$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/B6C4F8787A5911EDB8C4E04FC4F9AE02.roa File: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (raw, json) Hash identifier: WbvHWJpGhR5F5UQEA2wky32hyI5JtD8Tsxw8FwN0LUg= Subject key identifier: 1B:8A:1F:2E:9C:12:05:0B:85:6F:E2:D3:77:2C:B9:C0:4B:44:23:3E Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 021E Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/B6C4F8787A5911EDB8C4E04FC4F9AE02.roa Signing time: Tue 23 Sep 2025 19:23:15 +0000 ROA not before: Tue 23 Sep 2025 19:23:15 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 9555 IP address blocks: 152.91.0.0/16 maxlen: 17 152.91.8.0/24 maxlen: 24 152.91.9.0/24 maxlen: 24 152.91.11.0/24 maxlen: 24 152.91.14.0/24 maxlen: 24 152.91.45.0/24 maxlen: 24 152.91.69.0/24 maxlen: 24 152.91.79.0/24 maxlen: 24 152.91.80.0/24 maxlen: 24 152.91.81.0/24 maxlen: 24 152.91.82.0/24 maxlen: 24 152.91.89.0/24 maxlen: 24 152.91.105.0/24 maxlen: 24 152.91.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA, serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Validity Not Before: Sep 23 19:23:15 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68d2f3a3-f31e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:97:95:8a:5a:ac:42:6e:f4:7a:34:aa:e7:82: dd:ec:f7:e7:88:da:a0:73:08:37:f8:c8:87:c3:3c: 0b:1b:a1:7b:33:3b:d0:3c:6b:e3:18:9b:c1:94:70: 3d:8e:22:d0:89:bc:1f:17:ea:95:77:ba:70:52:ac: 31:bb:03:ca:79:44:c0:45:15:26:b1:4a:d8:16:83: 57:2f:38:40:e1:cf:fa:3e:e6:33:65:1f:dc:c7:7f: 64:86:e3:f8:60:9b:46:e0:b6:2f:80:f8:80:dc:e4: 20:30:29:79:ab:74:eb:ec:17:d6:42:11:26:8a:b2: db:61:6b:70:4d:a8:29:c7:a6:46:44:42:a5:73:5b: 57:5d:ef:89:45:b0:dc:2d:46:21:ce:c6:32:7e:d8: 8d:9a:56:f8:d3:f2:1f:ca:24:9a:fb:4b:4e:f3:17: 5e:bd:20:f1:ea:9e:b0:17:6f:a6:27:9d:4f:d5:06: b6:3b:33:36:c4:60:0b:05:c5:ee:a0:98:8f:f6:c0: 1d:88:a3:47:05:3f:82:84:58:bf:6d:1f:a8:4b:87: 3e:18:66:9b:b1:a0:f7:6f:36:1b:19:9c:fe:2f:f4: aa:4c:18:98:90:57:33:68:1e:df:cd:4b:93:16:9e: d6:d8:40:5e:41:a5:92:78:a9:4c:3d:14:fb:bb:64: a8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:8A:1F:2E:9C:12:05:0B:85:6F:E2:D3:77:2C:B9:C0:4B:44:23:3E X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/B6C4F8787A5911EDB8C4E04FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.91.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:2b:57:08:dc:bf:c3:3e:e1:3b:6e:79:bc:ee:e4:43:cd:1b: 5f:07:ec:73:04:71:65:94:b4:b3:54:d1:50:d4:5e:7a:62:4b: 55:c0:45:c5:bd:bc:89:f0:e0:ae:f4:9d:d0:bc:d7:44:9d:d4: 3e:69:da:17:c5:28:de:0b:b8:21:cc:91:31:a6:59:09:b8:59: 16:7f:32:33:ec:46:1e:e9:5c:dd:38:e2:59:ef:0f:15:9f:87: 8f:3c:5c:72:78:c0:73:15:65:46:50:b2:c5:53:38:ba:36:9d: 08:23:3a:d8:15:f0:4c:d1:53:1f:0d:f8:f3:d7:f1:13:45:d5: 8d:2e:aa:f0:f5:e1:4e:32:75:74:ca:34:22:2d:37:e6:f0:7d: 5f:00:b9:9b:7a:a6:c6:a4:81:b9:80:1c:d5:f0:77:9d:1d:14: 86:4d:0f:22:04:22:bc:58:7d:35:8e:35:a6:b3:75:39:c6:e1: 76:47:91:d1:b8:01:ff:62:60:7d:ff:ba:ca:64:80:f0:c0:6b: 97:22:f0:31:80:5c:e3:15:8f:81:c9:70:50:a8:b4:a3:d1:7f: 2d:09:34:3c:1e:1a:ac:d2:2c:00:c5:d0:72:1e:a8:8c:79:b2: d9:45:d9:f5:c9:30:e5:b3:e1:5d:5c:47:8d:7f:67:22:8f:fa: 26:68:48:0d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUwOTIzMTkyMzE1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQyZjNhMy1mMzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55eVilqsQm70ejSq54Ld7PfniNqgcwg3+MiHwzwLG6F7MzvQPGvjGJvBlHA9 jiLQibwfF+qVd7pwUqwxuwPKeUTARRUmsUrYFoNXLzhA4c/6PuYzZR/cx39khuP4 YJtG4LYvgPiA3OQgMCl5q3Tr7BfWQhEmirLbYWtwTagpx6ZGREKlc1tXXe+JRbDc LUYhzsYyftiNmlb40/IfyiSa+0tO8xdevSDx6p6wF2+mJ51P1Qa2OzM2xGALBcXu oJiP9sAdiKNHBT+ChFi/bR+oS4c+GGabsaD3bzYbGZz+L/SqTBiYkFczaB7fzUuT Fp7W2EBeQaWSeKlMPRT7u2SooQIDAQABo4IClDCCApAwHQYDVR0OBBYEFBuKHy6c EgULhW/i03csucBLRCM+MB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQwQUEvMkM3NUZFQzg3QTNDMTFFRDg2MUIyOTMzQzRGOUFFMDIvQjZDNEY4Nzg3 QTU5MTFFREI4QzRFMDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCYWzANBgkqhkiG9w0BAQsFAAOCAQEAiCtXCNy/wz7hO255 vO7kQ80bXwfscwRxZZS0s1TRUNReemJLVcBFxb28ifDgrvSd0LzXRJ3UPmnaF8Uo 3gu4IcyRMaZZCbhZFn8yM+xGHulc3TjiWe8PFZ+HjzxccnjAcxVlRlCyxVM4ujad CCM62BXwTNFTHw3489fxE0XVjS6q8PXhTjJ1dMo0Ii035vB9XwC5m3qmxqSBuYAc 1fB3nR0Uhk0PIgQivFh9NY41prN1OcbhdkeR0bgB/2Jgff+6ymSA8MBrlyLwMYBc 4xWPgclwUKi0o9F/LQk0PB4arNIsAMXQch6ojHmy2UXZ9ckw5bPhXVxHjX9nIo/6 JmhIDQ== -----END CERTIFICATE-----Generated at Wed Nov 5 18:01:13 2025 by rpki-client