$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/A64921C6DB2E11EF9695A34BC4F9AE02.roa File: A64921C6DB2E11EF9695A34BC4F9AE02.roa (raw, json) Hash identifier: nWEQ+zzfp7b76Pdc+hq/fVCuThE8BHm3qEQ/r3S9Bgk= Subject key identifier: 5A:4A:C3:CD:8A:9B:EF:68:2C:A4:BC:01:89:7A:1B:FB:4E:CE:32:E4 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06BE Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/A64921C6DB2E11EF9695A34BC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:56 +0000 ROA not before: Thu 28 Aug 2025 14:51:56 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153539 IP address blocks: 161.248.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:56 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d0c-0e49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:32:f4:bc:fc:16:6f:78:f2:7a:96:fa:21:f6: 16:82:e1:6e:b1:88:64:f6:b5:1a:91:fb:57:23:dc: 27:10:2b:04:1a:4f:9e:69:a2:83:e6:5b:b5:c3:82: 1e:5d:ff:45:30:06:48:4e:a2:b5:34:e0:67:ea:51: 85:9a:69:b9:9e:c4:cd:01:35:c5:6d:c4:d8:5e:b3: 6d:06:0e:dd:b7:5b:c6:6d:ae:1b:b1:f9:6a:a4:00: ee:cb:81:79:4c:de:7d:69:61:7b:1d:aa:4f:45:c8: 5e:e5:d9:05:70:d6:eb:65:a0:36:b8:93:e0:29:65: 78:cf:b8:45:34:49:3b:5d:9f:01:a4:5c:da:2e:10: 93:66:c4:6a:87:00:e3:0d:fd:f6:34:04:5a:59:87: 71:0c:69:83:62:6e:55:d6:52:77:f6:11:37:13:f9: 1c:5d:b4:00:68:4c:74:98:81:82:70:e0:8a:de:cc: e1:a5:97:f2:0d:48:18:ba:34:4c:a5:39:7b:d7:4f: 1f:71:aa:e6:9f:0a:cf:18:d5:ef:ae:73:2e:86:fa: c3:74:e3:95:1f:dd:28:76:89:7c:55:cd:40:99:5d: a7:30:11:91:2d:bf:5e:19:d9:6c:26:ad:33:48:9f: 72:1c:8a:ac:0e:6b:41:89:29:e1:83:30:e0:ec:f0: 7f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4A:C3:CD:8A:9B:EF:68:2C:A4:BC:01:89:7A:1B:FB:4E:CE:32:E4 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/A64921C6DB2E11EF9695A34BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.180.0/23 Signature Algorithm: sha256WithRSAEncryption 24:81:29:37:dc:87:1a:1c:69:bd:84:64:3e:a0:11:c4:a1:e2: 27:57:06:71:bb:8c:41:36:b1:59:7c:98:83:b8:bf:c7:f1:e6: 3f:65:ad:88:cf:4a:9e:14:a2:26:7d:7d:dc:38:3d:1b:db:be: 93:06:1c:d4:12:62:fb:2d:53:f6:5a:54:4f:1c:29:f0:ce:66: 22:ae:49:cd:91:02:1f:7d:ac:a9:2f:29:c5:bf:c5:ae:f6:08: 9d:59:b9:12:03:fc:b6:54:db:66:2d:97:73:4a:df:80:32:c3: e4:b5:cb:64:04:92:84:35:ec:a5:62:03:dd:7b:7b:19:28:db: 3d:8c:94:c0:0a:77:b8:c1:bb:3d:94:ed:3c:d8:73:71:8b:03: 6b:83:11:9f:40:27:7e:e1:88:51:bf:dd:79:69:a8:13:fb:1c: f5:4d:90:33:1b:e3:7c:f9:c6:89:36:9c:d2:cd:86:a2:88:8d: 52:13:af:6c:68:fa:d4:ef:e7:4c:2d:ab:9f:29:8b:00:16:09: 35:00:5d:0a:e6:31:e9:6a:22:73:ab:21:f8:54:5c:6e:5d:6c: bf:21:c0:96:b4:0f:fe:a4:94:06:06:20:02:06:eb:e1:41:80: d4:6e:21:89:77:1a:f4:b5:27:d3:b0:13:c1:1d:20:e6:78:37: 2c:68:42:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTU2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQwYy0wZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnTL0vPwWb3jyepb6IfYWguFusYhk9rUakftXI9wnECsEGk+eaaKD5lu1w4Ie Xf9FMAZITqK1NOBn6lGFmmm5nsTNATXFbcTYXrNtBg7dt1vGba4bsflqpADuy4F5 TN59aWF7HapPRche5dkFcNbrZaA2uJPgKWV4z7hFNEk7XZ8BpFzaLhCTZsRqhwDj Df32NARaWYdxDGmDYm5V1lJ39hE3E/kcXbQAaEx0mIGCcOCK3szhpZfyDUgYujRM pTl7108fcarmnwrPGNXvrnMuhvrDdOOVH90odol8Vc1AmV2nMBGRLb9eGdlsJq0z SJ9yHIqsDmtBiSnhgzDg7PB/OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFpKw82K m+9oLKS8AYl6G/tOzjLkMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQTY0OTIxQzZE QjJFMTFFRjk2OTVBMzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+LQwDQYJKoZIhvcNAQELBQADggEBACSBKTfchxocab2E ZD6gEcSh4idXBnG7jEE2sVl8mIO4v8fx5j9lrYjPSp4UoiZ9fdw4PRvbvpMGHNQS YvstU/ZaVE8cKfDOZiKuSc2RAh99rKkvKcW/xa72CJ1ZuRID/LZU22Ytl3NK34Ay w+S1y2QEkoQ17KViA917exko2z2MlMAKd7jBuz2U7TzYc3GLA2uDEZ9AJ37hiFG/ 3XlpqBP7HPVNkDMb43z5xok2nNLNhqKIjVITr2xo+tTv50wtq58piwAWCTUAXQrm MelqInOrIfhUXG5dbL8hwJa0D/6klAYGIAIG6+FBgNRuIYl3GvS1J9OwE8EdIOZ4 NyxoQlw= -----END CERTIFICATE-----Generated at Sun Sep 7 00:33:19 2025 by rpki-client