$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8CD1AEC62E9511E9896EFA1DC4F9AE02.roa File: 8CD1AEC62E9511E9896EFA1DC4F9AE02.roa (raw, json) Hash identifier: Wg9nJcL+7yCwCNF5i9jX3GavDbjDIX0HONcfmVfocb4= Subject key identifier: C3:C1:72:7B:85:6F:DD:44:A6:55:5C:6A:80:48:2C:87:E4:03:7F:B1 Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 1198 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8CD1AEC62E9511E9896EFA1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:00:54 +0000 ROA not before: Sat 24 May 2025 17:49:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132716 IP address blocks: 202.78.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:28:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4504 (0x1198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 24 17:49:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a470c6-1706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:b1:20:1c:ce:dc:55:a0:15:31:9a:89:0c:90: b0:1d:82:06:10:e8:c9:1c:28:d3:ae:f0:f6:e7:03: d0:39:30:19:bf:db:e5:b7:1d:e8:ba:28:3f:c3:92: 36:01:d0:97:0d:0c:0e:4a:a2:4e:1c:ce:f8:f8:16: 78:9c:d5:5b:35:e5:d2:df:b2:bf:f3:6d:f5:38:cf: ed:cd:0f:be:5f:9b:34:99:ed:86:2c:bd:52:5a:d0: d5:63:f6:9a:95:e4:cf:5a:37:4e:8b:ae:45:9d:16: b6:9b:0a:f2:2e:ed:fc:73:fd:7a:c1:6a:e1:8c:fe: ee:fe:24:dd:ce:74:cf:fd:4b:b6:23:61:32:2b:7e: 2e:13:57:c7:57:d2:c3:5b:d1:04:5e:3d:fc:43:d8: 34:b1:ec:6f:bd:e7:68:36:b3:12:4b:51:78:9c:16: 5a:26:83:02:ec:92:33:a8:ad:49:fc:9a:c8:b6:05: 16:ef:3f:d1:93:72:b6:db:26:ec:c0:56:d1:55:b4: f8:06:5b:80:79:49:ac:86:13:13:b8:a7:ca:9a:be: 81:49:7b:03:ae:56:99:4b:13:f6:b5:77:11:cc:17: 8b:3f:3c:87:98:de:28:2b:b3:49:d5:46:65:72:b2: fb:fb:9a:d7:f3:7e:54:0f:bc:41:8c:79:14:b5:d3: f8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C1:72:7B:85:6F:DD:44:A6:55:5C:6A:80:48:2C:87:E4:03:7F:B1 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8CD1AEC62E9511E9896EFA1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.78.79.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:cb:14:a4:6f:c3:76:0a:4c:57:01:be:14:4f:b3:0b:fc:cb: c6:44:ef:00:61:d2:33:97:d7:7e:ca:38:ef:1f:0a:12:cd:06: 86:8e:2d:bd:8a:3e:a1:f3:11:f1:ae:f9:94:94:41:cd:fc:92: 4b:28:aa:a1:14:ac:c6:1c:51:5b:e8:95:b6:83:51:a4:9c:a3: 9a:57:d1:f3:cc:f0:38:b2:f8:55:b8:47:95:1f:f3:0e:56:3f: 22:12:61:c7:3d:7c:76:fc:6b:85:ca:7e:f8:7e:34:b4:8b:6f: e1:03:a2:27:21:04:e4:dd:a1:93:eb:68:96:a6:55:0f:ee:1d: 08:84:70:63:d2:b2:64:3e:3b:23:90:ef:da:d0:0c:55:cb:74: af:49:52:8a:05:1e:5c:9c:9f:af:6d:34:b6:a6:20:c0:b3:a9: 11:5e:f1:3a:b8:7b:17:bc:94:29:aa:09:04:73:74:b4:20:b4: 7e:59:b8:cf:d1:f3:f8:7c:51:c0:c5:e3:e5:a2:e6:44:b5:32: 27:2b:54:d4:e6:d6:8d:50:24:fa:9d:e0:8e:42:d0:02:bf:5c: 67:ab:04:88:eb:80:ba:b2:47:0e:4f:77:aa:42:22:3d:2c:98: f6:6d:5d:13:68:99:0d:b8:6f:f8:65:dd:51:a4:ee:3d:ce:11: 61:1d:11:f6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNTI0MTc0OTQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBjNi0xNzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAibEgHM7cVaAVMZqJDJCwHYIGEOjJHCjTrvD25wPQOTAZv9vltx3ouig/w5I2 AdCXDQwOSqJOHM74+BZ4nNVbNeXS37K/8231OM/tzQ++X5s0me2GLL1SWtDVY/aa leTPWjdOi65FnRa2mwryLu38c/16wWrhjP7u/iTdznTP/Uu2I2EyK34uE1fHV9LD W9EEXj38Q9g0sexvvedoNrMSS1F4nBZaJoMC7JIzqK1J/JrItgUW7z/Rk3K22ybs wFbRVbT4BluAeUmshhMTuKfKmr6BSXsDrlaZSxP2tXcRzBeLPzyHmN4oK7NJ1UZl crL7+5rX835UD7xBjHkUtdP46wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMPBcnuF b91EplVcaoBILIfkA3+xMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvOENEMUFFQzYy RTk1MTFFOTg5NkVGQTFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyk5PMA0GCSqGSIb3DQEBCwUAA4IBAQBsyxSkb8N2CkxXAb4UT7ML /MvGRO8AYdIzl9d+yjjvHwoSzQaGji29ij6h8xHxrvmUlEHN/JJLKKqhFKzGHFFb 6JW2g1GknKOaV9HzzPA4svhVuEeVH/MOVj8iEmHHPXx2/GuFyn74fjS0i2/hA6In IQTk3aGT62iWplUP7h0IhHBj0rJkPjsjkO/a0AxVy3SvSVKKBR5cnJ+vbTS2piDA s6kRXvE6uHsXvJQpqgkEc3S0ILR+WbjP0fP4fFHAxePlouZEtTInK1TU5taNUCT6 neCOQtACv1xnqwSI64C6skcOT3eqQiI9LJj2bV0TaJkNuG/4Zd1RpO49zhFhHRH2 -----END CERTIFICATE-----Generated at Mon Mar 2 15:51:42 2026 by rpki-client