$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/8987F942335911E8A1642A7FC4F9AE02.roa File: 8987F942335911E8A1642A7FC4F9AE02.roa (raw, json) Hash identifier: bo4+lqzgHx9mwwzNsiPnPqvLCTaS+zSdlr02VCrtbuY= Subject key identifier: F6:EA:28:48:D5:7A:77:AD:09:3D:55:A4:7E:AA:8F:85:33:33:AD:CB Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3636 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/8987F942335911E8A1642A7FC4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:33 +0000 ROA not before: Tue 02 Sep 2025 15:01:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59432 IP address blocks: 182.54.233.0/24 maxlen: 24 182.54.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13878 (0x3636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706cc-9ca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:dd:20:b8:b6:c6:02:f8:fe:5c:5c:a6:87:53: 30:72:a1:00:63:9e:5b:02:90:32:e2:8c:10:d0:c6: 76:1c:0b:f7:94:93:df:b2:cb:f8:49:a7:d3:0b:8d: e3:0c:5a:b1:17:e7:a2:46:a7:44:0e:59:61:1f:98: 90:42:af:a5:e1:e8:67:b1:95:62:e1:75:36:d6:2c: 60:7e:be:57:9a:53:b1:be:4b:39:7b:73:23:1e:6e: ae:d0:af:da:21:06:b9:06:da:c1:7d:7c:59:29:67: d6:1a:81:fc:78:db:75:1e:f1:38:12:25:56:8b:db: 4e:2c:13:71:94:45:49:80:80:a4:33:62:6c:65:12: 8b:96:28:ce:c6:c8:15:fe:13:38:f9:65:15:e2:87: 44:0e:92:24:76:5a:5c:73:8d:78:1b:03:90:24:40: 5e:03:62:df:82:91:2e:6b:37:cf:77:04:25:60:70: 5c:c3:eb:3e:33:c8:63:98:33:16:4f:23:a0:48:2a: c3:6c:03:13:43:af:1a:e9:66:84:fa:a4:e4:de:28: 2d:36:73:7c:24:58:6e:1a:1c:7f:47:60:cb:cb:cb: 1d:a6:39:5f:cc:fe:c3:13:dd:98:56:9a:04:bb:8d: 74:f6:67:c4:37:f4:40:86:46:a2:41:e6:d7:e8:aa: 42:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:EA:28:48:D5:7A:77:AD:09:3D:55:A4:7E:AA:8F:85:33:33:AD:CB X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/8987F942335911E8A1642A7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.54.233.0/24 182.54.235.0/24 Signature Algorithm: sha256WithRSAEncryption 76:e9:c3:01:e0:a2:06:b0:06:60:3a:15:e0:96:9c:b7:b4:bd: f7:42:5f:32:54:d6:9a:b8:80:fe:ed:23:38:ff:4d:ec:bb:11: da:ca:21:5c:65:c9:54:5d:48:eb:06:df:cb:ab:ca:c1:d2:82: 47:33:4e:e0:68:a2:a8:43:42:72:a4:91:01:1e:e8:43:77:16: cb:5f:e5:ad:d9:b6:30:30:f9:99:b6:48:46:a5:85:bd:69:65: 26:0c:38:2d:ea:82:f2:0b:52:46:88:99:63:f9:f8:9b:4d:8b: 52:50:6a:ea:4d:4b:aa:6d:8b:14:02:25:d2:29:e8:ce:3c:50: 08:c5:b7:48:83:2c:0d:0f:a7:93:78:86:50:3b:80:c4:63:17: 93:d8:05:2e:c2:34:e8:9c:cd:3f:ec:a4:f8:9d:a5:c6:a5:35: d4:d3:5b:70:22:fd:ef:ef:7b:07:5c:87:7b:6a:66:50:ff:3d: 21:30:f4:53:89:eb:c7:10:6c:4b:45:f8:5c:c6:e0:85:92:94: 51:21:be:12:97:8a:f2:49:30:e6:9f:6e:cf:f2:71:39:9d:ce: 37:f2:57:fd:52:f6:9a:d4:c4:cd:0d:68:27:37:b3:ed:62:80: 29:4a:5a:2b:27:7b:6a:46:eb:16:08:c5:dd:60:fb:15:a6:eb: b2:04:be:95 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjYy05Y2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAst0guLbGAvj+XFymh1MwcqEAY55bApAy4owQ0MZ2HAv3lJPfssv4SafTC43j DFqxF+eiRqdEDllhH5iQQq+l4ehnsZVi4XU21ixgfr5XmlOxvks5e3MjHm6u0K/a IQa5BtrBfXxZKWfWGoH8eNt1HvE4EiVWi9tOLBNxlEVJgICkM2JsZRKLlijOxsgV /hM4+WUV4odEDpIkdlpcc414GwOQJEBeA2LfgpEuazfPdwQlYHBcw+s+M8hjmDMW TyOgSCrDbAMTQ68a6WaE+qTk3igtNnN8JFhuGhx/R2DLy8sdpjlfzP7DE92YVpoE u4109mfEN/RAhkaiQebX6KpCDQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPbqKEjV enetCT1VpH6qj4UzM63LMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvODk4N0Y5NDIz MzU5MTFFOEExNjQyQTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAC2NukDBAC2NuswDQYJKoZIhvcNAQELBQADggEBAHbpwwHg ogawBmA6FeCWnLe0vfdCXzJU1pq4gP7tIzj/Tey7EdrKIVxlyVRdSOsG38urysHS gkczTuBooqhDQnKkkQEe6EN3Fstf5a3ZtjAw+Zm2SEalhb1pZSYMOC3qgvILUkaI mWP5+JtNi1JQaupNS6ptixQCJdIp6M48UAjFt0iDLA0Pp5N4hlA7gMRjF5PYBS7C NOiczT/spPidpcalNdTTW3Ai/e/vewdch3tqZlD/PSEw9FOJ68cQbEtF+FzG4IWS lFEhvhKXivJJMOafbs/ycTmdzjfyV/1S9prUxM0NaCc3s+1igClKWisne2pG6xYI xd1g+xWm67IEvpU= -----END CERTIFICATE-----Generated at Sun Sep 7 12:41:57 2025 by rpki-client