b4:11:0b:92:65:a1:a4:f2:2f:a3:49:db:82:54:51:80: 40:e0:3d:1f:3e:b5:1b:a7:90:be:0c:21:90:4b:48:30:1c:09: 34:0c:5f:81 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDBCMjExMC8GA1UEBRMoQkM0MjE4OEE0OEE3QTk5Rjk2RDZBRkIyMDExRTdEQzlE RUVFMjJBNTAeFw0yNTEwMjMwOTQ0MzBaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjlmOGZlLTcyYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeNP5o9Kw0p64Xfr53jUDadNPIQYiVf5YzlHgdFF76VUnZ3ZBsABAX5h1KuQXC F8KKSPaf576EcSgZ82ycsaqGUok4GY+wZCmDeU0tmw05h/+uesl+NSOJZINW2w7R MscGumY2P26bQfg8qqJ07ukq3O9wKai5Nf7QEFW4e/rP/ezwOq4kaIlDhJZDBONO smqrEkfbsX0hp1zbCxDzJcYx5L/4Rf66N15LxULjAIGPhGIzqgwwlx4ec7RyXjoI D5WUrpbQ6cZb2iIe1IZRdp95K5Uoz79GSWnvQY5+CFKgOiA+vH+GFs4O9QayespY roHX2NFJ1FylLs1rVnm4BHwVAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUCyVHZGDH 39BKwNhEJw4I69/2k5AwHwYDVR0jBBgwFoAUvEIYikinqZ+W1q+yAR59yd7uIqUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwMEIyLzcyMUYzQzlDQTYx QjExRjBBQzk5NTgzM0M0RjlBRTAyL3ZFSVlpa2lucVotVzFxLXlBUjU5eWQ3dUlx VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdkVJWWlraW5xWi1XMXEteUFSNTl5ZDd1SXFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDBCMi83MjFGM0M5Q0E2MUIxMUYwQUM5OTU4MzNDNEY5QUUwMi9DNzk5MEJFOEFG RjQxMUYwQjA0MEIyNThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQDT23oAwQDT23wMA0GCSqGSIb3DQEBCwUAA4IBAQDKa/wd Z5Ybpn8Ak2Vv+1UWXCqK0ODekSpIQVz1Qs/cCk7qd6d3YaTz4gTwNQoM+CWuLDW+ SNhzKJkt79SrxwQGEORnTXFIRQi5ipyyiTXshUg2bDlfrMJFKPipCvLBehVf/qjK dQishLkAJyVqPTgiA1agbkfL1/4uRImD8aXjGFt2XxEo2cO0Q9O7FYMC+/bbQwry qhn3ujiFzS5ZN8avLji3F4ZO2KuyOEdSngIfZxuC0bLXn6aN4x8xpBFV6IIb+9bj G7BntTFyfvKuzdJFi9DJNSsdEyF8hrQRC5JloaTyL6NJ24JUUYBA4D0fPrUbp5C+ DCGQS0gwHAk0DF+B -----END CERTIFICATE-----Generated at Wed Nov 5 22:33:15 2025 by rpki-client