$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/06F76408F7DA11EE95AA666EC4F9AE02.roa File: 06F76408F7DA11EE95AA666EC4F9AE02.roa (raw, json) Hash identifier: J4Sg9jZ4ixDXr+mqd9y9gPribrhi/T4bjIid8gFMA6c= Subject key identifier: 82:31:32:03:FD:43:98:CA:94:B1:EA:64:45:46:98:B7:C0:B4:5E:77 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0687 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/06F76408F7DA11EE95AA666EC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:12 +0000 ROA not before: Thu 28 Aug 2025 14:51:12 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151913 IP address blocks: 157.66.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:12 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06ce0-d619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:45:3e:4e:6c:66:2c:de:ad:00:30:7d:ad:4a: 27:81:cd:da:bf:a4:68:eb:a0:b8:27:ca:56:a9:11: f6:9c:cb:96:76:1f:d0:47:d9:df:0c:c0:59:64:eb: 88:cb:4f:24:33:02:a4:ff:7e:96:fa:84:f3:13:40: 45:65:0a:c7:10:30:79:09:f8:53:c1:25:3f:f0:98: 4c:a3:6c:30:b0:bf:3f:86:8a:53:a3:2a:a9:89:ea: 0e:6b:1f:e8:97:33:db:95:3e:99:89:6a:0f:fa:b9: 9d:2b:06:a5:43:3a:f3:c7:29:d2:82:da:df:80:02: 5b:c4:be:2b:f2:b4:f6:7f:c9:db:89:4a:1f:de:d5: b6:db:69:a7:4f:84:d1:59:f5:64:44:27:71:55:bb: 0a:8f:0e:66:7f:4f:e1:83:75:bc:ba:a1:5b:ca:62: 23:f7:c3:12:79:fb:11:6a:ec:02:76:95:35:88:d0: fe:72:fa:e1:12:d0:f0:2c:19:a3:89:cc:bb:51:4d: ca:3b:1d:1a:df:29:b0:f7:34:84:2c:d6:57:cc:9a: d8:a8:44:16:1e:24:cb:d3:e6:23:f7:c7:48:75:19: 00:d2:ef:61:71:ab:a2:ba:f8:07:64:44:87:4f:b5: d7:eb:ba:1b:0f:90:11:6f:ee:ee:e1:04:6b:9e:3d: 20:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:31:32:03:FD:43:98:CA:94:B1:EA:64:45:46:98:B7:C0:B4:5E:77 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/06F76408F7DA11EE95AA666EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.10.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:cb:9a:b4:42:6c:c1:df:fb:f1:5b:52:56:ec:fe:34:d4:0c: ef:b8:45:8f:e1:bb:47:8e:0a:7f:00:b3:38:44:62:d7:6d:5a: 2d:e1:66:41:f3:92:06:c1:09:bf:60:50:bc:b8:e0:f3:30:37: d9:9a:87:e2:d6:46:9f:e7:30:3d:55:a8:ad:43:64:f3:45:aa: 00:64:6c:34:26:87:e4:e9:7f:f1:9e:9f:84:6d:10:d9:7d:24: 30:ff:3b:9d:c7:e9:04:27:b3:84:3a:9e:a4:7b:7c:3a:e8:5d: 39:a8:04:89:ab:56:cf:91:52:11:ec:ca:90:5a:30:c6:4c:0e: a5:e7:e6:47:8c:e4:b8:71:e9:f7:e0:d0:9e:53:e1:0d:d6:e5: 37:7f:7b:ef:a9:2f:52:a0:83:18:9b:f4:bd:8c:45:8b:6c:9d: 86:d1:4b:59:ff:fd:03:2f:cc:34:59:fa:13:4e:3a:00:06:ce: 23:71:58:0e:6f:d3:56:a4:50:0f:77:9d:f1:9d:5e:f3:be:38: 59:57:3f:d9:40:6b:c5:b1:32:e1:89:86:a4:1f:e3:b2:be:c6: 38:10:5c:8a:d8:fa:76:bb:c5:53:40:5b:59:e1:7c:f2:6f:92: 4d:e2:88:d8:47:d6:a4:5e:04:6a:0b:1b:21:68:6b:89:c7:4f: 89:b7:90:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTEyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNlMC1kNjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0U+TmxmLN6tADB9rUongc3av6Ro66C4J8pWqRH2nMuWdh/QR9nfDMBZZOuI y08kMwKk/36W+oTzE0BFZQrHEDB5CfhTwSU/8JhMo2wwsL8/hopToyqpieoOax/o lzPblT6ZiWoP+rmdKwalQzrzxynSgtrfgAJbxL4r8rT2f8nbiUof3tW222mnT4TR WfVkRCdxVbsKjw5mf0/hg3W8uqFbymIj98MSefsRauwCdpU1iND+cvrhEtDwLBmj icy7UU3KOx0a3ymw9zSELNZXzJrYqEQWHiTL0+Yj98dIdRkA0u9hcauiuvgHZESH T7XX67obD5ARb+7u4QRrnj0g/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIIxMgP9 Q5jKlLHqZEVGmLfAtF53MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMDZGNzY0MDhG N0RBMTFFRTk1QUE2NjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQgowDQYJKoZIhvcNAQELBQADggEBACzLmrRCbMHf+/Fb Ulbs/jTUDO+4RY/hu0eOCn8AszhEYtdtWi3hZkHzkgbBCb9gULy44PMwN9mah+LW Rp/nMD1VqK1DZPNFqgBkbDQmh+Tpf/Gen4RtENl9JDD/O53H6QQns4Q6nqR7fDro XTmoBImrVs+RUhHsypBaMMZMDqXn5keM5Lhx6ffg0J5T4Q3W5Td/e++pL1Kggxib 9L2MRYtsnYbRS1n//QMvzDRZ+hNOOgAGziNxWA5v01akUA93nfGdXvO+OFlXP9lA a8WxMuGJhqQf47K+xjgQXIrY+na7xVNAW1nhfPJvkk3iiNhH1qReBGoLGyFoa4nH T4m3kC8= -----END CERTIFICATE-----Generated at Wed Oct 22 21:25:35 2025 by rpki-client