$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa File: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (raw, json) Hash identifier: WoeJPfBlNid7RydzbYK1jVf1zbozvuQMQ+6wRuDKrQE= Subject key identifier: 3A:E4:71:5F:FD:6B:8C:81:4D:32:41:88:42:66:EB:CA:09:83:69:F9 Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 0584 Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:05:36 +0000 ROA not before: Sun 03 Aug 2025 00:05:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134550 IP address blocks: 45.123.200.0/22 maxlen: 22 45.123.200.0/24 maxlen: 24 45.123.201.0/24 maxlen: 24 45.123.202.0/24 maxlen: 24 45.123.203.0/24 maxlen: 24 103.192.44.0/22 maxlen: 22 103.192.44.0/24 maxlen: 24 103.192.45.0/24 maxlen: 24 103.192.46.0/24 maxlen: 24 103.192.47.0/24 maxlen: 24 2402:9280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Aug 3 00:05:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688ea7cf-bcb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c8:34:df:33:e5:7c:99:01:5b:c7:00:a4:b8: 38:84:87:11:6e:4e:85:95:03:2b:00:d5:28:3b:f7: 92:fe:49:58:af:5e:54:74:21:23:99:9f:64:9c:e3: e5:cc:d5:27:f2:c2:dd:29:9a:79:31:a4:1b:99:38: 66:ea:e9:0a:40:5f:e9:b4:f7:a2:ab:cb:7c:98:ec: 68:fe:c8:90:8e:ea:88:e1:86:8d:a6:0f:51:bc:07: 55:95:58:ff:53:c6:d6:ca:bf:c3:25:4b:24:10:8a: 4e:3a:49:32:87:6c:be:ed:13:e8:19:42:a9:79:01: fd:53:32:b2:08:a5:da:b4:c0:94:60:ef:af:31:24: a8:7c:a5:74:34:aa:e5:4b:48:63:e5:3c:dd:d9:ca: 90:d4:92:c6:e2:42:e4:5a:13:ff:46:18:f6:ab:7d: aa:5c:2f:63:68:4f:fe:88:fc:05:05:49:62:30:25: 32:d7:a5:60:37:69:e7:2a:b5:b4:5b:2d:7a:8e:ed: 52:a6:b3:95:39:8d:84:68:e8:27:25:59:c6:68:f9: 66:71:0c:d0:77:5b:90:3e:1f:71:79:4a:9a:e6:4a: 58:cc:b5:b4:d4:da:31:5e:58:d5:5b:7d:e2:b5:b0: dc:1c:58:ad:d0:07:47:56:36:5c:f7:0e:46:db:80: 01:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E4:71:5F:FD:6B:8C:81:4D:32:41:88:42:66:EB:CA:09:83:69:F9 X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.123.200.0/22 103.192.44.0/22 IPv6: 2402:9280::/32 Signature Algorithm: sha256WithRSAEncryption 78:e1:31:d7:5d:fa:dc:d0:d4:cc:b9:fb:e0:b3:8b:fa:f5:3b: 4e:74:0d:e0:d0:c0:8c:1c:6d:23:33:a2:3c:80:79:13:b9:32: 6b:67:35:42:e2:e6:cb:3a:6a:69:a5:05:eb:84:e3:1b:8a:b7: 2d:55:9c:8a:a4:1e:d2:b9:3b:38:60:95:58:d6:43:71:41:11: 4a:41:f8:5f:1b:3e:4a:e6:45:2e:41:61:10:7c:9f:c5:e9:fe: 35:3a:f0:5f:15:56:45:a9:b5:a7:7b:aa:21:67:8c:e8:55:66: 65:0a:bc:c6:92:a0:e1:9d:13:5c:17:83:e6:fd:8e:b2:e8:ae: be:eb:ed:80:21:42:46:99:ca:92:4c:78:6c:4a:a2:9d:64:ae: 19:35:e5:2f:c1:e1:ee:0f:2a:c7:e9:40:86:d0:fe:f8:35:3b: 1b:43:8e:e3:eb:70:27:63:43:c4:a2:39:f7:72:3f:df:8d:7c: a8:91:c8:4f:71:7b:01:dd:1a:0c:c8:6e:a6:d6:3a:60:2a:70: 17:44:ef:68:52:df:4d:21:1d:6d:83:f3:60:9e:a9:a5:8b:e3: 56:16:14:c9:53:65:3c:05:83:a3:14:d0:71:41:bd:61:67:15: 54:d8:7c:d9:31:63:1d:ea:d1:65:95:38:c3:63:63:0f:a2:f3: 4c:c1:c8:41 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjUwODAzMDAwNTM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTdjZi1iY2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycg03zPlfJkBW8cApLg4hIcRbk6FlQMrANUoO/eS/klYr15UdCEjmZ9knOPl zNUn8sLdKZp5MaQbmThm6ukKQF/ptPeiq8t8mOxo/siQjuqI4YaNpg9RvAdVlVj/ U8bWyr/DJUskEIpOOkkyh2y+7RPoGUKpeQH9UzKyCKXatMCUYO+vMSSofKV0NKrl S0hj5Tzd2cqQ1JLG4kLkWhP/Rhj2q32qXC9jaE/+iPwFBUliMCUy16VgN2nnKrW0 Wy16ju1SprOVOY2EaOgnJVnGaPlmcQzQd1uQPh9xeUqa5kpYzLW01NoxXljVW33i tbDcHFit0AdHVjZc9w5G24ABKQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDrkcV/9 a4yBTTJBiEJm68oJg2n5MB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI4RUIvNzcxNDhBQzZFQjA5MTFFQjlDNzU5MTgwQzRGOUFFMDIvOEU5MEFBMDJF QjBCMTFFQkEwQjZERDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIte8gDBAJnwCwwDQQCAAIwBwMFACQCkoAwDQYJKoZIhvcN AQELBQADggEBAHjhMddd+tzQ1My5++Czi/r1O050DeDQwIwcbSMzojyAeRO5Mmtn NULi5ss6ammlBeuE4xuKty1VnIqkHtK5OzhglVjWQ3FBEUpB+F8bPkrmRS5BYRB8 n8Xp/jU68F8VVkWptad7qiFnjOhVZmUKvMaSoOGdE1wXg+b9jrLorr7r7YAhQkaZ ypJMeGxKop1krhk15S/B4e4PKsfpQIbQ/vg1OxtDjuPrcCdjQ8SiOfdyP9+NfKiR yE9xewHdGgzIbqbWOmAqcBdE72hS300hHW2D82CeqaWL41YWFMlTZTwFg6MU0HFB vWFnFVTYfNkxYx3q0WWVOMNjYw+i80zByEE= -----END CERTIFICATE-----Generated at Sun Aug 10 18:50:44 2025 by rpki-client