$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/87F2D334F2D811EC8F663D52C4F9AE02.roa File: 87F2D334F2D811EC8F663D52C4F9AE02.roa (raw, json) Hash identifier: HbDsx8wK6DOfRunn3fkb89gQPdtEbiGqu2/NfV9cVcw= Subject key identifier: 54:F5:A3:0C:6A:75:91:E5:27:CC:61:30:33:49:A1:40:5E:77:09:70 Certificate issuer: /CN=A91BA5BA/serialNumber=02AA3A76C459497B1B45F26E9044ACC6F2E8044F Certificate serial: 0434 Authority key identifier: 02:AA:3A:76:C4:59:49:7B:1B:45:F2:6E:90:44:AC:C6:F2:E8:04:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/87F2D334F2D811EC8F663D52C4F9AE02.roa Signing time: Tue 19 May 2026 00:31:15 +0000 ROA not before: Tue 19 May 2026 00:31:15 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 131329 IP address blocks: 202.88.42.0/24 maxlen: 24 2400:1560:6::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.crl rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA5BA, serialNumber=02AA3A76C459497B1B45F26E9044ACC6F2E8044F Validity Not Before: May 19 00:31:15 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a0baf53-e4b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3b:e4:dc:61:4a:4c:89:08:7d:e7:a3:5e:e6: 3d:a0:22:f4:a8:bc:34:ba:f0:48:f2:b0:45:ec:36: 76:70:e0:65:ee:6b:7d:53:e4:ab:f2:79:b5:e7:01: a1:4c:e9:c9:42:5a:66:9a:06:4d:0c:42:09:49:ae: e5:ee:f2:5d:bc:f5:69:56:03:8b:0d:06:63:d3:49: ae:8a:a5:65:a3:24:b9:65:ea:76:40:28:66:a0:f2: 0c:40:bc:a0:1e:57:8f:43:03:1e:22:21:0a:26:5b: ce:90:20:19:ab:64:17:14:7f:37:ca:d9:64:69:14: f1:57:9b:d0:4c:96:dd:60:c4:52:81:82:fc:6a:0d: 8e:23:84:93:1a:4d:19:60:16:68:12:70:26:bc:ac: 6a:4b:b1:21:22:fd:09:fd:a7:87:9d:6f:b7:43:11: 54:8a:2e:15:46:34:e2:11:7c:be:3f:b1:e8:79:ae: d2:d1:b1:d2:49:e0:ce:a2:46:00:55:e0:e0:22:1f: 49:85:20:93:26:21:89:82:bf:3b:37:f4:ff:3a:3f: 66:27:57:91:72:e4:a8:02:b1:92:c2:6d:01:c6:3f: f7:35:09:f5:19:b3:34:25:d0:1b:6b:93:ad:18:4c: c6:17:ff:8e:4b:42:17:3f:d1:dd:ea:09:96:d0:07: 5c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F5:A3:0C:6A:75:91:E5:27:CC:61:30:33:49:A1:40:5E:77:09:70 X509v3 Authority Key Identifier: keyid:02:AA:3A:76:C4:59:49:7B:1B:45:F2:6E:90:44:AC:C6:F2:E8:04:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/Aqo6dsRZSXsbRfJukESsxvLoBE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aqo6dsRZSXsbRfJukESsxvLoBE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA5BA/4326CBC0B7CD11ECAF681335C4F9AE02/87F2D334F2D811EC8F663D52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.88.42.0/24 IPv6: 2400:1560:6::/64 Signature Algorithm: sha256WithRSAEncryption 5d:ba:b3:3d:2f:11:0d:cd:5a:e3:16:5a:c7:c3:f9:a2:0b:a4: 23:7d:06:c1:96:f1:ae:e3:e6:ce:e6:d1:1b:45:10:07:0b:9a: 12:1f:0d:cd:d0:6e:4f:5a:73:1f:4d:99:90:0a:88:0a:56:0e: f8:21:9e:c9:94:a5:37:43:2d:b4:a5:c4:d6:e1:6b:a2:5e:77: f3:da:e7:86:92:d3:b2:72:4b:c8:a4:cf:91:f7:26:f3:4a:80: e2:cb:fe:24:60:4a:06:a3:e4:c5:33:8a:b3:ca:f4:24:34:a0: bd:46:de:d8:0c:45:e1:3e:c1:4b:74:8b:4c:80:0b:8a:1e:1f: 8f:5a:87:af:92:05:0f:e4:24:f4:4a:e3:1b:8b:ac:73:ef:2b: 78:44:19:23:2a:cb:85:cc:a4:b5:11:60:fe:32:ca:5d:4a:7f: 10:82:e2:88:bd:de:8b:c5:be:1d:18:82:6e:b2:57:4b:5a:ea: c7:1b:f9:6f:db:0e:72:20:47:f1:23:2e:b7:36:a7:85:6a:14: 75:e7:0f:55:27:9d:d8:5b:17:9b:44:7e:2a:7e:35:2b:a1:06: 07:da:27:38:66:17:d4:20:34:52:57:6f:6c:e3:ea:b4:5d:51: 2d:c9:d9:cd:40:54:e8:10:ee:f2:cc:59:a4:0b:a9:b2:67:e2: 88:99:0c:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE1QkExMTAvBgNVBAUTKDAyQUEzQTc2QzQ1OTQ5N0IxQjQ1RjI2RTkwNDRBQ0M2 RjJFODA0NEYwHhcNMjYwNTE5MDAzMTE1WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTBiYWY1My1lNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzvk3GFKTIkIfeejXuY9oCL0qLw0uvBI8rBF7DZ2cOBl7mt9U+Sr8nm15wGh TOnJQlpmmgZNDEIJSa7l7vJdvPVpVgOLDQZj00muiqVloyS5Zep2QChmoPIMQLyg HlePQwMeIiEKJlvOkCAZq2QXFH83ytlkaRTxV5vQTJbdYMRSgYL8ag2OI4STGk0Z YBZoEnAmvKxqS7EhIv0J/aeHnW+3QxFUii4VRjTiEXy+P7Hoea7S0bHSSeDOokYA VeDgIh9JhSCTJiGJgr87N/T/Oj9mJ1eRcuSoArGSwm0Bxj/3NQn1GbM0JdAba5Ot GEzGF/+OS0IXP9Hd6gmW0AdcxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFT1owxq dZHlJ8xhMDNJoUBedwlwMB8GA1UdIwQYMBaAFAKqOnbEWUl7G0XybpBErMby6ARP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTVCQS80MzI2Q0JDMEI3 Q0QxMUVDQUY2ODEzMzVDNEY5QUUwMi9BcW82ZHNSWlNYc2JSZkp1a0VTc3h2TG9C RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FxbzZkc1JaU1hzYlJmSnVrRVNzeHZMb0JFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE1QkEvNDMyNkNCQzBCN0NEMTFFQ0FGNjgxMzM1QzRGOUFFMDIvODdGMkQzMzRG MkQ4MTFFQzhGNjYzRDUyQzRGOUFFMDIucm9hMDIGCCsGAQUFBwEHAQH/BCMwITAM BAIAATAGAwQAylgqMBEEAgACMAsDCQAkABVgAAYAADANBgkqhkiG9w0BAQsFAAOC AQEAXbqzPS8RDc1a4xZax8P5ogukI30GwZbxruPmzubRG0UQBwuaEh8NzdBuT1pz H02ZkAqIClYO+CGeyZSlN0MttKXE1uFrol5389rnhpLTsnJLyKTPkfcm80qA4sv+ JGBKBqPkxTOKs8r0JDSgvUbe2AxF4T7BS3SLTIALih4fj1qHr5IFD+Qk9ErjG4us c+8reEQZIyrLhcyktRFg/jLKXUp/EILiiL3ei8W+HRiCbrJXS1rqxxv5b9sOciBH 8SMutzanhWoUdecPVSed2FsXm0R+Kn41K6EGB9onOGYX1CA0UldvbOPqtF1RLcnZ zUBU6BDu8sxZpAupsmfiiJkMzg== -----END CERTIFICATE-----Generated at Sat Jun 13 11:13:13 2026 by rpki-client