$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/8D9878B6736D11F0AA6D9947C4F9AE02.roa File: 8D9878B6736D11F0AA6D9947C4F9AE02.roa (raw, json) Hash identifier: 9zdKo11HUsiP4RfRaeZ7T0xhPYQFFgP5nk8qHu7xpMk= Subject key identifier: BB:DC:59:67:06:60:96:4E:78:74:9D:C4:53:A3:01:1B:9E:C8:98:63 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06C5 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/8D9878B6736D11F0AA6D9947C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:03 +0000 ROA not before: Thu 28 Aug 2025 14:52:03 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154091 IP address blocks: 198.56.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1733 (0x6c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:52:03 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d13-68e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d1:1e:9f:fe:17:59:2b:9d:62:f1:73:db:2d: cb:b2:a1:6d:9f:fb:ff:a0:7f:d6:28:b0:14:11:01: 67:eb:d0:b2:a5:63:05:b9:f5:5b:19:2d:9f:d6:79: 42:02:68:3b:d0:97:01:75:d2:c5:2c:52:a7:88:65: 5a:33:ef:7e:8a:e0:29:ec:2b:3f:a7:d4:69:a8:52: 7f:c5:e2:6b:4c:6f:93:d9:cd:9c:79:80:7f:b3:86: 0b:2c:3b:a8:16:04:ea:f0:a4:20:cf:35:7b:c5:67: 89:a1:7b:f9:4e:c3:23:b5:c6:5a:db:7e:40:85:96: 20:dc:33:b1:63:e5:76:1c:5e:e2:64:ff:63:4d:73: b6:85:74:b8:7a:1c:fc:7d:46:c1:9e:59:4e:5d:c3: 83:21:95:0a:bf:1e:51:bd:c3:37:1a:97:57:bb:51: 02:8d:96:b2:12:a5:71:32:a5:dd:bd:b5:9c:08:8a: e4:52:97:53:bb:25:ad:40:88:c6:63:21:1c:15:1a: 60:5b:6a:56:99:29:96:61:ba:71:f0:8f:7e:e8:cb: e4:6c:5c:8e:4e:0e:45:e4:2e:80:5c:e6:d6:81:45: 9d:db:4f:14:9b:e9:91:f4:dc:65:1d:d7:ee:f9:f1: da:58:da:8e:90:de:76:54:fc:21:54:48:4a:c4:42: 81:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DC:59:67:06:60:96:4E:78:74:9D:C4:53:A3:01:1B:9E:C8:98:63 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/8D9878B6736D11F0AA6D9947C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 198.56.22.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:8e:4b:a5:b5:65:2c:da:14:3e:ea:a4:da:4b:ef:b6:9d:36: 8e:3c:ce:88:c8:05:88:2f:b7:d6:48:40:83:46:84:81:73:11: d2:02:1c:ae:3f:4a:d6:46:13:cc:5a:d9:d9:10:46:49:17:29: e7:e7:bc:98:43:4e:b3:8f:c8:cc:1b:66:c8:54:f6:c0:63:e3: 64:53:6a:f2:18:1b:96:20:1d:77:4b:c2:87:01:d1:6b:06:16: 99:44:e3:fe:13:27:66:21:20:5c:22:2f:77:c9:f7:ef:fe:08: 8f:1e:a7:94:cd:b0:29:b6:9b:7e:46:1c:64:d4:d8:a5:54:45: a2:de:31:32:3f:8b:2b:91:90:74:f7:c7:1b:f1:91:0f:6b:95: 58:dd:e6:67:e1:41:f3:14:4b:69:21:36:04:89:d2:9b:b0:e1: 44:44:22:58:2e:3e:6f:d5:f3:74:d8:9e:a4:48:bb:d5:9d:9f: fb:55:1c:4b:4e:be:82:fb:6b:e4:a5:6e:6c:b0:de:76:df:3d: ed:a8:8f:b5:8b:9a:25:60:a4:b6:3a:0e:bf:81:2f:2a:6b:68: 7c:08:7a:33:3f:46:8f:72:c4:9e:d2:69:2e:e0:07:d8:02:fb: a0:9a:5e:bf:c7:30:a7:41:bd:f8:7a:f0:5f:1d:76:27:cf:27: e9:58:84:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MjAzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQxMy02OGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmdEen/4XWSudYvFz2y3LsqFtn/v/oH/WKLAUEQFn69CypWMFufVbGS2f1nlC Amg70JcBddLFLFKniGVaM+9+iuAp7Cs/p9RpqFJ/xeJrTG+T2c2ceYB/s4YLLDuo FgTq8KQgzzV7xWeJoXv5TsMjtcZa235AhZYg3DOxY+V2HF7iZP9jTXO2hXS4ehz8 fUbBnllOXcODIZUKvx5RvcM3GpdXu1ECjZayEqVxMqXdvbWcCIrkUpdTuyWtQIjG YyEcFRpgW2pWmSmWYbpx8I9+6MvkbFyOTg5F5C6AXObWgUWd208Um+mR9NxlHdfu +fHaWNqOkN52VPwhVEhKxEKBdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLvcWWcG YJZOeHSdxFOjARueyJhjMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvOEQ5ODc4QjY3 MzZEMTFGMEFBNkQ5OTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHGOBYwDQYJKoZIhvcNAQELBQADggEBADyOS6W1ZSzaFD7q pNpL77adNo48zojIBYgvt9ZIQINGhIFzEdICHK4/StZGE8xa2dkQRkkXKefnvJhD TrOPyMwbZshU9sBj42RTavIYG5YgHXdLwocB0WsGFplE4/4TJ2YhIFwiL3fJ9+/+ CI8ep5TNsCm2m35GHGTU2KVURaLeMTI/iyuRkHT3xxvxkQ9rlVjd5mfhQfMUS2kh NgSJ0puw4UREIlguPm/V83TYnqRIu9Wdn/tVHEtOvoL7a+Slbmyw3nbfPe2oj7WL miVgpLY6Dr+BLypraHwIejM/Ro9yxJ7SaS7gB9gC+6CaXr/HMKdBvfh68F8ddifP J+lYhJA= -----END CERTIFICATE-----Generated at Sun Sep 7 00:31:10 2025 by rpki-client