$ rpki-client -vvf rpki.apnic.net/member_repository/A91884A1/D7DB1C60149E11EEABDC7532C4F9AE02/87695D32591811EE973B1058C4F9AE02.roa File: 87695D32591811EE973B1058C4F9AE02.roa (raw, json) Hash identifier: t+UtlSfQB7uB9LxMHNDwpYNTZSeeRrSKvGFeOr/lo+0= Subject key identifier: 5B:50:87:F9:40:19:2B:A1:D1:A6:DF:6F:F7:24:67:23:03:02:44:19 Certificate issuer: /CN=A91884A1/serialNumber=8F7016DA22F2964B56F42CF46D9F123AF36831AB Certificate serial: 0189 Authority key identifier: 8F:70:16:DA:22:F2:96:4B:56:F4:2C:F4:6D:9F:12:3A:F3:68:31:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j3AW2iLylktW9Cz0bZ8SOvNoMas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91884A1/D7DB1C60149E11EEABDC7532C4F9AE02/87695D32591811EE973B1058C4F9AE02.roa Signing time: Wed 09 Jul 2025 04:40:23 +0000 ROA not before: Wed 09 Jul 2025 04:40:23 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151469 IP address blocks: 210.56.140.0/23 maxlen: 23 210.56.140.0/24 maxlen: 24 210.56.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91884A1/D7DB1C60149E11EEABDC7532C4F9AE02/j3AW2iLylktW9Cz0bZ8SOvNoMas.crl rsync://rpki.apnic.net/member_repository/A91884A1/D7DB1C60149E11EEABDC7532C4F9AE02/j3AW2iLylktW9Cz0bZ8SOvNoMas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j3AW2iLylktW9Cz0bZ8SOvNoMas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91884A1, serialNumber=8F7016DA22F2964B56F42CF46D9F123AF36831AB Validity Not Before: Jul 9 04:40:23 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686df2b7-fa04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:86:f6:44:08:05:a4:01:54:8f:5a:e6:5c:7d: 84:ab:de:b1:e0:b3:07:d5:d3:93:2a:a3:f3:fb:29: c7:b6:a3:09:1d:84:a3:80:08:ac:36:42:d3:72:3d: e6:1c:c0:21:ce:08:69:e0:69:d5:04:f9:2f:52:9b: 9c:a5:5f:35:76:8c:42:b8:23:c3:b9:14:c3:1c:1d: c0:3d:18:3d:c5:9c:30:a6:c4:d2:70:8e:80:3f:d6: 46:8a:ba:07:61:45:b2:99:f6:4f:c5:56:eb:8d:d2: 8d:4d:bf:07:f6:03:0a:a2:c2:5f:e9:eb:28:f3:c5: c3:b1:2c:f2:16:67:20:0a:1a:12:54:3f:6b:e1:82: 74:23:2e:f7:84:8d:9b:21:db:38:6c:08:78:ff:3d: db:ee:93:49:27:42:57:8a:27:9d:fc:13:04:de:22: e0:99:f6:f6:33:ab:85:90:66:a7:4f:ef:52:c0:4a: a0:ea:ae:bb:22:71:18:69:a4:89:d9:05:e2:92:2c: bf:c9:a9:61:8e:ff:fc:36:9a:62:1d:ef:38:cf:d0: 89:c1:b7:7a:4e:bb:47:54:78:8d:f6:53:b7:7c:9f: c3:d2:dc:53:46:fe:f2:95:a2:d1:e4:7b:c8:78:2a: 8d:8e:ab:3a:d0:c4:26:ff:e4:6f:9e:54:6f:97:8b: 6c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:50:87:F9:40:19:2B:A1:D1:A6:DF:6F:F7:24:67:23:03:02:44:19 X509v3 Authority Key Identifier: keyid:8F:70:16:DA:22:F2:96:4B:56:F4:2C:F4:6D:9F:12:3A:F3:68:31:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91884A1/D7DB1C60149E11EEABDC7532C4F9AE02/j3AW2iLylktW9Cz0bZ8SOvNoMas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j3AW2iLylktW9Cz0bZ8SOvNoMas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91884A1/D7DB1C60149E11EEABDC7532C4F9AE02/87695D32591811EE973B1058C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.56.140.0/23 Signature Algorithm: sha256WithRSAEncryption 85:92:2f:16:fc:17:55:ab:c2:ba:8d:9f:64:cd:6f:a7:cd:55: 06:1a:64:67:36:10:86:88:82:29:78:8b:c7:3b:22:7d:67:cb: 3a:64:01:98:b8:79:db:13:11:48:52:25:18:bb:fd:52:50:34: 8a:52:8f:a2:30:f7:04:67:94:89:88:cd:c2:4a:63:88:3f:d3: f3:b7:ef:d9:98:6f:c5:d0:b4:56:e2:ae:bb:60:cd:e3:61:ff: c1:e6:6b:ec:39:38:bd:ee:20:1f:1f:9d:c5:98:62:b6:a7:44: 5c:44:1b:ba:94:bf:ca:ab:9a:5a:d2:3b:c6:c7:f0:3c:27:a8: 3a:ea:21:6c:fe:fc:15:42:83:69:0e:19:77:0e:a8:4a:97:0c: b4:96:cc:d0:51:3b:21:fb:24:ee:35:8f:06:4e:bb:a7:5e:d8: 50:8a:d5:30:d9:32:19:fa:cc:04:9a:ca:1c:d0:bf:d7:4d:80: df:a3:3d:ef:29:48:cf:9f:e8:d3:e7:8d:a9:6a:6a:25:89:32: 66:07:05:e4:4a:7d:12:a7:79:fc:f8:c9:db:18:a7:28:80:2b: 5d:93:78:bc:5d:0c:49:13:00:2d:60:74:12:76:8b:19:8d:76: 53:ac:28:f8:37:4c:6f:5d:94:6e:1c:2d:2f:04:a6:9a:43:92: 9d:1a:ef:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg0QTExMTAvBgNVBAUTKDhGNzAxNkRBMjJGMjk2NEI1NkY0MkNGNDZEOUYxMjNB RjM2ODMxQUIwHhcNMjUwNzA5MDQ0MDIzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkZjJiNy1mYTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIb2RAgFpAFUj1rmXH2Eq96x4LMH1dOTKqPz+ynHtqMJHYSjgAisNkLTcj3m HMAhzghp4GnVBPkvUpucpV81doxCuCPDuRTDHB3APRg9xZwwpsTScI6AP9ZGiroH YUWymfZPxVbrjdKNTb8H9gMKosJf6eso88XDsSzyFmcgChoSVD9r4YJ0Iy73hI2b Ids4bAh4/z3b7pNJJ0JXiied/BME3iLgmfb2M6uFkGanT+9SwEqg6q67InEYaaSJ 2QXikiy/yalhjv/8NppiHe84z9CJwbd6TrtHVHiN9lO3fJ/D0txTRv7ylaLR5HvI eCqNjqs60MQm/+RvnlRvl4tsGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFtQh/lA GSuh0abfb/ckZyMDAkQZMB8GA1UdIwQYMBaAFI9wFtoi8pZLVvQs9G2fEjrzaDGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODRBMS9EN0RCMUM2MDE0 OUUxMUVFQUJEQzc1MzJDNEY5QUUwMi9qM0FXMmlMeWxrdFc5Q3owYlo4U092Tm9N YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ozQVcyaUx5bGt0VzlDejBiWjhTT3ZOb01hcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg0QTEvRDdEQjFDNjAxNDlFMTFFRUFCREM3NTMyQzRGOUFFMDIvODc2OTVEMzI1 OTE4MTFFRTk3M0IxMDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHSOIwwDQYJKoZIhvcNAQELBQADggEBAIWSLxb8F1WrwrqN n2TNb6fNVQYaZGc2EIaIgil4i8c7In1nyzpkAZi4edsTEUhSJRi7/VJQNIpSj6Iw 9wRnlImIzcJKY4g/0/O379mYb8XQtFbirrtgzeNh/8Hma+w5OL3uIB8fncWYYran RFxEG7qUv8qrmlrSO8bH8DwnqDrqIWz+/BVCg2kOGXcOqEqXDLSWzNBROyH7JO41 jwZOu6de2FCK1TDZMhn6zASayhzQv9dNgN+jPe8pSM+f6NPnjalqaiWJMmYHBeRK fRKnefz4ydsYpyiAK12TeLxdDEkTAC1gdBJ2ixmNdlOsKPg3TG9dlG4cLS8EpppD kp0a70g= -----END CERTIFICATE-----Generated at Wed Nov 5 22:20:41 2025 by rpki-client