$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa File: 45FFCD9AD6E511EE9E963F62C4F9AE02.roa (raw, json) Hash identifier: UK6pxzGrpgIcc5HOI6SDeP1EdrdaC9Q4U6wckV7EOF8= Subject key identifier: 72:7E:BB:52:91:62:C6:4B:33:5F:53:CB:EE:9F:7A:DF:73:09:B2:AB Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0667 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:50:45 +0000 ROA not before: Thu 28 Aug 2025 14:50:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135905 IP address blocks: 157.20.88.0/23 maxlen: 24 160.22.102.0/23 maxlen: 24 160.191.100.0/23 maxlen: 23 160.250.126.0/23 maxlen: 24 160.250.188.0/23 maxlen: 24 165.101.114.0/23 maxlen: 24 165.101.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cc5-b9e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a4:9e:29:b6:74:ce:1a:0b:f2:2d:0a:46:57: 84:ed:fb:3b:62:3c:6a:59:f3:fe:f0:de:b7:92:b7: f9:5f:3c:a7:0a:be:32:62:7e:76:43:a1:e0:69:77: 8f:17:0a:9a:68:08:85:4c:04:fb:fe:d7:11:22:25: 6a:98:66:ae:67:3f:47:51:1b:9d:fe:75:aa:63:0b: a9:85:f6:00:00:aa:a2:b2:3a:1e:9e:33:28:8b:0d: 30:c2:07:99:64:d4:75:fc:8c:6c:0c:86:d5:db:05: 0d:70:cd:6e:5b:9c:a3:37:7a:f4:8a:22:f1:ef:03: 60:58:93:14:45:3b:5a:28:d5:3e:cc:22:de:ec:8a: de:df:76:11:2d:49:8c:37:37:e0:ad:72:6e:a2:01: 2c:4f:4b:a3:75:00:43:0d:c2:66:15:ca:0e:88:ed: 5a:55:3a:0d:7a:e3:d3:c3:ac:ed:76:cb:83:e1:5e: 5d:12:11:ca:13:4a:5e:81:17:62:e1:c9:84:de:4f: 8f:85:fa:62:29:05:bd:08:39:ed:74:a9:6b:67:ff: c5:86:91:f0:9a:c8:19:a5:bd:6d:99:3c:3b:e1:ed: 83:68:65:ff:03:82:78:91:cc:52:91:38:b0:89:71: 8f:df:19:b3:05:c3:e4:0d:82:6a:9e:7f:8c:be:58: e9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:7E:BB:52:91:62:C6:4B:33:5F:53:CB:EE:9F:7A:DF:73:09:B2:AB X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/45FFCD9AD6E511EE9E963F62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.88.0/23 160.22.102.0/23 160.191.100.0/23 160.250.126.0/23 160.250.188.0/23 165.101.114.0-165.101.117.255 Signature Algorithm: sha256WithRSAEncryption 83:e9:51:be:51:dd:89:bc:3c:26:f2:40:ec:4a:6b:1d:67:14: 17:23:a1:13:5f:c4:f4:72:ed:a6:be:a7:5f:9e:db:66:f5:81: 2e:c0:1d:ff:42:9f:72:19:64:cc:52:04:38:31:6a:61:48:b7: f1:55:43:93:5c:cc:76:16:b8:0d:5e:a2:4a:88:72:01:97:4b: 79:53:ac:bd:6d:9e:85:09:e2:93:2c:f4:fe:f3:fb:a3:63:58: 9c:db:26:30:52:21:01:2a:98:ca:8b:3a:4b:05:4b:e6:87:ee: a7:e9:f2:97:4c:34:42:5f:a4:f4:4f:ac:44:fb:c5:32:b1:c6: e4:84:da:a9:11:6c:3a:d1:93:72:79:6b:41:57:e9:b3:57:c8: e2:5d:31:85:11:88:80:47:2d:5b:cb:bd:cd:41:28:3e:65:b6: ec:44:db:1f:1d:2b:ee:ef:f3:2f:dc:8d:ef:8f:13:2d:e8:dd: b5:ed:da:bd:44:a7:48:c7:2b:c6:72:3d:25:c9:e4:90:81:bc: ad:de:20:3e:73:1f:e3:42:ec:2a:a1:5e:58:12:c5:98:3e:e8: 1f:8e:f4:a8:30:ec:12:52:4d:7f:4b:59:dc:3d:18:da:04:5b: 51:3b:8e:27:43:24:79:db:b4:fd:92:ba:94:87:96:11:7a:d1: 00:b0:49:27 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNjNS1iOWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5aSeKbZ0zhoL8i0KRleE7fs7YjxqWfP+8N63krf5XzynCr4yYn52Q6HgaXeP FwqaaAiFTAT7/tcRIiVqmGauZz9HURud/nWqYwuphfYAAKqisjoenjMoiw0wwgeZ ZNR1/IxsDIbV2wUNcM1uW5yjN3r0iiLx7wNgWJMURTtaKNU+zCLe7Ire33YRLUmM NzfgrXJuogEsT0ujdQBDDcJmFcoOiO1aVToNeuPTw6ztdsuD4V5dEhHKE0pegRdi 4cmE3k+PhfpiKQW9CDntdKlrZ//FhpHwmsgZpb1tmTw74e2DaGX/A4J4kcxSkTiw iXGP3xmzBcPkDYJqnn+MvljpOwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFHJ+u1KR YsZLM19Ty+6fet9zCbKrMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDVGRkNEOUFE NkU1MTFFRTlFOTYzRjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAGdFFgDBAGgFmYDBAGgv2QDBAGg+n4DBAGg+rwwDAMEAaVl cgMEAaVldDANBgkqhkiG9w0BAQsFAAOCAQEAg+lRvlHdibw8JvJA7EprHWcUFyOh E1/E9HLtpr6nX57bZvWBLsAd/0KfchlkzFIEODFqYUi38VVDk1zMdha4DV6iSohy AZdLeVOsvW2ehQnikyz0/vP7o2NYnNsmMFIhASqYyos6SwVL5ofup+nyl0w0Ql+k 9E+sRPvFMrHG5ITaqRFsOtGTcnlrQVfps1fI4l0xhRGIgEctW8u9zUEoPmW27ETb Hx0r7u/zL9yN748TLejdte3avUSnSMcrxnI9JcnkkIG8rd4gPnMf40LsKqFeWBLF mD7oH470qDDsElJNf0tZ3D0Y2gRbUTuOJ0Mkedu0/ZK6lIeWEXrRALBJJw== -----END CERTIFICATE-----Generated at Tue Sep 9 03:40:18 2025 by rpki-client