$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/48233A50B41511EE96538481C4F9AE02.roa File: 48233A50B41511EE96538481C4F9AE02.roa (raw, json) Hash identifier: GMlHfRW1ZLUjH6hLyLEq2xQRZpADDgC+7SefdzG4be0= Subject key identifier: A3:3E:50:85:DF:97:B9:CD:69:3F:1D:F5:53:72:43:F3:F1:30:3B:29 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 067A Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/48233A50B41511EE96538481C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:50:59 +0000 ROA not before: Thu 28 Aug 2025 14:50:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150698 IP address blocks: 157.10.46.0/23 maxlen: 23 157.10.194.0/24 maxlen: 24 157.10.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1658 (0x67a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:59 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cd3-9fba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e6:55:4d:a9:da:64:44:fa:03:d1:79:a4:a5: e3:ab:8a:e6:df:1a:73:63:37:ee:98:75:d3:c5:39: 38:ce:bc:8f:66:45:51:3e:fe:e9:57:d0:e4:df:a9: 59:65:30:8b:59:19:ef:0f:ca:0a:0e:9d:ba:df:23: 91:0e:54:dd:07:d1:24:e5:00:3e:08:13:89:b2:8a: 32:7b:87:1b:5f:85:3d:76:20:10:a1:36:49:51:9f: b4:c6:0c:8a:4e:37:50:2f:fc:f1:f2:af:8e:75:49: 4a:43:13:7c:c4:f7:35:c4:49:da:33:c9:c4:b7:1e: 4f:58:3f:94:47:fb:73:b1:0f:f5:f6:68:80:60:c6: 38:fc:a0:34:85:b8:d6:ab:c0:de:4e:fe:24:7d:25: f9:f3:ef:04:42:5a:92:9b:4e:fd:ca:48:30:4e:46: 16:7c:3e:23:bd:e5:9f:32:7b:c0:57:2d:5e:76:47: e6:3a:6c:ce:7c:d5:1c:dd:e3:dc:44:d4:44:b7:97: bd:9c:1c:f9:5d:f4:bb:1b:50:bf:c7:0c:dc:f6:d3: 0a:ae:ff:dd:92:e1:4b:76:8d:08:06:2e:81:f1:f1: 2b:2b:55:f1:65:3f:b0:b7:a3:66:5c:a9:59:76:e9: 0c:5c:c0:dd:59:e9:d7:0c:50:2e:4f:24:a7:11:7b: 9b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:3E:50:85:DF:97:B9:CD:69:3F:1D:F5:53:72:43:F3:F1:30:3B:29 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/48233A50B41511EE96538481C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.46.0/23 157.10.194.0/23 Signature Algorithm: sha256WithRSAEncryption a4:5c:a8:74:b8:86:dd:1f:3e:10:75:dc:ec:4a:dd:9b:a8:7c: 52:42:06:e2:c1:4f:38:aa:18:8b:25:c1:9e:35:ef:5a:51:45: 3d:b6:a6:ed:72:6b:4b:47:1f:6b:09:c5:4a:09:c3:6d:02:37: e8:e4:19:ff:8d:bb:95:14:b5:43:76:fb:d5:32:78:c8:16:c5: 72:b0:8b:90:4f:91:30:24:e0:6c:3d:ad:55:ba:d6:55:33:e9: 63:b7:96:e0:ae:b6:cc:0b:9d:83:af:c3:4e:3b:6f:d2:a0:92: 92:88:6b:4a:f1:bb:07:f9:85:e9:64:e0:60:8e:2a:d3:59:f4: 9e:12:30:2a:33:40:e0:bb:d8:f0:fa:fd:be:f2:d2:68:ba:aa: 0f:4a:01:8d:65:60:94:d0:b0:6f:16:a8:55:0d:b7:fc:63:a3: 1c:05:42:16:e1:6d:5b:69:28:15:1e:46:b6:ce:3a:a1:3c:77: 7b:ab:b9:2a:3f:9f:0f:57:57:ea:cd:c7:52:f1:41:0f:b1:34: 9a:9e:a9:59:ae:dd:66:a7:84:5f:e9:8d:e9:07:2f:91:2f:f7: 64:9a:e1:9e:90:97:b8:a6:09:44:3e:14:96:7f:5f:07:a7:1f: b6:55:f7:90:4d:8c:24:c1:55:09:8d:8f:9d:62:f2:63:8b:1b: c4:1e:d3:9f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNkMy05ZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOZVTanaZET6A9F5pKXjq4rm3xpzYzfumHXTxTk4zryPZkVRPv7pV9Dk36lZ ZTCLWRnvD8oKDp263yORDlTdB9Ek5QA+CBOJsooye4cbX4U9diAQoTZJUZ+0xgyK TjdQL/zx8q+OdUlKQxN8xPc1xEnaM8nEtx5PWD+UR/tzsQ/19miAYMY4/KA0hbjW q8DeTv4kfSX58+8EQlqSm079ykgwTkYWfD4jveWfMnvAVy1edkfmOmzOfNUc3ePc RNREt5e9nBz5XfS7G1C/xwzc9tMKrv/dkuFLdo0IBi6B8fErK1XxZT+wt6NmXKlZ dukMXMDdWenXDFAuTySnEXubzQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKM+UIXf l7nNaT8d9VNyQ/PxMDspMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNDgyMzNBNTBC NDE1MTFFRTk2NTM4NDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGdCi4DBAGdCsIwDQYJKoZIhvcNAQELBQADggEBAKRcqHS4 ht0fPhB13OxK3ZuofFJCBuLBTziqGIslwZ4171pRRT22pu1ya0tHH2sJxUoJw20C N+jkGf+Nu5UUtUN2+9UyeMgWxXKwi5BPkTAk4Gw9rVW61lUz6WO3luCutswLnYOv w047b9KgkpKIa0rxuwf5helk4GCOKtNZ9J4SMCozQOC72PD6/b7y0mi6qg9KAY1l YJTQsG8WqFUNt/xjoxwFQhbhbVtpKBUeRrbOOqE8d3uruSo/nw9XV+rNx1LxQQ+x NJqeqVmu3WanhF/pjekHL5Ev92Sa4Z6Ql7imCUQ+FJZ/XwenH7ZV95BNjCTBVQmN j51i8mOLG8Qe058= -----END CERTIFICATE-----Generated at Sun Sep 7 00:35:05 2025 by rpki-client