$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/CDDEC562011711EEB15FDD2AC4F9AE02.roa File: CDDEC562011711EEB15FDD2AC4F9AE02.roa (raw, json) Hash identifier: SZDZjO2U/7XiarXyX086XnRBejlK9FVygwBnb0pSgvQ= Subject key identifier: 35:4D:43:FC:AA:68:CE:63:2D:0D:4C:90:EC:DF:0A:53:85:0C:C2:5F Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 046F Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/CDDEC562011711EEB15FDD2AC4F9AE02.roa Signing time: Fri 03 Apr 2026 00:32:53 +0000 ROA not before: Fri 03 Apr 2026 00:32:53 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 137263 IP address blocks: 210.79.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1135 (0x46f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6, serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Validity Not Before: Apr 3 00:32:53 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf0ab5-9f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:77:0a:d6:63:bc:2f:b6:04:41:b9:74:04:a6: d6:40:07:e8:2a:df:37:55:9f:08:86:4c:52:35:ed: 3c:37:d6:8c:b6:80:4a:70:a5:05:4b:28:cf:6c:32: f7:0e:17:0c:39:aa:92:f7:35:66:79:8e:3b:7e:21: e6:27:f2:24:31:b0:23:12:a7:f6:e0:66:b3:c1:2a: 52:5e:20:ff:db:e1:27:25:18:6d:5d:16:90:1b:13: c0:dd:54:a5:ce:55:85:62:ec:28:89:25:47:ff:fb: 18:94:0b:15:a6:00:55:54:3c:c9:0f:2c:35:2b:c8: db:be:99:e0:ff:97:b6:78:c6:4d:46:23:6d:2b:f3: 9e:a4:25:f4:21:24:3f:21:4f:39:22:16:d0:e7:ad: d1:d4:ab:6d:27:e9:0a:cb:16:bd:dd:4d:69:9f:19: 3c:ed:30:e0:60:8f:25:38:87:69:7e:cf:94:fa:18: f6:9b:c6:e4:5c:c3:4c:70:f6:f1:0d:da:a9:e6:87: 6d:18:95:7c:ef:73:0a:c9:79:50:a1:e3:13:36:20: cf:30:bd:9a:74:b0:a8:3e:e2:51:c4:05:a4:23:8e: 8e:b9:dc:1a:85:35:a8:ab:ac:40:6b:8c:7b:c0:f3: 0d:62:4b:98:c7:52:d2:5d:f2:a9:83:4c:cf:99:cf: 1e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:4D:43:FC:AA:68:CE:63:2D:0D:4C:90:EC:DF:0A:53:85:0C:C2:5F X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/CDDEC562011711EEB15FDD2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 210.79.60.0/24 Signature Algorithm: sha256WithRSAEncryption 10:99:5e:12:9a:ae:84:27:ec:c5:e8:ff:bc:3b:b2:d4:37:c0: 45:ae:56:d4:c3:f9:d9:97:f4:71:fc:27:64:f5:7b:4c:78:18: 3e:15:ed:e7:89:4f:29:94:e6:41:c4:84:c8:26:b0:c7:53:0c: 8e:70:5a:30:13:79:9d:8f:0b:3d:59:e7:3e:56:2b:2e:08:8e: 1f:a5:05:33:20:1d:f0:68:43:bc:85:69:c1:88:7f:78:d4:d7: e9:9a:ff:a4:cf:e4:6d:c1:7e:b7:6e:ac:89:df:2a:48:48:0f: d6:08:58:0b:23:06:7d:82:05:73:79:25:d2:75:ab:72:ec:c1: 39:2a:08:e7:1d:bc:94:a5:16:65:39:d8:f4:ad:00:7c:82:74: bf:bb:f5:79:59:88:1c:9d:f9:38:6c:69:99:6a:87:9b:08:c8: 04:21:fc:b8:32:f9:c9:7e:41:75:a1:e4:17:d4:9c:45:14:04: c4:3d:79:97:d8:37:c0:c4:95:f6:07:67:bb:b6:23:d4:95:32: bf:c8:13:77:9f:40:6d:ca:09:68:dd:ba:81:87:ce:86:1e:11: ec:3c:b5:a4:50:fd:34:bb:eb:8d:e5:e8:89:28:1a:06:bc:4c: 18:02:02:d8:1f:e0:70:22:2d:a0:0a:99:65:4f:7d:48:42:bd: 95:91:2a:15 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjYwNDAzMDAzMjUzWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGFiNS05ZjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl3cK1mO8L7YEQbl0BKbWQAfoKt83VZ8IhkxSNe08N9aMtoBKcKUFSyjPbDL3 DhcMOaqS9zVmeY47fiHmJ/IkMbAjEqf24GazwSpSXiD/2+EnJRhtXRaQGxPA3VSl zlWFYuwoiSVH//sYlAsVpgBVVDzJDyw1K8jbvpng/5e2eMZNRiNtK/OepCX0ISQ/ IU85IhbQ563R1KttJ+kKyxa93U1pnxk87TDgYI8lOIdpfs+U+hj2m8bkXMNMcPbx Ddqp5odtGJV873MKyXlQoeMTNiDPML2adLCoPuJRxAWkI46OudwahTWoq6xAa4x7 wPMNYkuYx1LSXfKpg0zPmc8eoQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDVNQ/yq aM5jLQ1MkOzfClOFDMJfMB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvQ0RERUM1NjIw MTE3MTFFRUIxNUZERDJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA0k88MA0GCSqGSIb3DQEBCwUAA4IBAQAQmV4Smq6EJ+zF6P+8O7LU N8BFrlbUw/nZl/Rx/Cdk9XtMeBg+Fe3niU8plOZBxITIJrDHUwyOcFowE3mdjws9 Wec+VisuCI4fpQUzIB3waEO8hWnBiH941Nfpmv+kz+RtwX63bqyJ3ypISA/WCFgL IwZ9ggVzeSXSdaty7ME5KgjnHbyUpRZlOdj0rQB8gnS/u/V5WYgcnfk4bGmZaoeb CMgEIfy4MvnJfkF1oeQX1JxFFATEPXmX2DfAxJX2B2e7tiPUlTK/yBN3n0Btyglo 3bqBh86GHhHsPLWkUP00u+uN5eiJKBoGvEwYAgLYH+BwIi2gCpllT31IQr2VkSoV -----END CERTIFICATE-----Generated at Fri Apr 17 14:04:21 2026 by rpki-client