$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AD3ED5B6608F11F0856BA159C4F9AE02.roa File: AD3ED5B6608F11F0856BA159C4F9AE02.roa (raw, json) Hash identifier: fq/1mlBikiFdI2WGjIjf2kzPklZOl68Ez0EO1OBgvRg= Subject key identifier: 56:4C:61:F8:D1:9B:C0:D8:4F:93:B6:86:A7:B8:8D:AA:64:76:65:D5 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06C3 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AD3ED5B6608F11F0856BA159C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:01 +0000 ROA not before: Thu 28 Aug 2025 14:52:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154042 IP address blocks: 165.101.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1731 (0x6c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:52:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d10-e9f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:da:be:4c:40:ff:eb:34:51:75:40:f8:70:c2: 57:fe:e9:07:53:8d:c9:6e:5e:9e:99:f4:16:2d:f1: c7:7f:d8:37:1a:1a:0f:86:e8:d3:7b:ad:ec:4d:ee: f2:3a:3e:c4:88:fc:ef:67:a8:18:a6:41:e0:0f:99: 5e:b1:d5:ba:e6:97:eb:da:0c:04:f1:10:0d:07:3c: 3f:a5:ce:1c:a5:fd:b9:64:45:0a:19:2e:8e:c9:dd: 04:38:10:22:67:04:d1:f5:db:83:18:22:f5:40:5b: 17:4d:6e:f3:85:a8:19:34:47:20:84:5b:7f:6e:e0: 6c:85:da:17:5d:8e:44:7c:cd:9d:38:03:45:89:0e: 48:d7:5f:b2:a7:fa:5c:2e:85:e4:14:52:ed:7b:fe: 09:b9:4d:b5:e1:ff:01:4c:84:e0:20:88:03:96:ad: 6f:ba:93:12:50:ab:40:74:01:a1:03:bf:12:9b:ed: c4:4a:e0:cf:b1:8b:98:52:18:25:5b:d0:bb:f8:77: 82:b1:1b:9b:d7:65:4e:4f:39:10:80:e8:45:a3:95: 50:b4:5a:be:e8:d3:50:87:b4:53:e1:d0:8a:74:fa: 65:a2:6a:b3:ff:24:84:81:66:57:d0:16:a4:60:d9: 8c:ba:0a:cd:97:d1:2a:17:23:23:81:be:be:a4:dc: 30:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:4C:61:F8:D1:9B:C0:D8:4F:93:B6:86:A7:B8:8D:AA:64:76:65:D5 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/AD3ED5B6608F11F0856BA159C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.158.0/23 Signature Algorithm: sha256WithRSAEncryption 21:a8:b0:d4:a1:f2:e5:91:3d:2a:0e:cc:25:19:04:49:f4:68: 45:53:d1:6e:93:46:85:19:76:16:3a:4a:71:e8:32:bd:b6:41: c5:f5:c9:a2:1d:e3:d6:de:d7:85:f1:e0:d6:b3:48:31:ba:b1: 01:30:05:af:84:17:59:92:76:1c:d7:79:26:1c:2c:71:b3:56: 21:25:88:82:75:8e:4e:b6:21:b2:da:6d:a5:93:d8:a5:0e:3b: 91:f1:fb:a9:77:53:41:9b:e1:a7:91:61:2f:42:39:ff:f4:bb: a4:f6:c6:54:2b:2a:0a:70:a1:1c:da:53:58:4c:96:5f:c4:d7: 65:e6:e5:07:d7:5a:e6:ff:5e:db:4c:ef:e3:04:51:35:0d:d7: ec:7a:1b:bf:3a:9c:0b:b3:62:95:9c:7d:ee:ed:ee:13:9c:53: a9:44:48:9a:b0:b1:d5:a3:b2:15:e7:a9:b1:4a:5a:fb:c9:1d: 99:be:f7:50:63:03:b4:a0:9f:a1:0e:5d:af:15:17:63:1e:95: 34:cf:70:8e:43:ee:5d:64:0c:cf:8d:bf:e9:26:b8:78:e0:30: 1d:0f:bf:2d:47:d3:b6:bb:b1:92:15:15:eb:82:eb:f7:72:38: 2e:4a:ef:4b:13:4d:46:18:f8:89:98:4b:98:5c:70:08:25:b3: 4c:f7:38:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MjAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQxMC1lOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztq+TED/6zRRdUD4cMJX/ukHU43Jbl6emfQWLfHHf9g3GhoPhujTe63sTe7y Oj7EiPzvZ6gYpkHgD5lesdW65pfr2gwE8RANBzw/pc4cpf25ZEUKGS6Oyd0EOBAi ZwTR9duDGCL1QFsXTW7zhagZNEcghFt/buBshdoXXY5EfM2dOANFiQ5I11+yp/pc LoXkFFLte/4JuU214f8BTITgIIgDlq1vupMSUKtAdAGhA78Sm+3ESuDPsYuYUhgl W9C7+HeCsRub12VOTzkQgOhFo5VQtFq+6NNQh7RT4dCKdPplomqz/ySEgWZX0Bak YNmMugrNl9EqFyMjgb6+pNwwWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFZMYfjR m8DYT5O2hqe4japkdmXVMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQUQzRUQ1QjY2 MDhGMTFGMDg1NkJBMTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGlZZ4wDQYJKoZIhvcNAQELBQADggEBACGosNSh8uWRPSoO zCUZBEn0aEVT0W6TRoUZdhY6SnHoMr22QcX1yaId49be14Xx4NazSDG6sQEwBa+E F1mSdhzXeSYcLHGzViEliIJ1jk62IbLabaWT2KUOO5Hx+6l3U0Gb4aeRYS9COf/0 u6T2xlQrKgpwoRzaU1hMll/E12Xm5QfXWub/XttM7+MEUTUN1+x6G786nAuzYpWc fe7t7hOcU6lESJqwsdWjshXnqbFKWvvJHZm+91BjA7Sgn6EOXa8VF2MelTTPcI5D 7l1kDM+Nv+kmuHjgMB0Pvy1H07a7sZIVFeuC6/dyOC5K70sTTUYY+ImYS5hccAgl s0z3OC8= -----END CERTIFICATE-----Generated at Wed Oct 22 21:25:30 2025 by rpki-client