$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/87FB8F3E614711F0AA20F35DC4F9AE02.roa File: 87FB8F3E614711F0AA20F35DC4F9AE02.roa (raw, json) Hash identifier: yv0YZaMqqjieg1jmTyNXNHHCXy9XjUpTEVgKrJepPNg= Subject key identifier: 5A:5A:61:01:66:C1:4D:05:F5:7D:74:BA:79:10:3E:7B:C4:17:A1:95 Certificate issuer: /CN=A91EB2B8/serialNumber=A897AE8FF2141CB334EAA4B881CC3C5656D47436 Certificate serial: 0C Authority key identifier: A8:97:AE:8F:F2:14:1C:B3:34:EA:A4:B8:81:CC:3C:56:56:D4:74:36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJeuj_IUHLM06qS4gcw8VlbUdDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/87FB8F3E614711F0AA20F35DC4F9AE02.roa Signing time: Tue 15 Jul 2025 06:47:10 +0000 ROA not before: Tue 15 Jul 2025 06:47:10 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139057 IP address blocks: 148.222.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/qJeuj_IUHLM06qS4gcw8VlbUdDY.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/qJeuj_IUHLM06qS4gcw8VlbUdDY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJeuj_IUHLM06qS4gcw8VlbUdDY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8, serialNumber=A897AE8FF2141CB334EAA4B881CC3C5656D47436 Validity Not Before: Jul 15 06:47:10 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6875f96e-5ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fd:3b:ab:71:cf:1a:cc:f3:71:0c:dc:ea:bb: 7c:4c:42:dc:19:a7:ae:49:1a:11:db:d2:f5:5b:a8: 06:ad:7d:05:82:4c:8a:50:58:8e:4d:7e:7e:01:1d: bf:69:c4:52:db:02:77:1c:4d:9b:a6:e6:f2:4e:b5: 6c:98:e0:f8:7f:4d:ce:12:99:d7:93:3c:1c:50:fd: 31:64:22:66:9f:28:fc:8b:b1:01:b8:51:1a:c6:1b: 00:a4:ce:51:aa:07:4b:61:e7:bc:20:56:13:51:19: 1f:70:61:86:2b:52:80:3b:7b:9d:2f:ee:2c:da:27: 71:b1:7e:e6:55:dc:74:d3:20:1c:d8:c1:12:3d:e0: ad:4d:f4:72:52:d8:6f:ab:50:0f:cc:01:d0:ae:67: 9c:45:de:fd:d8:4d:06:9b:ac:93:e1:c1:be:d3:0b: 85:c9:9a:e9:ce:2b:98:ae:23:c6:21:ca:3d:3f:0d: 33:f9:5e:2a:97:b1:73:71:45:5e:1d:7f:62:f6:d7: a5:1f:6d:42:8d:1e:25:5a:a2:d7:9d:8a:65:90:1f: 95:ed:c2:51:47:99:cf:0f:e8:2f:d2:b4:c8:04:8b: 32:10:b5:5f:20:f3:71:cc:b8:10:59:d5:9d:99:fe: ff:67:ab:a1:ba:03:d4:96:df:5f:ec:28:ca:ac:56: 9b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:5A:61:01:66:C1:4D:05:F5:7D:74:BA:79:10:3E:7B:C4:17:A1:95 X509v3 Authority Key Identifier: keyid:A8:97:AE:8F:F2:14:1C:B3:34:EA:A4:B8:81:CC:3C:56:56:D4:74:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/qJeuj_IUHLM06qS4gcw8VlbUdDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJeuj_IUHLM06qS4gcw8VlbUdDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/87FB8F3E614711F0AA20F35DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.222.160.0/24 Signature Algorithm: sha256WithRSAEncryption 58:87:f7:20:85:e5:3b:b0:a7:0a:15:22:3f:61:04:cd:f2:a8: b6:36:83:c3:22:38:06:0b:34:11:18:3a:78:29:b8:2a:73:95: 4a:5b:05:f5:6b:23:dc:72:4f:08:bd:ce:c7:02:33:a5:fb:33: 0e:cd:fc:95:c3:8a:c1:5f:e4:dc:f5:57:a2:3a:48:23:e7:84: 09:ae:19:4b:77:3e:ee:d3:81:5e:46:b8:a3:99:b8:e2:cc:b0: 21:e2:b3:ef:f5:cc:c5:7b:e4:26:5f:46:e5:75:f4:21:c3:8f: c9:ff:0c:ad:c7:f8:0d:92:ea:29:24:0c:11:26:d1:a7:03:24: d0:03:cf:14:3a:b4:17:91:76:08:23:4b:00:ca:d6:73:38:a9: f7:fd:5a:7b:15:03:47:cf:1c:93:d2:2f:e7:71:da:35:0d:78: 40:f3:7f:60:51:be:7a:19:52:f9:90:bb:3c:4e:48:c6:c4:93: c8:4e:b3:a1:5a:69:80:10:b8:84:6f:53:e7:d2:77:f1:41:5c: 03:c2:6e:ab:39:05:88:d7:26:92:45:27:14:85:a6:78:47:b6: 70:73:85:21:6d:10:eb:1b:4e:6a:b5:16:35:48:ed:89:d0:73: 09:68:92:63:bc:0e:ad:5f:12:31:4d:d8:ea:99:78:31:4c:80: e9:c0:90:37 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QjJCODExMC8GA1UEBRMoQTg5N0FFOEZGMjE0MUNCMzM0RUFBNEI4ODFDQzNDNTY1 NkQ0NzQzNjAeFw0yNTA3MTUwNjQ3MTBaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzVmOTZlLTVlYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCu/Turcc8azPNxDNzqu3xMQtwZp65JGhHb0vVbqAatfQWCTIpQWI5Nfn4BHb9p xFLbAnccTZum5vJOtWyY4Ph/Tc4SmdeTPBxQ/TFkImafKPyLsQG4URrGGwCkzlGq B0th57wgVhNRGR9wYYYrUoA7e50v7izaJ3GxfuZV3HTTIBzYwRI94K1N9HJS2G+r UA/MAdCuZ5xF3v3YTQabrJPhwb7TC4XJmunOK5iuI8Yhyj0/DTP5XiqXsXNxRV4d f2L216UfbUKNHiVaotedimWQH5XtwlFHmc8P6C/StMgEizIQtV8g83HMuBBZ1Z2Z /v9nq6G6A9SW31/sKMqsVpvTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWlphAWbB TQX1fXS6eRA+e8QXoZUwHwYDVR0jBBgwFoAUqJeuj/IUHLM06qS4gcw8VlbUdDYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCMkI4LzM1ODNFNTg2NTE2 NTExRjBCQzFDQUY3NUM0RjlBRTAyL3FKZXVqX0lVSExNMDZxUzRnY3c4VmxiVWRE WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUpldWpfSVVITE0wNnFTNGdjdzhWbGJVZERZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjJCOC8zNTgzRTU4NjUxNjUxMUYwQkMxQ0FGNzVDNEY5QUUwMi84N0ZCOEYzRTYx NDcxMUYwQUEyMEYzNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJTeoDANBgkqhkiG9w0BAQsFAAOCAQEAWIf3IIXlO7CnChUi P2EEzfKotjaDwyI4Bgs0ERg6eCm4KnOVSlsF9Wsj3HJPCL3OxwIzpfszDs38lcOK wV/k3PVXojpII+eECa4ZS3c+7tOBXka4o5m44sywIeKz7/XMxXvkJl9G5XX0IcOP yf8Mrcf4DZLqKSQMESbRpwMk0APPFDq0F5F2CCNLAMrWczip9/1aexUDR88ck9Iv 53HaNQ14QPN/YFG+ehlS+ZC7PE5IxsSTyE6zoVppgBC4hG9T59J38UFcA8JuqzkF iNcmkkUnFIWmeEe2cHOFIW0Q6xtOarUWNUjtidBzCWiSY7wOrV8SMU3Y6pl4MUyA 6cCQNw== -----END CERTIFICATE-----Generated at Mon Jul 21 12:35:40 2025 by rpki-client