$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/37A0A50E44B211EFA3EEED58C4F9AE02.roa File: 37A0A50E44B211EFA3EEED58C4F9AE02.roa (raw, json) Hash identifier: 2z4ALlid0T5jARhoDz66iOwQxCxu/sp6tYIRdQ3kX5c= Subject key identifier: 88:6C:E6:24:8F:12:82:0B:8F:D2:36:0E:AF:A3:80:3D:79:A1:AC:7A Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0694 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/37A0A50E44B211EFA3EEED58C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:23 +0000 ROA not before: Thu 28 Aug 2025 14:51:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152949 IP address blocks: 160.25.164.0/24 maxlen: 24 160.25.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cea-a665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:36:41:8b:81:f8:c6:de:50:76:f1:df:82:1a: 07:2d:23:81:52:db:5a:46:d1:73:2f:dc:88:b7:4c: ec:8a:a1:73:95:2c:40:70:49:65:60:91:0b:2c:1c: 0d:2c:f2:59:c3:a0:81:26:cd:64:4e:20:79:9e:b3: 1a:83:dc:a1:c6:04:e0:43:c5:44:ee:d2:33:01:1b: 57:52:59:aa:d9:da:e0:cc:bd:20:48:cb:ec:eb:03: 73:4e:35:2e:16:38:8f:14:b6:26:a3:9b:e2:db:90: 25:e0:44:ac:0a:37:21:e2:e3:ba:09:20:80:a6:ca: bf:6c:8b:5c:14:0c:21:dc:5b:43:71:1d:50:d4:5c: 45:6d:bb:11:79:1c:df:91:39:bf:99:50:e8:cd:bd: 80:52:54:40:a5:ca:53:66:9a:b9:66:80:c9:14:d5: 80:8e:db:48:5b:46:49:78:bd:8b:44:30:01:81:7b: 88:c8:be:3f:d2:27:68:05:e1:ec:98:a8:1d:7c:2d: 57:04:4f:43:44:83:90:21:b5:b1:55:ad:14:28:ec: d9:e1:4e:98:a0:c4:e4:6b:e8:b2:c2:81:68:e5:16: 27:6b:e6:d8:88:71:b7:31:6e:ce:63:f9:e9:88:37: 3d:a9:de:c5:8f:7c:01:c5:ed:98:10:08:79:0a:2a: af:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6C:E6:24:8F:12:82:0B:8F:D2:36:0E:AF:A3:80:3D:79:A1:AC:7A X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/37A0A50E44B211EFA3EEED58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.164.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:e0:5f:94:3a:42:bd:9d:07:78:3e:56:1c:0d:b2:42:08:6e: e1:4d:f4:ac:91:f2:e0:20:72:0c:d5:ee:80:96:29:cd:78:ae: 0f:e9:f9:bf:93:c1:20:cf:f9:c4:66:17:e5:45:54:46:51:f3: 64:77:4f:0d:e0:a7:ab:49:fd:18:68:fe:c9:cf:04:43:f6:82: 09:49:f7:8f:c8:98:8a:a6:0e:c9:47:9c:74:fc:7f:cb:46:2a: 1b:d5:2c:cb:2e:11:e7:c2:64:e1:24:35:cd:f1:cc:6c:f1:89: c9:85:71:f1:09:75:f3:d3:95:b1:d9:85:55:c9:a1:20:93:08: 71:22:91:aa:7a:78:01:0e:a5:9e:4c:87:b8:10:51:a5:89:c3: 22:60:79:91:8f:92:25:cc:b4:f6:20:b1:e8:16:c8:d6:77:21: a1:d0:19:56:5c:80:68:fb:2c:39:94:8e:0d:7f:71:2f:d0:6f: 5b:b7:9e:d7:d6:92:29:e9:f7:4d:9c:86:bd:ab:a1:33:af:78: ba:6c:d4:59:af:1b:a9:78:18:c6:7d:8a:bd:88:aa:d9:7f:84: 9d:24:a3:39:65:bf:2a:6a:3d:98:1f:e7:27:ce:7d:a7:00:57: 84:0f:bd:7a:27:6f:9a:d7:9c:ec:ab:25:e8:d7:55:d7:51:32: f0:4f:e6:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNlYS1hNjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzZBi4H4xt5QdvHfghoHLSOBUttaRtFzL9yIt0zsiqFzlSxAcEllYJELLBwN LPJZw6CBJs1kTiB5nrMag9yhxgTgQ8VE7tIzARtXUlmq2drgzL0gSMvs6wNzTjUu FjiPFLYmo5vi25Al4ESsCjch4uO6CSCApsq/bItcFAwh3FtDcR1Q1FxFbbsReRzf kTm/mVDozb2AUlRApcpTZpq5ZoDJFNWAjttIW0ZJeL2LRDABgXuIyL4/0idoBeHs mKgdfC1XBE9DRIOQIbWxVa0UKOzZ4U6YoMTka+iywoFo5RYna+bYiHG3MW7OY/np iDc9qd7Fj3wBxe2YEAh5Ciqv5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIhs5iSP EoILj9I2Dq+jgD15oax6MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMzdBMEE1MEU0 NEIyMTFFRkEzRUVFRDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGaQwDQYJKoZIhvcNAQELBQADggEBAGzgX5Q6Qr2dB3g+ VhwNskIIbuFN9KyR8uAgcgzV7oCWKc14rg/p+b+TwSDP+cRmF+VFVEZR82R3Tw3g p6tJ/Rho/snPBEP2gglJ94/ImIqmDslHnHT8f8tGKhvVLMsuEefCZOEkNc3xzGzx icmFcfEJdfPTlbHZhVXJoSCTCHEikap6eAEOpZ5Mh7gQUaWJwyJgeZGPkiXMtPYg segWyNZ3IaHQGVZcgGj7LDmUjg1/cS/Qb1u3ntfWkinp902chr2roTOveLps1Fmv G6l4GMZ9ir2Iqtl/hJ0kozllvypqPZgf5yfOfacAV4QPvXonb5rXnOyrJejXVddR MvBP5t0= -----END CERTIFICATE-----Generated at Sun Sep 7 00:33:40 2025 by rpki-client