$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/8BAE1FFA6D1A11F0A4E9404DC4F9AE02.roa File: 8BAE1FFA6D1A11F0A4E9404DC4F9AE02.roa (raw, json) Hash identifier: LcfL6WlPDAVnfVe8FVQ0PTDxHLr1cQFF1C/EotpyU7g= Subject key identifier: C1:69:1E:96:AA:28:DB:30:9C:58:E5:3B:AB:54:53:23:B5:46:F9:95 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 1127 Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/8BAE1FFA6D1A11F0A4E9404DC4F9AE02.roa Signing time: Wed 30 Jul 2025 07:55:23 +0000 ROA not before: Wed 30 Jul 2025 07:55:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 20115 IP address blocks: 139.190.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4391 (0x1127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Jul 30 07:55:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6889cfeb-42f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5b:e6:60:6b:29:da:9d:4f:ec:32:1b:0b:65: e0:a0:41:6a:5e:00:0f:3c:23:94:e7:12:9a:13:a7: d0:19:73:cc:1b:33:2b:02:8f:91:12:70:74:85:a7: a1:cf:ed:22:83:ef:d0:46:07:d4:4a:81:ff:d6:69: de:23:b8:04:2d:05:2b:6f:68:c6:a4:6c:67:c0:98: 4c:77:86:1d:6b:7e:13:83:b4:09:18:df:98:49:3c: 74:bb:cd:47:25:98:c1:16:0b:7b:49:61:b4:37:ac: 17:4d:f0:69:6c:c8:a3:34:a4:08:a5:89:c3:b3:29: 34:02:8f:c5:93:00:9d:72:a0:82:09:0f:a7:ed:31: f5:fc:9d:75:9e:f4:89:e0:a4:57:4d:9b:eb:2f:0f: a6:ed:aa:e6:e5:37:47:68:7a:3c:ce:02:dd:77:e5: 72:57:48:62:e3:d9:89:86:19:90:34:9a:0b:a0:95: 28:14:d5:62:67:bd:ae:c2:5d:71:a7:28:78:43:ab: 39:45:66:00:4b:52:f4:c8:93:47:c9:3f:fa:74:a2: 09:69:07:69:5a:7d:fe:c6:b0:af:d0:82:36:b7:d2: 99:16:b7:83:cb:a1:03:dc:d1:fb:72:4b:eb:83:83: 51:e8:9a:67:df:13:b0:ae:6e:c6:17:d6:58:93:2b: 86:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:69:1E:96:AA:28:DB:30:9C:58:E5:3B:AB:54:53:23:B5:46:F9:95 X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/8BAE1FFA6D1A11F0A4E9404DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.192.0/19 Signature Algorithm: sha256WithRSAEncryption 97:0a:28:77:1c:92:fa:02:a3:3d:57:a0:97:da:5a:42:27:78: 3a:3a:59:ad:11:52:77:db:11:1d:8b:77:cb:63:e1:98:f0:65: fd:20:e6:56:0e:7d:4c:f1:89:35:79:f8:c4:ac:7d:7c:06:82: 47:48:da:a1:75:40:1e:cc:3f:93:35:33:30:f1:a7:8d:1f:7a: f2:cb:2a:9f:37:36:d9:97:2f:55:df:d9:9a:75:f9:8f:80:08: 49:93:ae:81:a3:5d:a5:ef:9e:6e:3a:4f:f8:08:07:9d:21:cf: 90:a3:c5:a1:19:a2:0f:8d:72:c6:19:4f:b4:4e:27:5e:ab:7e: 22:a1:33:30:7f:42:73:4e:17:44:64:39:73:34:0a:88:6e:4f: d4:94:8d:64:9d:f3:38:3a:92:45:ca:ff:eb:26:e1:34:d1:3c: c0:32:12:77:9c:8c:7f:ee:54:5b:c8:5e:dc:85:89:cb:b8:27: ec:ff:39:5c:36:22:c8:b6:7b:32:49:07:bb:0f:bd:7d:9b:d4: d3:6a:d1:95:e9:b8:8c:66:88:94:b1:0f:ae:32:53:5a:80:d5: 7a:f1:fb:40:ec:75:db:46:fe:75:a2:21:16:24:7f:81:cb:ec: 53:d0:15:9f:1b:15:be:54:87:94:16:f3:87:b1:45:49:15:af: ea:95:6e:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwNzMwMDc1NTIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg5Y2ZlYi00MmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1vmYGsp2p1P7DIbC2XgoEFqXgAPPCOU5xKaE6fQGXPMGzMrAo+REnB0haeh z+0ig+/QRgfUSoH/1mneI7gELQUrb2jGpGxnwJhMd4Yda34Tg7QJGN+YSTx0u81H JZjBFgt7SWG0N6wXTfBpbMijNKQIpYnDsyk0Ao/FkwCdcqCCCQ+n7TH1/J11nvSJ 4KRXTZvrLw+m7arm5TdHaHo8zgLdd+VyV0hi49mJhhmQNJoLoJUoFNViZ72uwl1x pyh4Q6s5RWYAS1L0yJNHyT/6dKIJaQdpWn3+xrCv0II2t9KZFreDy6ED3NH7ckvr g4NR6Jpn3xOwrm7GF9ZYkyuGDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMFpHpaq KNswnFjlO6tUUyO1RvmVMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvOEJBRTFGRkE2 RDFBMTFGMEE0RTk0MDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWLvsAwDQYJKoZIhvcNAQELBQADggEBAJcKKHcckvoCoz1X oJfaWkIneDo6Wa0RUnfbER2Ld8tj4ZjwZf0g5lYOfUzxiTV5+MSsfXwGgkdI2qF1 QB7MP5M1MzDxp40fevLLKp83NtmXL1Xf2Zp1+Y+ACEmTroGjXaXvnm46T/gIB50h z5CjxaEZog+NcsYZT7ROJ16rfiKhMzB/QnNOF0RkOXM0CohuT9SUjWSd8zg6kkXK /+sm4TTRPMAyEnecjH/uVFvIXtyFicu4J+z/OVw2Isi2ezJJB7sPvX2b1NNq0ZXp uIxmiJSxD64yU1qA1Xrx+0DsddtG/nWiIRYkf4HL7FPQFZ8bFb5Uh5QW84exRUkV r+qVbs8= -----END CERTIFICATE-----Generated at Sun Aug 10 04:16:24 2025 by rpki-client