$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/11BAFC08E09911EAB8D3B833C4F9AE02.roa File: 11BAFC08E09911EAB8D3B833C4F9AE02.roa (raw, json) Hash identifier: aQNQHDH++NuHPMuhQ++m65fQNUDwylkPh47sY3kbEIs= Subject key identifier: 74:BF:5D:D1:54:64:D6:85:EC:5C:9A:00:32:C9:32:BB:FC:99:A3:7C Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 3097 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/11BAFC08E09911EAB8D3B833C4F9AE02.roa Signing time: Wed 30 Apr 2025 15:52:48 +0000 ROA not before: Wed 30 Apr 2025 15:52:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17451 IP address blocks: 180.87.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12439 (0x3097) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8, serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 30 15:52:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68124750-ec64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:86:7b:49:f1:a5:dd:30:9a:13:18:72:46:45: 04:0a:a5:e5:5d:11:5e:0f:4a:90:26:30:ec:51:54: 44:bf:57:25:be:ed:2d:e9:28:09:40:07:ee:94:48: 7c:e0:c3:fb:2d:e6:79:c5:e9:08:1d:a4:e8:a3:ec: 27:14:61:49:a3:73:23:da:30:04:02:f7:65:51:da: 3d:95:54:44:e5:8b:07:dc:3d:6a:98:37:52:f7:5d: fb:8e:59:d6:1d:43:7f:7e:de:6a:8d:81:bb:9a:30: 12:1b:24:f2:13:8d:64:6b:46:84:a5:68:8a:fd:15: 4a:5b:51:f0:81:c2:70:39:ff:3c:90:a5:c4:9e:98: 02:44:d4:19:ae:47:44:bf:f2:26:a9:4b:6d:9c:a0: 98:b3:fd:a8:50:67:f4:18:4c:62:54:b8:01:71:1f: b4:30:93:dc:c3:ca:c1:09:72:c3:df:6c:0e:7c:9d: 28:9a:cc:33:37:f1:0c:a5:fe:f2:79:4f:ce:f9:89: 22:46:c4:06:1a:6d:9f:7f:fc:71:4b:c6:1e:30:87: f6:14:2b:48:fd:64:d0:26:82:57:4c:c7:d0:86:ec: 19:c6:77:dc:0a:9f:04:51:5b:b1:a9:6f:31:15:e6: f5:77:28:95:dd:84:15:e2:15:84:52:a1:58:a8:59: 5d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:BF:5D:D1:54:64:D6:85:EC:5C:9A:00:32:C9:32:BB:FC:99:A3:7C X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/11BAFC08E09911EAB8D3B833C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.87.86.0/24 Signature Algorithm: sha256WithRSAEncryption 98:26:bd:a5:44:f2:98:0c:ce:84:fd:e3:d5:c7:d6:07:9d:db: b3:70:79:9b:84:5c:94:8d:71:ab:68:2b:ec:23:c8:62:e0:22: 6f:89:7a:8a:9e:02:1f:13:8d:43:04:76:a7:ab:b1:61:e9:84: b6:39:30:cb:bb:4c:c2:07:34:1b:3e:0f:97:fe:b1:c3:8c:eb: d8:62:6c:21:90:7b:91:a3:16:10:44:d6:da:a2:17:d6:0c:cf: 15:f7:df:12:b6:04:9d:94:64:54:45:4e:7d:37:34:cb:be:5d: 17:a9:91:36:f0:56:8a:e9:be:d4:3f:a8:fa:59:17:e5:78:2b: 62:85:52:43:7b:cb:1b:68:64:6a:f2:e9:cb:72:d2:8a:2f:7e: c2:46:3f:eb:ba:87:6f:19:71:31:c9:3a:c8:ea:a5:d3:fe:0d: 76:c9:17:a5:a8:22:c5:38:6b:ce:d5:c0:fa:f2:a9:10:6b:67: ca:af:41:c1:c2:b9:24:3e:85:c7:f7:1a:65:14:d9:64:6f:22: fb:e0:81:32:69:b4:9d:0e:aa:fc:ed:68:8c:b4:b9:4a:fa:61: 45:68:8b:af:c1:87:86:cc:e7:8b:d2:f5:be:34:5d:92:4a:20: 13:a7:3e:ad:37:f8:ba:86:4c:20:aa:cc:51:fa:fe:0e:1d:23: 67:5f:09:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICMJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjUwNDMwMTU1MjQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNDc1MC1lYzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoZ7SfGl3TCaExhyRkUECqXlXRFeD0qQJjDsUVREv1clvu0t6SgJQAfulEh8 4MP7LeZ5xekIHaToo+wnFGFJo3Mj2jAEAvdlUdo9lVRE5YsH3D1qmDdS9137jlnW HUN/ft5qjYG7mjASGyTyE41ka0aEpWiK/RVKW1HwgcJwOf88kKXEnpgCRNQZrkdE v/ImqUttnKCYs/2oUGf0GExiVLgBcR+0MJPcw8rBCXLD32wOfJ0omswzN/EMpf7y eU/O+YkiRsQGGm2ff/xxS8YeMIf2FCtI/WTQJoJXTMfQhuwZxnfcCp8EUVuxqW8x Feb1dyiV3YQV4hWEUqFYqFldawIDAQABo4IClTCCApEwHQYDVR0OBBYEFHS/XdFU ZNaF7FyaADLJMrv8maN8MB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvMTFCQUZDMDhF MDk5MTFFQUI4RDNCODMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC0V1YwDQYJKoZIhvcNAQELBQADggEBAJgmvaVE8pgMzoT9 49XH1ged27NweZuEXJSNcatoK+wjyGLgIm+JeoqeAh8TjUMEdqersWHphLY5MMu7 TMIHNBs+D5f+scOM69hibCGQe5GjFhBE1tqiF9YMzxX33xK2BJ2UZFRFTn03NMu+ XRepkTbwVorpvtQ/qPpZF+V4K2KFUkN7yxtoZGry6cty0oovfsJGP+u6h28ZcTHJ OsjqpdP+DXbJF6WoIsU4a87VwPryqRBrZ8qvQcHCuSQ+hcf3GmUU2WRvIvvggTJp tJ0OqvztaIy0uUr6YUVoi6/Bh4bM54vS9b40XZJKIBOnPq03+LqGTCCqzFH6/g4d I2dfCdw= -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:16 2025 by rpki-client