$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa File: 4780B0E87FC411EFB3C21C26C4F9AE02.roa (raw, json) Hash identifier: iuQHMtC60NLwi6yF+hSAAMkq8y6vbLFgbM2f0wbKuE4= Subject key identifier: BD:D5:16:42:A7:EB:9A:95:8C:A3:26:54:2C:92:60:E6:06:99:52:0F Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 067D Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:01 +0000 ROA not before: Thu 28 Aug 2025 14:51:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150859 IP address blocks: 157.66.12.0/24 maxlen: 24 157.66.98.0/23 maxlen: 24 157.66.160.0/23 maxlen: 23 157.66.220.0/24 maxlen: 24 157.66.221.0/24 maxlen: 24 160.22.118.0/24 maxlen: 24 160.22.119.0/24 maxlen: 24 160.30.22.0/24 maxlen: 24 160.30.23.0/24 maxlen: 24 160.187.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1661 (0x67d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cd5-5988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fe:10:2a:30:8a:a0:54:a9:c7:b8:b5:17:78: de:c1:81:4e:9f:35:3c:5e:52:89:e3:aa:31:f4:3f: 58:9f:11:93:66:d2:27:bf:52:90:1a:22:31:cd:28: 66:cd:d8:16:ec:43:93:cb:2b:6c:55:e2:3b:58:c4: b2:1a:76:90:d5:37:16:5f:f4:7d:90:8d:3f:aa:a5: 0b:ee:bc:12:6a:bf:7e:1a:cd:18:98:a9:94:6c:a5: 43:97:af:14:9c:ee:33:5f:fc:c4:71:54:d0:cb:31: 3a:7f:83:55:e7:4a:56:78:bb:d3:3c:cc:97:d1:72: e2:45:38:17:eb:f9:55:c1:0c:b8:33:59:38:1c:44: d1:9a:db:d9:52:a7:a8:1c:1f:a4:b0:cd:df:f3:aa: ac:74:1d:0a:03:6b:c2:96:0b:c7:b4:7b:38:62:27: 4e:57:8b:48:28:c5:38:fb:df:1d:14:b5:b1:61:89: d5:ef:80:56:07:0d:63:2a:55:68:84:7b:03:06:36: d1:16:e8:d7:76:5a:2e:f3:1e:1b:51:07:86:ef:3c: 58:8d:e6:d4:c6:d3:77:18:79:a4:7f:2f:67:98:f5: bf:7a:da:71:24:ff:ff:c9:fe:90:f9:29:f9:f9:98: 57:5a:31:cc:6b:df:12:3b:e4:a2:64:26:e8:62:84: a0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D5:16:42:A7:EB:9A:95:8C:A3:26:54:2C:92:60:E6:06:99:52:0F X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/4780B0E87FC411EFB3C21C26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.12.0/24 157.66.98.0/23 157.66.160.0/23 157.66.220.0/23 160.22.118.0/23 160.30.22.0/23 160.187.74.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:4d:bf:7f:5e:06:42:a9:22:19:c8:fd:36:d1:37:47:e9:8d: 4d:4c:2d:63:5f:72:a0:60:e3:65:3f:1a:cf:08:2f:40:e0:aa: 65:e3:09:33:79:d3:6d:d4:97:09:a1:71:43:39:61:c9:50:3c: 78:61:62:d7:40:a0:02:b6:b0:f0:27:36:d6:17:c7:da:a9:cd: 15:6c:22:ee:51:92:2c:69:ab:59:3a:22:e1:52:39:12:41:26: ec:b6:f3:d8:33:be:2f:93:59:f0:10:89:d4:e2:14:ce:20:92: 1c:bc:e5:e3:89:91:ec:53:a4:cd:70:89:6e:0e:8b:13:e1:c3: 10:89:e6:9b:21:39:8f:8a:41:33:94:be:28:b7:a6:e5:62:da: b7:22:22:81:13:ac:a1:14:df:10:5b:c2:1c:b4:34:af:47:23: 49:a2:64:c2:d7:ea:aa:10:5b:be:b8:97:2d:a8:a3:13:cc:a4: 46:32:4a:dc:d1:b8:11:ec:80:cf:c8:55:8e:f1:39:bd:82:ab: cf:54:50:d7:6e:bb:e7:09:f9:7e:ec:1c:d3:54:1c:0d:40:25: 80:5e:dd:29:d4:de:6e:2b:a8:35:0d:94:10:35:25:ae:19:a7: 0c:85:27:b4:8f:a7:f1:2a:b0:37:12:94:40:28:17:ad:a2:11: 13:11:54:86 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICBn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNkNS01OTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3P4QKjCKoFSpx7i1F3jewYFOnzU8XlKJ46ox9D9YnxGTZtInv1KQGiIxzShm zdgW7EOTyytsVeI7WMSyGnaQ1TcWX/R9kI0/qqUL7rwSar9+Gs0YmKmUbKVDl68U nO4zX/zEcVTQyzE6f4NV50pWeLvTPMyX0XLiRTgX6/lVwQy4M1k4HETRmtvZUqeo HB+ksM3f86qsdB0KA2vClgvHtHs4YidOV4tIKMU4+98dFLWxYYnV74BWBw1jKlVo hHsDBjbRFujXdlou8x4bUQeG7zxYjebUxtN3GHmkfy9nmPW/etpxJP//yf6Q+Sn5 +ZhXWjHMa98SO+SiZCboYoSg1QIDAQABo4ICuTCCArUwHQYDVR0OBBYEFL3VFkKn 65qVjKMmVCySYOYGmVIPMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDc4MEIwRTg3 RkM0MTFFRkIzQzIxQzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBACdQgwDBAGdQmIDBAGdQqADBAGdQtwDBAGgFnYDBAGgHhYD BAGgu0owDQYJKoZIhvcNAQELBQADggEBAG1Nv39eBkKpIhnI/TbRN0fpjU1MLWNf cqBg42U/Gs8IL0DgqmXjCTN5023UlwmhcUM5YclQPHhhYtdAoAK2sPAnNtYXx9qp zRVsIu5Rkixpq1k6IuFSORJBJuy289gzvi+TWfAQidTiFM4gkhy85eOJkexTpM1w iW4OixPhwxCJ5pshOY+KQTOUvii3puVi2rciIoETrKEU3xBbwhy0NK9HI0miZMLX 6qoQW764ly2ooxPMpEYyStzRuBHsgM/IVY7xOb2Cq89UUNduu+cJ+X7sHNNUHA1A JYBe3SnU3m4rqDUNlBA1Ja4ZpwyFJ7SPp/EqsDcSlEAoF62iERMRVIY= -----END CERTIFICATE-----Generated at Wed Oct 22 21:25:29 2025 by rpki-client