$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa File: 81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa (raw, json) Hash identifier: /t91K13z6WAVt7TlFvUwr5tZKY0UNdGRc/y4NhFwh6I= Subject key identifier: 39:6A:DD:62:76:77:22:9D:7B:B9:AF:2E:EB:08:0E:1B:A9:97:8D:D3 Certificate issuer: /CN=A91EA958/serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Certificate serial: 24BF Authority key identifier: 11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa Signing time: Wed 02 Jul 2025 15:21:06 +0000 ROA not before: Wed 02 Jul 2025 15:21:06 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135295 IP address blocks: 136.228.152.0/24 maxlen: 24 136.228.153.0/24 maxlen: 24 136.228.154.0/24 maxlen: 24 136.228.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 15:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9407 (0x24bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Validity Not Before: Jul 2 15:21:06 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68654e62-4384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d7:5b:b6:69:1d:31:47:bc:bd:48:2c:50:eb: b7:8e:a7:12:d3:0e:4d:cf:48:c6:da:66:c5:a9:db: 7a:0c:7a:48:fd:b5:47:81:ed:44:7f:9e:30:d5:fa: 60:6a:83:9b:92:df:14:13:08:30:6b:da:1c:98:3b: 55:db:c5:c7:57:6b:a8:24:5f:21:a2:62:b2:a6:8a: 1a:55:df:f4:45:ff:55:7a:bf:b3:99:73:ce:b1:96: 3b:8e:2b:ac:96:46:af:63:cb:4e:b7:65:7a:7e:74: 66:92:6d:0c:ba:1b:d2:d7:eb:d7:59:05:9a:a8:fb: fb:d5:1f:e7:57:8e:9b:85:92:ef:00:22:8b:07:3d: df:88:27:8e:19:c3:8d:30:a2:9e:a5:58:a1:ea:46: 8e:bc:d3:07:7f:85:e9:bb:37:cb:7a:b0:81:a8:d7: 6d:04:ab:cf:49:ba:88:e3:77:62:fd:cd:8e:4c:6b: da:c9:b0:45:66:41:f0:7d:87:85:73:be:41:ad:19: 75:7e:a0:fd:82:66:a8:f9:d2:92:42:3e:96:e8:11: f7:d8:05:c0:b1:68:02:34:cb:1b:6e:ea:fe:11:43: ec:58:d9:73:6d:ff:39:7c:71:9b:17:49:b2:34:bc: 2c:93:48:c4:9e:be:f3:c4:ed:db:ab:53:60:73:5e: cf:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6A:DD:62:76:77:22:9D:7B:B9:AF:2E:EB:08:0E:1B:A9:97:8D:D3 X509v3 Authority Key Identifier: keyid:11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.228.152.0/22 Signature Algorithm: sha256WithRSAEncryption 82:a9:78:fe:8a:2b:c2:08:12:83:7d:3e:d3:53:e7:f2:8d:1b: 86:99:4f:a3:8c:0e:4b:56:b8:9e:55:20:e3:1a:a9:84:62:22: 2c:2c:65:3d:7a:da:18:bf:21:a1:2e:d7:0c:1e:73:bf:20:db: 71:42:32:75:f8:62:e3:d4:ea:50:c1:7f:11:55:e9:9d:19:5d: 45:9b:2f:ba:9f:d1:bf:4b:86:1f:3a:a6:91:4c:2c:08:04:a2: 55:be:c6:57:15:9f:d8:44:7e:e8:f3:e2:85:f7:8c:80:f5:2c: f0:ef:10:bd:80:f9:d4:ae:69:76:29:94:a2:b7:17:1c:c9:69: 1b:17:af:98:bf:4c:b2:a3:b6:2d:ea:18:a9:0c:24:a0:3d:47: f8:8c:9b:ec:cc:3f:77:2d:b5:3d:91:91:c6:59:17:f5:c5:e2: d6:4f:e7:16:41:a3:c5:7e:4d:89:4a:81:c6:b4:c1:d3:aa:69: eb:46:02:dd:73:2c:45:17:b1:70:3a:9c:b1:b2:fd:c0:b5:6a: d8:02:0f:47:42:af:56:48:2f:5e:ca:32:0b:68:8b:94:cf:83: 6b:50:92:fb:a9:51:73:8a:53:5e:ce:71:8e:06:36:f6:10:d6: e7:a5:fc:f3:20:5e:d9:1c:1c:5a:0b:79:5c:7c:fd:02:03:22: c5:1d:31:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKDExMTAzMTBFMEY4MDQ2NzcwM0Q4NDc3RkIzRUUyNUYx RDg4ODhFOUUwHhcNMjUwNzAyMTUyMTA2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1NGU2Mi00Mzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtdbtmkdMUe8vUgsUOu3jqcS0w5Nz0jG2mbFqdt6DHpI/bVHge1Ef54w1fpg aoObkt8UEwgwa9ocmDtV28XHV2uoJF8homKypooaVd/0Rf9Ver+zmXPOsZY7jius lkavY8tOt2V6fnRmkm0MuhvS1+vXWQWaqPv71R/nV46bhZLvACKLBz3fiCeOGcON MKKepVih6kaOvNMHf4XpuzfLerCBqNdtBKvPSbqI43di/c2OTGvaybBFZkHwfYeF c75BrRl1fqD9gmao+dKSQj6W6BH32AXAsWgCNMsbbur+EUPsWNlzbf85fHGbF0my NLwsk0jEnr7zxO3bq1Ngc17PwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDlq3WJ2 dyKde7mvLusIDhupl43TMB8GA1UdIwQYMBaAFBEQMQ4PgEZ3A9hHf7PuJfHYiI6e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC9GREVGRDczNjRC RDYxMUU1QTdDQTMwMzNDNEY5QUUwMi9FUkF4RGctQVJuY0QyRWRfcy00bDhkaUlq cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VSQXhEZy1BUm5jRDJFZF9zLTRsOGRpSWpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5NTgvRkRFRkQ3MzY0QkQ2MTFFNUE3Q0EzMDMzQzRGOUFFMDIvODFFNkEwMzhC RUJEMTFFQkExQkM4QTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKI5JgwDQYJKoZIhvcNAQELBQADggEBAIKpeP6KK8IIEoN9 PtNT5/KNG4aZT6OMDktWuJ5VIOMaqYRiIiwsZT162hi/IaEu1wwec78g23FCMnX4 YuPU6lDBfxFV6Z0ZXUWbL7qf0b9Lhh86ppFMLAgEolW+xlcVn9hEfujz4oX3jID1 LPDvEL2A+dSuaXYplKK3FxzJaRsXr5i/TLKjti3qGKkMJKA9R/iMm+zMP3cttT2R kcZZF/XF4tZP5xZBo8V+TYlKgca0wdOqaetGAt1zLEUXsXA6nLGy/cC1atgCD0dC r1ZIL17KMgtoi5TPg2tQkvupUXOKU17OcY4GNvYQ1uel/PMgXtkcHFoLeVx8/QID IsUdMaA= -----END CERTIFICATE-----Generated at Fri Oct 24 06:56:00 2025 by rpki-client