$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa File: BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa (raw, json) Hash identifier: aYugIyHCZJwAmq9KTfLv5V2NclVJEThsuFyltYOyWPM= Subject key identifier: 1C:81:01:57:B1:0A:1C:3D:43:77:73:72:81:F2:62:EF:4F:6D:E4:A2 Certificate issuer: /CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Certificate serial: 0176 Authority key identifier: 19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:11:31 +0000 ROA not before: Sat 03 May 2025 05:12:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152668 IP address blocks: 117.55.254.0/24 maxlen: 24 117.55.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC931, serialNumber=198C4364CF032C730D9585834982096D50A752C9 Validity Not Before: May 3 05:12:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a58c83-a3e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ec:c5:29:4a:a3:80:0a:59:a0:ac:58:27:b7: 57:7f:17:e7:76:1c:9e:dd:07:5f:e7:71:e2:18:11: f8:25:27:14:5e:32:53:36:7a:db:d8:4f:65:d6:bd: 1c:67:92:40:30:75:ef:1a:e0:8a:46:d5:05:cd:79: df:92:da:7a:8c:6d:af:a2:45:cc:e8:4a:8f:80:53: 80:21:2c:43:59:ae:42:d3:b7:63:79:6d:2f:9f:41: 46:85:e6:fc:ee:1a:92:02:a3:e4:45:a7:de:36:79: ea:3a:b8:39:6f:8b:8c:8b:b2:79:72:fd:e7:51:8e: 3a:61:71:e0:48:87:5e:46:38:e8:29:88:72:c3:4a: 8e:8c:97:46:32:f4:9b:8b:fc:92:57:93:d1:28:ca: fa:49:36:32:bd:a0:37:45:80:c3:35:9e:d4:a4:81: 4f:5c:52:bf:62:d0:e4:61:b4:13:55:5e:59:10:d1: f0:a7:e2:6f:d6:55:c2:b5:67:77:61:cf:02:21:b2: 8c:5b:fe:a7:de:be:b2:90:e4:70:18:37:99:1a:c9: 2f:7c:df:1e:3b:ff:94:3d:62:8b:4a:8a:ca:c4:6f: 2b:a3:9c:1c:39:4e:c3:4c:7b:64:83:fc:9c:2b:45: 9e:f9:9a:30:43:d3:6a:3b:c8:0d:96:af:7b:f7:d4: 81:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:81:01:57:B1:0A:1C:3D:43:77:73:72:81:F2:62:EF:4F:6D:E4:A2 X509v3 Authority Key Identifier: keyid:19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/BBE9AEC0F55F11EEB6F1153CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 117.55.254.0/23 Signature Algorithm: sha256WithRSAEncryption 84:85:ec:84:a3:35:fe:a3:8a:12:24:db:3a:68:db:77:53:f9: e1:5f:54:ac:c5:17:21:d0:4b:c2:26:e0:08:c9:85:cf:74:11: 06:29:52:b2:2e:9f:e6:90:1c:78:0f:0a:1f:70:5e:d9:f3:fd: 76:17:33:38:3a:fa:36:6e:33:28:41:b1:9b:56:79:75:5e:9c: c6:08:bf:78:7e:c9:ec:f3:7b:0e:d1:96:b0:0b:42:90:82:00: 83:d3:f0:e9:20:ea:07:67:d7:a4:f5:55:6f:cd:36:b6:67:f4: b1:c0:b4:43:b6:31:1c:85:b6:f4:12:92:f2:dd:8d:2f:08:37: 1a:af:1a:42:b9:71:b1:1f:09:ae:01:92:93:b2:0b:d6:66:c2: c1:1b:62:c6:2a:f9:42:80:c6:f4:2b:7c:0d:ef:35:bb:c1:58: f3:c1:20:6c:07:44:7e:d8:4b:73:b4:c8:1c:9a:65:05:f1:d4: 07:40:33:c3:73:55:1a:83:76:94:d5:9e:c6:da:ad:82:cb:dd: ac:95:76:54:83:4a:c8:a5:02:2c:d9:9f:c2:8b:b5:14:2d:ca: 2f:dd:87:f9:90:64:85:58:b4:66:f0:da:de:1c:da:aa:ee:9d: 60:4b:15:a0:3b:4f:9e:7d:d3:7f:b4:60:50:aa:6f:ae:ea:01: 28:72:93:12 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5MzExMTAvBgNVBAUTKDE5OEM0MzY0Q0YwMzJDNzMwRDk1ODU4MzQ5ODIwOTZE NTBBNzUyQzkwHhcNMjUwNTAzMDUxMjE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGM4My1hM2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOzFKUqjgApZoKxYJ7dXfxfndhye3Qdf53HiGBH4JScUXjJTNnrb2E9l1r0c Z5JAMHXvGuCKRtUFzXnfktp6jG2vokXM6EqPgFOAISxDWa5C07djeW0vn0FGheb8 7hqSAqPkRafeNnnqOrg5b4uMi7J5cv3nUY46YXHgSIdeRjjoKYhyw0qOjJdGMvSb i/ySV5PRKMr6STYyvaA3RYDDNZ7UpIFPXFK/YtDkYbQTVV5ZENHwp+Jv1lXCtWd3 Yc8CIbKMW/6n3r6ykORwGDeZGskvfN8eO/+UPWKLSorKxG8ro5wcOU7DTHtkg/yc K0We+ZowQ9NqO8gNlq9799SBXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFByBAVex Chw9Q3dzcoHyYu9PbeSiMB8GA1UdIwQYMBaAFBmMQ2TPAyxzDZWFg0mCCW1Qp1LJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzkzMS80QTI1QjZBMEY1 NUQxMUVFOUJFMTk3ODBDNEY5QUUwMi9HWXhEWk04RExITU5sWVdEU1lJSmJWQ25V c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZeERaTThETEhNTmxZV0RTWUlKYlZDblVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM5MzEvNEEyNUI2QTBGNTVEMTFFRTlCRTE5NzgwQzRGOUFFMDIvQkJFOUFFQzBG NTVGMTFFRUI2RjExNTNDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBdTf+MA0GCSqGSIb3DQEBCwUAA4IBAQCEheyEozX+o4oSJNs6aNt3 U/nhX1SsxRch0EvCJuAIyYXPdBEGKVKyLp/mkBx4DwofcF7Z8/12FzM4Ovo2bjMo QbGbVnl1XpzGCL94fsns83sO0ZawC0KQggCD0/DpIOoHZ9ek9VVvzTa2Z/SxwLRD tjEchbb0EpLy3Y0vCDcarxpCuXGxHwmuAZKTsgvWZsLBG2LGKvlCgMb0K3wN7zW7 wVjzwSBsB0R+2EtztMgcmmUF8dQHQDPDc1Uag3aU1Z7G2q2Cy92slXZUg0rIpQIs 2Z/Ci7UULcov3Yf5kGSFWLRm8NreHNqq7p1gSxWgO0+efdN/tGBQqm+u6gEocpMS -----END CERTIFICATE-----Generated at Thu Mar 26 14:52:21 2026 by rpki-client