$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/749BAA209BC911F0B2979527C4F9AE02.roa File: 749BAA209BC911F0B2979527C4F9AE02.roa (raw, json) Hash identifier: LzbUGtpSl+ZyW2ny+qQFMDTLA27guJpHBkGcUw+uCb8= Subject key identifier: 2A:12:41:E5:85:B2:A2:60:F7:58:B0:5E:1D:35:80:56:01:98:2C:0E Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 0170 Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/749BAA209BC911F0B2979527C4F9AE02.roa Signing time: Sat 27 Sep 2025 17:43:19 +0000 ROA not before: Sat 27 Sep 2025 17:43:19 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 58689 IP address blocks: 36.50.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972, serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: Sep 27 17:43:19 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68d82237-f7dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:44:63:32:db:1b:aa:b4:d0:bd:0a:8c:34:90: be:7e:24:f7:20:c4:64:e2:15:4f:be:e8:2a:37:db: 17:c9:06:ed:72:bb:d9:07:78:6f:e3:c1:57:8a:32: 2a:e8:29:0c:11:2f:22:78:7f:c6:70:02:b2:6c:be: f8:4f:e3:3c:ac:e2:67:40:46:26:51:a0:e3:06:2f: c4:83:02:39:18:b6:dd:55:01:19:fa:f8:f2:69:60: 3c:0f:e0:f0:54:82:4b:88:a3:ef:c6:25:f5:07:88: a8:6e:c5:ad:92:1d:c9:7b:7f:1e:bd:fd:07:28:a1: 4a:b0:ff:f6:d8:42:9d:53:59:f2:35:7d:63:c8:3b: 19:32:16:37:ae:48:00:5d:91:46:44:a6:6c:b9:f7: 85:1a:b8:82:d6:4f:8d:db:62:71:d7:f0:5d:30:24: 44:69:00:b0:13:4b:2f:d2:d4:a5:6f:b5:f0:d2:8c: a5:a4:64:a0:83:f6:28:7a:7d:92:d6:e9:a7:97:c8: 2d:81:ce:49:6f:68:33:7a:4f:8c:19:20:ee:b0:75: e7:14:53:79:02:f0:30:b9:7a:af:7a:eb:c5:08:39: dd:94:ec:c1:70:ed:22:e9:92:35:87:56:1f:f6:c6: 9d:6a:31:af:7c:ec:d4:bc:6e:cb:4a:4e:be:2d:55: 33:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:12:41:E5:85:B2:A2:60:F7:58:B0:5E:1D:35:80:56:01:98:2C:0E X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/749BAA209BC911F0B2979527C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.199.0/24 Signature Algorithm: sha256WithRSAEncryption 06:94:4c:38:5d:e1:34:dc:f9:40:31:e7:87:63:83:f4:3c:e2: 2b:7b:35:ca:98:69:98:e4:cd:07:ca:c7:b5:87:84:a7:b3:be: 5b:6b:7d:84:a3:1b:d9:5c:15:36:7c:d0:5d:e9:aa:b2:9b:c3: f3:e3:22:61:26:b0:a1:f9:74:fc:73:bd:68:c1:ba:3a:b0:cb: a3:42:38:0c:77:d0:c6:f7:7b:29:1b:ee:c8:c8:2d:df:a3:1f: 4c:90:06:53:08:3f:4d:51:a7:dc:e8:64:cb:6e:b3:e2:8c:c4: 1e:2c:f3:7f:21:09:e1:73:19:6b:a5:17:cf:29:1a:07:db:27: 9d:55:d1:ae:91:bf:ce:0b:17:6b:c5:14:3f:38:97:b3:4b:e3: dd:2d:49:4c:55:4c:b7:b9:96:7e:3a:7c:37:ae:1f:0c:7a:81: 76:ce:15:a0:ce:8f:a0:3b:0c:0d:73:c4:b2:6d:68:b7:32:da: 44:00:20:a2:06:d9:43:d4:88:cf:db:ed:a5:6a:7e:7f:01:12: 1a:49:8b:0c:2e:e7:89:38:ad:df:81:e1:be:4b:36:bd:ac:9e: 72:d3:1f:33:90:27:31:a2:9b:db:c0:08:c0:4d:7f:9b:0e:35: 55:55:d2:8d:61:8e:32:41:9d:48:37:1a:40:79:9e:77:6e:9f: 9c:39:13:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5NzIxMTAvBgNVBAUTKDVEMTg1QjcxMkQ5MzA1NkJGMjc0QjhCN0E4OThDNjky NTRFQkI5ODMwHhcNMjUwOTI3MTc0MzE5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ4MjIzNy1mN2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ERjMtsbqrTQvQqMNJC+fiT3IMRk4hVPvugqN9sXyQbtcrvZB3hv48FXijIq 6CkMES8ieH/GcAKybL74T+M8rOJnQEYmUaDjBi/EgwI5GLbdVQEZ+vjyaWA8D+Dw VIJLiKPvxiX1B4iobsWtkh3Je38evf0HKKFKsP/22EKdU1nyNX1jyDsZMhY3rkgA XZFGRKZsufeFGriC1k+N22Jx1/BdMCREaQCwE0sv0tSlb7Xw0oylpGSgg/Yoen2S 1umnl8gtgc5Jb2gzek+MGSDusHXnFFN5AvAwuXqveuvFCDndlOzBcO0i6ZI1h1Yf 9sadajGvfOzUvG7LSk6+LVUz5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCoSQeWF sqJg91iwXh01gFYBmCwOMB8GA1UdIwQYMBaAFF0YW3EtkwVr8nS4t6iYxpJU67mD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk3Mi8yNDVCM0REQ0Ez RTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJXdnlkTGkzcUpqR2tsVHJ1 WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU5NzIvMjQ1QjNERENBM0U2MTFFRUFERjk0ODU1QzRGOUFFMDIvNzQ5QkFBMjA5 QkM5MTFGMEIyOTc5NTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAkMscwDQYJKoZIhvcNAQELBQADggEBAAaUTDhd4TTc+UAx 54djg/Q84it7NcqYaZjkzQfKx7WHhKezvltrfYSjG9lcFTZ80F3pqrKbw/PjImEm sKH5dPxzvWjBujqwy6NCOAx30Mb3eykb7sjILd+jH0yQBlMIP01Rp9zoZMtus+KM xB4s838hCeFzGWulF88pGgfbJ51V0a6Rv84LF2vFFD84l7NL490tSUxVTLe5ln46 fDeuHwx6gXbOFaDOj6A7DA1zxLJtaLcy2kQAIKIG2UPUiM/b7aVqfn8BEhpJiwwu 54k4rd+B4b5LNr2snnLTHzOQJzGim9vACMBNf5sONVVV0o1hjjJBnUg3GkB5nndu n5w5E50= -----END CERTIFICATE-----Generated at Mon Oct 20 08:18:33 2025 by rpki-client