$ rpki-client -vvf rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/8B91EDB420CD11EC97292B78C4F9AE02.roa File: 8B91EDB420CD11EC97292B78C4F9AE02.roa (raw, json) Hash identifier: lu1tvmrK1UL4Y/2Rq1YIX+Lb2/NNmqFCgC6huHfwCqg= Subject key identifier: A1:5B:CE:B0:BA:D0:6D:99:89:51:34:DF:65:09:98:93:A5:DE:AF:A9 Certificate issuer: /CN=A9171845/serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Certificate serial: 0513 Authority key identifier: BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/8B91EDB420CD11EC97292B78C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:15:48 +0000 ROA not before: Wed 03 Sep 2025 00:15:48 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 24324 IP address blocks: 155.32.0.0/18 maxlen: 18 155.32.0.0/24 maxlen: 24 155.32.17.0/24 maxlen: 24 155.32.18.0/24 maxlen: 24 155.32.23.0/24 maxlen: 24 155.32.24.0/24 maxlen: 24 155.32.27.0/24 maxlen: 24 155.32.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:59:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171845, serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Validity Not Before: Sep 3 00:15:48 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b788b4-2ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4a:84:bc:1d:dc:09:5b:9a:a0:c4:4e:69:4b: 29:62:f6:c6:a1:58:a9:71:62:25:91:4e:e9:8c:e4: 76:b1:61:6a:c9:bb:37:9e:b3:43:34:05:f2:07:05: c2:a9:5e:e9:48:d6:2d:8d:d7:60:a0:9a:df:ab:5c: c0:ee:ab:7b:57:6e:eb:cb:10:75:40:0f:a6:56:e4: d3:a7:86:3c:40:9e:17:a6:29:1c:ff:bf:60:e4:43: 53:5e:07:fc:0e:9a:7a:31:58:77:1a:dd:94:17:ee: a5:27:80:3f:09:02:c1:e5:82:79:44:50:b7:19:e3: 45:e0:34:19:4e:ec:8f:8f:9f:e2:14:72:bb:f9:1d: 69:3a:e8:09:1c:d1:f7:21:74:c9:1d:34:d8:d7:66: 67:06:4e:ea:8e:5f:f6:70:ca:66:85:b8:eb:ea:7f: a1:de:7b:b3:52:04:6d:4c:c0:77:19:7c:df:6e:31: d8:de:65:f6:8b:ea:fb:92:3f:ce:3f:c5:2f:bf:ec: d0:01:5d:41:61:af:02:4b:84:8f:54:03:87:35:e3: 23:b6:9f:43:15:fb:0d:c3:19:0f:38:1f:96:ea:17: bd:20:4f:d9:9c:a6:08:9b:ba:10:e3:83:db:62:80: fb:8a:26:f8:76:ba:f2:2c:7d:aa:78:f9:ca:2c:20: 52:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:5B:CE:B0:BA:D0:6D:99:89:51:34:DF:65:09:98:93:A5:DE:AF:A9 X509v3 Authority Key Identifier: keyid:BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/8B91EDB420CD11EC97292B78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 155.32.0.0/18 155.32.190.0/24 Signature Algorithm: sha256WithRSAEncryption 87:4e:c1:9d:be:41:a9:32:90:d6:4e:ca:39:d4:8d:aa:4d:87: a6:fc:89:84:2e:7e:a3:2f:84:36:41:36:8d:69:b1:d0:1d:e8: 01:e6:82:12:24:32:1f:01:c6:76:86:d1:e4:70:ea:47:af:c3: 00:24:44:d3:cb:1d:6e:62:5b:0e:9a:1d:b9:9c:fe:0d:b2:70: a1:29:0d:05:a8:c1:47:01:28:8f:3e:c0:91:36:31:3a:49:e3: 55:f5:6e:93:92:fe:a2:a1:3d:76:e5:f7:b9:8a:31:fc:25:b0: bf:ec:54:ed:c2:bb:44:5d:6b:c8:bf:14:b9:f4:c9:7f:f3:8e: f2:57:4e:8f:c6:8f:cd:65:5a:7c:27:7f:25:6d:28:23:57:10: 87:cc:ae:cc:2a:00:4d:61:69:1e:f0:6a:87:d0:0f:d9:c0:47: 58:f2:53:eb:69:50:81:7e:43:c0:89:01:86:68:b8:eb:17:96: f5:01:35:0c:e6:04:f4:35:3e:5f:cc:73:6a:8d:13:dd:b7:b8: f3:e4:9b:5e:1a:81:8f:91:46:e8:96:72:0e:6d:86:5a:7a:fa: 54:05:fb:43:f0:07:1a:6b:99:9c:b0:fe:ac:75:a4:8c:8e:c4: 0a:10:2f:37:eb:be:27:9f:a7:aa:5b:5a:6a:4b:ec:11:98:a8: c7:81:f3:3e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4NDUxMTAvBgNVBAUTKEJDOTdGMjZGQjI3ODk2N0REM0NBMzlDNTlERDA4QzZB MkMyMzA2RjkwHhcNMjUwOTAzMDAxNTQ4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODhiNC0yYWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EqEvB3cCVuaoMROaUspYvbGoVipcWIlkU7pjOR2sWFqybs3nrNDNAXyBwXC qV7pSNYtjddgoJrfq1zA7qt7V27ryxB1QA+mVuTTp4Y8QJ4Xpikc/79g5ENTXgf8 Dpp6MVh3Gt2UF+6lJ4A/CQLB5YJ5RFC3GeNF4DQZTuyPj5/iFHK7+R1pOugJHNH3 IXTJHTTY12ZnBk7qjl/2cMpmhbjr6n+h3nuzUgRtTMB3GXzfbjHY3mX2i+r7kj/O P8Uvv+zQAV1BYa8CS4SPVAOHNeMjtp9DFfsNwxkPOB+W6he9IE/ZnKYIm7oQ44Pb YoD7iib4drryLH2qePnKLCBSwwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKFbzrC6 0G2ZiVE032UJmJOl3q+pMB8GA1UdIwQYMBaAFLyX8m+yeJZ908o5xZ3QjGosIwb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg0NS83QjYyQzgwODIw Q0ExMUVDQjY2QzE0NTJDNEY5QUUwMi92SmZ5YjdKNGxuM1R5am5GbmRDTWFpd2pC dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZKZnliN0o0bG4zVHlqbkZuZENNYWl3akJ2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4NDUvN0I2MkM4MDgyMENBMTFFQ0I2NkMxNDUyQzRGOUFFMDIvOEI5MUVEQjQy MENEMTFFQzk3MjkyQjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAabIAADBACbIL4wDQYJKoZIhvcNAQELBQADggEBAIdOwZ2+ QakykNZOyjnUjapNh6b8iYQufqMvhDZBNo1psdAd6AHmghIkMh8BxnaG0eRw6kev wwAkRNPLHW5iWw6aHbmc/g2ycKEpDQWowUcBKI8+wJE2MTpJ41X1bpOS/qKhPXbl 97mKMfwlsL/sVO3Cu0Rda8i/FLn0yX/zjvJXTo/Gj81lWnwnfyVtKCNXEIfMrswq AE1haR7waofQD9nAR1jyU+tpUIF+Q8CJAYZouOsXlvUBNQzmBPQ1Pl/Mc2qNE923 uPPkm14agY+RRuiWcg5thlp6+lQF+0PwBxprmZyw/qx1pIyOxAoQLzfrviefp6pb WmpL7BGYqMeB8z4= -----END CERTIFICATE-----Generated at Sun Sep 7 19:06:25 2025 by rpki-client