$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AD3ED5B6608F11F0856BA159C4F9AE02.roa File: AD3ED5B6608F11F0856BA159C4F9AE02.roa (raw, json) Hash identifier: B/nONGT2yeevAYaX8EoKvFYM4m9Y0RdznEOYLpNKBko= Subject key identifier: B2:22:FA:69:6E:D2:B8:52:C1:DF:07:DC:73:B2:EC:B3:06:C7:9B:85 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0620 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AD3ED5B6608F11F0856BA159C4F9AE02.roa Signing time: Mon 14 Jul 2025 08:51:05 +0000 ROA not before: Mon 14 Jul 2025 08:51:05 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 154042 IP address blocks: 165.101.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 14:33:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1568 (0x620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Jul 14 08:51:05 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6874c4f9-59e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:05:27:31:b4:d1:45:c3:98:64:36:56:25:20: a6:62:3b:fa:e7:b2:58:e9:7e:f8:97:e0:fd:25:56: aa:1a:89:b2:95:01:8b:14:e6:a5:0a:58:31:ac:a3: ec:be:15:a7:c2:b7:68:ca:d5:40:50:79:bf:c0:76: 63:a4:b4:85:46:f8:b7:3d:dc:fe:ab:7b:9b:ee:aa: 57:e9:6a:8f:c3:70:15:56:f8:99:b4:88:6e:fa:f9: 4f:ce:cb:9a:9f:44:e1:c6:78:e2:7e:5c:32:e9:32: 48:d0:e0:56:91:47:09:9f:89:c2:85:53:44:a0:da: 49:1a:91:b9:ae:50:cb:eb:6e:4f:80:6b:bb:c6:86: d2:0a:49:8f:68:ff:d1:98:31:d6:a9:8e:ac:3a:81: 81:2a:d1:24:ef:d5:ff:56:b1:b0:6d:4e:93:35:05: 1c:ab:c2:56:6d:80:8d:65:c8:11:9e:b6:ac:b1:b6: 03:35:76:f8:50:84:78:9b:82:cd:2f:94:48:52:0f: 6e:03:8a:4b:5d:71:2f:24:d9:3f:8e:10:92:e1:04: c1:9a:aa:f3:ef:2d:70:e1:17:6f:a8:4f:b6:b5:de: d5:a9:7f:53:40:76:2b:8e:dd:85:82:3d:81:c6:8a: 28:0b:18:98:b9:50:02:0d:d2:bf:04:66:b3:b1:f0: 58:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:22:FA:69:6E:D2:B8:52:C1:DF:07:DC:73:B2:EC:B3:06:C7:9B:85 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AD3ED5B6608F11F0856BA159C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.158.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:52:19:2e:0d:4e:f0:1d:f1:0f:31:cd:a3:40:ad:9c:83:68: bc:39:aa:99:f5:0a:c4:39:4a:41:9a:1b:fc:0d:72:ec:79:1a: ec:98:1a:64:85:91:29:ee:75:f4:2c:76:af:9f:c8:be:d9:8f: 62:d6:48:07:08:5c:7d:c3:fa:cb:cb:35:fe:48:33:a7:08:63: 3f:07:1a:70:35:04:9f:e0:51:0e:f0:99:ff:c5:5a:db:53:e4: 59:e3:50:13:64:82:db:e8:2d:3c:85:2c:92:55:2b:ec:ad:44: f9:eb:52:52:1a:06:73:97:e4:1a:50:ad:de:17:f5:98:3d:6c: 67:8a:00:39:93:d3:49:17:0f:d5:a9:fa:c8:95:3e:80:e7:8b: 76:b1:0c:31:0a:c0:67:d4:21:ea:94:61:85:1b:d3:f7:37:5b: 33:4c:8e:da:30:d8:38:db:53:62:42:7f:d9:33:7f:a4:c2:a5: e6:93:57:78:de:f8:0f:c2:bf:b2:87:27:5f:4c:d9:af:be:92: 01:b3:fb:33:17:80:28:fc:54:5c:28:8e:f7:2a:2a:cf:e8:46: 9f:e6:67:1d:24:f7:97:bd:a3:07:1e:74:19:ca:af:ab:42:52: c5:5d:12:7f:28:95:ed:1c:a0:8c:43:af:db:6c:a3:10:e9:56: d2:b9:2a:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwNzE0MDg1MTA1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc0YzRmOS01OWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QUnMbTRRcOYZDZWJSCmYjv657JY6X74l+D9JVaqGomylQGLFOalClgxrKPs vhWnwrdoytVAUHm/wHZjpLSFRvi3Pdz+q3ub7qpX6WqPw3AVVviZtIhu+vlPzsua n0Thxnjiflwy6TJI0OBWkUcJn4nChVNEoNpJGpG5rlDL625PgGu7xobSCkmPaP/R mDHWqY6sOoGBKtEk79X/VrGwbU6TNQUcq8JWbYCNZcgRnrassbYDNXb4UIR4m4LN L5RIUg9uA4pLXXEvJNk/jhCS4QTBmqrz7y1w4RdvqE+2td7VqX9TQHYrjt2Fgj2B xoooCxiYuVACDdK/BGazsfBYMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLIi+mlu 0rhSwd8H3HOy7LMGx5uFMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQUQzRUQ1QjY2 MDhGMTFGMDg1NkJBMTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlZZ4wDQYJKoZIhvcNAQELBQADggEBAI5SGS4NTvAd8Q8x zaNArZyDaLw5qpn1CsQ5SkGaG/wNcux5GuyYGmSFkSnudfQsdq+fyL7Zj2LWSAcI XH3D+svLNf5IM6cIYz8HGnA1BJ/gUQ7wmf/FWttT5FnjUBNkgtvoLTyFLJJVK+yt RPnrUlIaBnOX5BpQrd4X9Zg9bGeKADmT00kXD9Wp+siVPoDni3axDDEKwGfUIeqU YYUb0/c3WzNMjtow2DjbU2JCf9kzf6TCpeaTV3je+A/Cv7KHJ19M2a++kgGz+zMX gCj8VFwojvcqKs/oRp/mZx0k95e9owcedBnKr6tCUsVdEn8ole0coIxDr9tsoxDp VtK5KsU= -----END CERTIFICATE-----Generated at Wed Jul 23 02:29:18 2025 by rpki-client