$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa File: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (raw, json) Hash identifier: RZHpITklMqhnuO90bEeP3i7RWRtO5TJRoQwAU5BGgUs= Subject key identifier: B1:A1:53:42:45:76:E3:6F:42:39:95:0A:96:39:87:9D:31:7C:8B:35 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36C0 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa Signing time: Sat 22 Mar 2025 15:01:08 +0000 ROA not before: Sat 22 Mar 2025 15:01:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141361 IP address blocks: 119.157.80.0/24 maxlen: 24 119.157.81.0/24 maxlen: 24 119.157.82.0/24 maxlen: 24 119.157.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14016 (0x36c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0b4-0742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:66:f1:80:61:8f:97:ac:55:f4:83:cf:35:61: 09:1a:49:31:09:fc:e0:c0:a8:fe:d3:d3:a8:a7:b0: 55:eb:11:61:50:c3:c8:6f:05:1a:fb:00:26:e8:6f: 22:78:80:ad:be:24:ac:57:99:8c:62:f0:94:0c:80: 84:2d:63:e4:7c:e5:bd:78:b4:d6:02:0b:19:c4:9d: a2:97:3f:2c:08:c4:9f:aa:03:72:f7:f4:5e:6a:65: a0:e0:7e:e0:f1:ec:c2:05:66:d8:ca:ad:f0:6d:3e: 67:33:81:26:48:14:c5:4a:79:fc:cc:b6:ca:7b:3b: 8b:e9:41:a0:0a:22:91:61:32:94:a9:2a:23:17:3f: a3:7d:11:20:b1:06:c8:2c:e4:9b:04:d2:bb:8e:e5: bd:41:51:49:7c:d3:16:11:05:fe:c9:c2:41:cc:47: d0:6a:af:7c:9b:73:0d:32:ee:63:bb:03:46:a0:53: 7f:2c:82:69:fb:01:c4:ac:a7:38:59:21:d1:03:07: dc:45:3d:1d:57:61:1d:08:11:77:42:6b:9d:4a:c5: e7:bf:30:20:8f:da:50:f6:cf:93:47:40:bf:06:fc: 4e:13:45:39:d0:91:45:0e:b6:ff:db:f5:2d:c0:dd: 06:37:24:f6:33:db:50:39:47:63:dd:4f:08:39:f4: cd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A1:53:42:45:76:E3:6F:42:39:95:0A:96:39:87:9D:31:7C:8B:35 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.157.80.0/22 Signature Algorithm: sha256WithRSAEncryption 20:73:56:f6:b0:23:cf:f1:6a:7c:03:48:12:10:10:a1:bf:3e: 36:84:7c:32:ee:b9:d5:e5:ca:bd:8f:41:9c:fb:9f:57:4e:98: e8:9d:67:e3:14:b8:0b:b2:ba:ce:b2:07:94:b7:c8:4a:a7:66: d9:79:98:18:3d:04:66:79:e1:92:73:9d:09:90:4a:f7:36:87: c4:d1:8a:c7:90:1a:8b:46:4a:c2:45:e6:82:33:f5:f3:0e:eb: 38:9d:25:31:95:12:c6:42:ec:9a:0e:14:bc:f3:26:93:7c:31: 38:a9:5a:25:54:af:4f:3b:55:c0:65:bf:ca:45:cf:f9:56:26: ab:d3:bc:78:b8:03:74:89:bc:46:d9:9a:d1:d0:bc:e4:ca:d3: 43:3b:af:b6:6f:d4:b9:b9:a8:b5:5d:9a:30:91:60:a2:8a:f4: 1a:c3:fc:a1:d5:de:b9:d2:8b:c0:68:07:6a:16:d0:00:4b:9e: 97:2b:1e:d1:fc:a6:f1:46:e7:33:a5:65:43:d9:29:14:c7:9a: c1:ef:13:c4:f9:b0:98:ea:d4:f7:33:32:2a:ce:a9:0f:18:41: ba:8c:94:23:69:8d:c5:dc:9b:60:26:c0:f0:f8:dd:8f:cf:c9: dd:c8:29:64:38:f8:c7:f4:f7:55:03:46:d4:ba:68:bc:81:72: e8:d9:4a:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTA4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBiNC0wNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGbxgGGPl6xV9IPPNWEJGkkxCfzgwKj+09Oop7BV6xFhUMPIbwUa+wAm6G8i eICtviSsV5mMYvCUDICELWPkfOW9eLTWAgsZxJ2ilz8sCMSfqgNy9/ReamWg4H7g 8ezCBWbYyq3wbT5nM4EmSBTFSnn8zLbKezuL6UGgCiKRYTKUqSojFz+jfREgsQbI LOSbBNK7juW9QVFJfNMWEQX+ycJBzEfQaq98m3MNMu5juwNGoFN/LIJp+wHErKc4 WSHRAwfcRT0dV2EdCBF3QmudSsXnvzAgj9pQ9s+TR0C/BvxOE0U50JFFDrb/2/Ut wN0GNyT2M9tQOUdj3U8IOfTNWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLGhU0JF duNvQjmVCpY5h50xfIs1MB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvQjg5QkE3MjA5 N0Q3MTFFQkE4QjhCQTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ3nVAwDQYJKoZIhvcNAQELBQADggEBACBzVvawI8/xanwD SBIQEKG/PjaEfDLuudXlyr2PQZz7n1dOmOidZ+MUuAuyus6yB5S3yEqnZtl5mBg9 BGZ54ZJznQmQSvc2h8TRiseQGotGSsJF5oIz9fMO6zidJTGVEsZC7JoOFLzzJpN8 MTipWiVUr087VcBlv8pFz/lWJqvTvHi4A3SJvEbZmtHQvOTK00M7r7Zv1Lm5qLVd mjCRYKKK9BrD/KHV3rnSi8BoB2oW0ABLnpcrHtH8pvFG5zOlZUPZKRTHmsHvE8T5 sJjq1PczMirOqQ8YQbqMlCNpjcXcm2AmwPD43Y/Pyd3IKWQ4+Mf091UDRtS6aLyB cujZSk0= -----END CERTIFICATE-----Generated at Wed Nov 5 17:56:47 2025 by rpki-client