$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/554A2D46AB0A11EF96A1610EC4F9AE02.roa File: 554A2D46AB0A11EF96A1610EC4F9AE02.roa (raw, json) Hash identifier: dl0PmuFxwFrGzuF6tzhqBF6POhdKdxVlBV4d0Hl8oAE= Subject key identifier: 28:B1:06:98:0C:9A:A3:1D:6F:EA:92:D9:56:33:E2:70:56:6F:E9:5D Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06AF Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/554A2D46AB0A11EF96A1610EC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:45 +0000 ROA not before: Thu 28 Aug 2025 14:51:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153403 IP address blocks: 160.191.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1711 (0x6af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d01-e0c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2f:ca:65:4d:2b:b7:67:c8:f4:2e:89:8f:9b: d9:1a:fc:50:98:cf:17:13:d9:4e:60:1c:c5:99:62: 12:8a:c8:0b:40:7d:d9:8b:22:39:85:f4:14:92:f3: e5:ca:ff:1d:b9:5a:6d:17:70:8b:21:ae:e7:c1:8d: fa:49:3d:a0:ff:1f:54:e0:76:c4:29:27:8f:48:14: 42:7b:a5:19:c3:e8:6e:c0:ca:c5:f3:ca:ec:f2:73: b1:0d:22:77:94:e4:a2:43:80:3a:98:57:2d:17:6d: 0a:18:fe:f4:45:f1:18:c4:95:35:dd:44:83:21:d7: 71:9f:bc:22:1a:35:ce:1b:99:80:4e:6b:cd:a1:2c: b4:1f:44:ac:9b:a5:9b:04:5c:2d:93:3a:c0:0d:69: 29:b8:0d:45:b8:75:d3:04:b2:69:42:9b:55:67:30: 97:59:b0:4d:1c:b2:fa:3f:26:32:b7:48:62:58:24: e6:60:0a:a5:d6:93:38:94:7d:f8:2b:74:b1:19:bc: f1:ea:91:1e:99:5b:36:a2:de:55:fe:8c:94:80:e1: 7f:62:7c:a7:a0:48:8a:16:fe:25:a7:aa:cf:d3:11: f5:d2:1c:a4:e3:9a:68:dd:fd:cb:75:60:0d:99:b7: 3f:fe:82:e6:62:97:64:12:e6:50:48:7f:fe:7b:c8: 02:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B1:06:98:0C:9A:A3:1D:6F:EA:92:D9:56:33:E2:70:56:6F:E9:5D X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/554A2D46AB0A11EF96A1610EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.166.0/23 Signature Algorithm: sha256WithRSAEncryption 17:ef:9f:01:25:c1:86:f1:bf:5d:f7:90:81:5d:32:33:70:fd: 00:92:38:da:e1:f8:dd:5d:33:73:a0:fd:37:be:77:34:54:bc: 73:89:92:4c:1f:0d:e7:9d:a5:b3:72:00:59:36:cb:ae:62:34: 08:b1:7c:17:60:b4:3d:4e:72:f4:f7:57:09:a7:e1:4a:ae:7e: a3:d5:fe:ea:08:7a:af:1a:61:98:fa:8c:90:22:e3:15:e2:06: 7f:23:77:7f:a2:e8:5b:85:c6:70:ef:09:d3:9b:d8:f6:58:63: 63:7d:0a:3c:42:bd:5c:22:63:20:8a:65:75:2f:cb:15:0a:4c: 2e:a7:a6:c1:03:79:34:10:ec:50:fd:cc:1e:ec:01:6d:ab:c1: c0:fe:8c:63:fd:e1:f0:f0:54:62:05:c2:c2:79:99:ea:80:20: 92:e6:50:54:b6:32:61:cb:52:7a:13:3f:10:5d:75:59:a2:cc: 0d:45:b6:49:0f:9e:8c:23:6f:5f:32:92:63:fa:cc:c3:a8:b1: 60:ec:10:66:c3:63:96:0b:ea:8d:61:bf:a7:49:d2:de:e1:ef: fc:84:4f:6f:5a:e6:e8:e5:94:18:8a:fb:13:65:b1:9c:9c:ba: 8d:29:e6:a1:c3:97:5c:f7:2a:dc:4e:97:f0:bf:72:51:ec:9c: 4b:d0:61:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQwMS1lMGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxS/KZU0rt2fI9C6Jj5vZGvxQmM8XE9lOYBzFmWISisgLQH3ZiyI5hfQUkvPl yv8duVptF3CLIa7nwY36ST2g/x9U4HbEKSePSBRCe6UZw+huwMrF88rs8nOxDSJ3 lOSiQ4A6mFctF20KGP70RfEYxJU13USDIddxn7wiGjXOG5mATmvNoSy0H0Ssm6Wb BFwtkzrADWkpuA1FuHXTBLJpQptVZzCXWbBNHLL6PyYyt0hiWCTmYAql1pM4lH34 K3SxGbzx6pEemVs2ot5V/oyUgOF/YnynoEiKFv4lp6rP0xH10hyk45po3f3LdWAN mbc//oLmYpdkEuZQSH/+e8gCBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCixBpgM mqMdb+qS2VYz4nBWb+ldMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNTU0QTJENDZB QjBBMTFFRjk2QTE2MTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv6YwDQYJKoZIhvcNAQELBQADggEBABfvnwElwYbxv133 kIFdMjNw/QCSONrh+N1dM3Og/Te+dzRUvHOJkkwfDeedpbNyAFk2y65iNAixfBdg tD1OcvT3Vwmn4UqufqPV/uoIeq8aYZj6jJAi4xXiBn8jd3+i6FuFxnDvCdOb2PZY Y2N9CjxCvVwiYyCKZXUvyxUKTC6npsEDeTQQ7FD9zB7sAW2rwcD+jGP94fDwVGIF wsJ5meqAIJLmUFS2MmHLUnoTPxBddVmizA1FtkkPnowjb18ykmP6zMOosWDsEGbD Y5YL6o1hv6dJ0t7h7/yET29a5ujllBiK+xNlsZycuo0p5qHDl1z3KtxOl/C/clHs nEvQYS0= -----END CERTIFICATE-----Generated at Sun Sep 7 00:29:41 2025 by rpki-client