$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8EA288F62E9511E9896EFA1DC4F9AE02.roa File: 8EA288F62E9511E9896EFA1DC4F9AE02.roa (raw, json) Hash identifier: IMj8qtFSd6hi4gKqRA7H36habWRd5bqBb8+O4kZejZ4= Subject key identifier: 18:A0:1A:0D:BC:C7:ED:CD:87:3A:B4:2F:22:22:8B:B8:57:29:18:FA Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 119D Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8EA288F62E9511E9896EFA1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:00:59 +0000 ROA not before: Sat 24 May 2025 17:49:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45782 IP address blocks: 210.4.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4509 (0x119d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 24 17:49:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a470ca-7f44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:92:8b:67:d8:74:9b:e6:28:4a:c0:9e:62:e9: 04:bb:d5:88:60:b7:fd:06:c1:04:5c:68:0c:f3:21: 3a:8a:6c:4c:78:4b:49:56:b1:39:8f:8a:d3:ce:37: ba:56:58:c2:f7:57:51:d8:15:64:01:60:2f:b3:d7: 72:e7:ee:85:93:71:b2:5c:99:84:7e:17:ab:5a:0f: 27:cf:47:1e:01:1d:92:97:82:a8:25:32:e1:6e:a6: 0a:18:de:aa:4f:e8:7f:d2:7c:6f:51:97:6d:bc:b0: ef:62:07:b0:90:6d:5a:04:20:01:a8:2a:99:73:3a: 3d:99:cf:76:ba:50:d9:73:56:a3:e6:e9:cc:1f:5f: 79:2c:18:f2:04:78:f2:46:34:dd:a7:94:60:73:92: 2b:9e:bf:97:72:f4:50:85:95:8a:98:b9:cf:43:e0: 65:15:b1:b7:09:3d:21:3e:b3:8b:eb:48:cf:c9:21: d7:00:d0:c0:55:e3:3f:63:ee:f1:6f:2a:77:6e:a1: 0e:86:c5:aa:b4:c6:1b:64:98:74:24:72:74:d1:b0: c0:39:90:95:1f:b0:ec:10:45:36:c8:66:84:22:39: 95:49:5b:76:d2:3f:9c:ea:3c:dd:7f:02:72:f0:4e: da:c1:3f:23:79:18:e7:71:57:c7:8b:24:ed:53:a7: 54:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A0:1A:0D:BC:C7:ED:CD:87:3A:B4:2F:22:22:8B:B8:57:29:18:FA X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/8EA288F62E9511E9896EFA1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 210.4.6.0/24 Signature Algorithm: sha256WithRSAEncryption 29:0a:df:41:25:1c:69:a6:b0:1d:2c:30:ec:6f:72:13:0c:0d: 04:fe:fa:7c:a2:00:95:78:31:80:4c:29:a1:38:86:ba:81:22: fe:d2:fa:c5:e2:c5:19:01:3e:bf:02:aa:a0:90:36:89:b9:75: cf:52:0c:30:4b:52:3e:07:55:d7:91:3b:84:1f:1b:f4:9d:3e: bf:39:a6:1f:93:fc:f0:69:84:6e:b5:2e:b3:6c:56:c3:8d:4d: 9b:f6:ef:cf:12:0b:9d:6b:98:44:fe:6a:7d:6f:6f:f1:4d:71: ee:a2:da:85:9e:8a:c6:1e:a2:f4:dc:42:ec:f2:71:3a:68:de: 84:38:e5:9b:e7:3b:d5:fd:91:72:c2:fe:9d:b0:bc:c6:6b:df: e6:ba:12:b6:32:a3:57:94:cc:e4:ca:86:76:5e:cf:92:71:92: 71:b7:df:73:e3:45:2c:71:95:21:fb:83:39:17:8e:f0:57:69: 20:a3:41:e0:e9:03:03:59:1f:a2:22:39:05:17:2a:81:79:bb: de:9f:d4:f0:37:ba:8d:e1:a5:86:8f:56:53:72:ce:cc:36:5d: 92:4c:74:b1:2f:1e:36:0d:e5:aa:fb:55:f2:f2:c6:98:86:0a: 83:80:56:7e:21:a2:48:15:9f:3d:da:ff:b5:cc:23:54:43:91: 65:f9:61:cc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNTI0MTc0OTQ3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBjYS03ZjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm5KLZ9h0m+YoSsCeYukEu9WIYLf9BsEEXGgM8yE6imxMeEtJVrE5j4rTzje6 VljC91dR2BVkAWAvs9dy5+6Fk3GyXJmEfherWg8nz0ceAR2Sl4KoJTLhbqYKGN6q T+h/0nxvUZdtvLDvYgewkG1aBCABqCqZczo9mc92ulDZc1aj5unMH195LBjyBHjy RjTdp5Rgc5Irnr+XcvRQhZWKmLnPQ+BlFbG3CT0hPrOL60jPySHXANDAVeM/Y+7x byp3bqEOhsWqtMYbZJh0JHJ00bDAOZCVH7DsEEU2yGaEIjmVSVt20j+c6jzdfwJy 8E7awT8jeRjncVfHiyTtU6dUHQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBigGg28 x+3Nhzq0LyIii7hXKRj6MB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvOEVBMjg4RjYy RTk1MTFFOTg5NkVGQTFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA0gQGMA0GCSqGSIb3DQEBCwUAA4IBAQApCt9BJRxpprAdLDDsb3IT DA0E/vp8ogCVeDGATCmhOIa6gSL+0vrF4sUZAT6/AqqgkDaJuXXPUgwwS1I+B1XX kTuEHxv0nT6/OaYfk/zwaYRutS6zbFbDjU2b9u/PEguda5hE/mp9b2/xTXHuotqF norGHqL03ELs8nE6aN6EOOWb5zvV/ZFywv6dsLzGa9/muhK2MqNXlMzkyoZ2Xs+S cZJxt99z40UscZUh+4M5F47wV2kgo0Hg6QMDWR+iIjkFFyqBebven9TwN7qN4aWG j1ZTcs7MNl2STHSxLx42DeWq+1Xy8saYhgqDgFZ+IaJIFZ892v+1zCNUQ5Fl+WHM -----END CERTIFICATE-----Generated at Mon Mar 2 22:21:56 2026 by rpki-client