$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/D7F890AE893D11F0AE546821C4F9AE02.roa File: D7F890AE893D11F0AE546821C4F9AE02.roa (raw, json) Hash identifier: 4a6fbz8UZzVK6hEq/BSQUj0RZPgaTHrh70mEvlwuZdo= Subject key identifier: E5:3D:32:DA:6D:5F:B7:21:F6:E6:84:CB:F6:54:23:70:09:00:A6:25 Certificate issuer: /CN=A91BBA31/serialNumber=12097AAF857B62BD34AA273D3F9B3ED9CE6DF161 Certificate serial: 02 Authority key identifier: 12:09:7A:AF:85:7B:62:BD:34:AA:27:3D:3F:9B:3E:D9:CE:6D:F1:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Egl6r4V7Yr00qic9P5s-2c5t8WE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/D7F890AE893D11F0AE546821C4F9AE02.roa Signing time: Thu 04 Sep 2025 03:18:36 +0000 ROA not before: Thu 04 Sep 2025 03:18:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154089 IP address blocks: 192.135.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/Egl6r4V7Yr00qic9P5s-2c5t8WE.crl rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/Egl6r4V7Yr00qic9P5s-2c5t8WE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Egl6r4V7Yr00qic9P5s-2c5t8WE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA31, serialNumber=12097AAF857B62BD34AA273D3F9B3ED9CE6DF161 Validity Not Before: Sep 4 03:18:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b9050c-cb63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9e:af:a6:2a:fc:89:0f:36:c1:27:1c:d0:16: c5:38:0c:fc:2b:4c:98:47:e6:75:68:cc:b7:62:09: 85:50:6c:35:b9:0b:8e:c1:59:0d:26:52:e7:15:48: 56:93:89:41:29:17:04:f4:10:6e:5a:ed:ea:da:df: c6:0d:79:28:f6:f2:47:01:e9:dc:fe:14:49:e2:52: 05:17:72:ea:9d:26:ee:3e:0b:fe:a5:43:fb:b3:96: cf:f5:c6:38:75:e3:c6:5a:1c:0d:55:9a:58:31:ac: 0a:2b:02:49:80:6d:78:7e:f3:72:f2:15:6c:7f:56: 5b:64:c1:51:f8:79:51:6b:12:28:a4:68:04:7d:40: 8a:4d:aa:65:b4:10:4c:c0:90:61:04:e1:19:60:10: 61:3c:a0:8d:54:0e:ce:3a:05:4f:24:34:6d:54:9b: a2:09:69:14:3c:79:aa:cb:93:22:68:18:21:97:fc: f3:4a:f6:84:04:0d:19:58:da:5c:17:88:e6:3f:d7: ce:79:13:7e:e5:20:dd:8b:85:8f:44:31:6f:60:72: 9b:fe:70:59:03:3e:66:8b:bc:22:57:46:19:b6:d6: a9:21:ba:d9:0b:df:38:f1:1c:1a:c8:d2:9b:18:03: c8:53:ba:ee:7a:2f:0e:ea:21:36:b9:ca:91:16:0d: 21:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3D:32:DA:6D:5F:B7:21:F6:E6:84:CB:F6:54:23:70:09:00:A6:25 X509v3 Authority Key Identifier: keyid:12:09:7A:AF:85:7B:62:BD:34:AA:27:3D:3F:9B:3E:D9:CE:6D:F1:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/Egl6r4V7Yr00qic9P5s-2c5t8WE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Egl6r4V7Yr00qic9P5s-2c5t8WE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/D7F890AE893D11F0AE546821C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.135.89.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:cc:e6:1f:9d:ae:13:09:45:d9:b6:a3:28:a2:6e:d4:1f:44: b3:db:10:dc:06:b7:81:5b:73:8f:3c:53:6c:b4:12:99:9f:97: 11:1f:5e:ee:f9:c7:01:5a:c7:b4:a9:d5:3e:f1:f6:d0:9b:06: f0:dd:9d:f6:7c:b3:e4:12:48:20:2f:96:aa:e0:07:e7:be:16: bc:53:85:4e:11:1e:ac:3f:ce:83:20:f1:83:49:f7:49:34:c5: a9:04:67:f6:ca:03:9d:05:70:57:64:45:ee:15:ad:3d:2e:49: 0a:18:ab:02:64:d8:d0:70:7f:2d:95:9d:e5:1a:35:44:bf:10: f8:70:b4:c4:a4:0a:89:4f:1f:10:94:a8:00:71:8b:19:b7:db: 80:63:ee:a6:75:09:9e:85:c3:71:f1:1b:14:d2:a8:b6:2a:06: c3:e5:10:87:cb:57:a3:e6:d3:b4:75:d5:1b:b8:66:af:39:32: 05:3a:d3:a8:fd:9f:ae:33:57:98:ef:ee:c7:89:4a:bf:15:72: 61:c8:8e:d6:2d:0a:fb:8c:b5:35:0e:a7:61:d5:51:d6:26:90: b5:f0:4d:c1:a6:ee:49:e6:81:79:96:bf:7c:d7:12:bd:28:35: f9:b4:12:28:6e:62:2b:2a:89:1f:08:8f:a5:2b:ea:3f:92:46: 19:b3:ff:1d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkEzMTExMC8GA1UEBRMoMTIwOTdBQUY4NTdCNjJCRDM0QUEyNzNEM0Y5QjNFRDlD RTZERjE2MTAeFw0yNTA5MDQwMzE4MzZaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjkwNTBjLWNiNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlnq+mKvyJDzbBJxzQFsU4DPwrTJhH5nVozLdiCYVQbDW5C47BWQ0mUucVSFaT iUEpFwT0EG5a7era38YNeSj28kcB6dz+FEniUgUXcuqdJu4+C/6lQ/uzls/1xjh1 48ZaHA1VmlgxrAorAkmAbXh+83LyFWx/VltkwVH4eVFrEiikaAR9QIpNqmW0EEzA kGEE4RlgEGE8oI1UDs46BU8kNG1Um6IJaRQ8earLkyJoGCGX/PNK9oQEDRlY2lwX iOY/1855E37lIN2LhY9EMW9gcpv+cFkDPmaLvCJXRhm21qkhutkL3zjxHBrI0psY A8hTuu56Lw7qITa5ypEWDSGxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5T0y2m1f tyH25oTL9lQjcAkApiUwHwYDVR0jBBgwFoAUEgl6r4V7Yr00qic9P5s+2c5t8WEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTMxLzc5ODcwNTk2ODkz RDExRjBCQ0U3QTcyMEM0RjlBRTAyL0VnbDZyNFY3WXIwMHFpYzlQNXMtMmM1dDhX RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRWdsNnI0VjdZcjAwcWljOVA1cy0yYzV0OFdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkEzMS83OTg3MDU5Njg5M0QxMUYwQkNFN0E3MjBDNEY5QUUwMi9EN0Y4OTBBRTg5 M0QxMUYwQUU1NDY4MjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMCHWTANBgkqhkiG9w0BAQsFAAOCAQEALczmH52uEwlF2baj KKJu1B9Es9sQ3Aa3gVtzjzxTbLQSmZ+XER9e7vnHAVrHtKnVPvH20JsG8N2d9nyz 5BJIIC+WquAH574WvFOFThEerD/OgyDxg0n3STTFqQRn9soDnQVwV2RF7hWtPS5J ChirAmTY0HB/LZWd5Ro1RL8Q+HC0xKQKiU8fEJSoAHGLGbfbgGPupnUJnoXDcfEb FNKotioGw+UQh8tXo+bTtHXVG7hmrzkyBTrTqP2frjNXmO/ux4lKvxVyYciO1i0K +4y1NQ6nYdVR1iaQtfBNwabuSeaBeZa/fNcSvSg1+bQSKG5iKyqJHwiPpSvqP5JG GbP/HQ== -----END CERTIFICATE-----Generated at Sun Oct 19 01:29:58 2025 by rpki-client