$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/99286D10699D11EFA9CA5639C4F9AE02.roa File: 99286D10699D11EFA9CA5639C4F9AE02.roa (raw, json) Hash identifier: yvQRIlhLpuxs297wsTEi/weimpkwhIznjuC5Nv+GyQI= Subject key identifier: B0:C4:05:8C:47:7A:E6:8B:B6:D3:51:67:8F:12:77:B5:C0:0D:2A:97 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06A3 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/99286D10699D11EFA9CA5639C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:36 +0000 ROA not before: Thu 28 Aug 2025 14:51:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152983 IP address blocks: 160.30.168.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cf7-d320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b2:5e:1e:38:32:16:d6:96:69:86:4c:96:bb: 58:0a:c8:6f:28:f3:87:a1:08:54:3b:30:a1:3e:0a: 40:6e:0d:e2:84:72:ba:6f:98:fa:9e:35:d1:18:e7: c1:03:7b:02:63:ff:cb:36:06:27:a0:db:b0:18:04: dd:87:c4:82:26:de:2b:2c:69:5e:42:f0:fc:e2:7d: 6b:f5:aa:ed:0c:5d:18:2f:81:6b:f1:aa:bf:78:4e: 4f:03:7e:f3:59:a0:ed:c2:4c:34:9b:42:ae:6d:21: a6:a2:b6:9f:e8:82:88:5a:20:d4:f6:a2:66:68:fa: e2:28:9d:d8:97:85:ed:c0:63:5a:a6:29:d9:de:47: 24:63:81:8f:11:49:d0:75:00:c9:ef:f5:d1:3f:67: af:12:6d:4d:c1:c4:a2:6d:cd:db:8a:1d:ce:cd:21: 2d:04:89:f8:2a:70:a2:98:10:ad:39:48:83:bf:85: 5c:ec:86:f2:e4:bd:ea:7f:96:b1:ea:61:95:b8:c2: 3f:3f:a0:cf:cb:e2:64:a7:10:f0:c6:2b:dd:3d:81: e1:85:59:e3:d7:c8:36:00:ae:a3:6b:37:d7:54:51: bf:00:e8:29:99:f9:a4:14:98:ef:fc:8b:83:70:64: 9b:20:3f:39:00:a8:36:42:7d:d7:2b:53:b9:b0:23: 87:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C4:05:8C:47:7A:E6:8B:B6:D3:51:67:8F:12:77:B5:C0:0D:2A:97 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/99286D10699D11EFA9CA5639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.168.0/23 Signature Algorithm: sha256WithRSAEncryption b6:fb:25:82:00:ed:a0:1f:73:81:2d:31:a6:21:6d:35:a3:43: 16:c2:be:f1:aa:1e:98:3e:0c:fd:bd:c6:72:d6:85:05:77:33: 12:01:4c:68:8e:1c:c4:d7:5d:64:f3:af:88:3f:d7:29:fb:7e: 12:3d:e9:81:31:3e:32:7c:63:24:ee:87:6e:7a:f1:6c:70:a8: 23:d5:78:51:a2:57:e7:1d:9e:8a:36:44:bc:fa:e8:a1:75:c2: ff:cf:fa:8f:52:da:fe:ef:6d:f9:d4:81:ff:a4:d5:86:f1:10: 9a:7d:3f:84:22:99:32:51:b4:e3:8c:3d:b3:50:82:da:40:00: d2:f8:51:55:6f:d5:c3:d9:e2:6a:da:ab:0e:38:42:e7:ec:22: e6:89:ea:38:df:ec:81:57:2f:37:65:c4:f3:1b:7b:79:7f:fa: 20:f1:1c:3e:10:cd:5d:d1:84:ac:0e:de:6c:17:3a:82:6f:e8: 99:6c:fa:ee:cd:92:6c:c1:b8:4f:f6:d4:87:99:af:a0:57:d6: d8:3d:b9:93:07:23:9b:b1:1a:3d:ca:12:01:10:69:36:74:0a: de:e2:fc:5b:2f:9d:12:68:c4:80:16:61:97:d1:5a:02:82:5b: 0c:f7:89:2b:03:35:7c:59:99:da:dc:32:48:d6:da:52:a4:d9: f8:9a:1a:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNmNy1kMzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLJeHjgyFtaWaYZMlrtYCshvKPOHoQhUOzChPgpAbg3ihHK6b5j6njXRGOfB A3sCY//LNgYnoNuwGATdh8SCJt4rLGleQvD84n1r9artDF0YL4Fr8aq/eE5PA37z WaDtwkw0m0KubSGmoraf6IKIWiDU9qJmaPriKJ3Yl4XtwGNapinZ3kckY4GPEUnQ dQDJ7/XRP2evEm1NwcSibc3bih3OzSEtBIn4KnCimBCtOUiDv4Vc7Iby5L3qf5ax 6mGVuMI/P6DPy+JkpxDwxivdPYHhhVnj18g2AK6jazfXVFG/AOgpmfmkFJjv/IuD cGSbID85AKg2Qn3XK1O5sCOHVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLDEBYxH euaLttNRZ48Sd7XADSqXMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvOTkyODZEMTA2 OTlEMTFFRkE5Q0E1NjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHqgwDQYJKoZIhvcNAQELBQADggEBALb7JYIA7aAfc4Et MaYhbTWjQxbCvvGqHpg+DP29xnLWhQV3MxIBTGiOHMTXXWTzr4g/1yn7fhI96YEx PjJ8YyTuh2568WxwqCPVeFGiV+cdnoo2RLz66KF1wv/P+o9S2v7vbfnUgf+k1Ybx EJp9P4QimTJRtOOMPbNQgtpAANL4UVVv1cPZ4mraqw44QufsIuaJ6jjf7IFXLzdl xPMbe3l/+iDxHD4QzV3RhKwO3mwXOoJv6Jls+u7NkmzBuE/21IeZr6BX1tg9uZMH I5uxGj3KEgEQaTZ0Ct7i/FsvnRJoxIAWYZfRWgKCWwz3iSsDNXxZmdrcMkjW2lKk 2fiaGmg= -----END CERTIFICATE-----Generated at Sun Sep 7 00:33:38 2025 by rpki-client