$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/53DFF8EC2E9111E999636910C4F9AE02.roa File: 53DFF8EC2E9111E999636910C4F9AE02.roa (raw, json) Hash identifier: 0AlAm/UllNu6nV+KmAJcUogCEbfOQbf6eO/9wodLVx0= Subject key identifier: 13:19:76:AB:42:AD:22:8C:BC:22:02:B1:13:AE:6C:5A:DD:7D:EC:1F Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 11A0 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/53DFF8EC2E9111E999636910C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:01:02 +0000 ROA not before: Sat 24 May 2025 17:49:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9771 IP address blocks: 121.97.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4512 (0x11a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 24 17:49:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a470ce-a674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0e:7b:dc:40:2b:96:8e:52:f3:92:0e:82:50: 83:31:96:f6:68:0f:be:ed:c3:c4:ce:81:fa:27:9d: fd:06:9a:09:86:f1:84:ad:55:77:5b:39:ed:31:d4: 8e:25:c1:60:f2:9c:bb:be:c5:dd:3c:8c:ce:98:76: bf:00:ed:73:b7:00:f0:41:44:af:ef:a1:ab:b5:d6: 29:ad:1e:b9:25:ae:99:9c:9a:fd:28:dd:d1:ca:69: 67:d9:d8:b3:56:30:bf:00:b5:6b:37:d5:bf:0d:10: d8:05:9a:e9:3d:4e:7e:32:a3:67:99:54:90:c8:dc: 67:de:13:1f:53:01:12:10:ab:e1:88:78:45:3f:0e: 03:ee:c2:29:82:f3:99:f0:bc:ba:8c:46:a1:ad:d1: 25:af:0a:6a:c8:9b:4c:06:b5:41:77:ad:6a:74:51: 12:1e:af:29:f7:8a:c7:5f:5e:96:68:51:56:47:4e: 5f:38:a3:c0:7b:e8:9a:32:87:67:7f:0b:46:52:60: d3:7f:07:15:ae:65:86:fe:3f:8b:3e:3b:9d:cc:a2: 8a:08:bc:92:a0:5f:97:fc:e0:e4:7b:3b:19:a6:96: 76:90:0c:42:50:ed:da:88:c4:e2:7a:72:ff:18:17: c9:d4:e7:67:1a:8b:75:65:44:3f:13:d7:f0:83:ef: e1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:19:76:AB:42:AD:22:8C:BC:22:02:B1:13:AE:6C:5A:DD:7D:EC:1F X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/53DFF8EC2E9111E999636910C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.97.8.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:5e:61:5a:5a:5e:90:9e:93:93:a5:73:eb:a5:74:e8:01:28: f6:01:52:65:ad:e5:f2:12:35:f1:e7:62:d5:a7:44:b9:b2:5c: c7:64:70:c4:2a:41:43:02:19:98:7d:a4:b0:7e:fe:e1:e9:9b: 23:46:b2:8f:38:a1:77:ea:35:37:d5:90:d4:85:a4:57:dd:d4: 55:83:63:b7:c9:df:fc:a7:2e:5e:0d:fd:b4:60:39:6a:bb:bc: 33:c7:24:55:b7:08:87:6e:ba:e5:41:50:89:5b:dc:38:e0:b7: 87:5d:92:99:8e:f9:6c:bc:9a:a7:6b:88:26:25:e4:4c:d3:70: 1f:c8:75:2e:c5:12:45:ce:66:66:10:4b:60:48:98:50:5f:41: b0:27:39:3f:7f:74:96:26:af:07:3d:80:d5:a2:69:79:04:f8: 97:ac:c0:05:96:84:b4:30:7a:2c:24:27:cb:b9:0a:77:5c:c4: bf:e5:8b:65:7d:0b:fe:1b:80:81:07:bc:86:7e:6b:27:75:b6: 96:73:b3:75:87:de:6d:f1:ba:e1:2c:d1:a5:35:24:79:00:30: 9c:7f:3f:22:b5:69:f3:2d:fc:98:54:39:56:4b:06:5a:e2:3d: 3e:80:91:13:c7:f5:18:b6:6b:a7:9c:89:f3:8d:29:cb:50:d6: cc:c6:e9:c8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNTI0MTc0OTQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBjZS1hNjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ573EArlo5S85IOglCDMZb2aA++7cPEzoH6J539BpoJhvGErVV3WzntMdSO JcFg8py7vsXdPIzOmHa/AO1ztwDwQUSv76GrtdYprR65Ja6ZnJr9KN3Rymln2diz VjC/ALVrN9W/DRDYBZrpPU5+MqNnmVSQyNxn3hMfUwESEKvhiHhFPw4D7sIpgvOZ 8Ly6jEahrdElrwpqyJtMBrVBd61qdFESHq8p94rHX16WaFFWR05fOKPAe+iaModn fwtGUmDTfwcVrmWG/j+LPjudzKKKCLySoF+X/ODkezsZppZ2kAxCUO3aiMTienL/ GBfJ1OdnGot1ZUQ/E9fwg+/hEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBMZdqtC rSKMvCICsROubFrdfewfMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvNTNERkY4RUMy RTkxMTFFOTk5NjM2OTEwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAeWEIMA0GCSqGSIb3DQEBCwUAA4IBAQA+XmFaWl6QnpOTpXPrpXTo ASj2AVJlreXyEjXx52LVp0S5slzHZHDEKkFDAhmYfaSwfv7h6ZsjRrKPOKF36jU3 1ZDUhaRX3dRVg2O3yd/8py5eDf20YDlqu7wzxyRVtwiHbrrlQVCJW9w44LeHXZKZ jvlsvJqna4gmJeRM03AfyHUuxRJFzmZmEEtgSJhQX0GwJzk/f3SWJq8HPYDVoml5 BPiXrMAFloS0MHosJCfLuQp3XMS/5YtlfQv+G4CBB7yGfmsndbaWc7N1h95t8brh LNGlNSR5ADCcfz8itWnzLfyYVDlWSwZa4j0+gJETx/UYtmunnInzjSnLUNbMxunI -----END CERTIFICATE-----Generated at Mon Mar 2 20:36:45 2026 by rpki-client