$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/184CBE58768B11EFAF7A8C68C4F9AE02.roa File: 184CBE58768B11EFAF7A8C68C4F9AE02.roa (raw, json) Hash identifier: LT9r+sRto5ZOYudi5sFYiwbtxYl/cY+w1R+R7OKpEeI= Subject key identifier: 1B:5F:47:3E:4F:8A:68:29:FE:5A:2A:62:C3:5E:FF:0C:94:53:F7:0E Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3632 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/184CBE58768B11EFAF7A8C68C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:29 +0000 ROA not before: Tue 02 Sep 2025 15:01:29 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 35758 IP address blocks: 182.54.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13874 (0x3632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:29 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706c9-f57d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:16:eb:01:7d:cd:ca:c1:f3:00:f9:0c:4c:ac: 4f:29:73:c9:49:69:b6:53:ff:32:f3:67:9b:1d:d4: bd:24:9e:61:fa:e4:c1:b5:46:46:5c:e5:9d:17:57: 72:75:df:fa:80:86:62:30:15:09:54:f0:3c:69:61: 59:07:6a:0a:8e:bc:7a:5a:ae:f3:97:11:97:43:43: 70:8a:a4:06:df:b2:32:71:b1:bf:44:a3:68:c4:e4: ee:a9:4a:e3:1e:84:84:81:96:45:36:5e:0d:34:f5: c1:0c:51:c2:25:99:ea:62:15:24:02:54:54:fd:e3: ac:ef:a1:83:fa:14:a7:57:ab:79:98:25:7a:a7:ee: 35:21:b9:58:52:1d:ef:5f:0a:61:e0:b4:ce:ce:2e: 3e:40:a1:5d:e3:8b:b6:03:fb:7b:10:bc:8c:f3:ad: a4:15:36:8b:ae:e2:ec:ab:c5:24:d6:d1:a0:4c:12: 95:53:2e:c2:1f:36:88:43:fb:ec:ea:fb:d1:ac:7a: 30:1a:b6:6e:b6:77:30:21:25:11:cb:62:08:9f:a9: fd:27:24:09:d7:9e:37:0b:81:64:b7:c0:a8:fa:5b: dc:53:0a:fd:70:2d:dc:09:81:83:af:70:1d:eb:5f: 3e:a8:b0:59:ec:00:fc:55:c5:9b:10:17:a2:b1:6c: d2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:5F:47:3E:4F:8A:68:29:FE:5A:2A:62:C3:5E:FF:0C:94:53:F7:0E X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/184CBE58768B11EFAF7A8C68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.54.236.0/24 Signature Algorithm: sha256WithRSAEncryption 65:b6:a0:a8:37:70:df:60:73:5c:c1:28:31:6b:25:87:d6:48: 4a:5a:7a:75:7a:63:84:71:ae:3a:02:65:8c:14:58:5a:b9:20: 77:e2:0c:f4:1f:10:1e:c4:97:67:71:05:5c:9b:1b:b6:51:0c: cf:fa:92:a4:81:49:ae:36:8b:3b:96:83:a2:f9:38:c0:f5:b9: cd:c8:a7:37:fd:1c:3d:da:24:36:bc:f3:fb:d2:9c:54:61:ac: f5:4e:55:fe:b6:22:53:fa:62:39:fe:6b:03:86:84:52:c4:49: 55:2f:8b:c1:06:73:b0:83:5b:c7:9b:bb:3a:67:c7:a7:ea:03: 93:5c:1e:57:84:50:ed:ce:c7:ed:77:a9:31:b3:79:e3:8a:5b: ff:58:a5:33:3a:b4:a3:32:48:56:6a:59:21:6e:d8:c5:ec:56: fe:09:de:de:13:8d:60:a3:68:8e:9a:9f:71:b8:6a:1f:c6:79: 48:61:01:d8:8b:10:d7:81:43:a7:d6:89:2c:f3:9e:5c:f4:40: cb:5e:de:c9:96:5c:10:29:b3:62:25:00:1b:82:da:53:ca:35: 95:de:b8:77:9e:3f:30:4e:59:98:5b:4a:b9:ce:b4:e6:5a:80: 69:71:af:fc:b1:96:81:be:f1:78:c2:6a:40:af:09:d2:00:e4: 67:35:fe:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTI5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjOS1mNTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBbrAX3NysHzAPkMTKxPKXPJSWm2U/8y82ebHdS9JJ5h+uTBtUZGXOWdF1dy dd/6gIZiMBUJVPA8aWFZB2oKjrx6Wq7zlxGXQ0NwiqQG37IycbG/RKNoxOTuqUrj HoSEgZZFNl4NNPXBDFHCJZnqYhUkAlRU/eOs76GD+hSnV6t5mCV6p+41IblYUh3v Xwph4LTOzi4+QKFd44u2A/t7ELyM862kFTaLruLsq8Uk1tGgTBKVUy7CHzaIQ/vs 6vvRrHowGrZutncwISURy2IIn6n9JyQJ1543C4Fkt8Co+lvcUwr9cC3cCYGDr3Ad 618+qLBZ7AD8VcWbEBeisWzSfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBtfRz5P imgp/loqYsNe/wyUU/cOMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvMTg0Q0JFNTg3 NjhCMTFFRkFGN0E4QzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC2NuwwDQYJKoZIhvcNAQELBQADggEBAGW2oKg3cN9gc1zB KDFrJYfWSEpaenV6Y4RxrjoCZYwUWFq5IHfiDPQfEB7El2dxBVybG7ZRDM/6kqSB Sa42izuWg6L5OMD1uc3Ipzf9HD3aJDa88/vSnFRhrPVOVf62IlP6Yjn+awOGhFLE SVUvi8EGc7CDW8ebuzpnx6fqA5NcHleEUO3Ox+13qTGzeeOKW/9YpTM6tKMySFZq WSFu2MXsVv4J3t4TjWCjaI6an3G4ah/GeUhhAdiLENeBQ6fWiSzznlz0QMte3smW XBAps2IlABuC2lPKNZXeuHeePzBOWZhbSrnOtOZagGlxr/yxloG+8XjCakCvCdIA 5Gc1/h4= -----END CERTIFICATE-----Generated at Fri Sep 5 00:18:03 2025 by rpki-client