$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/2171B7C0B7A111EF88C1E184C4F9AE02.roa File: 2171B7C0B7A111EF88C1E184C4F9AE02.roa (raw, json) Hash identifier: 44FHo5wCXfoS4ipXPE79brGwKg4m1SzbOydlUHKlH+g= Subject key identifier: 7B:8F:E5:72:A1:47:CD:A5:FC:47:A2:15:60:C0:5F:50:66:2D:E6:4D Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06B7 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/2171B7C0B7A111EF88C1E184C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:51 +0000 ROA not before: Thu 28 Aug 2025 14:51:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153435 IP address blocks: 160.250.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1719 (0x6b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d07-01cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d5:bd:24:a8:3a:1e:26:b6:86:d3:b4:43:ae: e2:27:ec:4d:11:45:ae:22:79:d2:1d:a7:c1:70:21: 9c:9c:51:38:32:cf:b8:76:52:d3:c8:1d:03:0c:74: 25:aa:cb:15:e5:a4:68:5d:97:53:db:6a:62:10:81: 0a:b9:fa:71:5c:b1:f5:c1:2b:58:15:15:18:72:37: 79:c4:23:a0:fd:81:a3:d9:e9:98:1a:da:b9:7c:e2: 95:09:2d:8b:60:87:b9:ae:2c:87:43:18:7c:a2:91: be:f8:a2:4d:83:be:13:66:88:9a:8f:06:50:4a:11: 27:89:08:81:25:e1:f6:b7:d6:11:1a:86:20:ed:2f: de:d7:a4:de:be:cc:e4:74:a7:1f:fc:da:d4:90:b1: 62:50:92:f2:78:48:ba:6c:0c:81:ed:e0:bf:c0:32: bf:c1:09:35:e0:22:c1:45:ea:2f:cb:c1:ca:d3:c9: 1c:ca:07:ea:e7:0e:c8:9e:8b:0b:1b:5a:af:3e:56: ce:08:1c:30:53:39:fa:45:4e:c9:5d:7d:6e:1f:93: b4:72:0b:e0:19:df:75:31:a3:6f:15:1b:01:81:a7: e6:1e:9d:de:fc:0a:72:7c:61:10:76:a1:61:98:2f: 3a:a5:0c:8f:85:e5:cc:b6:ee:90:96:54:0e:74:c5: 8c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8F:E5:72:A1:47:CD:A5:FC:47:A2:15:60:C0:5F:50:66:2D:E6:4D X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/2171B7C0B7A111EF88C1E184C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.124.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:2b:85:4a:5c:23:eb:8f:5a:61:13:54:06:6a:be:11:ff:db: ee:1b:f9:92:03:92:cd:4a:06:e1:a9:48:21:38:fb:e3:ca:73: f4:f8:2d:1d:e6:5f:f2:bb:cb:19:e7:86:0c:ee:eb:ce:ba:d8: 3c:c1:5a:97:e8:55:05:e7:f6:07:e4:3c:02:1d:5d:d3:3b:b8: 88:a0:33:40:2c:c7:1b:4b:e6:00:8c:d0:0c:50:c7:51:84:d8: 16:2b:7e:4a:a5:ba:1f:20:cf:bd:ce:f8:45:35:66:0b:6c:bc: 5f:37:39:24:32:fc:9a:71:e5:ad:de:d3:69:66:2b:2c:0f:dd: 66:63:95:2d:6c:92:ef:26:78:0b:79:88:0c:5e:91:90:4a:11: 87:07:35:46:92:7b:45:c0:b1:08:f8:84:48:a1:c3:80:0a:06: 63:82:d3:40:b7:47:95:f3:15:7d:f9:3a:b7:37:46:3d:93:90: bc:81:cf:cb:d4:f9:87:73:0e:a8:72:58:19:6e:0c:f4:51:a2: 55:0c:69:e0:1c:6a:89:d8:3e:c1:a5:68:37:26:aa:e9:2a:4b: 97:3f:f4:84:33:6c:4d:62:5f:09:21:93:cd:58:88:c2:ae:60: 7a:13:59:93:91:b0:60:64:83:9d:d7:19:39:5d:34:d9:28:d1: 11:a2:68:fc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQwNy0wMWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9dW9JKg6Hia2htO0Q67iJ+xNEUWuInnSHafBcCGcnFE4Ms+4dlLTyB0DDHQl qssV5aRoXZdT22piEIEKufpxXLH1wStYFRUYcjd5xCOg/YGj2emYGtq5fOKVCS2L YIe5riyHQxh8opG++KJNg74TZoiajwZQShEniQiBJeH2t9YRGoYg7S/e16Tevszk dKcf/NrUkLFiUJLyeEi6bAyB7eC/wDK/wQk14CLBReovy8HK08kcygfq5w7InosL G1qvPlbOCBwwUzn6RU7JXX1uH5O0cgvgGd91MaNvFRsBgafmHp3e/ApyfGEQdqFh mC86pQyPheXMtu6QllQOdMWMtQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHuP5XKh R82l/EeiFWDAX1BmLeZNMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMjE3MUI3QzBC N0ExMTFFRjg4QzFFMTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGg+nwwDQYJKoZIhvcNAQELBQADggEBAFwrhUpcI+uPWmET VAZqvhH/2+4b+ZIDks1KBuGpSCE4++PKc/T4LR3mX/K7yxnnhgzu68662DzBWpfo VQXn9gfkPAIdXdM7uIigM0AsxxtL5gCM0AxQx1GE2BYrfkqluh8gz73O+EU1Zgts vF83OSQy/Jpx5a3e02lmKywP3WZjlS1sku8meAt5iAxekZBKEYcHNUaSe0XAsQj4 hEihw4AKBmOC00C3R5XzFX35Orc3Rj2TkLyBz8vU+YdzDqhyWBluDPRRolUMaeAc aonYPsGlaDcmqukqS5c/9IQzbE1iXwkhk81YiMKuYHoTWZORsGBkg53XGTldNNko 0RGiaPw= -----END CERTIFICATE-----Generated at Sun Sep 7 00:36:48 2025 by rpki-client