$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/129AD14466B311EF8C2A846AC4F9AE02.roa File: 129AD14466B311EF8C2A846AC4F9AE02.roa (raw, json) Hash identifier: bwnr6WnJEeubPNnZsULzCbGlkZsTpTndl3RxTEbHJ+s= Subject key identifier: FD:50:AA:91:8A:7B:FE:99:17:E9:17:A8:E4:84:94:A1:62:1C:A7:A0 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0679 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/129AD14466B311EF8C2A846AC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:50:58 +0000 ROA not before: Thu 28 Aug 2025 14:50:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149147 IP address blocks: 160.25.146.0/23 maxlen: 23 160.191.250.0/23 maxlen: 23 161.248.32.0/23 maxlen: 23 161.248.94.0/23 maxlen: 23 161.248.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1657 (0x679) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cd2-1c18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:88:09:87:67:ca:97:37:63:8d:9d:00:b4:ab: c0:dc:43:d0:25:42:3b:dc:83:ae:6e:a7:03:02:e4: 15:fa:a4:24:07:83:55:bc:7f:dc:bf:b7:4d:73:21: e0:a0:49:99:5c:c1:9a:0a:44:ab:e7:5b:f3:78:7e: e6:00:70:6a:94:64:ee:ce:ae:b2:a5:56:60:4f:70: e3:15:42:a0:99:ba:a4:c1:b7:04:cd:52:df:13:93: 9c:ed:3a:e7:ef:63:56:c2:c9:00:cb:f8:ba:21:05: 67:dd:93:fe:06:76:c9:a2:b7:8f:09:29:69:43:68: 69:2f:4c:2f:9f:32:02:81:54:a1:69:6a:2a:9b:71: f0:97:39:0f:74:76:84:f7:a7:aa:78:cd:c2:ab:11: 0a:bf:6d:e6:53:5e:eb:99:a0:79:78:07:ab:a8:63: 39:62:a9:f2:08:af:36:68:06:71:0b:e5:36:6b:03: 0e:b0:3e:64:00:73:6f:b0:f7:cf:56:58:a6:eb:ab: 22:1b:db:8d:1a:6c:d6:66:a7:e9:76:d2:3c:e5:e8: 53:21:e2:11:bd:85:00:81:8d:b4:46:bd:69:10:07: c1:b0:d7:7f:79:9c:30:e2:9d:0b:5c:6b:9f:1d:89: b1:56:bb:0d:7f:51:9c:1f:be:0e:9d:14:a2:6a:99: a5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:50:AA:91:8A:7B:FE:99:17:E9:17:A8:E4:84:94:A1:62:1C:A7:A0 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/129AD14466B311EF8C2A846AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.146.0/23 160.191.250.0/23 161.248.32.0/23 161.248.94.0-161.248.97.255 Signature Algorithm: sha256WithRSAEncryption a3:e3:fe:41:84:3a:35:6e:6d:0a:81:34:bb:82:61:8f:e6:70: 7a:81:9a:7f:58:48:fc:ba:b9:65:f0:e5:7b:15:b5:6f:e3:fb: 11:bf:8a:02:f8:5f:3b:d5:ec:c8:5c:09:5c:a5:51:11:2c:5a: 15:ac:9a:2f:76:7a:18:be:67:3e:db:ca:9f:d3:03:7f:d1:7d: e2:4b:cd:f8:ba:15:49:32:62:2c:36:80:3a:af:3f:cf:4c:84: 46:cf:4b:40:55:38:4e:a2:55:1e:1c:69:86:a9:27:74:e8:3b: 2a:7a:83:67:82:85:fc:26:f6:2f:9a:be:11:6e:f9:2d:a1:73: f6:f6:b3:c6:c6:bf:33:82:78:f1:48:6d:d2:14:a7:7f:2e:62: 8d:2d:26:ad:c9:59:fb:6a:91:68:20:f5:84:8f:6d:56:dc:5c: 5f:b1:40:08:e1:70:01:9d:0e:d3:fa:9c:2e:b5:c9:89:d9:d2: 21:da:c0:44:a0:54:be:c5:fb:2a:62:ca:74:57:96:57:79:b7: dd:69:a7:31:64:36:a4:2f:27:29:18:98:e9:71:b1:15:f4:f7: 1f:ad:d0:c7:f2:d8:6c:d3:15:d7:4a:e8:42:24:b9:59:4a:5a: 1c:fb:b3:32:63:9b:51:af:74:96:1f:7b:dc:f0:93:b5:d1:e8: 2c:2e:c5:d7 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICBnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNkMi0xYzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIgJh2fKlzdjjZ0AtKvA3EPQJUI73IOubqcDAuQV+qQkB4NVvH/cv7dNcyHg oEmZXMGaCkSr51vzeH7mAHBqlGTuzq6ypVZgT3DjFUKgmbqkwbcEzVLfE5Oc7Trn 72NWwskAy/i6IQVn3ZP+BnbJorePCSlpQ2hpL0wvnzICgVShaWoqm3HwlzkPdHaE 96eqeM3CqxEKv23mU17rmaB5eAerqGM5YqnyCK82aAZxC+U2awMOsD5kAHNvsPfP Vlim66siG9uNGmzWZqfpdtI85ehTIeIRvYUAgY20Rr1pEAfBsNd/eZww4p0LXGuf HYmxVrsNf1GcH74OnRSiapmlfQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFP1QqpGK e/6ZF+kXqOSElKFiHKegMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMTI5QUQxNDQ2 NkIzMTFFRjhDMkE4NDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAGgGZIDBAGgv/oDBAGh+CAwDAMEAaH4XgMEAaH4YDANBgkq hkiG9w0BAQsFAAOCAQEAo+P+QYQ6NW5tCoE0u4Jhj+ZweoGaf1hI/Lq5ZfDlexW1 b+P7Eb+KAvhfO9XsyFwJXKVRESxaFayaL3Z6GL5nPtvKn9MDf9F94kvN+LoVSTJi LDaAOq8/z0yERs9LQFU4TqJVHhxphqkndOg7KnqDZ4KF/Cb2L5q+EW75LaFz9vaz xsa/M4J48Uht0hSnfy5ijS0mrclZ+2qRaCD1hI9tVtxcX7FACOFwAZ0O0/qcLrXJ idnSIdrARKBUvsX7KmLKdFeWV3m33WmnMWQ2pC8nKRiY6XGxFfT3H63Qx/LYbNMV 10roQiS5WUpaHPuzMmObUa90lh973PCTtdHoLC7F1w== -----END CERTIFICATE-----Generated at Sun Sep 7 00:29:39 2025 by rpki-client