$ rpki-client -vvf rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/89C7E3A255B211F1AB301B6C9D833773.roa File: 89C7E3A255B211F1AB301B6C9D833773.roa (raw, json) Hash identifier: gnIwJV2KSI9KOx1ikjUes8JKBZKMVHtKAOl3MGHlIBY= Subject key identifier: 2F:55:2A:97:21:59:49:60:5A:6D:3C:C9:4D:74:A2:23:1E:02:06:A8 Certificate issuer: /CN=A911678C/serialNumber=EC368D582E1177E09915E33F44EDB9DE4EF32C52 Certificate serial: 83 Authority key identifier: EC:36:8D:58:2E:11:77:E0:99:15:E3:3F:44:ED:B9:DE:4E:F3:2C:52 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/7DaNWC4Rd-CZFeM_RO253k7zLFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/89C7E3A255B211F1AB301B6C9D833773.roa Signing time: Fri 22 May 2026 08:09:11 +0000 ROA not before: Fri 22 May 2026 08:09:11 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 18186 IP address blocks: 177.4.0.0/20 maxlen: 24 177.4.32.0/20 maxlen: 24 177.5.64.0/20 maxlen: 24 177.5.112.0/20 maxlen: 24 177.5.176.0/20 maxlen: 24 177.6.176.0/20 maxlen: 24 179.236.96.0/21 maxlen: 24 191.223.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/7DaNWC4Rd-CZFeM_RO253k7zLFI.crl rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/7DaNWC4Rd-CZFeM_RO253k7zLFI.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/7DaNWC4Rd-CZFeM_RO253k7zLFI.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 03:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911678C, serialNumber=EC368D582E1177E09915E33F44EDB9DE4EF32C52 Validity Not Before: May 22 08:09:11 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6a100f27-5ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:32:ce:50:4b:0f:ae:6f:f2:75:99:af:e2:d1: e3:8b:a2:a0:f8:87:e3:0b:01:07:29:1c:45:96:26: 7b:47:22:aa:e1:6e:1f:8a:70:b5:c3:6b:f1:65:80: 15:dc:96:f1:22:a8:7a:4d:2f:02:45:e9:2a:9d:4a: 14:cb:ba:a7:c8:b5:7d:aa:b3:9f:6d:03:73:7a:d2: cd:6c:e2:bc:da:cd:d7:14:b3:c9:13:55:10:5d:b3: 67:b1:42:ff:1a:04:15:3c:e6:0e:07:e5:67:d3:45: 99:a6:5a:f7:f2:11:f9:ac:7e:32:77:6c:23:f2:74: 15:87:57:36:0c:ef:1a:47:72:ca:dd:89:56:9e:1c: 48:21:90:cd:76:be:40:a2:44:80:36:21:1d:73:b5: 26:0e:e8:b1:97:a8:82:9f:65:35:b0:4b:61:0e:cb: f2:68:54:8f:28:02:ea:85:be:ac:61:12:dc:11:cf: cc:28:3e:2d:ac:ba:5f:89:a1:0a:41:67:9e:0f:1a: 56:97:11:9a:c5:a8:3d:70:c3:20:cc:e1:28:73:0a: 32:16:c4:b2:25:60:f3:72:48:96:86:27:93:1e:4c: 87:ee:5d:73:26:af:f3:72:64:1a:e5:c8:9b:c3:89: e3:8f:df:aa:b5:b3:ed:51:75:eb:8b:7c:5a:72:82: 80:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:55:2A:97:21:59:49:60:5A:6D:3C:C9:4D:74:A2:23:1E:02:06:A8 X509v3 Authority Key Identifier: keyid:EC:36:8D:58:2E:11:77:E0:99:15:E3:3F:44:ED:B9:DE:4E:F3:2C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/7DaNWC4Rd-CZFeM_RO253k7zLFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/7DaNWC4Rd-CZFeM_RO253k7zLFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911678C/3BDE1D6E4F2C11F1BBE2F6EA9BEE528E/89C7E3A255B211F1AB301B6C9D833773.roa sbgp-ipAddrBlock: critical IPv4: 177.4.0.0/20 177.4.32.0/20 177.5.64.0/20 177.5.112.0/20 177.5.176.0/20 177.6.176.0/20 179.236.96.0/21 191.223.32.0/20 Signature Algorithm: sha256WithRSAEncryption c0:b8:a8:44:c3:78:c4:ba:e3:42:04:4a:0b:ba:7f:f2:7c:38: 2a:74:40:23:cc:04:94:bd:ac:6c:d6:86:4d:dd:9b:ce:8e:3b: 2b:4d:67:59:34:7d:bc:a6:6a:a6:c7:28:8e:b7:7a:51:64:11: 6c:c3:98:d0:92:a2:4c:d3:98:cb:58:a3:5e:6c:25:fb:30:ac: 93:2f:1a:db:f5:7b:9e:8b:35:87:00:31:a3:01:3c:94:d2:e0: e4:17:13:f8:9c:1e:18:1e:0b:ec:7b:d3:19:ee:04:fa:79:16: 3e:e5:77:4a:34:86:d5:f5:e3:13:8c:18:da:49:c9:b2:9d:73: 4c:a1:08:32:17:7d:7f:51:92:1e:81:c9:18:fd:02:c4:da:cb: 89:8b:bf:a9:84:f4:00:15:b0:f0:f7:ba:3d:57:d8:f0:17:ac: 78:0d:8b:04:32:3e:63:e8:c6:0a:e3:e5:59:8a:d6:7e:d7:26: e0:ac:ef:12:46:a3:ec:78:70:cb:1e:4b:1b:44:7a:9b:8f:07: bf:5c:fe:f7:02:fa:74:b1:e8:b0:c9:62:71:48:f3:f2:29:18: 7d:9a:2d:dc:16:72:20:16:89:aa:0e:6d:2b:87:38:46:26:4f: 92:09:12:f2:38:c7:16:f0:7a:bd:93:ff:d5:ba:e9:88:21:6f: 82:6a:22:7a -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY3OEMxMTAvBgNVBAUTKEVDMzY4RDU4MkUxMTc3RTA5OTE1RTMzRjQ0RURCOURF NEVGMzJDNTIwHhcNMjYwNTIyMDgwOTExWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTEwMGYyNy01Y2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzLOUEsPrm/ydZmv4tHji6Kg+IfjCwEHKRxFliZ7RyKq4W4finC1w2vxZYAV 3JbxIqh6TS8CRekqnUoUy7qnyLV9qrOfbQNzetLNbOK82s3XFLPJE1UQXbNnsUL/ GgQVPOYOB+Vn00WZplr38hH5rH4yd2wj8nQVh1c2DO8aR3LK3YlWnhxIIZDNdr5A okSANiEdc7UmDuixl6iCn2U1sEthDsvyaFSPKALqhb6sYRLcEc/MKD4trLpfiaEK QWeeDxpWlxGaxag9cMMgzOEocwoyFsSyJWDzckiWhieTHkyH7l1zJq/zcmQa5cib w4njj9+qtbPtUXXri3xacoKAEQIDAQABo4ICijCCAoYwHQYDVR0OBBYEFC9VKpch WUlgWm08yU10oiMeAgaoMB8GA1UdIwQYMBaAFOw2jVguEXfgmRXjP0Ttud5O8yxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjc4Qy8zQkRFMUQ2RTRG MkMxMUYxQkJFMkY2RUE5QkVFNTI4RS83RGFOV0M0UmQtQ1pGZU1fUk8yNTNrN3pM RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzdEYU5XQzRSZC1DWkZlTV9STzI1M2s3ekxGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY3OEMvM0JERTFENkU0RjJDMTFGMUJCRTJGNkVBOUJFRTUyOEUvODlDN0UzQTI1 NUIyMTFGMUFCMzAxQjZDOUQ4MzM3NzMucm9hMEkGCCsGAQUFBwEHAQH/BDowODA2 BAIAATAwAwQEsQQAAwQEsQQgAwQEsQVAAwQEsQVwAwQEsQWwAwQEsQawAwQDs+xg AwQEv98gMA0GCSqGSIb3DQEBCwUAA4IBAQDAuKhEw3jEuuNCBEoLun/yfDgqdEAj zASUvaxs1oZN3ZvOjjsrTWdZNH28pmqmxyiOt3pRZBFsw5jQkqJM05jLWKNebCX7 MKyTLxrb9XueizWHADGjATyU0uDkFxP4nB4YHgvse9MZ7gT6eRY+5XdKNIbV9eMT jBjaScmynXNMoQgyF31/UZIegckY/QLE2suJi7+phPQAFbDw97o9V9jwF6x4DYsE Mj5j6MYK4+VZitZ+1ybgrO8SRqPseHDLHksbRHqbjwe/XP73Avp0seiwyWJxSPPy KRh9mi3cFnIgFomqDm0rhzhGJk+SCRLyOMcW8Hq9k//VuumIIW+CaiJ6 -----END CERTIFICATE-----Generated at Thu Jun 4 03:20:04 2026 by rpki-client