$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/CDDEC562011711EEB15FDD2AC4F9AE02.roa File: CDDEC562011711EEB15FDD2AC4F9AE02.roa (raw, json) Hash identifier: mRQhgZ81M0Ts1pMOJw8D4F0g0lJj03RtR9EyLiUMZPc= Subject key identifier: 2F:16:0F:38:E3:7E:B7:19:70:F7:18:6A:57:67:3B:6B:DA:6F:16:E9 Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 048A Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/CDDEC562011711EEB15FDD2AC4F9AE02.roa Signing time: Wed 13 May 2026 00:30:29 +0000 ROA not before: Wed 13 May 2026 00:30:28 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137263 IP address blocks: 210.79.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6, serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Validity Not Before: May 13 00:30:28 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6a03c624-ea0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:ab:da:51:b1:a4:30:cb:17:43:cf:f4:43: 17:fc:4e:7c:1c:56:f4:57:c1:9c:05:ad:23:ac:93: fc:e5:ab:2a:dc:e8:4b:8a:de:d9:07:76:d0:a2:94: 5b:a2:78:4f:a7:59:d4:14:0c:b6:80:c6:05:2e:b0: f4:72:a5:94:ae:73:22:91:78:32:7a:8e:ef:d3:fe: 35:4a:29:c2:50:e9:0f:ff:3d:55:56:fc:de:e0:47: 44:94:a1:3a:c6:35:e6:95:76:23:37:65:77:55:2b: 10:cd:6f:b3:f2:03:98:64:c1:3b:be:1a:c0:96:7d: c8:95:59:92:e5:7e:1b:76:13:7f:71:85:42:4f:d1: b6:e1:65:16:5c:df:71:e9:68:c8:da:ce:87:3e:59: 48:8a:ae:6a:05:3f:f2:b5:5f:50:10:2f:71:c5:82: 96:b6:66:d4:c9:a3:5c:b7:11:ca:c7:97:6d:9b:2b: 03:be:66:69:a6:58:55:59:1f:57:30:ab:be:81:29: 19:16:88:a8:f1:54:a0:2e:ca:51:07:a6:d3:91:09: e5:bf:03:99:da:87:59:b7:70:38:8c:0e:3e:1f:4f: 9b:b1:41:3f:a9:97:b1:7c:d8:0f:50:59:51:04:34: 57:19:ce:38:d1:54:9a:ef:0c:97:b6:dd:54:1e:e9: 2e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:16:0F:38:E3:7E:B7:19:70:F7:18:6A:57:67:3B:6B:DA:6F:16:E9 X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/CDDEC562011711EEB15FDD2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 210.79.60.0/24 Signature Algorithm: sha256WithRSAEncryption 39:0a:27:bd:be:4b:d7:0d:cd:55:3d:b1:0d:89:c6:ff:1c:03: 93:aa:43:92:8f:6d:1b:c7:23:3c:d3:1e:89:62:93:c4:be:1a: 7c:1c:a9:1b:6b:63:54:ba:91:99:d0:82:c2:86:bd:d7:df:e1: 25:0e:ab:00:31:bb:cf:0a:c8:82:ee:00:3d:90:7c:15:0d:09: de:48:f8:67:f2:d6:cb:4a:6d:c3:6d:30:99:a6:a9:0e:0c:91: 2d:b8:41:84:7d:da:f7:4c:6c:ef:79:65:3e:83:09:43:e3:8c: 89:06:95:4e:6f:d8:60:ea:71:a7:fa:a8:d8:54:3d:03:f5:85: cd:15:4f:4d:ce:8e:bf:1f:f0:19:94:0d:45:e6:aa:cb:de:3a: 3b:75:e8:e8:78:f3:b0:4e:74:90:19:c0:f2:52:89:42:d3:7e: 25:f4:a9:ee:e7:54:0a:eb:9a:c7:0d:1f:36:6b:9a:0e:42:da: 88:8e:95:bc:d3:8d:44:b6:e0:2b:db:6b:23:22:f6:5d:65:82: bb:13:bc:84:06:8e:bf:a7:ee:e4:c2:1f:38:9a:a2:86:6a:5e: 42:44:ac:5d:09:80:7a:d9:84:22:4c:b6:82:ea:0d:80:ff:c4: 7b:c7:e0:3a:fc:be:1d:ca:45:1e:7d:8b:00:5d:d5:b5:de:a8: 2f:e5:5a:01 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjYwNTEzMDAzMDI4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAzYzYyNC1lYTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaOr2lGxpDDLF0PP9EMX/E58HFb0V8GcBa0jrJP85asq3OhLit7ZB3bQopRb onhPp1nUFAy2gMYFLrD0cqWUrnMikXgyeo7v0/41SinCUOkP/z1VVvze4EdElKE6 xjXmlXYjN2V3VSsQzW+z8gOYZME7vhrAln3IlVmS5X4bdhN/cYVCT9G24WUWXN9x 6WjI2s6HPllIiq5qBT/ytV9QEC9xxYKWtmbUyaNctxHKx5dtmysDvmZpplhVWR9X MKu+gSkZFoio8VSgLspRB6bTkQnlvwOZ2odZt3A4jA4+H0+bsUE/qZexfNgPUFlR BDRXGc440VSa7wyXtt1UHuku5wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC8WDzjj frcZcPcYaldnO2vabxbpMB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvQ0RERUM1NjIw MTE3MTFFRUIxNUZERDJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA0k88MA0GCSqGSIb3DQEBCwUAA4IBAQA5Cie9vkvXDc1VPbENicb/ HAOTqkOSj20bxyM80x6JYpPEvhp8HKkba2NUupGZ0ILChr3X3+ElDqsAMbvPCsiC 7gA9kHwVDQneSPhn8tbLSm3DbTCZpqkODJEtuEGEfdr3TGzveWU+gwlD44yJBpVO b9hg6nGn+qjYVD0D9YXNFU9Nzo6/H/AZlA1F5qrL3jo7dejoePOwTnSQGcDyUolC 034l9Knu51QK65rHDR82a5oOQtqIjpW8041EtuAr22sjIvZdZYK7E7yEBo6/p+7k wh84mqKGal5CRKxdCYB62YQiTLaC6g2A/8R7x+A6/L4dykUefYsAXdW13qgv5VoB -----END CERTIFICATE-----Generated at Wed May 13 03:57:14 2026 by rpki-client