$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/885A3B4C198C11EEA06C1429C4F9AE02.roa File: 885A3B4C198C11EEA06C1429C4F9AE02.roa (raw, json) Hash identifier: UwbxqlIoeWN/uj0INOlxAStWat7EJVu9aWA6OuSDC9Q= Subject key identifier: 1A:8A:96:0C:1F:B9:57:DD:EE:6E:3C:CB:66:70:B7:A4:FF:44:A8:1E Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 08BB Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/885A3B4C198C11EEA06C1429C4F9AE02.roa Signing time: Wed 18 Jun 2025 21:07:51 +0000 ROA not before: Wed 18 Jun 2025 21:07:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135391 IP address blocks: 169.136.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2235 (0x8bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Jun 18 21:07:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68532aa7-c8d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:15:1d:d2:0c:65:1f:8f:95:eb:fc:a0:4c:31: 56:c3:fb:f9:d3:1a:1a:03:e7:2a:0a:99:19:25:a9: 5e:9b:51:0a:c6:76:0e:46:46:df:d5:5f:33:23:57: 26:dd:41:6d:ad:5a:d9:fe:23:b3:92:03:a0:52:bf: 60:ad:83:ec:68:8a:e8:bf:45:fa:81:97:18:f8:b7: 1b:94:be:a4:02:87:aa:66:b9:20:59:35:41:b1:1e: 9f:a0:39:d1:dd:84:83:1b:45:a1:ca:92:a5:04:1d: c9:32:8b:8c:46:86:0d:0d:55:25:7b:ef:51:6d:d9: 09:db:80:e1:ea:22:bf:09:8b:62:93:33:a1:66:33: a1:98:50:ea:6a:58:7f:24:a6:e1:bf:e7:1a:98:c3: 7e:52:15:4a:e0:85:5f:94:de:3d:ac:3a:2e:39:9d: 19:9f:13:b7:98:14:9d:b2:0d:58:d4:3a:7f:56:bf: 84:d4:b5:a7:b6:7f:44:7d:b5:1e:5b:d6:bb:74:82: 41:d9:d0:3a:41:61:53:84:29:91:30:58:d6:4d:1f: 72:04:06:69:c7:b3:c8:ad:50:8f:d6:89:8d:99:58: 5f:70:36:e6:14:ba:aa:56:16:b9:fc:dd:38:86:97: 62:ac:df:b0:1b:33:02:ba:80:52:9e:e2:50:2e:5f: 71:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:8A:96:0C:1F:B9:57:DD:EE:6E:3C:CB:66:70:B7:A4:FF:44:A8:1E X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/885A3B4C198C11EEA06C1429C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 169.136.88.0/24 Signature Algorithm: sha256WithRSAEncryption 88:90:d6:67:48:3f:0f:71:1b:57:b1:a8:7c:13:7a:9a:ac:0d: f3:fe:f9:6c:f5:b6:20:9b:3e:ba:ce:fe:32:c8:fa:76:9c:db: ae:4c:61:82:e7:0b:05:b1:ad:ef:68:2d:a1:3a:7e:e3:5c:07: 8a:53:a5:d0:35:0d:59:70:6a:d8:86:33:84:f4:62:6f:03:fa: 4f:c2:fa:7d:6a:d0:f7:b7:d2:31:65:63:2f:e3:30:d5:68:12: 5b:17:38:c9:51:c9:bf:ea:f5:16:67:d9:c0:dc:e5:6c:b9:91: 60:61:5f:75:6e:c4:a6:86:bf:74:f0:dd:12:b0:b3:1a:f7:0a: 06:60:39:95:d1:1d:90:ad:6b:72:00:0c:7d:99:76:85:4c:66: d2:af:ff:5f:84:9b:a3:b2:ea:be:1e:a9:4d:05:e0:f5:b6:a8: 4e:99:53:e2:b4:c8:ee:07:8d:2f:bd:a0:d6:d5:54:fb:4d:ed: e4:c3:12:fc:9a:a6:1e:9a:39:c0:32:6c:a8:bb:62:ad:f7:d8: f3:12:3a:fc:a6:98:5a:ec:84:a4:b3:e9:83:c5:71:95:ff:89: 7e:f7:da:95:69:48:38:3e:65:29:77:5d:a8:ab:c8:ba:0d:01: 71:0d:46:ff:8a:c1:ca:0c:f5:eb:5a:16:24:c8:05:f6:a3:d1: dc:c1:20:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjUwNjE4MjEwNzUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzMmFhNy1jOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xUd0gxlH4+V6/ygTDFWw/v50xoaA+cqCpkZJalem1EKxnYORkbf1V8zI1cm 3UFtrVrZ/iOzkgOgUr9grYPsaIrov0X6gZcY+LcblL6kAoeqZrkgWTVBsR6foDnR 3YSDG0WhypKlBB3JMouMRoYNDVUle+9RbdkJ24Dh6iK/CYtikzOhZjOhmFDqalh/ JKbhv+camMN+UhVK4IVflN49rDouOZ0ZnxO3mBSdsg1Y1Dp/Vr+E1LWntn9EfbUe W9a7dIJB2dA6QWFThCmRMFjWTR9yBAZpx7PIrVCP1omNmVhfcDbmFLqqVha5/N04 hpdirN+wGzMCuoBSnuJQLl9xVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBqKlgwf uVfd7m48y2Zwt6T/RKgeMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvODg1QTNCNEMx OThDMTFFRUEwNkMxNDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACpiFgwDQYJKoZIhvcNAQELBQADggEBAIiQ1mdIPw9xG1ex qHwTepqsDfP++Wz1tiCbPrrO/jLI+nac265MYYLnCwWxre9oLaE6fuNcB4pTpdA1 DVlwatiGM4T0Ym8D+k/C+n1q0Pe30jFlYy/jMNVoElsXOMlRyb/q9RZn2cDc5Wy5 kWBhX3VuxKaGv3Tw3RKwsxr3CgZgOZXRHZCta3IADH2ZdoVMZtKv/1+Em6Oy6r4e qU0F4PW2qE6ZU+K0yO4HjS+9oNbVVPtN7eTDEvyaph6aOcAybKi7Yq332PMSOvym mFrshKSz6YPFcZX/iX732pVpSDg+ZSl3XairyLoNAXENRv+KwcoM9etaFiTIBfaj 0dzBIK8= -----END CERTIFICATE-----Generated at Fri Jun 20 08:23:43 2025 by rpki-client