$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa File: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (raw, json) Hash identifier: 48+6uM5fDnTMnACjVi51hR8ImGiaIPMtb2QsEfmcA9U= Subject key identifier: 08:5D:98:DD:4F:C4:34:EB:C9:A8:7D:DC:36:DF:7A:E8:3C:07:45:73 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 37D9 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa Signing time: Thu 16 Apr 2026 15:14:39 +0000 ROA not before: Thu 16 Apr 2026 15:14:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 141361 IP address blocks: 119.157.80.0/24 maxlen: 24 119.157.81.0/24 maxlen: 24 119.157.82.0/24 maxlen: 24 119.157.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14297 (0x37d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 16 15:14:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e0fcdf-8fbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f4:89:81:1a:0f:c0:ba:86:63:81:c9:ad:e6: 56:de:60:0f:41:0d:b5:32:a5:54:cd:6e:24:f0:bf: 89:33:76:76:10:ae:26:78:a1:b2:4e:98:66:81:8e: 83:b8:37:fe:ff:de:c4:b1:b2:6f:1c:2d:65:7a:12: 83:e6:49:bd:9a:7f:65:32:88:72:d6:3f:be:8c:d6: d2:6d:32:8e:86:13:28:ed:8d:53:da:27:cd:e1:4d: 06:b5:07:b8:cd:99:c2:48:cc:10:a3:d5:7f:fb:e2: 63:22:18:e8:06:9c:ca:f0:5e:15:0d:77:f4:4a:c3: 4d:6b:96:be:ee:5e:80:e6:ef:71:8b:ce:9d:e5:46: d4:4b:a9:63:bf:03:c5:32:6d:71:6d:58:bd:49:ec: a1:06:92:21:65:92:7a:e9:ee:64:1e:f3:a1:2e:d8: 11:56:43:ac:1b:e0:3d:57:1a:3e:69:16:23:99:e0: 52:fa:32:1c:2f:c7:3f:40:ad:f5:f8:2c:56:04:cf: ff:18:f5:f6:4e:89:fe:5a:67:bd:ed:3b:b1:67:b1: 6a:98:f9:1b:3a:7f:67:e5:5d:75:be:20:02:3c:b3: 0b:1a:65:25:b2:1f:20:6c:c6:0c:8b:64:15:ca:66: 17:91:69:2e:91:48:6f:d5:1f:1c:4b:41:85:8a:7f: 0a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:5D:98:DD:4F:C4:34:EB:C9:A8:7D:DC:36:DF:7A:E8:3C:07:45:73 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/B89BA72097D711EBA8B8BA2AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.157.80.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:9b:c1:58:e5:c6:24:6f:2f:d4:c7:14:f0:b2:6d:f8:49:bb: 0e:75:14:d6:e8:66:d7:5c:61:e6:88:d1:51:76:82:1b:64:c5: 42:01:df:1d:61:df:42:b7:a3:16:e8:5b:ee:0e:59:74:3a:2a: ea:99:15:eb:92:fa:70:e3:f6:bd:34:d0:41:45:c1:36:e9:d4: 7a:03:14:6d:36:3d:42:15:e3:14:5c:29:be:36:ea:ec:48:46: 1d:59:f7:ad:9c:d8:61:f0:71:94:fd:9a:8f:87:f8:74:54:06: f6:49:43:5a:6d:d3:64:da:d1:d2:72:65:91:1f:9b:f2:87:7a: c1:d8:bc:94:99:9d:f9:9c:7f:99:51:e4:de:e9:93:cf:bb:85: 1f:01:bd:5d:64:a7:52:70:90:83:aa:2c:5f:dd:d4:f0:c4:de: 51:31:af:e9:93:ab:7e:b6:b1:ca:98:fb:62:c2:e7:7b:72:f4: c7:71:ce:dc:3c:63:85:9f:59:69:d3:81:9f:ea:7e:fd:d7:f0: 1f:13:a6:56:3a:a2:58:07:27:92:e0:aa:4a:5a:05:97:95:08: 3f:8d:77:70:70:d2:0b:9e:81:6d:57:b6:c4:97:95:58:e4:49: 5e:11:d8:80:4d:c0:c3:fd:2c:d8:c8:bc:17:e2:bc:b1:67:9c: 18:87:cb:96 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICN9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjYwNDE2MTUxNDM5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWUwZmNkZi04ZmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPSJgRoPwLqGY4HJreZW3mAPQQ21MqVUzW4k8L+JM3Z2EK4meKGyTphmgY6D uDf+/97EsbJvHC1lehKD5km9mn9lMohy1j++jNbSbTKOhhMo7Y1T2ifN4U0GtQe4 zZnCSMwQo9V/++JjIhjoBpzK8F4VDXf0SsNNa5a+7l6A5u9xi86d5UbUS6ljvwPF Mm1xbVi9SeyhBpIhZZJ66e5kHvOhLtgRVkOsG+A9Vxo+aRYjmeBS+jIcL8c/QK31 +CxWBM//GPX2Ton+Wme97TuxZ7FqmPkbOn9n5V11viACPLMLGmUlsh8gbMYMi2QV ymYXkWkukUhv1R8cS0GFin8KMwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAhdmN1P xDTryah93Dbfeug8B0VzMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvQjg5QkE3MjA5 N0Q3MTFFQkE4QjhCQTJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCd51QMA0GCSqGSIb3DQEBCwUAA4IBAQB7m8FY5cYkby/UxxTwsm34 SbsOdRTW6GbXXGHmiNFRdoIbZMVCAd8dYd9Ct6MW6FvuDll0OirqmRXrkvpw4/a9 NNBBRcE26dR6AxRtNj1CFeMUXCm+NursSEYdWfetnNhh8HGU/ZqPh/h0VAb2SUNa bdNk2tHScmWRH5vyh3rB2LyUmZ35nH+ZUeTe6ZPPu4UfAb1dZKdScJCDqixf3dTw xN5RMa/pk6t+trHKmPtiwud7cvTHcc7cPGOFn1lp04Gf6n791/AfE6ZWOqJYByeS 4KpKWgWXlQg/jXdwcNILnoFtV7bEl5VY5EleEdiATcDD/SzYyLwX4ryxZ5wYh8uW -----END CERTIFICATE-----Generated at Fri Apr 17 06:08:47 2026 by rpki-client