$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/8987F942335911E8A1642A7FC4F9AE02.roa File: 8987F942335911E8A1642A7FC4F9AE02.roa (raw, json) Hash identifier: 2NVh/4Y5D2OTZDSW56ekK5upiHvTQpJeMadJ6WP+B1w= Subject key identifier: B5:AC:E9:FD:6D:04:E3:9E:87:6F:AC:02:EA:65:EC:3C:3E:F9:B6:D2 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 36CA Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/8987F942335911E8A1642A7FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:45:46 +0000 ROA not before: Tue 02 Sep 2025 15:01:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59432 IP address blocks: 182.54.233.0/24 maxlen: 24 182.54.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14026 (0x36ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4895a-a745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:9a:63:1c:b5:a9:11:bd:9a:eb:01:d7:75:d2: a9:73:42:5a:d8:24:3c:67:2f:02:3f:dc:18:fc:a3: 06:d8:ff:c0:89:c0:ba:b6:a7:b4:c1:14:13:d6:d2: 6d:96:b0:39:93:d0:d9:ee:24:8e:2e:27:d1:49:21: 37:36:9c:8e:d8:51:da:09:36:cd:c9:88:5b:a2:40: b4:0a:8a:81:81:44:fb:4d:a0:ab:4a:87:4b:69:b2: 40:de:2c:29:fb:8d:8f:61:3d:95:1f:ff:f5:21:b3: 06:5e:83:f0:10:10:52:0f:f2:59:4e:f5:7b:d5:a8: f2:ad:5e:e7:b2:40:d6:60:05:5f:38:6c:43:e7:67: af:75:90:4a:01:b6:6c:03:7a:82:f6:1d:ae:2b:31: 2b:31:d0:76:0d:7e:90:fb:3b:ca:4a:c1:ed:b4:84: 62:b0:e1:da:5c:f6:a4:c0:f3:df:4c:cf:ea:33:96: 95:e3:3b:e9:b4:bc:1f:13:e9:53:56:dd:c7:5f:2c: b4:b8:7d:a6:3a:0b:9a:cc:95:11:8c:de:79:03:52: 8b:b2:52:5f:35:cf:c3:10:1f:3e:5c:d9:f3:01:46: ea:e9:6d:f6:3c:0a:30:4d:39:fa:21:ab:01:b1:b5: 1e:14:76:57:7e:78:ec:b9:69:35:28:ad:15:3d:72: 5a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AC:E9:FD:6D:04:E3:9E:87:6F:AC:02:EA:65:EC:3C:3E:F9:B6:D2 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/8987F942335911E8A1642A7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 182.54.233.0/24 182.54.235.0/24 Signature Algorithm: sha256WithRSAEncryption 32:96:05:a7:bd:33:0d:fe:c6:55:a3:70:b3:12:b5:06:a1:1b: 7c:5b:bb:5e:5a:05:85:ed:6a:3a:a3:9b:1e:02:9c:11:11:fa: 1c:28:61:90:c9:15:01:f8:68:70:07:f9:f3:1d:0e:95:36:3b: 54:96:80:03:7e:ad:0e:c6:f9:2d:81:2a:09:3d:ee:a4:e9:97: 7f:c8:ef:97:38:97:19:fd:e1:7e:af:ed:5b:26:f7:b2:54:1f: 57:f7:be:aa:7e:06:72:41:98:94:8a:16:74:a8:8c:d6:1f:1f: e0:53:83:c7:33:ff:93:ee:e0:58:f9:b9:88:9d:8b:f6:4c:55: 6c:e5:54:8f:28:8d:a3:03:68:6f:6f:14:f1:ac:70:cc:57:80: 6a:ac:11:34:fc:ed:97:5a:cf:2e:08:ef:66:8f:ac:bc:1e:d2: 16:36:ba:50:4c:0d:09:9b:b3:e4:a6:cc:4d:81:8d:7d:e6:a9: 55:47:e8:87:80:e6:02:6d:a8:13:cc:03:a2:c6:c9:bd:8a:95: c2:a1:46:33:eb:8d:13:3b:ee:69:27:4f:da:ac:aa:17:c7:b8: e3:b2:07:86:ac:ae:7b:0b:fe:5c:09:9f:c2:c6:2c:46:de:3c: ef:0a:fe:f8:3a:fa:17:8f:32:51:59:10:97:47:46:1f:f3:0e: 27:57:99:0d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICNsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODk1YS1hNzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh5pjHLWpEb2a6wHXddKpc0Ja2CQ8Zy8CP9wY/KMG2P/AicC6tqe0wRQT1tJt lrA5k9DZ7iSOLifRSSE3NpyO2FHaCTbNyYhbokC0CoqBgUT7TaCrSodLabJA3iwp +42PYT2VH//1IbMGXoPwEBBSD/JZTvV71ajyrV7nskDWYAVfOGxD52evdZBKAbZs A3qC9h2uKzErMdB2DX6Q+zvKSsHttIRisOHaXPakwPPfTM/qM5aV4zvptLwfE+lT Vt3HXyy0uH2mOguazJURjN55A1KLslJfNc/DEB8+XNnzAUbq6W32PAowTTn6IasB sbUeFHZXfnjsuWk1KK0VPXJanwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLWs6f1t BOOeh2+sAupl7Dw++bbSMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvODk4N0Y5NDIz MzU5MTFFOEExNjQyQTdGQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAtjbpAwQAtjbrMA0GCSqGSIb3DQEBCwUAA4IBAQAylgWnvTMN/sZV o3CzErUGoRt8W7teWgWF7Wo6o5seApwREfocKGGQyRUB+GhwB/nzHQ6VNjtUloAD fq0OxvktgSoJPe6k6Zd/yO+XOJcZ/eF+r+1bJveyVB9X976qfgZyQZiUihZ0qIzW Hx/gU4PHM/+T7uBY+bmInYv2TFVs5VSPKI2jA2hvbxTxrHDMV4BqrBE0/O2XWs8u CO9mj6y8HtIWNrpQTA0Jm7PkpsxNgY195qlVR+iHgOYCbagTzAOixsm9ipXCoUYz 640TO+5pJ0/arKoXx7jjsgeGrK57C/5cCZ/CxixG3jzvCv74OvoXjzJRWRCXR0Yf 8w4nV5kN -----END CERTIFICATE-----Generated at Mon Mar 2 06:52:58 2026 by rpki-client