$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa File: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (raw, json) Hash identifier: K6mpYvGc1dNzqDYK7t7bO8YJTKrANw24vNvUXER9d0Q= Subject key identifier: 45:0B:D0:3B:2F:BB:32:B7:C4:70:05:36:C6:A0:3A:F7:CF:E0:20:B9 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 3795 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:28:45 +0000 ROA not before: Sat 22 Mar 2025 15:01:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141361 IP address blocks: 119.157.80.0/24 maxlen: 24 119.157.81.0/24 maxlen: 24 119.157.82.0/24 maxlen: 24 119.157.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14229 (0x3795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4855d-af89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:6c:96:1a:56:56:b8:84:dc:b3:7b:34:32: 8f:0b:9b:88:97:20:be:9c:45:4c:d3:8b:1a:e1:50: 92:a4:ed:c4:6b:67:ce:cb:cf:d0:71:3f:c7:f9:62: 44:aa:af:44:2d:d7:d9:dd:76:4a:88:96:3d:50:6e: c1:68:9a:50:c8:15:40:0a:8c:ec:6c:f5:93:00:13: e0:fe:74:c9:70:db:0c:77:8f:de:df:0f:ed:5c:44: 13:df:9e:a3:2f:09:e2:eb:79:65:91:03:3f:5b:1e: fb:0e:16:47:8e:df:53:01:c1:e7:10:f7:2c:f3:f2: e9:39:02:40:43:68:ed:92:a3:10:f1:68:85:5d:0f: 75:8c:86:44:26:16:0a:db:d2:e1:93:d4:94:a4:d2: 8e:a0:96:1b:3e:8c:2e:94:df:7a:d7:fc:f6:84:49: 13:fe:65:a5:ed:c7:2d:8c:a8:40:ab:57:d9:14:9d: 39:b1:87:09:a6:c3:6e:81:31:50:a5:ff:6c:3b:1f: c3:1c:47:67:36:43:6b:10:cf:31:15:82:60:7d:74: de:07:6d:92:bb:7e:8b:4b:37:f3:db:dd:17:da:d0: 81:90:82:29:f1:13:60:a7:29:4a:52:8b:86:ed:c1: 85:b7:7a:c9:e0:df:dd:bd:db:e1:63:0b:da:61:ed: 83:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0B:D0:3B:2F:BB:32:B7:C4:70:05:36:C6:A0:3A:F7:CF:E0:20:B9 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.157.80.0/22 Signature Algorithm: sha256WithRSAEncryption a3:58:3f:aa:4f:4c:1e:6b:a3:cb:88:bc:65:06:75:2b:2e:f4: 44:4d:99:e2:4a:7e:d7:11:ee:23:57:e4:7b:4a:ec:52:fe:d9: 04:3a:70:98:ec:09:54:80:34:c6:84:a6:aa:1f:f3:65:aa:1c: f3:69:6c:0b:97:14:68:cd:59:42:b3:b5:f0:ed:8c:e0:59:44: be:11:ba:ad:af:97:8b:08:2d:66:ad:05:cb:59:23:2e:96:e4: 08:b8:1f:dc:6d:7f:5b:f5:71:78:41:1c:b6:2d:95:70:fd:95: cb:7d:67:55:8b:26:ba:74:a4:31:40:f1:44:45:f9:28:b4:fd: 25:2b:d0:65:8e:0f:b4:6f:03:3a:b0:38:07:5c:7a:2b:36:36: fe:fc:de:34:59:22:87:b0:d9:52:2e:6d:0d:37:f0:f5:e7:8d: 1b:90:3f:d6:83:3a:11:0e:79:f9:76:9a:ca:f0:28:0f:ac:d1: ff:05:36:77:f0:75:20:58:3b:97:ce:10:93:a6:12:4b:c8:7e: 71:af:3a:b5:82:0f:be:a9:e1:c0:ab:51:2a:0b:d4:9f:5b:9e: 9d:28:99:d1:7a:d4:9a:bf:4e:4b:f3:e8:51:05:b0:d4:27:0d: 5c:45:57:cd:08:89:86:65:72:69:e1:48:ef:d7:1e:f8:c7:4c: ee:de:d5:05 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICN5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTA4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODU1ZC1hZjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrZslhpWVriE3LN7NDKPC5uIlyC+nEVM04sa4VCSpO3Ea2fOy8/QcT/H+WJE qq9ELdfZ3XZKiJY9UG7BaJpQyBVACozsbPWTABPg/nTJcNsMd4/e3w/tXEQT356j Lwni63llkQM/Wx77DhZHjt9TAcHnEPcs8/LpOQJAQ2jtkqMQ8WiFXQ91jIZEJhYK 29Lhk9SUpNKOoJYbPowulN961/z2hEkT/mWl7cctjKhAq1fZFJ05sYcJpsNugTFQ pf9sOx/DHEdnNkNrEM8xFYJgfXTeB22Su36LSzfz290X2tCBkIIp8RNgpylKUouG 7cGFt3rJ4N/dvdvhYwvaYe2DIQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEUL0Dsv uzK3xHAFNsagOvfP4CC5MB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvQjg5QkE3MjA5 N0Q3MTFFQkE4QjhCQTJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCd51QMA0GCSqGSIb3DQEBCwUAA4IBAQCjWD+qT0wea6PLiLxlBnUr LvRETZniSn7XEe4jV+R7SuxS/tkEOnCY7AlUgDTGhKaqH/NlqhzzaWwLlxRozVlC s7Xw7YzgWUS+Ebqtr5eLCC1mrQXLWSMuluQIuB/cbX9b9XF4QRy2LZVw/ZXLfWdV iya6dKQxQPFERfkotP0lK9Bljg+0bwM6sDgHXHorNjb+/N40WSKHsNlSLm0NN/D1 540bkD/WgzoRDnn5dprK8CgPrNH/BTZ38HUgWDuXzhCTphJLyH5xrzq1gg++qeHA q1EqC9SfW56dKJnRetSav05L8+hRBbDUJw1cRVfNCImGZXJp4Ujv1x74x0zu3tUF -----END CERTIFICATE-----Generated at Mon Mar 2 09:42:09 2026 by rpki-client