$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F86A2F7680FA11ED9B35954DC4F9AE02.roa File: F86A2F7680FA11ED9B35954DC4F9AE02.roa (raw, json) Hash identifier: ujc0MMs38JAyLv/lgGmTZJVWFsrRIcXX0fImBXf2Gng= Subject key identifier: 5D:88:58:65:15:79:D2:2B:55:7B:5D:08:40:0D:A0:A3:2D:52:C8:04 Certificate issuer: /CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Certificate serial: 026C Authority key identifier: 3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F86A2F7680FA11ED9B35954DC4F9AE02.roa Signing time: Sat 27 Sep 2025 02:30:34 +0000 ROA not before: Sat 27 Sep 2025 02:30:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58611 IP address blocks: 138.80.0.0/16 maxlen: 16 138.80.0.0/24 maxlen: 24 138.80.11.0/24 maxlen: 24 138.80.144.0/20 maxlen: 20 138.80.208.0/21 maxlen: 21 138.80.216.0/22 maxlen: 22 138.80.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD, serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Validity Not Before: Sep 27 02:30:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d74c4a-6257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:84:19:73:a0:fc:94:3a:c8:a5:c4:63:b4:bf: 81:57:03:03:54:24:d9:9b:cb:03:b5:6c:94:80:08: 53:71:26:6a:56:51:dd:21:75:9d:74:00:7c:72:ab: 48:ce:d9:b5:eb:c4:01:b4:2e:19:80:6d:59:ad:9f: 6a:bf:53:f5:a1:e9:dc:53:5e:84:df:7d:84:19:3c: ce:f1:f1:8b:7e:bf:52:4a:9c:b1:eb:75:27:41:5b: 88:5b:c3:a8:51:4a:ca:13:42:57:a8:5c:47:12:91: 15:d1:f3:50:c7:45:74:36:ca:74:17:1b:8c:93:84: 0c:ce:b3:d5:13:3f:36:e9:3e:71:3f:7a:65:ac:1a: 81:85:89:bc:b7:f1:48:fd:28:fe:e0:7d:9c:d0:95: 6b:58:9f:40:38:63:65:a4:28:c1:06:9d:64:05:ae: 76:d1:24:bf:1a:75:92:be:f7:4f:f1:6c:64:e4:37: 46:e8:33:88:b5:98:31:1d:ff:33:c6:91:7e:36:b4: 5d:9a:d6:2d:46:14:c7:52:0d:ab:52:0c:f1:14:fd: ea:98:97:57:a0:e7:6a:8b:23:14:8f:e9:34:b8:fa: e5:78:e7:f2:04:3c:89:0e:b8:d7:29:c0:a3:79:07: 16:5d:c7:70:f4:3c:6e:b6:38:41:27:fb:29:bd:c1: 34:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:88:58:65:15:79:D2:2B:55:7B:5D:08:40:0D:A0:A3:2D:52:C8:04 X509v3 Authority Key Identifier: keyid:3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F86A2F7680FA11ED9B35954DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 74:03:2f:e4:43:78:7a:de:22:23:60:ed:e9:49:b2:90:b4:e7: a3:35:7c:88:e2:51:34:e9:df:40:79:55:bf:b0:b4:66:b4:42: 82:2e:e9:cb:0e:98:fd:5e:a7:5d:35:e5:32:85:df:36:4a:7c: 37:c2:4e:ac:12:b3:2d:d4:bf:ff:9a:5e:27:5c:ac:28:4c:5e: ad:4c:df:01:6f:65:d1:b8:fb:da:84:c3:1c:94:fd:a7:dc:04: e6:d6:7d:9c:99:fe:68:d6:85:47:42:06:2d:e2:e5:30:19:90: 78:62:da:6a:60:bd:fb:d3:c5:62:8b:67:a3:92:4d:c8:a1:91: 48:18:ae:fe:d8:6b:e6:1a:61:44:a6:a1:c3:f0:f9:10:a8:97: 0d:28:99:7e:b5:d5:21:68:c8:8f:90:99:81:59:d6:20:e8:f4: 29:c9:52:aa:27:fb:12:3a:fb:df:b5:29:7c:29:62:68:eb:3d: aa:9e:96:b0:0a:f3:9c:ad:65:5b:da:f3:7b:6f:e1:b7:c3:8e: e4:8e:39:36:e2:da:6c:7e:f8:64:65:fd:87:b6:78:1e:9a:c7: 3e:32:ae:b7:53:80:ba:96:be:9c:6e:49:1d:5d:f9:17:f2:1f: 02:4d:b2:00:76:25:14:de:9b:cd:54:e3:59:8c:16:1a:0c:c2: 3a:51:c2:ae -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKDNCODc2OTBFRjQwNTU2NzM4M0I2RjcyRkREMzAxMTYw Q0U4MjFGMkIwHhcNMjUwOTI3MDIzMDM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ3NGM0YS02MjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYQZc6D8lDrIpcRjtL+BVwMDVCTZm8sDtWyUgAhTcSZqVlHdIXWddAB8cqtI ztm168QBtC4ZgG1ZrZ9qv1P1oencU16E332EGTzO8fGLfr9SSpyx63UnQVuIW8Oo UUrKE0JXqFxHEpEV0fNQx0V0Nsp0FxuMk4QMzrPVEz826T5xP3plrBqBhYm8t/FI /Sj+4H2c0JVrWJ9AOGNlpCjBBp1kBa520SS/GnWSvvdP8Wxk5DdG6DOItZgxHf8z xpF+NrRdmtYtRhTHUg2rUgzxFP3qmJdXoOdqiyMUj+k0uPrleOfyBDyJDrjXKcCj eQcWXcdw9DxutjhBJ/spvcE0KQIDAQABo4IClDCCApAwHQYDVR0OBBYEFF2IWGUV edIrVXtdCEANoKMtUsgEMB8GA1UdIwQYMBaAFDuHaQ70BVZzg7b3L90wEWDOgh8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80M0E1MTFBRTJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9PNGRwRHZRRlZuT0R0dmN2M1RBUllNNkNI eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL080ZHBEdlFGVm5PRHR2Y3YzVEFSWU02Q0h5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgxQUQvNDNBNTExQUUyQ0JFMTFFRDk5ODI0QjRDQzRGOUFFMDIvRjg2QTJGNzY4 MEZBMTFFRDlCMzU5NTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCKUDANBgkqhkiG9w0BAQsFAAOCAQEAdAMv5EN4et4iI2Dt 6UmykLTnozV8iOJRNOnfQHlVv7C0ZrRCgi7pyw6Y/V6nXTXlMoXfNkp8N8JOrBKz LdS//5peJ1ysKExerUzfAW9l0bj72oTDHJT9p9wE5tZ9nJn+aNaFR0IGLeLlMBmQ eGLaamC9+9PFYotno5JNyKGRSBiu/thr5hphRKahw/D5EKiXDSiZfrXVIWjIj5CZ gVnWIOj0KclSqif7Ejr737UpfCliaOs9qp6WsArznK1lW9rze2/ht8OO5I45NuLa bH74ZGX9h7Z4HprHPjKut1OAupa+nG5JHV35F/IfAk2yAHYlFN6bzVTjWYwWGgzC OlHCrg== -----END CERTIFICATE-----Generated at Mon Oct 20 11:32:54 2025 by rpki-client