$ rpki-client -vvf rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/87CCADF855B211F1AB301B6C9D833773.roa File: 87CCADF855B211F1AB301B6C9D833773.roa (raw, json) Hash identifier: /iV1OD9cc0/0dzoE/hS1R0VUZTmWWfVpUvRMwsFG8XY= Subject key identifier: 70:20:05:4D:CF:8E:DD:A4:C4:4B:4E:58:C5:BE:33:0B:24:4A:B9:9D Certificate issuer: /CN=A911678C/serialNumber=EC368D582E1177E09915E33F44EDB9DE4EF32C52 Certificate serial: 81 Authority key identifier: EC:36:8D:58:2E:11:77:E0:99:15:E3:3F:44:ED:B9:DE:4E:F3:2C:52 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/7DaNWC4Rd-CZFeM_RO253k7zLFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/87CCADF855B211F1AB301B6C9D833773.roa Signing time: Fri 22 May 2026 08:09:08 +0000 ROA not before: Fri 22 May 2026 08:09:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140224 IP address blocks: 177.4.0.0/20 maxlen: 24 177.4.32.0/20 maxlen: 24 177.5.64.0/20 maxlen: 24 177.5.112.0/20 maxlen: 24 177.5.176.0/20 maxlen: 24 177.6.176.0/20 maxlen: 24 179.236.96.0/21 maxlen: 24 191.223.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/7DaNWC4Rd-CZFeM_RO253k7zLFI.crl rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/7DaNWC4Rd-CZFeM_RO253k7zLFI.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/7DaNWC4Rd-CZFeM_RO253k7zLFI.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911678C, serialNumber=EC368D582E1177E09915E33F44EDB9DE4EF32C52 Validity Not Before: May 22 08:09:08 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6a100f24-e153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:79:3d:74:9e:64:58:b7:56:93:b3:50:89:c0: d4:ec:74:36:ff:ee:77:07:33:50:f6:93:3d:3c:34: 54:5e:4a:12:5a:32:18:35:f3:ba:8a:18:4e:d6:4c: 4e:b1:a2:d5:81:cd:82:49:5f:20:c6:09:52:82:b3: fb:18:7b:8f:72:a5:ee:92:31:04:2c:d1:48:39:08: ff:9c:69:14:46:7b:74:7a:02:ef:1e:40:50:99:ac: 8d:bb:c2:7a:81:ef:3f:2a:4b:ef:07:e2:e3:70:40: 83:46:f5:1d:38:4f:34:82:0f:bb:d4:6d:dd:b7:57: 36:50:30:ab:12:c7:50:ad:d9:ea:f3:4c:f7:c1:ef: e6:65:6c:94:59:ea:1a:f5:34:8a:ee:db:a5:b6:49: 69:da:49:a9:8c:98:e8:92:bd:4a:0b:5c:08:54:c2: 5d:64:d1:ea:64:06:ed:2f:9b:9f:d9:e3:4d:39:50: 4e:5b:91:6b:91:47:37:bd:cc:f5:ef:9f:14:20:fc: 2e:a3:68:6a:ff:ba:61:4b:1e:9f:8e:aa:3a:27:b2: da:c6:b2:9e:ec:61:4c:04:99:b5:ae:31:37:7e:e9: 48:07:dc:8b:b8:47:60:ad:00:02:3b:b6:4a:cb:b2: 3a:91:e9:80:ff:d1:94:a8:65:a2:c9:8a:1f:a5:50: 00:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:20:05:4D:CF:8E:DD:A4:C4:4B:4E:58:C5:BE:33:0B:24:4A:B9:9D X509v3 Authority Key Identifier: keyid:EC:36:8D:58:2E:11:77:E0:99:15:E3:3F:44:ED:B9:DE:4E:F3:2C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/7DaNWC4Rd-CZFeM_RO253k7zLFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/7DaNWC4Rd-CZFeM_RO253k7zLFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/87CCADF855B211F1AB301B6C9D833773.roa sbgp-ipAddrBlock: critical IPv4: 177.4.0.0/20 177.4.32.0/20 177.5.64.0/20 177.5.112.0/20 177.5.176.0/20 177.6.176.0/20 179.236.96.0/21 191.223.32.0/20 Signature Algorithm: sha256WithRSAEncryption 76:7b:c1:2d:3d:7c:f1:8b:6d:e3:2f:67:6a:b3:b0:5b:f7:98: 1e:0d:88:97:c4:bf:06:bf:87:ef:8f:18:80:98:36:21:16:cf: ed:dc:50:a1:bf:8c:40:cf:0e:ed:32:28:de:92:e9:9d:6a:0e: ea:70:a2:6b:76:19:98:59:8e:84:c5:2f:7a:98:8d:b1:3e:54: 9d:5a:30:bf:08:fa:fa:03:9a:40:46:95:e8:fc:fd:e9:04:44: ee:ed:a7:78:e4:e2:c4:f4:1e:dd:fe:dd:81:79:b4:2a:57:10: 8b:f2:d7:4f:19:ec:6b:8c:d4:dc:c6:99:89:0c:e0:ff:b5:94: fa:92:15:42:ec:ec:67:78:7c:5a:52:88:51:4c:3c:f9:6e:47: f1:0b:af:df:80:6b:aa:e3:2b:e2:fb:c4:c5:54:2e:ec:73:16: 13:48:b9:bf:3a:33:2a:88:08:7e:f2:0b:55:04:1e:14:ca:e4: 62:3e:d2:45:7c:c6:b1:89:2a:30:ef:02:df:1e:07:29:bc:47: ca:1c:7b:af:1d:94:87:3a:d9:03:56:a2:7c:51:02:e6:b7:ce: f3:40:b6:30:34:60:6f:49:16:7f:05:9c:35:53:8b:20:ad:1d: a5:bf:c2:c3:4a:9e:f3:bc:73:dc:76:4c:3d:0e:64:b7:ae:f0: 46:cf:d6:5f -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY3OEMxMTAvBgNVBAUTKEVDMzY4RDU4MkUxMTc3RTA5OTE1RTMzRjQ0RURCOURF NEVGMzJDNTIwHhcNMjYwNTIyMDgwOTA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwMGYyNC1lMTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXk9dJ5kWLdWk7NQicDU7HQ2/+53BzNQ9pM9PDRUXkoSWjIYNfO6ihhO1kxO saLVgc2CSV8gxglSgrP7GHuPcqXukjEELNFIOQj/nGkURnt0egLvHkBQmayNu8J6 ge8/KkvvB+LjcECDRvUdOE80gg+71G3dt1c2UDCrEsdQrdnq80z3we/mZWyUWeoa 9TSK7tultklp2kmpjJjokr1KC1wIVMJdZNHqZAbtL5uf2eNNOVBOW5FrkUc3vcz1 758UIPwuo2hq/7phSx6fjqo6J7LaxrKe7GFMBJm1rjE3fulIB9yLuEdgrQACO7ZK y7I6kemA/9GUqGWiyYofpVAAmwIDAQABo4ICijCCAoYwHQYDVR0OBBYEFHAgBU3P jt2kxEtOWMW+MwskSrmdMB8GA1UdIwQYMBaAFOw2jVguEXfgmRXjP0Ttud5O8yxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjc4Qy8zQkRFMUQ2RTRG MkMxMUYxQkJFMkY2RUE5QkVFNTI4RS83RGFOV0M0UmQtQ1pGZU1fUk8yNTNrN3pM RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzdEYU5XQzRSZC1DWkZlTV9STzI1M2s3ekxGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY3OEMvM0JERTFENkU0RjJDMTFGMUJCRTJGNkVBOUJFRTUyOEUvODdDQ0FERjg1 NUIyMTFGMUFCMzAxQjZDOUQ4MzM3NzMucm9hMEkGCCsGAQUFBwEHAQH/BDowODA2 BAIAATAwAwQEsQQAAwQEsQQgAwQEsQVAAwQEsQVwAwQEsQWwAwQEsQawAwQDs+xg AwQEv98gMA0GCSqGSIb3DQEBCwUAA4IBAQB2e8EtPXzxi23jL2dqs7Bb95geDYiX xL8Gv4fvjxiAmDYhFs/t3FChv4xAzw7tMijekumdag7qcKJrdhmYWY6ExS96mI2x PlSdWjC/CPr6A5pARpXo/P3pBETu7ad45OLE9B7d/t2BebQqVxCL8tdPGexrjNTc xpmJDOD/tZT6khVC7OxneHxaUohRTDz5bkfxC6/fgGuq4yvi+8TFVC7scxYTSLm/ OjMqiAh+8gtVBB4UyuRiPtJFfMaxiSow7wLfHgcpvEfKHHuvHZSHOtkDVqJ8UQLm t87zQLYwNGBvSRZ/BZw1U4sgrR2lv8LDSp7zvHPcdkw9DmS3rvBGz9Zf -----END CERTIFICATE-----Generated at Thu Jun 4 07:07:41 2026 by rpki-client