$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/87FB8F3E614711F0AA20F35DC4F9AE02.roa File: 87FB8F3E614711F0AA20F35DC4F9AE02.roa (raw, json) Hash identifier: vZFJvJ1TxTtoBoReX1Xn4H7Py94psmS4LWOK+hAq3I8= Subject key identifier: 8F:57:12:EA:5C:3F:29:00:6B:A8:4F:68:7B:48:1F:F5:CC:E2:BA:0B Certificate issuer: /CN=A91EB2B8/serialNumber=A897AE8FF2141CB334EAA4B881CC3C5656D47436 Certificate serial: 1C Authority key identifier: A8:97:AE:8F:F2:14:1C:B3:34:EA:A4:B8:81:CC:3C:56:56:D4:74:36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJeuj_IUHLM06qS4gcw8VlbUdDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/87FB8F3E614711F0AA20F35DC4F9AE02.roa Signing time: Tue 05 Aug 2025 06:55:40 +0000 ROA not before: Tue 05 Aug 2025 06:55:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 139057 IP address blocks: 148.222.160.0/24 maxlen: 24 148.222.161.0/24 maxlen: 24 148.222.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/qJeuj_IUHLM06qS4gcw8VlbUdDY.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/qJeuj_IUHLM06qS4gcw8VlbUdDY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJeuj_IUHLM06qS4gcw8VlbUdDY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8, serialNumber=A897AE8FF2141CB334EAA4B881CC3C5656D47436 Validity Not Before: Aug 5 06:55:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6891aaeb-c4fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8f:b3:ff:0c:c7:0d:d7:51:51:df:a2:e6:6e: a1:5e:f1:d5:cd:3c:e5:98:68:e2:40:00:a3:96:ae: dd:a4:89:7b:9e:12:e9:bf:c0:8f:8a:73:cf:34:ae: 06:c8:a3:bc:45:55:25:a6:bd:bc:28:37:18:69:3c: ef:39:02:38:e2:42:7e:99:c9:f2:bc:05:2e:0e:8b: b2:6d:b8:14:5d:cc:23:9f:48:65:46:d2:d1:7d:25: 5e:04:8a:83:e5:b2:0a:72:7d:ef:65:02:6a:ee:ae: 6f:08:3d:30:34:ae:72:6c:4b:3e:32:2c:fb:7b:30: 3a:d2:fa:48:3a:a0:e1:ef:07:3f:49:f1:6c:cc:f5: 5d:71:7f:2f:63:8b:bc:8e:0b:27:d9:de:59:86:9a: dc:30:ee:92:e6:3e:17:c8:b8:06:0b:5b:bc:93:2e: 77:a7:8d:6e:97:2d:b1:8a:c5:c7:a1:17:6f:dd:63: e2:09:85:6b:d5:f7:b0:92:fe:bd:f4:ed:05:99:8f: b0:8b:7e:82:9f:d4:0b:7c:78:8a:95:f2:f7:5f:73: eb:50:2b:08:64:28:e3:83:44:69:bf:01:99:68:93: f2:e4:c8:b9:d8:bf:9e:c0:cc:0e:f5:01:b6:f4:d8: f8:a1:47:24:44:83:4a:df:42:d8:f3:70:6b:c8:ff: e2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:57:12:EA:5C:3F:29:00:6B:A8:4F:68:7B:48:1F:F5:CC:E2:BA:0B X509v3 Authority Key Identifier: keyid:A8:97:AE:8F:F2:14:1C:B3:34:EA:A4:B8:81:CC:3C:56:56:D4:74:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/qJeuj_IUHLM06qS4gcw8VlbUdDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJeuj_IUHLM06qS4gcw8VlbUdDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3583E586516511F0BC1CAF75C4F9AE02/87FB8F3E614711F0AA20F35DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.222.160.0/23 148.222.175.0/24 Signature Algorithm: sha256WithRSAEncryption de:00:c7:fb:7c:14:45:85:5d:58:ec:77:59:4e:37:65:8a:fa: 83:29:33:07:78:89:d9:89:fa:f5:df:da:e2:b2:93:3e:22:57: 9e:e2:b7:32:91:21:13:bf:b2:85:3a:3a:57:6d:1b:9b:e8:c1: 58:29:0f:f4:e3:9d:9d:38:01:ce:c6:2e:23:23:66:08:94:c7: 23:2b:f1:dc:68:da:99:7d:de:04:ac:43:d8:98:8c:8a:7e:9f: d8:4d:bf:5e:39:fe:a1:7c:56:d0:c7:ff:8f:51:09:e6:75:ee: 96:b9:19:2d:58:e3:04:03:70:4d:a9:40:ca:fa:6c:76:1f:d3: 19:7d:e2:30:db:51:31:14:7d:2d:ee:22:9f:55:9b:1a:4c:69: 26:c7:2f:7d:f0:c8:51:27:76:1d:23:ac:76:e9:ac:da:eb:ea: 0d:d9:d5:98:0b:a8:d2:31:f7:ed:05:93:d0:1f:2b:f9:9d:27: 31:bf:12:ae:8e:93:7a:7f:f2:48:6f:b0:a8:66:48:42:b3:77: ff:ae:b9:58:73:26:1f:0a:2c:b1:5a:5e:aa:c1:57:36:9f:30: c0:ab:d0:f0:f4:63:e6:9c:2c:02:b3:f2:e3:8f:3b:7e:76:15: 5d:a1:5b:b5:43:a8:fb:6a:d6:c1:37:85:72:3c:59:5f:e9:c0: a7:7d:f9:51 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QjJCODExMC8GA1UEBRMoQTg5N0FFOEZGMjE0MUNCMzM0RUFBNEI4ODFDQzNDNTY1 NkQ0NzQzNjAeFw0yNTA4MDUwNjU1NDBaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTFhYWViLWM0ZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/j7P/DMcN11FR36LmbqFe8dXNPOWYaOJAAKOWrt2kiXueEum/wI+Kc880rgbI o7xFVSWmvbwoNxhpPO85AjjiQn6ZyfK8BS4Oi7JtuBRdzCOfSGVG0tF9JV4EioPl sgpyfe9lAmrurm8IPTA0rnJsSz4yLPt7MDrS+kg6oOHvBz9J8WzM9V1xfy9ji7yO CyfZ3lmGmtww7pLmPhfIuAYLW7yTLnenjW6XLbGKxcehF2/dY+IJhWvV97CS/r30 7QWZj7CLfoKf1At8eIqV8vdfc+tQKwhkKOODRGm/AZlok/LkyLnYv57AzA71Abb0 2PihRyREg0rfQtjzcGvI/+JlAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUj1cS6lw/ KQBrqE9oe0gf9cziugswHwYDVR0jBBgwFoAUqJeuj/IUHLM06qS4gcw8VlbUdDYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCMkI4LzM1ODNFNTg2NTE2 NTExRjBCQzFDQUY3NUM0RjlBRTAyL3FKZXVqX0lVSExNMDZxUzRnY3c4VmxiVWRE WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUpldWpfSVVITE0wNnFTNGdjdzhWbGJVZERZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjJCOC8zNTgzRTU4NjUxNjUxMUYwQkMxQ0FGNzVDNEY5QUUwMi84N0ZCOEYzRTYx NDcxMUYwQUEyMEYzNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAZTeoAMEAJTerzANBgkqhkiG9w0BAQsFAAOCAQEA3gDH+3wU RYVdWOx3WU43ZYr6gykzB3iJ2Yn69d/a4rKTPiJXnuK3MpEhE7+yhTo6V20bm+jB WCkP9OOdnTgBzsYuIyNmCJTHIyvx3GjamX3eBKxD2JiMin6f2E2/Xjn+oXxW0Mf/ j1EJ5nXulrkZLVjjBANwTalAyvpsdh/TGX3iMNtRMRR9Le4in1WbGkxpJscvffDI USd2HSOsdums2uvqDdnVmAuo0jH37QWT0B8r+Z0nMb8Sro6Ten/ySG+wqGZIQrN3 /665WHMmHwossVpeqsFXNp8wwKvQ8PRj5pwsArPy4487fnYVXaFbtUOo+2rWwTeF cjxZX+nAp335UQ== -----END CERTIFICATE-----Generated at Fri Aug 8 19:30:38 2025 by rpki-client