$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/87F2D334F2D811EC8F663D52C4F9AE02.roa File: 87F2D334F2D811EC8F663D52C4F9AE02.roa (raw, json) Hash identifier: 5k3DQfhGz/SABytY61becc5MlxRt/8ivV4iotQ7Zt+8= Subject key identifier: 7E:78:0D:9E:A3:71:45:A6:DF:4D:90:3E:76:EF:78:4B:84:88:18:8C Certificate issuer: /CN=A91BA5BA/serialNumber=02AA3A76C459497B1B45F26E9044ACC6F2E8044F Certificate serial: 0407 Authority key identifier: 02:AA:3A:76:C4:59:49:7B:1B:45:F2:6E:90:44:AC:C6:F2:E8:04:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/87F2D334F2D811EC8F663D52C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:00:51 +0000 ROA not before: Thu 17 Jul 2025 01:36:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 131329 IP address blocks: 202.88.42.0/24 maxlen: 24 2400:1560:6::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.crl rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1031 (0x407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA5BA, serialNumber=02AA3A76C459497B1B45F26E9044ACC6F2E8044F Validity Not Before: Jul 17 01:36:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42a73-2d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a5:1e:3c:72:ab:51:4b:de:be:53:77:4e:3f: 71:51:f0:0f:9d:14:e6:f6:ef:e7:94:53:b2:42:24: f6:02:5d:9f:28:b1:8c:cd:91:8f:cf:e3:c5:70:c5: ac:af:ff:e2:17:1c:b7:d3:f4:8e:2e:4c:eb:b0:16: e4:67:1a:8f:dd:b8:f0:6e:36:27:dd:ff:fc:84:f8: 97:d3:ba:73:ae:f5:b7:c6:84:8f:70:00:85:a3:64: c4:c0:7a:4a:33:33:15:84:08:24:19:07:72:5b:68: d2:e4:c0:26:9e:df:c7:65:f1:66:16:77:09:0f:4a: 84:f7:54:4b:1a:e9:e0:9f:2b:6e:b2:a0:a5:5d:1c: 31:a5:b0:61:be:ac:3b:81:e4:b1:bf:18:fb:2d:71: 2e:e2:5a:90:74:56:7b:c4:b3:f6:e1:18:83:55:9f: 15:5e:4b:5e:56:71:ac:75:26:c7:6e:59:46:e9:9f: 92:79:a5:ef:bd:61:98:60:cb:70:e1:de:07:18:5a: 7e:1c:f6:2c:41:1f:5f:63:7e:bf:d4:a2:f3:de:6c: b9:fe:6a:92:06:bd:88:51:fa:69:a9:ca:98:b5:d2: 87:9b:77:15:3b:b5:36:cd:48:74:e7:3c:d5:7a:cd: 58:ee:1b:46:0c:8d:57:22:a9:bd:4c:c8:f8:8a:87: fd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:78:0D:9E:A3:71:45:A6:DF:4D:90:3E:76:EF:78:4B:84:88:18:8C X509v3 Authority Key Identifier: keyid:02:AA:3A:76:C4:59:49:7B:1B:45:F2:6E:90:44:AC:C6:F2:E8:04:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/87F2D334F2D811EC8F663D52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.88.42.0/24 IPv6: 2400:1560:6::/64 Signature Algorithm: sha256WithRSAEncryption 0f:dd:94:48:3c:be:2a:71:11:22:ff:61:11:2f:da:d2:f3:56: ca:dc:50:f4:65:35:74:29:79:a4:59:f7:a4:cb:90:33:84:17: cf:79:cc:b6:27:35:64:e4:a8:e8:84:8b:8b:c1:0c:65:4e:45: bc:07:9a:57:1b:11:94:22:80:e8:e9:38:81:a4:f7:4a:d6:46: 0c:41:c0:76:d0:8a:b1:fa:02:1f:d1:59:9f:d5:db:6f:76:0b: 6a:b4:6f:c8:a8:4a:b5:97:e1:2a:4c:27:44:32:d3:4b:96:e4: d9:fe:cd:06:bf:98:e4:42:d0:6f:f3:67:4e:36:50:80:a9:a4: 09:c9:0f:90:dc:fb:76:ab:0f:f0:86:a0:f1:eb:86:dd:79:0e: 1e:ff:c8:0d:8b:7c:4b:14:e5:e4:78:b1:48:c4:69:34:d8:c3: d7:53:3d:2f:d0:50:2c:aa:12:40:57:4e:94:36:33:d6:5f:31: ce:0d:7d:98:a2:87:aa:b0:e1:bf:e0:18:30:89:a9:57:7e:df: 26:44:14:ea:00:8d:d9:df:49:6a:3b:b8:c4:ea:81:31:5b:93: 91:4c:5b:42:52:47:5d:ea:33:83:c9:eb:ec:dc:5b:9a:20:65: 91:98:36:48:ac:ff:4b:03:d4:d9:86:2a:20:27:dc:62:33:25: 75:c8:15:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE1QkExMTAvBgNVBAUTKDAyQUEzQTc2QzQ1OTQ5N0IxQjQ1RjI2RTkwNDRBQ0M2 RjJFODA0NEYwHhcNMjUwNzE3MDEzNjQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmE3My0yZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KUePHKrUUvevlN3Tj9xUfAPnRTm9u/nlFOyQiT2Al2fKLGMzZGPz+PFcMWs r//iFxy30/SOLkzrsBbkZxqP3bjwbjYn3f/8hPiX07pzrvW3xoSPcACFo2TEwHpK MzMVhAgkGQdyW2jS5MAmnt/HZfFmFncJD0qE91RLGungnytusqClXRwxpbBhvqw7 geSxvxj7LXEu4lqQdFZ7xLP24RiDVZ8VXkteVnGsdSbHbllG6Z+SeaXvvWGYYMtw 4d4HGFp+HPYsQR9fY36/1KLz3my5/mqSBr2IUfppqcqYtdKHm3cVO7U2zUh05zzV es1Y7htGDI1XIqm9TMj4iof9hQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH54DZ6j cUWm302QPnbveEuEiBiMMB8GA1UdIwQYMBaAFAKqOnbEWUl7G0XybpBErMby6ARP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTVCQS80MzI2Q0JDMEI3 Q0QxMUVDQUY2ODEzMzVDNEY5QUUwMi9BcW82ZHNSWlNYc2JSZkp1a0VTc3h2TG9C RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FxbzZkc1JaU1hzYlJmSnVrRVNzeHZMb0JFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE1QkEvNDMyNkNCQzBCN0NEMTFFQ0FGNjgxMzM1QzRGOUFFMDIvODdGMkQzMzRG MkQ4MTFFQzhGNjYzRDUyQzRGOUFFMDIucm9hMDIGCCsGAQUFBwEHAQH/BCMwITAM BAIAATAGAwQAylgqMBEEAgACMAsDCQAkABVgAAYAADANBgkqhkiG9w0BAQsFAAOC AQEAD92USDy+KnERIv9hES/a0vNWytxQ9GU1dCl5pFn3pMuQM4QXz3nMtic1ZOSo 6ISLi8EMZU5FvAeaVxsRlCKA6Ok4gaT3StZGDEHAdtCKsfoCH9FZn9Xbb3YLarRv yKhKtZfhKkwnRDLTS5bk2f7NBr+Y5ELQb/NnTjZQgKmkCckPkNz7dqsP8Iag8euG 3XkOHv/IDYt8SxTl5HixSMRpNNjD11M9L9BQLKoSQFdOlDYz1l8xzg19mKKHqrDh v+AYMImpV37fJkQU6gCN2d9Jaju4xOqBMVuTkUxbQlJHXeozg8nr7NxbmiBlkZg2 SKz/SwPU2YYqICfcYjMldcgVcg== -----END CERTIFICATE-----Generated at Sat Mar 28 11:48:26 2026 by rpki-client