$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/268ECB3ED5BD11E894FFC250C4F9AE02.roa File: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (raw, json) Hash identifier: sJz6G/xstqw6p4gPUJK4gZEDHHsTgFb0oSV9wpMQ7es= Subject key identifier: 8B:23:88:15:79:ED:91:83:FA:6A:B2:BB:2E:17:B6:34:01:92:EF:AC Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 1666 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/268ECB3ED5BD11E894FFC250C4F9AE02.roa Signing time: Tue 02 Sep 2025 17:05:52 +0000 ROA not before: Tue 02 Sep 2025 17:05:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45509 IP address blocks: 115.187.88.0/22 maxlen: 22 115.187.88.0/24 maxlen: 24 115.187.89.0/24 maxlen: 24 115.187.90.0/24 maxlen: 24 115.187.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5734 (0x1666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Sep 2 17:05:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b723ef-2d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:db:35:91:5c:0b:66:dc:99:aa:ef:dc:eb:e7: 23:53:14:0a:cc:42:b3:2e:ad:40:24:91:89:db:89: d2:7b:c2:48:57:f1:ac:f6:b7:2c:56:ac:6b:3f:46: da:45:c1:17:37:41:69:48:03:78:94:0f:2f:f2:c3: 57:e2:75:ce:39:b5:79:1c:58:a9:8d:de:79:de:d9: 8b:61:cd:3a:dc:fc:2a:de:7d:0b:8b:85:a1:45:4c: 23:03:d7:6e:05:d9:16:3e:de:3f:e8:58:08:8d:39: d4:de:b4:9b:b2:de:60:90:5e:de:d6:db:6e:4e:0f: 35:7a:ab:ce:a9:41:ec:cb:cf:2f:6f:f0:cc:77:a1: ca:3f:c6:3b:77:36:e8:87:f5:b8:e3:d8:a4:27:63: 84:19:1d:00:f8:1f:9d:77:aa:d1:74:d0:59:4c:2b: 66:52:b5:1a:26:7c:b3:44:f4:d1:ce:34:9b:7e:7b: f6:bf:19:e9:59:92:73:41:7d:1a:0f:0c:9c:e3:5e: d6:6d:1a:40:67:65:e9:b8:d5:64:42:76:70:65:b6: 40:e0:f2:7a:40:ba:0e:51:19:61:bd:f2:35:65:fe: 8b:34:5e:ca:2b:81:e1:ad:35:42:c5:4a:6b:74:e4: d2:de:04:7f:e4:dc:3a:02:4e:38:ee:92:bb:9f:80: e4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:23:88:15:79:ED:91:83:FA:6A:B2:BB:2E:17:B6:34:01:92:EF:AC X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/268ECB3ED5BD11E894FFC250C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.187.88.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:d8:7c:a1:aa:53:76:34:f5:83:02:8b:37:57:8a:bd:6e:52: 71:11:eb:5f:b2:34:e6:6d:71:0f:d4:0e:57:c9:52:b5:84:76: bd:99:f4:c2:4d:6e:1a:e1:04:23:0f:2b:50:af:ea:89:92:3b: 14:45:7f:23:78:1a:68:f4:32:13:16:6d:e6:3c:67:d4:b3:d6: d2:b6:e9:07:08:88:8e:29:da:a4:3e:e4:5c:fb:33:d7:a7:e4: d7:5a:97:3a:51:08:ec:43:1e:50:a4:6c:9b:9d:ba:5b:e6:be: ef:91:bc:e7:c5:42:f1:ad:73:f1:0f:69:07:60:60:e4:20:2f: 31:54:75:18:82:dc:d9:a4:fc:95:39:30:71:41:ea:0c:59:f4: d3:ad:a8:14:50:20:27:b4:4a:b9:9d:53:b5:b4:ad:75:db:82: 12:e1:d7:49:a7:8e:1e:a3:a9:0b:80:7a:11:ce:b6:c1:60:7e: e4:e9:2d:31:bb:41:ad:96:2e:3f:fb:0f:97:35:80:d6:d3:b3: 7d:8a:91:04:25:17:15:3f:7d:f2:b7:24:91:63:23:d9:3b:6f: bf:79:20:89:65:f0:17:a6:12:3e:44:b5:d5:99:d4:53:81:30: 2d:f7:e5:b2:9d:ed:8b:dd:c9:44:bd:72:b7:f3:44:85:32:9f: cf:ac:64:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjUwOTAyMTcwNTUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MjNlZi0yZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9s1kVwLZtyZqu/c6+cjUxQKzEKzLq1AJJGJ24nSe8JIV/Gs9rcsVqxrP0ba RcEXN0FpSAN4lA8v8sNX4nXOObV5HFipjd553tmLYc063Pwq3n0Li4WhRUwjA9du BdkWPt4/6FgIjTnU3rSbst5gkF7e1ttuTg81eqvOqUHsy88vb/DMd6HKP8Y7dzbo h/W449ikJ2OEGR0A+B+dd6rRdNBZTCtmUrUaJnyzRPTRzjSbfnv2vxnpWZJzQX0a Dwyc417WbRpAZ2XpuNVkQnZwZbZA4PJ6QLoOURlhvfI1Zf6LNF7KK4HhrTVCxUpr dOTS3gR/5Nw6Ak447pK7n4DkfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIsjiBV5 7ZGD+mqyuy4XtjQBku+sMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENEQvMTM3RDAwRDQxNjBFMTFFODg1MkM0MzdFQzRGOUFFMDIvMjY4RUNCM0VE NUJEMTFFODk0RkZDMjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJzu1gwDQYJKoZIhvcNAQELBQADggEBAD/YfKGqU3Y09YMC izdXir1uUnER61+yNOZtcQ/UDlfJUrWEdr2Z9MJNbhrhBCMPK1Cv6omSOxRFfyN4 Gmj0MhMWbeY8Z9Sz1tK26QcIiI4p2qQ+5Fz7M9en5NdalzpRCOxDHlCkbJudulvm vu+RvOfFQvGtc/EPaQdgYOQgLzFUdRiC3Nmk/JU5MHFB6gxZ9NOtqBRQICe0Srmd U7W0rXXbghLh10mnjh6jqQuAehHOtsFgfuTpLTG7Qa2WLj/7D5c1gNbTs32KkQQl FxU/ffK3JJFjI9k7b795IIll8BemEj5EtdWZ1FOBMC335bKd7YvdyUS9crfzRIUy n8+sZN4= -----END CERTIFICATE-----Generated at Sun Sep 7 06:29:31 2025 by rpki-client