$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8D76CA462E9511E9896EFA1DC4F9AE02.roa File: 8D76CA462E9511E9896EFA1DC4F9AE02.roa (raw, json) Hash identifier: JuUJ4DOSBW01nrRIUTLHPfkliifJ+rq2zxYO36hJWcU= Subject key identifier: 39:5A:CF:6B:E3:C4:3B:25:90:19:C5:F4:70:D9:2A:C5:3F:FD:E1:89 Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 119B Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8D76CA462E9511E9896EFA1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:00:57 +0000 ROA not before: Sat 24 May 2025 17:49:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38301 IP address blocks: 125.212.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4507 (0x119b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 24 17:49:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a470c9-45b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ed:99:6c:ab:50:e7:59:39:10:76:05:c9:a9: de:61:0b:eb:14:ec:aa:37:00:55:17:35:84:08:7d: c7:f3:f7:b1:ba:cc:d3:af:04:fb:54:72:65:84:60: 4b:d6:a4:74:18:ce:18:5b:ba:48:70:27:ee:f2:57: 66:16:43:b0:bc:c9:7b:70:47:f2:54:ae:86:a8:81: 4a:37:8e:43:3c:eb:6a:50:fc:40:6b:81:11:4d:d1: bc:55:62:ff:6d:80:a7:b6:78:f9:93:27:eb:31:f3: 03:88:0b:61:9b:87:1a:d4:5b:15:86:34:fe:76:84: e6:33:b8:9d:26:64:40:7b:0c:db:bc:63:0f:64:dc: d2:db:b2:e9:c8:2a:0b:8d:fa:72:64:5b:2a:ea:64: 69:68:ad:61:9a:b1:57:56:fa:4c:29:02:42:e0:b8: aa:79:79:69:6a:75:87:a7:e0:81:e7:9f:a1:90:aa: cc:eb:3e:9b:3f:05:de:9f:e4:45:60:31:4a:a9:1a: d0:02:a5:93:54:82:ec:36:44:34:26:ce:fc:1e:83: 56:fe:80:4b:bc:53:e1:04:d6:a9:33:e6:55:33:2b: 8b:e4:59:6a:7f:71:ad:1b:f0:fa:66:c2:c4:52:43: 73:7f:a1:6e:da:76:76:b8:13:7a:38:af:a5:6d:15: 01:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5A:CF:6B:E3:C4:3B:25:90:19:C5:F4:70:D9:2A:C5:3F:FD:E1:89 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8D76CA462E9511E9896EFA1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 125.212.63.0/24 Signature Algorithm: sha256WithRSAEncryption 77:2e:6d:48:4c:f1:0b:df:78:35:fe:1a:4e:db:7f:c2:56:a3: 79:8a:f2:78:d7:52:57:20:fb:da:de:cf:ee:33:9c:9b:2d:5b: 91:30:bb:a0:39:12:7d:23:78:50:eb:6c:78:80:bf:b4:ce:54: d6:69:93:2a:48:d9:56:88:ec:ee:90:7d:92:93:37:ed:7e:dd: 27:e8:e8:50:9d:08:f1:c1:c2:35:cd:ed:ce:41:fc:71:9e:bb: 86:3b:23:5c:74:84:e3:7a:77:9f:e6:fd:ae:af:4e:47:81:be: 6d:50:d9:9f:a5:d4:87:16:b8:0c:70:33:46:6d:31:ad:10:a1: c4:6f:0d:a9:7a:13:7c:07:c9:8f:0f:b5:7d:56:5b:1a:e7:6c: 2e:21:e6:09:a6:10:5d:3c:64:69:8f:3b:72:b5:2c:e4:8d:4b: 17:7c:d4:f5:6b:15:bf:a0:e5:3d:c9:af:cc:3d:d0:85:19:27: ce:50:f5:2a:40:f0:93:9a:69:2e:f6:5c:95:42:27:f2:2e:b5: 06:a8:79:e5:44:6f:69:4a:39:e2:df:1c:74:08:2f:bb:27:db: 99:92:ef:1b:45:41:7c:57:e9:52:39:57:70:08:e7:4b:cf:15: 35:40:1c:f6:9b:42:3c:76:1a:7c:35:6d:12:f3:8b:b4:b7:08: 98:f2:f8:9a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNTI0MTc0OTQ1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBjOS00NWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+2ZbKtQ51k5EHYFyaneYQvrFOyqNwBVFzWECH3H8/exuszTrwT7VHJlhGBL 1qR0GM4YW7pIcCfu8ldmFkOwvMl7cEfyVK6GqIFKN45DPOtqUPxAa4ERTdG8VWL/ bYCntnj5kyfrMfMDiAthm4ca1FsVhjT+doTmM7idJmRAewzbvGMPZNzS27LpyCoL jfpyZFsq6mRpaK1hmrFXVvpMKQJC4LiqeXlpanWHp+CB55+hkKrM6z6bPwXen+RF YDFKqRrQAqWTVILsNkQ0Js78HoNW/oBLvFPhBNapM+ZVMyuL5Flqf3GtG/D6ZsLE UkNzf6Fu2nZ2uBN6OK+lbRUB4QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDlaz2vj xDslkBnF9HDZKsU//eGJMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvOEQ3NkNBNDYy RTk1MTFFOTg5NkVGQTFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAfdQ/MA0GCSqGSIb3DQEBCwUAA4IBAQB3Lm1ITPEL33g1/hpO23/C VqN5ivJ411JXIPva3s/uM5ybLVuRMLugORJ9I3hQ62x4gL+0zlTWaZMqSNlWiOzu kH2Skzftft0n6OhQnQjxwcI1ze3OQfxxnruGOyNcdITjenef5v2ur05Hgb5tUNmf pdSHFrgMcDNGbTGtEKHEbw2pehN8B8mPD7V9Vlsa52wuIeYJphBdPGRpjztytSzk jUsXfNT1axW/oOU9ya/MPdCFGSfOUPUqQPCTmmku9lyVQifyLrUGqHnlRG9pSjni 3xx0CC+7J9uZku8bRUF8V+lSOVdwCOdLzxU1QBz2m0I8dhp8NW0S84u0twiY8via -----END CERTIFICATE-----Generated at Mon Mar 2 22:19:19 2026 by rpki-client