$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/122F982CB92311EE8A5A4670C4F9AE02.roa File: 122F982CB92311EE8A5A4670C4F9AE02.roa (raw, json) Hash identifier: U7n6BbKe8YGXycPEInI5TQYtg1kVhpNi/e6U5wIMAvg= Subject key identifier: 64:77:0E:0D:55:F2:88:7A:EC:D8:25:EB:9E:1C:9C:44:0D:80:C1:2E Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 066F Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/122F982CB92311EE8A5A4670C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:50:51 +0000 ROA not before: Thu 28 Aug 2025 14:50:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140766 IP address blocks: 64.239.24.0/22 maxlen: 24 157.10.186.0/23 maxlen: 24 157.10.188.0/23 maxlen: 24 157.66.96.0/23 maxlen: 24 192.223.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06ccb-9bb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6a:5d:4c:b7:34:6f:03:bd:74:03:55:63:aa: 74:ae:f5:40:8b:a5:7d:a9:39:78:ab:9a:10:3e:0f: 7f:60:49:9f:24:ad:0a:dc:1a:02:9c:83:17:7d:38: 42:35:3c:43:f6:19:5b:8d:42:b1:80:4c:b8:67:09: 67:f1:2a:8f:39:0f:82:f2:ef:c0:7f:23:56:99:ec: a8:9a:0d:50:7d:d7:ac:d0:62:e9:b4:d1:44:2d:aa: 4a:60:52:7e:10:f3:c5:6a:ae:49:46:56:80:c6:ea: 79:65:33:df:c2:f0:34:15:b8:16:cf:91:72:e9:b0: 2f:72:ff:c6:56:9f:9e:ac:e3:de:f2:b9:a0:d2:29: 8e:f9:72:6d:46:a2:ca:8b:42:1f:69:a3:a5:21:fa: e6:7c:88:44:49:05:9d:df:73:b1:ab:9e:71:53:2e: b8:fb:b3:a3:45:8b:45:db:30:ef:33:0c:9c:d0:82: b1:ed:b8:d6:68:05:20:e2:1d:44:23:5e:20:7c:10: 25:e7:c0:ba:56:82:45:b1:cc:60:86:57:c8:f6:88: d1:c7:dc:81:7c:39:f7:66:7f:90:b5:ad:79:2e:39: e7:92:b5:6a:ea:a7:95:61:95:f8:dc:cf:24:dc:52: 1a:7d:a7:4a:d9:91:4a:85:90:0c:1f:9a:a1:04:bc: 1e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:77:0E:0D:55:F2:88:7A:EC:D8:25:EB:9E:1C:9C:44:0D:80:C1:2E X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/122F982CB92311EE8A5A4670C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.239.24.0/22 157.10.186.0-157.10.189.255 157.66.96.0/23 192.223.12.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:7d:08:c7:39:1c:ad:ed:84:63:ab:b5:f1:23:a6:09:69:c4: 0b:d5:2e:18:96:14:a0:37:51:2d:36:b2:f6:0e:b9:bb:7d:5d: 1b:60:c7:af:89:7e:83:36:db:70:b4:bb:f7:77:e1:b5:e6:13: 32:ba:ea:18:74:b3:9d:05:3d:9c:55:d4:9c:0a:8c:1f:0b:16: 48:8f:69:35:f3:91:5f:91:d1:28:9e:95:89:08:73:bf:5f:f1: 76:bb:9e:4f:cd:f3:fa:fe:0e:68:af:5b:20:b6:71:04:02:7c: f4:ac:85:2f:1e:26:76:62:5f:54:69:f9:45:e9:48:b7:74:6d: 32:05:8a:49:3e:e9:f6:3f:2e:e3:bb:17:65:1b:54:44:6d:ab: 45:45:6a:c7:b8:c0:37:76:5d:f9:50:98:2a:b9:6a:ee:76:3e: c3:2c:66:91:ae:54:a7:66:ab:20:37:ad:f6:af:a1:62:08:7e: 93:27:7c:6e:a0:8a:38:0c:ba:05:7b:e9:07:93:e7:de:29:00: 5b:d2:23:cb:36:f4:3b:97:48:de:26:9f:6b:a3:25:ee:0b:09: 3b:fd:94:c1:72:9d:46:5d:aa:25:d6:fd:a4:fc:c5:06:bc:90: 5d:eb:65:24:30:4c:dc:80:e7:df:73:09:12:8c:f8:ee:06:1e: 20:22:eb:ef -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNjYi05YmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6mpdTLc0bwO9dANVY6p0rvVAi6V9qTl4q5oQPg9/YEmfJK0K3BoCnIMXfThC NTxD9hlbjUKxgEy4Zwln8SqPOQ+C8u/AfyNWmeyomg1Qfdes0GLptNFELapKYFJ+ EPPFaq5JRlaAxup5ZTPfwvA0FbgWz5Fy6bAvcv/GVp+erOPe8rmg0imO+XJtRqLK i0IfaaOlIfrmfIhESQWd33Oxq55xUy64+7OjRYtF2zDvMwyc0IKx7bjWaAUg4h1E I14gfBAl58C6VoJFscxghlfI9ojRx9yBfDn3Zn+Qta15LjnnkrVq6qeVYZX43M8k 3FIafadK2ZFKhZAMH5qhBLweuwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFGR3Dg1V 8oh67Ngl654cnEQNgMEuMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMTIyRjk4MkNC OTIzMTFFRThBNUE0NjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAJA7xgwDAMEAZ0KugMEAZ0KvAMEAZ1CYAMEAsDfDDANBgkq hkiG9w0BAQsFAAOCAQEAL30Ixzkcre2EY6u18SOmCWnEC9UuGJYUoDdRLTay9g65 u31dG2DHr4l+gzbbcLS793fhteYTMrrqGHSznQU9nFXUnAqMHwsWSI9pNfORX5HR KJ6ViQhzv1/xdrueT83z+v4OaK9bILZxBAJ89KyFLx4mdmJfVGn5RelIt3RtMgWK ST7p9j8u47sXZRtURG2rRUVqx7jAN3Zd+VCYKrlq7nY+wyxmka5Up2arIDet9q+h Ygh+kyd8bqCKOAy6BXvpB5Pn3ikAW9Ijyzb0O5dI3iafa6Ml7gsJO/2UwXKdRl2q Jdb9pPzFBryQXetlJDBM3IDn33MJEoz47gYeICLr7w== -----END CERTIFICATE-----Generated at Sun Sep 7 00:36:49 2025 by rpki-client