$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa File: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (raw, json) Hash identifier: Oe+nCjRXmGLUG9jUiGqdGqfQAZRPEdEXa9ffB5a1tlY= Subject key identifier: FB:4C:04:DD:59:3F:99:52:27:E5:F1:19:AD:B1:57:8F:94:48:03:9E Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 168E Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa Signing time: Sat 12 Jul 2025 16:55:27 +0000 ROA not before: Sat 12 Jul 2025 16:55:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 0 IP address blocks: 36.255.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5774 (0x168e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Jul 12 16:55:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6872937f-e9e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:45:a8:9b:58:1d:7d:ba:7e:25:6f:4d:99:63: 22:2f:bb:c0:0d:f5:e6:2e:f2:96:85:77:14:2b:14: 49:7d:0d:0c:94:22:4a:bf:c2:ff:01:e5:c9:0a:b1: 96:dc:bc:72:77:60:11:fd:d8:b4:ff:e3:04:e0:3b: f1:b2:55:8b:f0:fd:f1:01:d7:96:6c:af:a4:37:87: 65:98:32:eb:cf:25:09:c6:92:bc:45:86:a0:2c:4a: cd:ec:74:eb:e9:58:13:ce:b1:4e:e8:9e:2d:bb:30: 79:00:0f:3b:5c:8b:0f:cb:52:9a:46:74:a7:f1:1e: 65:1a:52:24:2c:fa:34:dd:e1:c1:f9:52:71:dc:6a: db:0d:af:b5:70:20:27:fd:bb:6b:09:84:6c:fb:e1: f4:50:79:1f:f2:69:54:49:ca:62:7a:d1:5a:68:56: 0c:72:ef:68:5b:7b:e1:af:12:3b:7d:1b:05:5d:31: a7:bc:82:a1:39:72:1f:42:0c:54:b3:98:f1:1f:9b: 33:84:e4:4d:ba:73:82:98:d7:ff:16:13:c1:88:65: ea:d9:67:c0:fd:98:f3:38:02:ee:b5:a7:e8:42:4e: 3f:6a:18:6c:6a:a5:64:6a:d2:de:48:9f:9f:71:e8: cf:63:62:c1:6d:bc:d0:c0:c4:31:90:b1:e4:67:be: 32:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4C:04:DD:59:3F:99:52:27:E5:F1:19:AD:B1:57:8F:94:48:03:9E X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.56.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:70:a0:52:01:1f:08:85:ac:f9:5b:44:cc:13:1d:dc:71:5e: ec:06:b3:39:cd:a8:a5:20:42:43:67:5a:82:31:d3:b6:7d:d9: eb:1b:b5:5b:f0:6c:59:49:39:94:b3:f2:13:63:55:13:98:39: 0c:ca:d5:e1:1b:b9:6f:4c:b3:dd:45:4c:8e:96:4e:4c:3d:31: 60:4d:fe:66:c9:f4:01:09:bf:35:a7:f3:8a:60:2d:5a:91:40: cb:35:ef:0f:51:ce:56:a2:21:82:3a:d6:9d:c9:b7:fc:ae:0e: 90:93:0f:c7:66:21:f6:b0:4e:01:66:62:51:9d:f4:ce:2c:40: 3f:5e:ab:49:7b:dc:97:4c:73:b1:96:15:bd:e9:c9:b9:8f:41: 3f:42:15:79:6e:50:9e:35:0d:03:9b:f6:49:e0:18:b0:14:4e: 13:30:1d:de:60:3d:ec:b4:6f:c1:74:00:cf:6a:93:4c:73:d0: 7c:65:de:55:c3:40:4e:24:ab:b4:d6:d8:b9:fb:d2:b9:ab:cf: be:43:64:50:0f:c2:f5:bd:0e:c2:2d:fc:53:1b:b3:e6:f3:37: 5b:5a:3f:70:49:08:c2:cf:40:a6:29:1b:58:e2:3a:67:4d:74: d5:d9:96:8d:d1:39:6c:d5:e8:49:12:c7:ed:ba:4a:ff:12:17: 5c:3a:8b:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUwNzEyMTY1NTI3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcyOTM3Zi1lOWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEWom1gdfbp+JW9NmWMiL7vADfXmLvKWhXcUKxRJfQ0MlCJKv8L/AeXJCrGW 3Lxyd2AR/di0/+ME4DvxslWL8P3xAdeWbK+kN4dlmDLrzyUJxpK8RYagLErN7HTr 6VgTzrFO6J4tuzB5AA87XIsPy1KaRnSn8R5lGlIkLPo03eHB+VJx3GrbDa+1cCAn /btrCYRs++H0UHkf8mlUScpietFaaFYMcu9oW3vhrxI7fRsFXTGnvIKhOXIfQgxU s5jxH5szhORNunOCmNf/FhPBiGXq2WfA/ZjzOALutafoQk4/ahhsaqVkatLeSJ+f cejPY2LBbbzQwMQxkLHkZ74y3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPtMBN1Z P5lSJ+XxGa2xV4+USAOeMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJEOTEvRUE2NzJBNUMxOUU3MTFFOEIyNDNENTdDQzRGOUFFMDIvOUM3OURCRDIz RTc5MTFFQkJGRkFDOTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIk/zgwDQYJKoZIhvcNAQELBQADggEBAHpwoFIBHwiFrPlb RMwTHdxxXuwGsznNqKUgQkNnWoIx07Z92esbtVvwbFlJOZSz8hNjVROYOQzK1eEb uW9Ms91FTI6WTkw9MWBN/mbJ9AEJvzWn84pgLVqRQMs17w9RzlaiIYI61p3Jt/yu DpCTD8dmIfawTgFmYlGd9M4sQD9eq0l73JdMc7GWFb3pybmPQT9CFXluUJ41DQOb 9kngGLAUThMwHd5gPey0b8F0AM9qk0xz0Hxl3lXDQE4kq7TW2Ln70rmrz75DZFAP wvW9DsIt/FMbs+bzN1taP3BJCMLPQKYpG1jiOmdNdNXZlo3ROWzV6EkSx+26Sv8S F1w6i50= -----END CERTIFICATE-----Generated at Mon Aug 11 04:24:09 2025 by rpki-client