$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/87BF5BF6BD3411EB99D25F26C4F9AE02.roa File: 87BF5BF6BD3411EB99D25F26C4F9AE02.roa (raw, json) Hash identifier: FrN9o1lFg/xEbU5z0+woTSKpRYhEXE4ng2cT+urUy+w= Subject key identifier: 5F:B3:D4:7B:E6:3A:9F:A0:67:7A:04:71:59:D6:D9:E1:89:E4:98:E3 Certificate issuer: /CN=A91BE146/serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Certificate serial: 062D Authority key identifier: 43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/87BF5BF6BD3411EB99D25F26C4F9AE02.roa Signing time: Fri 12 Sep 2025 23:04:16 +0000 ROA not before: Fri 12 Sep 2025 23:04:16 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38304 IP address blocks: 119.31.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE146, serialNumber=43EA3A2DC08C5E1F2CD68411644A05C076E88C08 Validity Not Before: Sep 12 23:04:16 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c4a6ef-1851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fb:35:d9:1d:3e:d7:41:d5:78:38:27:73:5e: 58:bf:86:ef:b3:79:cf:ce:37:65:35:7c:67:97:46: d1:7c:92:0f:5c:53:6e:f1:cf:4a:23:f9:48:8e:02: 8f:3f:a9:c6:a0:06:31:93:a4:44:9b:99:28:31:6a: 09:1c:ca:a7:50:14:b3:83:ef:f7:2e:a9:5b:7f:f5: ba:70:84:0d:31:70:25:9e:95:dd:7d:04:c1:67:71: 67:14:87:45:00:d1:09:e1:59:81:b1:17:10:98:e7: b0:80:6f:c4:64:06:a6:d9:6f:2b:3a:ab:39:1b:9c: 2f:c8:78:d2:c3:c2:5a:14:a4:5b:f0:33:c8:cd:a9: 95:4d:bb:e8:ee:75:4d:1f:aa:b8:17:75:51:c0:48: 34:82:3f:57:23:d6:e7:39:f3:5b:e8:cb:b4:50:d8: b5:c4:b3:11:f4:73:15:72:0c:c4:d9:eb:d3:37:62: 29:a0:fb:5c:b1:37:f7:94:4d:6e:f7:4e:0e:be:60: 0d:77:a3:ec:a9:c0:b2:69:ba:b7:c5:d4:9b:50:75: 54:73:2e:e8:17:8f:66:42:bd:11:e3:bc:97:28:a9: e2:b2:73:bf:11:0a:4f:e0:c0:29:35:32:cc:ab:b3: 87:66:a2:e5:ae:02:5d:32:12:3d:a0:ce:6c:6b:d4: 24:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B3:D4:7B:E6:3A:9F:A0:67:7A:04:71:59:D6:D9:E1:89:E4:98:E3 X509v3 Authority Key Identifier: keyid:43:EA:3A:2D:C0:8C:5E:1F:2C:D6:84:11:64:4A:05:C0:76:E8:8C:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/Q-o6LcCMXh8s1oQRZEoFwHbojAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-o6LcCMXh8s1oQRZEoFwHbojAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE146/E41AB42ABD3111EBBFC3F921C4F9AE02/87BF5BF6BD3411EB99D25F26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.31.173.0/24 Signature Algorithm: sha256WithRSAEncryption 30:24:e3:1a:ed:9d:ec:55:a8:aa:14:53:cb:65:33:e6:30:f4: e0:95:96:3b:d0:da:fb:ee:b4:1f:6b:31:44:67:16:0c:9a:37: be:d2:cb:d0:ae:79:90:ad:09:45:6e:47:3d:e7:25:42:7e:94: 94:dc:d9:c6:a7:d2:e6:b3:eb:bc:6b:ef:80:62:3d:c1:0e:13: 2a:e6:6d:5d:b9:49:d0:98:c5:b5:fa:22:3d:6f:71:69:d2:63: 47:20:d5:06:7d:6a:88:e4:0c:2b:7b:42:aa:e8:4f:e0:85:69: d9:b1:76:93:46:32:0b:33:8f:a2:d5:ec:b6:e4:a0:bf:43:09: b7:03:d2:7f:20:35:ab:c0:b6:ea:2b:8c:58:61:03:ab:5a:00: 1d:15:ec:38:cf:b7:55:34:bb:81:d6:fe:e1:cc:6b:1b:a4:92: 72:61:15:56:b6:a4:0e:5b:fd:e5:7b:c7:c1:8a:6b:7a:0c:eb: 01:cc:e2:92:78:b8:e4:1c:93:4d:61:72:14:47:c5:4f:da:81: c6:5b:06:33:6d:02:f3:f2:e5:f7:2d:49:99:88:58:35:f0:3a: 8f:53:65:e3:00:7a:bf:9a:80:d0:23:ec:28:73:44:5a:28:13: a9:cb:3a:05:a8:b8:96:9a:78:70:70:54:0c:1c:c7:4e:f9:c7: fc:9d:49:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxNDYxMTAvBgNVBAUTKDQzRUEzQTJEQzA4QzVFMUYyQ0Q2ODQxMTY0NEEwNUMw NzZFODhDMDgwHhcNMjUwOTEyMjMwNDE2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0YTZlZi0xODUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/s12R0+10HVeDgnc15Yv4bvs3nPzjdlNXxnl0bRfJIPXFNu8c9KI/lIjgKP P6nGoAYxk6REm5koMWoJHMqnUBSzg+/3Lqlbf/W6cIQNMXAlnpXdfQTBZ3FnFIdF ANEJ4VmBsRcQmOewgG/EZAam2W8rOqs5G5wvyHjSw8JaFKRb8DPIzamVTbvo7nVN H6q4F3VRwEg0gj9XI9bnOfNb6Mu0UNi1xLMR9HMVcgzE2evTN2IpoPtcsTf3lE1u 904OvmANd6PsqcCyabq3xdSbUHVUcy7oF49mQr0R47yXKKnisnO/EQpP4MApNTLM q7OHZqLlrgJdMhI9oM5sa9Qk7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFF+z1Hvm Op+gZ3oEcVnW2eGJ5JjjMB8GA1UdIwQYMBaAFEPqOi3AjF4fLNaEEWRKBcB26IwI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTE0Ni9FNDFBQjQyQUJE MzExMUVCQkZDM0Y5MjFDNEY5QUUwMi9RLW82TGNDTVhoOHMxb1FSWkVvRndIYm9q QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtbzZMY0NNWGg4czFvUVJaRW9Gd0hib2pBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxNDYvRTQxQUI0MkFCRDMxMTFFQkJGQzNGOTIxQzRGOUFFMDIvODdCRjVCRjZC RDM0MTFFQjk5RDI1RjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3H60wDQYJKoZIhvcNAQELBQADggEBADAk4xrtnexVqKoU U8tlM+Yw9OCVljvQ2vvutB9rMURnFgyaN77Sy9CueZCtCUVuRz3nJUJ+lJTc2can 0uaz67xr74BiPcEOEyrmbV25SdCYxbX6Ij1vcWnSY0cg1QZ9aojkDCt7QqroT+CF admxdpNGMgszj6LV7LbkoL9DCbcD0n8gNavAtuorjFhhA6taAB0V7DjPt1U0u4HW /uHMaxukknJhFVa2pA5b/eV7x8GKa3oM6wHM4pJ4uOQck01hchRHxU/agcZbBjNt AvPy5fctSZmIWDXwOo9TZeMAer+agNAj7ChzRFooE6nLOgWouJaaeHBwVAwcx075 x/ydSSk= -----END CERTIFICATE-----Generated at Mon Oct 20 17:49:38 2025 by rpki-client