$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/812B7A9E905411EF9B4B1342C4F9AE02.roa File: 812B7A9E905411EF9B4B1342C4F9AE02.roa (raw, json) Hash identifier: isgsSn/mDqjb1jJ1XOOtp6AlykfdgpXiU//Gh5AGZVk= Subject key identifier: F3:92:A2:78:CC:14:1B:96:82:17:E4:40:E2:8B:8C:D1:53:25:C8:0F Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0665 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/812B7A9E905411EF9B4B1342C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:50:44 +0000 ROA not before: Thu 28 Aug 2025 14:50:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131378 IP address blocks: 160.191.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1637 (0x665) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:44 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cc4-5c35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f3:9e:d8:af:21:a8:26:60:e8:02:51:ca:ad: 34:6c:80:9a:c2:8e:35:f0:81:52:c0:e2:ff:c4:76: 0d:95:c1:a4:77:f1:d4:e0:08:71:cd:1e:57:19:61: e8:0d:40:ab:b3:64:68:05:a0:b1:9e:f9:99:59:f3: 66:97:bd:4c:8d:55:9c:ce:3f:86:60:08:dc:8f:bd: 3d:f3:ca:5e:aa:73:14:4c:33:a2:17:a6:c9:f0:12: 57:4c:05:01:ba:4f:23:8d:03:c1:35:f3:56:56:b1: b4:70:f1:05:95:e2:1d:44:e5:11:5e:60:99:dd:33: 2c:57:57:e0:f4:b0:b0:74:61:74:96:94:04:33:a4: 30:74:0a:9c:58:ff:25:b7:6a:35:d1:10:53:88:cc: 23:c0:be:41:c2:98:be:5d:5c:27:90:d4:b6:77:db: ec:5c:6c:70:d1:62:26:e5:f1:86:48:06:6a:9d:e7: 45:cb:fc:73:72:7b:33:38:31:9f:78:18:e8:ee:bf: 74:cf:9c:52:64:02:a8:39:e3:6b:7c:58:c0:8f:46: 03:ed:32:11:63:bc:e7:b7:ef:38:27:62:20:1c:ef: 10:81:2a:70:c3:51:d3:bc:8e:f9:3a:a4:7f:71:bb: 7c:bc:06:f4:51:e5:62:65:6b:36:49:ec:21:07:ad: bb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:92:A2:78:CC:14:1B:96:82:17:E4:40:E2:8B:8C:D1:53:25:C8:0F X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/812B7A9E905411EF9B4B1342C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.2.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:66:8d:e5:67:81:c4:b4:ff:d9:09:ba:cc:24:8b:a6:5b:0d: f5:c5:7f:fd:4c:4c:b9:7e:c5:ef:c4:e0:60:d3:5c:8c:6c:52: 18:76:67:f4:96:5c:d2:63:45:1f:d4:6e:d2:91:83:62:55:e9: 2f:fc:33:e2:27:36:a7:b3:7b:83:48:2c:66:30:b5:98:23:79: a9:df:8d:a1:ec:bb:cb:3c:82:28:cd:ae:da:f8:3a:ef:25:68: 15:d5:4f:a3:24:7b:7f:1a:64:dd:ae:cb:b3:76:ec:74:47:1d: 12:3f:e1:aa:f8:33:43:3a:0d:b7:c6:d4:f8:b6:d2:15:a9:f8: b5:45:0a:1e:dc:e1:b8:4a:06:42:77:44:d5:3f:f3:a7:f7:93: 6f:38:c8:b0:c8:3d:7b:f9:e5:62:90:05:d9:93:3e:df:99:95: 3f:b4:02:f8:44:1f:b0:a7:a0:4d:2b:fe:83:ce:a3:c5:2b:31: 29:ac:48:f0:eb:b6:86:c8:95:eb:84:94:bd:58:9a:0c:17:dd: 0a:2b:ab:7c:cc:96:75:93:b0:0e:26:a2:35:eb:5f:84:bf:4f: 05:d0:c5:d5:fa:e2:69:14:8b:52:a8:66:93:67:12:48:a2:7d: 0e:7a:48:d1:57:d0:a6:a2:b1:fa:4d:88:ee:b9:22:bb:d5:2f: d9:4f:e2:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNjNC01YzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufOe2K8hqCZg6AJRyq00bICawo418IFSwOL/xHYNlcGkd/HU4AhxzR5XGWHo DUCrs2RoBaCxnvmZWfNml71MjVWczj+GYAjcj70988peqnMUTDOiF6bJ8BJXTAUB uk8jjQPBNfNWVrG0cPEFleIdROURXmCZ3TMsV1fg9LCwdGF0lpQEM6QwdAqcWP8l t2o10RBTiMwjwL5Bwpi+XVwnkNS2d9vsXGxw0WIm5fGGSAZqnedFy/xzcnszODGf eBjo7r90z5xSZAKoOeNrfFjAj0YD7TIRY7znt+84J2IgHO8QgSpww1HTvI75OqR/ cbt8vAb0UeViZWs2SewhB627VwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPOSonjM FBuWghfkQOKLjNFTJcgPMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvODEyQjdBOUU5 MDU0MTFFRjlCNEIxMzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgvwIwDQYJKoZIhvcNAQELBQADggEBAFxmjeVngcS0/9kJ uswki6ZbDfXFf/1MTLl+xe/E4GDTXIxsUhh2Z/SWXNJjRR/UbtKRg2JV6S/8M+In Nqeze4NILGYwtZgjeanfjaHsu8s8gijNrtr4Ou8laBXVT6Mke38aZN2uy7N27HRH HRI/4ar4M0M6DbfG1Pi20hWp+LVFCh7c4bhKBkJ3RNU/86f3k284yLDIPXv55WKQ BdmTPt+ZlT+0AvhEH7CnoE0r/oPOo8UrMSmsSPDrtobIleuElL1YmgwX3Qorq3zM lnWTsA4mojXrX4S/TwXQxdX64mkUi1KoZpNnEkiifQ56SNFX0KaisfpNiO65IrvV L9lP4uE= -----END CERTIFICATE-----Generated at Sun Sep 7 00:37:17 2025 by rpki-client