$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0F3C9F928A0711EFB933C33AC4F9AE02.roa File: 0F3C9F928A0711EFB933C33AC4F9AE02.roa (raw, json) Hash identifier: JRp3iGebWMBpohAFP9TuQ1LX4/HZctIKddrV2QO3D7o= Subject key identifier: 89:BD:2E:AA:B5:15:8F:20:53:9D:16:57:8B:E6:42:02:E7:40:07:30 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06A6 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0F3C9F928A0711EFB933C33AC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:38 +0000 ROA not before: Thu 28 Aug 2025 14:51:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152993 IP address blocks: 160.187.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1702 (0x6a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cfa-9d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:41:e5:5a:0f:95:4b:8c:c0:9d:cc:67:8b:5c: 32:e8:c1:a0:02:60:31:00:34:0b:f7:87:ab:85:ac: cf:58:86:cb:6a:53:97:a2:ee:81:02:fb:68:52:98: 44:7f:f9:90:29:17:7c:54:45:ba:45:42:ca:9b:41: 00:d5:2f:94:57:f7:52:05:0a:be:6d:b1:ac:0f:dd: 03:20:7e:86:f5:a7:1b:da:41:1a:cc:bf:56:36:ac: cf:1b:1f:38:c8:a0:f4:dc:7a:78:72:30:fe:74:b5: e2:ff:b0:49:1f:bc:6e:50:92:25:ae:77:d3:7a:c2: 61:42:38:33:25:0b:ba:ad:a8:68:97:c0:6e:d4:01: ad:8c:4a:f4:e1:10:b6:b4:3c:7c:a0:f4:34:a9:26: 50:e5:ac:69:c7:29:51:b6:3c:9e:25:05:d8:f9:4c: 1c:ec:90:a4:25:90:36:07:27:e1:bd:d9:0a:bc:52: 59:13:70:00:e6:ed:c4:16:a6:b7:41:39:1b:1c:bf: 44:19:75:cb:b8:9a:88:1e:23:0c:4d:da:44:c9:b4: 2c:ec:11:e9:0a:1b:3e:bd:e6:b6:1c:7c:6c:86:22: b1:b3:7a:7d:72:01:b2:1b:97:ad:1d:cb:4e:39:bc: 07:eb:6e:a5:7e:59:34:f1:02:2b:8b:ba:bd:b7:41: 05:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BD:2E:AA:B5:15:8F:20:53:9D:16:57:8B:E6:42:02:E7:40:07:30 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0F3C9F928A0711EFB933C33AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.2.0/23 Signature Algorithm: sha256WithRSAEncryption 12:40:1a:bc:c7:2a:06:e4:6c:86:89:a1:c7:75:3f:3b:53:08: de:fc:f0:72:72:8c:89:ab:93:a3:a9:5f:f5:1c:8d:8b:58:98: 5e:5f:00:2f:e2:e7:97:c6:37:3e:2f:84:8d:6e:98:ee:5d:13: 1d:0d:8e:35:48:29:6c:2f:ec:be:da:d4:77:0a:e7:4e:63:26: 81:e1:71:7d:c1:a3:13:9a:41:dc:ba:99:bb:a4:d6:64:3d:04: 92:dd:db:d3:98:50:c8:4d:4d:cc:78:70:97:f6:08:e8:e8:54: 51:01:f6:40:a5:c7:02:be:a1:24:de:2f:03:83:4d:6d:b1:d9: 4d:23:99:51:23:d0:a1:d1:22:df:4d:66:f5:42:55:54:b0:f2: e1:bf:54:a0:b7:a7:3a:9f:b2:3e:9b:16:77:8b:3a:99:f6:a4: b1:aa:38:96:a1:9d:42:f7:62:a5:e1:48:c7:40:49:74:4a:ad: 19:3b:d6:ff:dc:72:a2:f9:86:f8:92:af:77:ad:b0:ee:6c:7c: 3f:d0:c8:a5:7b:fa:ef:eb:4a:35:f7:66:46:d7:0d:83:86:d0: f7:4b:02:7a:5b:bc:f5:5b:8f:bd:b2:20:35:ef:f3:0b:49:ad: 7f:09:b3:ea:59:4b:17:cd:3e:19:35:00:8c:a8:46:7e:fc:42: 4f:2d:30:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNmYS05ZDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUHlWg+VS4zAncxni1wy6MGgAmAxADQL94erhazPWIbLalOXou6BAvtoUphE f/mQKRd8VEW6RULKm0EA1S+UV/dSBQq+bbGsD90DIH6G9acb2kEazL9WNqzPGx84 yKD03Hp4cjD+dLXi/7BJH7xuUJIlrnfTesJhQjgzJQu6rahol8Bu1AGtjEr04RC2 tDx8oPQ0qSZQ5axpxylRtjyeJQXY+Uwc7JCkJZA2ByfhvdkKvFJZE3AA5u3EFqa3 QTkbHL9EGXXLuJqIHiMMTdpEybQs7BHpChs+vea2HHxshiKxs3p9cgGyG5etHctO ObwH626lflk08QIri7q9t0EFZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIm9Lqq1 FY8gU50WV4vmQgLnQAcwMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMEYzQzlGOTI4 QTA3MTFFRkI5MzNDMzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGguwIwDQYJKoZIhvcNAQELBQADggEBABJAGrzHKgbkbIaJ ocd1PztTCN788HJyjImrk6OpX/UcjYtYmF5fAC/i55fGNz4vhI1umO5dEx0NjjVI KWwv7L7a1HcK505jJoHhcX3BoxOaQdy6mbuk1mQ9BJLd29OYUMhNTcx4cJf2COjo VFEB9kClxwK+oSTeLwODTW2x2U0jmVEj0KHRIt9NZvVCVVSw8uG/VKC3pzqfsj6b FneLOpn2pLGqOJahnUL3YqXhSMdASXRKrRk71v/ccqL5hviSr3etsO5sfD/QyKV7 +u/rSjX3ZkbXDYOG0PdLAnpbvPVbj72yIDXv8wtJrX8Js+pZSxfNPhk1AIyoRn78 Qk8tMIs= -----END CERTIFICATE-----Generated at Sun Sep 7 00:29:39 2025 by rpki-client