$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/961F0878679311F0BBE7DC25C4F9AE02.roa File: 961F0878679311F0BBE7DC25C4F9AE02.roa (raw, json) Hash identifier: dw3dtf56EKU0xqY862bE2ajZh1R6wjU3ajV2vv18T4Q= Subject key identifier: D0:4D:56:7D:5B:89:E5:D1:BC:09:67:0E:1F:11:07:CF:7E:2B:DA:66 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 066B Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/961F0878679311F0BBE7DC25C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:50:48 +0000 ROA not before: Thu 28 Aug 2025 14:50:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135935 IP address blocks: 148.222.88.0/24 maxlen: 24 148.222.89.0/24 maxlen: 24 148.222.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1643 (0x66b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cc8-88f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1d:1d:8d:0b:ce:ca:fa:fa:dd:de:b8:c1:c3: 30:b2:64:ef:c0:68:06:8b:cd:70:54:b4:9a:f3:34: 4f:73:0f:ca:98:08:b4:c0:cc:90:4e:23:40:af:57: 80:aa:8d:ef:96:94:41:90:ee:27:e1:df:df:ab:f4: 57:2e:8e:35:15:e7:0a:e1:fb:85:ed:91:da:8a:0b: d6:7b:98:ff:6d:ab:bf:49:f5:de:be:42:51:03:8a: 4d:be:7a:8c:83:3e:8c:fd:f9:1c:19:bb:98:ca:4c: 13:77:cf:93:e7:94:30:3f:b4:42:20:ac:91:9a:0e: e1:de:a0:56:37:cd:c6:e0:13:02:98:db:7b:73:56: 48:f6:1d:dc:87:0d:5a:a0:82:a0:f6:a1:74:bb:79: 3c:5a:95:22:ff:81:a1:56:67:5f:77:17:3e:e2:0b: 8f:35:3a:b5:08:88:5c:3d:3d:be:3f:e3:7f:7d:3f: 27:a9:48:b2:75:f1:37:4c:99:6d:2d:f1:99:fc:e2: 07:55:30:3b:1c:0d:89:bc:9f:4a:5c:bc:e6:af:de: 8f:f4:55:59:85:b5:9d:30:75:49:09:7c:b5:1b:cd: e5:14:9d:1b:0a:07:8c:b0:90:ba:f8:89:d3:b3:aa: 31:9d:8a:45:71:d9:3c:e7:93:0f:40:79:8b:08:2e: 94:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4D:56:7D:5B:89:E5:D1:BC:09:67:0E:1F:11:07:CF:7E:2B:DA:66 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/961F0878679311F0BBE7DC25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.222.88.0/23 148.222.94.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:90:72:d2:0d:48:e1:39:c0:b3:98:70:dd:16:07:a7:79:cd: e1:31:a6:89:90:54:ef:74:1a:e8:e5:10:8c:a5:26:f4:b1:d7: 4a:4f:8e:c2:69:12:ad:80:18:de:c8:89:56:f7:41:cb:11:5c: 4f:d4:b6:b3:fc:0e:f2:94:ea:37:8a:8b:b9:f2:c5:55:b1:6d: f0:84:c2:47:fd:02:d6:e2:32:e0:ad:4d:82:15:9d:8b:d8:f8: fa:4b:9b:33:5c:48:4a:a7:f1:91:13:76:95:6b:9d:ec:ee:35: de:c9:8d:67:e8:af:d3:52:00:93:be:07:18:1e:1c:bd:c3:86: c7:12:59:d0:7f:4e:1c:62:79:d7:57:97:de:11:a5:f5:7e:23: 08:44:33:7b:83:bf:8b:b1:fe:77:b0:7c:de:8a:be:7e:91:20: f0:98:f8:65:af:dc:af:fd:34:a9:b2:5c:7f:ee:98:56:8b:d9: 57:9e:aa:9a:d2:68:05:cc:0b:7c:91:a3:f5:eb:1e:da:4d:f5: ae:ed:06:72:a9:2c:74:ed:6f:b4:3b:84:0c:22:d0:44:b2:c8: 94:03:c7:2e:43:69:0e:26:d9:37:a9:86:15:e3:e6:57:90:7b: f4:00:d0:55:ee:58:98:99:4d:3b:a2:ac:13:4a:dd:99:a6:5e: 42:ed:bc:79 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNjOC04OGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnR0djQvOyvr63d64wcMwsmTvwGgGi81wVLSa8zRPcw/KmAi0wMyQTiNAr1eA qo3vlpRBkO4n4d/fq/RXLo41FecK4fuF7ZHaigvWe5j/bau/SfXevkJRA4pNvnqM gz6M/fkcGbuYykwTd8+T55QwP7RCIKyRmg7h3qBWN83G4BMCmNt7c1ZI9h3chw1a oIKg9qF0u3k8WpUi/4GhVmdfdxc+4guPNTq1CIhcPT2+P+N/fT8nqUiydfE3TJlt LfGZ/OIHVTA7HA2JvJ9KXLzmr96P9FVZhbWdMHVJCXy1G83lFJ0bCgeMsJC6+InT s6oxnYpFcdk855MPQHmLCC6U8QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNBNVn1b ieXRvAlnDh8RB89+K9pmMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvOTYxRjA4Nzg2 NzkzMTFGMEJCRTdEQzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGU3lgDBACU3l4wDQYJKoZIhvcNAQELBQADggEBAIqQctIN SOE5wLOYcN0WB6d5zeExpomQVO90GujlEIylJvSx10pPjsJpEq2AGN7IiVb3QcsR XE/UtrP8DvKU6jeKi7nyxVWxbfCEwkf9AtbiMuCtTYIVnYvY+PpLmzNcSEqn8ZET dpVrnezuNd7JjWfor9NSAJO+BxgeHL3DhscSWdB/ThxieddXl94RpfV+IwhEM3uD v4ux/newfN6Kvn6RIPCY+GWv3K/9NKmyXH/umFaL2VeeqprSaAXMC3yRo/XrHtpN 9a7tBnKpLHTtb7Q7hAwi0ESyyJQDxy5DaQ4m2TephhXj5leQe/QA0FXuWJiZTTui rBNK3ZmmXkLtvHk= -----END CERTIFICATE-----Generated at Sun Sep 7 00:33:17 2025 by rpki-client