$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/95BD9D90A56A11EFA5ABDC46C4F9AE02.roa File: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (raw, json) Hash identifier: 5hsatirdoTAMt8sVP/32NV6rGnCIOasP2d6dKTsMLr4= Subject key identifier: 8E:BC:4D:84:B5:A9:DC:1B:C1:F0:47:B6:B4:13:9F:99:D8:33:FB:83 Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0AB3 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/95BD9D90A56A11EFA5ABDC46C4F9AE02.roa Signing time: Wed 04 Jun 2025 20:05:05 +0000 ROA not before: Wed 04 Jun 2025 20:05:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4913 IP address blocks: 203.88.86.0/24 maxlen: 24 203.88.87.0/24 maxlen: 24 203.88.88.0/24 maxlen: 24 203.88.89.0/24 maxlen: 24 203.88.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2739 (0xab3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Jun 4 20:05:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6840a6f0-98e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5b:55:d1:05:7d:c1:20:e9:72:e1:fe:12:64: 6c:eb:14:25:75:dc:ea:f4:74:57:6e:8d:83:b6:21: d6:3a:f7:3f:9d:f0:df:97:09:d6:5c:d7:bd:78:d9: f5:8b:0d:6b:9b:c4:42:69:47:1d:ba:1c:8d:db:67: fa:5e:59:0a:3f:3d:9b:88:cf:47:37:e3:6b:5f:a8: 85:4e:1a:4f:2f:88:1a:0d:04:29:6c:48:58:39:a7: b9:d2:6c:59:fb:0b:83:f1:bf:e0:4b:c3:80:3f:d5: 23:7e:7d:7f:e1:6b:58:b4:aa:cb:e1:77:1f:31:e0: 5d:6e:f5:07:b1:f7:c4:5c:27:ba:a8:a3:a3:bd:9b: 45:38:62:02:cd:41:d6:93:10:79:5c:7a:08:1e:84: fd:11:d6:ad:38:a1:61:ee:cf:d0:6d:e8:2d:a7:cc: 91:15:c0:b2:33:ca:fa:68:db:4a:45:e0:bd:9f:d4: c6:e0:8e:1d:2f:9d:5c:5c:c7:48:75:7d:c7:80:3c: e3:86:ba:23:65:b9:48:3e:16:d5:74:e8:42:2f:3c: f0:76:d7:60:1b:31:4a:82:23:bd:05:e5:4e:36:a7: 30:fd:e1:79:50:22:44:6e:ac:eb:2d:27:97:45:a8: 7e:3b:b6:5f:2f:f5:bc:cb:9a:24:ed:56:21:46:d1: 9b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:BC:4D:84:B5:A9:DC:1B:C1:F0:47:B6:B4:13:9F:99:D8:33:FB:83 X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/95BD9D90A56A11EFA5ABDC46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.88.86.0-203.88.90.255 Signature Algorithm: sha256WithRSAEncryption 1f:8e:53:bf:4b:b2:e5:64:cb:fe:44:24:cc:1c:f2:58:14:ff: 4d:62:57:f0:8c:24:8c:0b:88:5b:26:ac:69:14:fe:0d:bc:d1: 6e:4b:68:fe:c1:7e:8a:8f:71:a3:f2:8a:dc:f8:5e:87:1c:de: 33:75:3f:18:3e:e1:7c:cb:ee:5b:40:e8:92:e1:73:c2:93:7b: 0d:ab:30:77:ee:ea:61:f8:41:0c:b7:f5:d6:cf:59:19:4e:4a: 07:4e:b1:48:11:d7:f4:ec:2b:18:af:bc:88:88:6a:07:ef:23: 42:aa:14:70:d7:47:ac:0a:28:ae:62:8d:49:50:50:24:18:64: cd:76:0a:fa:b7:d9:3f:42:d3:4a:0b:0c:14:8c:e0:e3:25:a2: 34:dd:15:eb:0d:4a:7a:64:c9:1b:37:fd:1c:3f:b5:44:34:d2: 72:4d:41:0a:f0:c5:d8:6b:d6:e1:89:cc:ef:16:31:4d:03:ba: 02:3f:ff:30:eb:59:f3:3c:1c:50:85:1c:24:16:b0:19:0c:ce: 21:bc:4b:e2:00:bc:01:9f:06:3a:c0:68:59:1b:cc:39:2f:68: 8b:b9:95:c2:e3:a3:fe:02:81:ff:ab:18:e1:ba:62:24:f7:d3: 3b:5d:e8:c3:80:df:d4:26:1b:eb:4d:2a:cf:cf:68:20:23:04: f5:f6:0d:19 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjUwNjA0MjAwNTA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwYTZmMC05OGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVtV0QV9wSDpcuH+EmRs6xQlddzq9HRXbo2DtiHWOvc/nfDflwnWXNe9eNn1 iw1rm8RCaUcduhyN22f6XlkKPz2biM9HN+NrX6iFThpPL4gaDQQpbEhYOae50mxZ +wuD8b/gS8OAP9Ujfn1/4WtYtKrL4XcfMeBdbvUHsffEXCe6qKOjvZtFOGICzUHW kxB5XHoIHoT9EdatOKFh7s/Qbegtp8yRFcCyM8r6aNtKReC9n9TG4I4dL51cXMdI dX3HgDzjhrojZblIPhbVdOhCLzzwdtdgGzFKgiO9BeVONqcw/eF5UCJEbqzrLSeX Rah+O7ZfL/W8y5ok7VYhRtGb9wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFI68TYS1 qdwbwfBHtrQTn5nYM/uDMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNFMjcvRjM4ODg3NjY2RjNBMTFFQTk4NDAxMzNEQzRGOUFFMDIvOTVCRDlEOTBB NTZBMTFFRkE1QUJEQzQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEActYVgMEAMtYWjANBgkqhkiG9w0BAQsFAAOCAQEAH45T v0uy5WTL/kQkzBzyWBT/TWJX8IwkjAuIWyasaRT+DbzRbkto/sF+io9xo/KK3Phe hxzeM3U/GD7hfMvuW0DokuFzwpN7Daswd+7qYfhBDLf11s9ZGU5KB06xSBHX9Owr GK+8iIhqB+8jQqoUcNdHrAoormKNSVBQJBhkzXYK+rfZP0LTSgsMFIzg4yWiNN0V 6w1KemTJGzf9HD+1RDTSck1BCvDF2GvW4YnM7xYxTQO6Aj//MOtZ8zwcUIUcJBaw GQzOIbxL4gC8AZ8GOsBoWRvMOS9oi7mVwuOj/gKB/6sY4bpiJPfTO13ow4Df1CYb 600qz89oICME9fYNGQ== -----END CERTIFICATE-----Generated at Fri Jul 4 06:54:32 2025 by rpki-client