$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/5D5359F8E3AA11EFA9ED913FC4F9AE02.roa File: 5D5359F8E3AA11EFA9ED913FC4F9AE02.roa (raw, json) Hash identifier: AH9AJjOAi+oV94qseNOTM3ZvzumOUS/FGxqIEY7BtI0= Subject key identifier: F7:00:4F:FA:F7:85:27:55:4B:76:55:3C:20:0F:66:71:CF:67:B6:B3 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06BF Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/5D5359F8E3AA11EFA9ED913FC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:57 +0000 ROA not before: Thu 28 Aug 2025 14:51:57 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153543 IP address blocks: 161.248.212.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:57 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d0d-dc55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:db:5c:1d:e6:95:8c:5f:0f:ed:be:3e:33:a1: 13:e4:03:cc:66:b0:ee:5a:36:9f:b2:86:d1:97:0d: 6b:0f:33:dc:7b:74:6f:0a:d6:0c:12:2a:6f:92:da: 5f:f5:98:4f:7d:bd:c9:e2:bf:c1:b8:19:db:1f:73: df:71:a2:cc:af:a4:a8:3c:45:c2:f6:75:3c:07:11: 8c:57:09:5a:73:e6:00:dd:4c:b1:06:92:11:14:a1: f7:41:47:27:02:d2:84:3f:33:69:f7:4f:d2:09:48: d5:02:e0:d1:3b:8e:67:1b:5a:a5:b2:55:4b:9e:ac: fa:6b:77:91:c9:30:68:65:5e:9a:da:83:a0:a3:f9: a6:18:1c:87:08:1c:9b:84:55:96:5b:79:1a:cf:fb: fc:ba:e4:4a:85:94:07:91:37:ad:c0:e8:e6:19:5c: 90:0d:4a:bb:37:81:67:f3:e7:b5:59:94:38:81:14: 4f:23:2b:93:64:f2:d5:3d:45:2e:c1:8d:87:26:f7: 50:7e:bf:ae:7a:7c:f3:17:36:b1:c0:90:02:26:c9: 81:a0:dc:c5:80:4d:92:12:63:73:c7:df:8e:cc:39: a7:b5:20:86:d1:ea:4f:03:cf:ed:63:04:02:84:95: 79:93:8c:ac:f3:7f:2c:d8:67:14:c1:aa:c4:e9:49: 6e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:00:4F:FA:F7:85:27:55:4B:76:55:3C:20:0F:66:71:CF:67:B6:B3 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/5D5359F8E3AA11EFA9ED913FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.212.0/23 Signature Algorithm: sha256WithRSAEncryption 77:49:f9:37:85:fc:30:bb:29:06:49:df:39:5a:fe:8e:2d:36: 0c:62:2b:9c:01:d1:62:98:53:4d:3b:f7:db:59:19:73:89:d4: 4a:16:21:10:f0:b6:f4:cf:cb:fd:18:1c:dc:a2:7e:85:81:fe: 0b:ad:32:5a:89:d0:5f:ea:a6:64:f2:d6:10:fd:f1:96:15:de: c1:a0:18:40:bf:7e:62:a0:77:06:83:19:08:2b:69:24:cb:68: 97:9f:2a:50:06:b4:5b:52:1b:ce:92:bb:16:1b:35:de:f9:bb: 6b:dd:5c:59:a5:91:d3:ef:de:c4:a3:b0:b0:e2:6a:ba:ca:09: 1d:b5:41:2a:dc:2d:7f:9a:38:fb:8f:51:25:ab:8f:02:e7:49: 4b:99:14:5f:7b:81:b0:70:47:bd:a1:b6:e3:0c:a4:c6:01:52: 6e:aa:d4:bb:8f:c3:c5:ac:21:76:7a:96:f6:fe:eb:70:dd:d8: b2:ef:01:17:18:ab:d1:44:33:e7:d0:03:ea:a8:f3:ad:b6:79: bc:07:fe:55:98:c8:d3:44:43:5a:4a:38:97:9a:c3:17:b7:80: 46:d0:90:45:26:a4:fc:02:8a:ca:22:06:af:d1:bd:cb:e0:19: 98:f3:17:92:4d:28:e8:ba:5f:77:56:b5:44:3c:4a:6a:e8:6d: 49:37:20:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTU3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQwZC1kYzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNtcHeaVjF8P7b4+M6ET5APMZrDuWjafsobRlw1rDzPce3RvCtYMEipvktpf 9ZhPfb3J4r/BuBnbH3PfcaLMr6SoPEXC9nU8BxGMVwlac+YA3UyxBpIRFKH3QUcn AtKEPzNp90/SCUjVAuDRO45nG1qlslVLnqz6a3eRyTBoZV6a2oOgo/mmGByHCByb hFWWW3kaz/v8uuRKhZQHkTetwOjmGVyQDUq7N4Fn8+e1WZQ4gRRPIyuTZPLVPUUu wY2HJvdQfr+uenzzFzaxwJACJsmBoNzFgE2SEmNzx9+OzDmntSCG0epPA8/tYwQC hJV5k4ys838s2GcUwarE6UlulwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPcAT/r3 hSdVS3ZVPCAPZnHPZ7azMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvNUQ1MzU5RjhF M0FBMTFFRkE5RUQ5MTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+NQwDQYJKoZIhvcNAQELBQADggEBAHdJ+TeF/DC7KQZJ 3zla/o4tNgxiK5wB0WKYU00799tZGXOJ1EoWIRDwtvTPy/0YHNyifoWB/gutMlqJ 0F/qpmTy1hD98ZYV3sGgGEC/fmKgdwaDGQgraSTLaJefKlAGtFtSG86SuxYbNd75 u2vdXFmlkdPv3sSjsLDiarrKCR21QSrcLX+aOPuPUSWrjwLnSUuZFF97gbBwR72h tuMMpMYBUm6q1LuPw8WsIXZ6lvb+63Dd2LLvARcYq9FEM+fQA+qo8622ebwH/lWY yNNEQ1pKOJeawxe3gEbQkEUmpPwCisoiBq/RvcvgGZjzF5JNKOi6X3dWtUQ8Smro bUk3IIg= -----END CERTIFICATE-----Generated at Sun Sep 7 00:36:48 2025 by rpki-client