$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/584BBFB03B7811F099AF3F55C4F9AE02.roa File: 584BBFB03B7811F099AF3F55C4F9AE02.roa (raw, json) Hash identifier: jPnHx/VwrEHzMcIk6hG/2vteGtB6XZZVA832ptEHOy8= Subject key identifier: 85:78:B0:A0:91:88:52:11:F0:83:08:D6:EA:EA:00:25:92:27:F6:78 Certificate issuer: /CN=A91BBA4F/serialNumber=E7F419251A7961DF274D39B534A22F3ECDB3102F Certificate serial: 02 Authority key identifier: E7:F4:19:25:1A:79:61:DF:27:4D:39:B5:34:A2:2F:3E:CD:B3:10:2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/584BBFB03B7811F099AF3F55C4F9AE02.roa Signing time: Wed 28 May 2025 04:00:51 +0000 ROA not before: Wed 28 May 2025 04:00:51 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152583 IP address blocks: 157.20.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA4F, serialNumber=E7F419251A7961DF274D39B534A22F3ECDB3102F Validity Not Before: May 28 04:00:51 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68368a73-c641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b0:a1:da:ed:35:7b:08:eb:63:ac:c5:b0:c0: 29:b0:8f:9a:64:03:19:71:38:d3:4f:90:86:b8:c7: e2:f9:62:32:d4:56:80:98:6f:d9:9c:37:5a:fd:cf: 1d:17:96:e4:61:57:e2:c9:1f:f9:f4:37:93:32:08: 6e:08:b7:1b:a9:01:23:62:7e:a1:9a:7c:cc:ee:5a: 21:50:d3:73:1c:48:19:72:00:b1:55:99:5e:76:87: f2:44:5d:48:48:a3:6b:ed:f5:e3:29:7d:dd:e4:09: fa:37:1b:1e:da:c5:f7:f0:77:bd:a2:80:19:64:79: 9d:ef:b0:f0:aa:c6:20:71:f5:97:0d:38:2d:96:a7: a5:4d:c0:e0:ee:4c:64:13:88:e9:87:fe:6a:4d:61: 91:3c:b8:3d:16:83:8a:52:b0:3e:5b:23:c9:ff:53: 9d:5a:1e:7a:c8:3f:30:b0:ab:c5:35:de:0d:1d:83: da:09:f1:df:09:0d:d7:ca:82:f1:31:e3:8a:c9:33: 84:59:c9:1d:bb:de:6f:4a:fb:af:a3:a3:c3:5a:5b: 2b:35:e2:e1:ef:1e:28:5f:e2:b9:e0:80:b4:2f:3b: ef:35:70:e9:3d:fe:95:91:d5:b5:09:cb:d9:37:d9: 2b:f5:ff:d3:f6:2b:8f:c4:0a:4a:d6:22:68:44:a3: 56:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:78:B0:A0:91:88:52:11:F0:83:08:D6:EA:EA:00:25:92:27:F6:78 X509v3 Authority Key Identifier: keyid:E7:F4:19:25:1A:79:61:DF:27:4D:39:B5:34:A2:2F:3E:CD:B3:10:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/584BBFB03B7811F099AF3F55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.80.0/23 Signature Algorithm: sha256WithRSAEncryption c1:58:fe:36:d8:9e:4f:55:11:16:80:86:a2:0c:c5:cf:8c:40: dc:fa:19:e6:04:f3:24:9d:35:0a:ec:6b:ba:b3:e8:cc:5c:00: 71:9d:a4:0e:b3:50:68:55:36:17:35:50:c3:14:c0:64:3b:d7: 01:da:54:9d:7d:78:7c:6d:c2:ee:5b:4f:06:ab:28:5c:e5:f1: 74:dc:05:be:67:53:f6:e1:54:ef:7c:f1:fb:7b:dd:63:c8:4e: 2d:7f:c6:84:db:40:4d:bb:44:e0:8e:74:c8:17:38:c7:3d:a6: e6:4a:c8:8c:d6:92:4d:ca:d7:a5:03:90:47:1f:6c:6a:65:71: c2:16:a2:44:60:ed:a7:d7:6d:58:55:a9:7f:68:36:59:a5:0a: 85:0f:1d:d9:bf:54:cc:b4:a2:e7:38:ec:ae:a9:fa:10:22:55: be:1d:1f:55:8b:3c:c4:a2:ca:ca:3d:4f:3a:08:8f:b2:df:eb: e2:dc:15:85:da:50:c3:af:98:25:42:8d:09:7d:a6:04:5d:b1: 89:77:68:0e:fa:17:13:da:91:7d:ca:d6:7e:3c:cf:f1:ad:40: a8:fc:9b:aa:31:f6:1b:cf:e6:15:3e:c2:98:64:1c:72:61:23: a1:4a:a6:d9:1d:b3:14:31:d0:06:db:20:56:65:3f:08:5a:f6: 44:36:49:35 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkE0RjExMC8GA1UEBRMoRTdGNDE5MjUxQTc5NjFERjI3NEQzOUI1MzRBMjJGM0VD REIzMTAyRjAeFw0yNTA1MjgwNDAwNTFaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzY4YTczLWM2NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCysKHa7TV7COtjrMWwwCmwj5pkAxlxONNPkIa4x+L5YjLUVoCYb9mcN1r9zx0X luRhV+LJH/n0N5MyCG4ItxupASNifqGafMzuWiFQ03McSBlyALFVmV52h/JEXUhI o2vt9eMpfd3kCfo3Gx7axffwd72igBlkeZ3vsPCqxiBx9ZcNOC2Wp6VNwODuTGQT iOmH/mpNYZE8uD0Wg4pSsD5bI8n/U51aHnrIPzCwq8U13g0dg9oJ8d8JDdfKgvEx 44rJM4RZyR273m9K+6+jo8NaWys14uHvHihf4rnggLQvO+81cOk9/pWR1bUJy9k3 2Sv1/9P2K4/ECkrWImhEo1bBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhXiwoJGI UhHwgwjW6uoAJZIn9ngwHwYDVR0jBBgwFoAU5/QZJRp5Yd8nTTm1NKIvPs2zEC8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTRGLzRGNDBCRTZDM0I3 NzExRjA5N0E4QkIyNEM0RjlBRTAyLzVfUVpKUnA1WWQ4blRUbTFOS0l2UHMyekVD OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNV9RWkpScDVZZDhuVFRtMU5LSXZQczJ6RUM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkE0Ri80RjQwQkU2QzNCNzcxMUYwOTdBOEJCMjRDNEY5QUUwMi81ODRCQkZCMDNC NzgxMUYwOTlBRjNGNTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0UUDANBgkqhkiG9w0BAQsFAAOCAQEAwVj+NtieT1URFoCG ogzFz4xA3PoZ5gTzJJ01CuxrurPozFwAcZ2kDrNQaFU2FzVQwxTAZDvXAdpUnX14 fG3C7ltPBqsoXOXxdNwFvmdT9uFU73zx+3vdY8hOLX/GhNtATbtE4I50yBc4xz2m 5krIjNaSTcrXpQOQRx9samVxwhaiRGDtp9dtWFWpf2g2WaUKhQ8d2b9UzLSi5zjs rqn6ECJVvh0fVYs8xKLKyj1POgiPst/r4twVhdpQw6+YJUKNCX2mBF2xiXdoDvoX E9qRfcrWfjzP8a1AqPybqjH2G8/mFT7CmGQccmEjoUqm2R2zFDHQBtsgVmU/CFr2 RDZJNQ== -----END CERTIFICATE-----Generated at Wed Nov 5 05:11:39 2025 by rpki-client