$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/26D098AC4B3711EF9BAECA83C4F9AE02.roa File: 26D098AC4B3711EF9BAECA83C4F9AE02.roa (raw, json) Hash identifier: VKPdWDYjaF1d5cF19jh6kezFqON/LoRJ98ysnfLZzlg= Subject key identifier: 69:11:FE:8D:10:59:AD:C6:42:E4:7F:77:5E:52:3A:D4:64:80:A7:B1 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0685 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/26D098AC4B3711EF9BAECA83C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:10 +0000 ROA not before: Thu 28 Aug 2025 14:51:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151908 IP address blocks: 157.20.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cde-7e97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ac:7b:bb:74:ec:1b:3f:9c:6f:6e:3c:37:ce: c6:e1:6c:63:5d:f6:a6:f9:af:44:2d:c6:bd:78:b0: b4:0d:f1:d5:44:3d:b8:74:89:39:0b:42:6b:ff:9e: 0c:23:6d:20:27:c5:a4:f7:4b:a4:b6:81:e1:17:09: 99:e0:c6:2a:5d:94:fc:af:d4:f4:be:b1:01:e9:91: c1:8d:e2:4c:31:08:8d:42:4b:69:22:25:75:66:10: d2:16:5a:b4:48:f4:bf:9b:c6:c5:34:6e:c7:56:0f: 2b:09:dd:bd:9e:83:94:ee:72:9b:79:21:fd:d6:a2: 73:d2:d0:23:c9:c9:06:48:cd:5f:c6:21:1c:a7:38: 78:c4:47:13:28:82:f3:df:29:9b:11:80:77:98:16: c1:1a:36:b8:aa:61:f9:40:91:f3:1d:64:18:7c:6a: 5c:e9:57:a7:f5:5c:5f:d0:e3:1a:2a:fd:33:fc:cf: c9:25:3b:4b:a1:ed:e5:55:71:be:90:70:4b:15:6c: c0:f2:cd:06:31:bb:ab:e6:d6:77:05:d2:5d:ac:79: d7:88:71:e1:92:d5:5d:45:d4:13:70:5e:5c:8b:61: ba:05:86:47:14:cd:af:92:c5:a5:cb:9f:55:86:06: 1e:a3:a5:7d:1e:4d:ef:1e:5f:64:1c:5f:a3:23:46: c0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:11:FE:8D:10:59:AD:C6:42:E4:7F:77:5E:52:3A:D4:64:80:A7:B1 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/26D098AC4B3711EF9BAECA83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.60.0/23 Signature Algorithm: sha256WithRSAEncryption 85:fd:98:59:a8:fc:d5:c8:df:ed:67:7f:64:a3:58:fa:8b:9f: bd:b6:be:34:f5:fa:0e:7b:6b:b2:db:b7:62:db:a7:d5:e7:65: eb:76:e0:6c:20:11:07:b9:af:a7:81:d1:fa:31:64:b4:be:9c: 9e:12:d8:e1:89:f7:a1:6d:da:03:e8:60:bb:cf:50:9b:ab:d9: 88:3f:56:7a:41:e0:d4:52:79:43:27:2e:6e:3b:70:3c:5e:8d: 2c:f8:12:14:f1:4f:50:7b:28:fb:24:29:91:d5:10:41:2b:4e: 0c:bd:b3:a1:5b:42:17:8d:c4:c1:da:a4:4f:c7:ae:b6:63:51: 65:d7:f6:5d:5b:92:51:65:84:2e:72:c6:3d:77:d5:de:26:d9: a1:2b:f7:70:b8:52:67:8a:7d:c8:f8:e4:10:87:df:92:ac:0f: a7:44:cf:1a:70:1c:e1:e4:d3:27:a5:44:ae:4e:10:40:be:9d: 2c:42:7f:ba:eb:74:6a:33:36:e1:9e:3c:d1:d1:59:0f:50:3d: c2:ea:30:9a:3d:09:63:2a:7e:f7:24:60:cb:87:23:16:e4:85: c5:2b:ea:4c:90:9e:b7:e4:a5:01:5e:5e:0b:aa:52:9e:ee:8b: 32:25:62:26:b5:ea:e1:94:34:e1:e8:39:39:f1:4a:ca:d5:72: 69:91:3d:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNkZS03ZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxax7u3TsGz+cb248N87G4WxjXfam+a9ELca9eLC0DfHVRD24dIk5C0Jr/54M I20gJ8Wk90uktoHhFwmZ4MYqXZT8r9T0vrEB6ZHBjeJMMQiNQktpIiV1ZhDSFlq0 SPS/m8bFNG7HVg8rCd29noOU7nKbeSH91qJz0tAjyckGSM1fxiEcpzh4xEcTKILz 3ymbEYB3mBbBGja4qmH5QJHzHWQYfGpc6Ven9Vxf0OMaKv0z/M/JJTtLoe3lVXG+ kHBLFWzA8s0GMbur5tZ3BdJdrHnXiHHhktVdRdQTcF5ci2G6BYZHFM2vksWly59V hgYeo6V9Hk3vHl9kHF+jI0bARQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGkR/o0Q Wa3GQuR/d15SOtRkgKexMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMjZEMDk4QUM0 QjM3MTFFRjlCQUVDQTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFDwwDQYJKoZIhvcNAQELBQADggEBAIX9mFmo/NXI3+1n f2SjWPqLn722vjT1+g57a7Lbt2Lbp9XnZet24GwgEQe5r6eB0foxZLS+nJ4S2OGJ 96Ft2gPoYLvPUJur2Yg/VnpB4NRSeUMnLm47cDxejSz4EhTxT1B7KPskKZHVEEEr Tgy9s6FbQheNxMHapE/HrrZjUWXX9l1bklFlhC5yxj131d4m2aEr93C4UmeKfcj4 5BCH35KsD6dEzxpwHOHk0yelRK5OEEC+nSxCf7rrdGozNuGePNHRWQ9QPcLqMJo9 CWMqfvckYMuHIxbkhcUr6kyQnrfkpQFeXguqUp7uizIlYia16uGUNOHoOTnxSsrV cmmRPaE= -----END CERTIFICATE-----Generated at Sun Sep 7 00:33:40 2025 by rpki-client