$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BD712758315B11F08E91F930C4F9AE02.roa File: BD712758315B11F08E91F930C4F9AE02.roa (raw, json) Hash identifier: xhgOke2JabW80tYP4gSHqUA7MDdyGQKon4Ss7koJsDc= Subject key identifier: B0:31:B0:C6:92:E4:C9:72:A4:5A:38:6F:87:76:9C:91:5C:25:F7:86 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 05D3 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BD712758315B11F08E91F930C4F9AE02.roa Signing time: Thu 15 May 2025 07:10:54 +0000 ROA not before: Thu 15 May 2025 07:10:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151922 IP address blocks: 157.66.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1491 (0x5d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: May 15 07:10:54 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6825937e-43a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:12:b8:56:ae:85:d6:75:53:8e:8c:c9:d6:54: c7:5b:f2:6f:7f:bf:37:ff:df:c6:91:ac:9d:51:f1: 81:fd:6c:c0:5f:d1:e1:27:4f:3f:ce:2b:53:1a:26: 39:72:3d:04:eb:b4:12:1b:eb:9c:cc:77:1c:b2:48: 5f:62:08:50:b7:65:08:41:0a:d4:99:37:9d:a6:e9: 6e:85:55:59:84:13:67:83:ee:cf:cd:74:03:64:eb: 0b:34:6d:8c:90:3d:0c:f4:7e:2f:76:1c:3f:e9:70: 40:fc:66:07:ab:75:bf:98:53:ec:c6:03:70:d1:11: c4:17:09:cc:4d:5d:2d:2c:a3:57:77:2e:9d:b2:62: 92:c4:d4:14:91:ef:a1:51:83:5e:c1:dc:ee:54:80: da:ef:cd:28:39:dc:b9:5b:54:61:b9:dd:6f:52:27: 87:7b:c0:f9:5b:4b:1a:78:89:76:86:96:ba:1d:97: d3:7c:62:3d:74:62:09:97:64:33:2e:0d:5e:92:76: a7:86:d2:d4:72:23:56:c6:d5:89:b9:15:d7:48:67: 85:83:b4:79:8c:b1:5a:49:39:16:2d:6e:dd:2c:8f: 3c:f8:b8:0c:ee:ca:7d:0d:2c:65:15:1e:12:e3:5f: bf:b4:04:51:09:a6:9c:49:2a:82:e5:7e:df:fa:ef: 9e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:31:B0:C6:92:E4:C9:72:A4:5A:38:6F:87:76:9C:91:5C:25:F7:86 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BD712758315B11F08E91F930C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.120.0/23 Signature Algorithm: sha256WithRSAEncryption 63:4b:26:ee:e2:66:d4:27:1b:71:e8:87:2f:8d:2d:a3:e8:bc: 5e:f0:20:7b:2a:d5:f3:31:41:8c:da:5c:e1:ca:c9:be:5e:7f: 0d:af:c6:0a:8f:f2:32:91:7d:94:d0:66:4e:d1:69:df:2c:7b: 82:ce:2f:3e:2b:c4:de:ae:18:6d:60:d0:6f:3e:de:ff:fb:fd: 34:87:4a:74:d8:34:e4:19:44:d6:fd:98:e8:e6:c0:33:8a:5f: 09:37:53:dc:28:d7:0b:09:cf:0e:38:50:3e:19:9f:06:ab:a7: 28:3c:78:e0:36:25:05:6e:0a:75:01:af:d3:45:31:11:41:e1: 29:f5:96:e0:71:fc:fe:c2:5b:ce:18:19:9e:fb:c6:d3:45:d7: 1c:b3:e8:53:d0:eb:11:58:ea:68:14:a4:33:6d:a8:86:de:bf: 10:59:2a:7b:07:44:78:24:5c:45:81:f3:bc:dd:26:e3:d1:c3: d4:bb:a4:2c:c8:98:c4:2d:de:4d:cb:4d:ab:b4:d9:11:fa:39: 2b:86:b2:4d:08:df:ab:e8:c2:2b:6a:bb:ae:2a:94:85:50:08: c0:02:55:49:8e:30:d7:12:a4:d0:36:3d:3c:35:2f:59:fc:ff: 36:b4:b4:96:26:52:21:1a:3d:d2:cb:6c:3a:f9:a9:a9:d7:9a: 13:3b:d8:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwNTE1MDcxMDU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1OTM3ZS00M2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBK4Vq6F1nVTjozJ1lTHW/Jvf783/9/GkaydUfGB/WzAX9HhJ08/zitTGiY5 cj0E67QSG+uczHccskhfYghQt2UIQQrUmTedpuluhVVZhBNng+7PzXQDZOsLNG2M kD0M9H4vdhw/6XBA/GYHq3W/mFPsxgNw0RHEFwnMTV0tLKNXdy6dsmKSxNQUke+h UYNewdzuVIDa780oOdy5W1Rhud1vUieHe8D5W0saeIl2hpa6HZfTfGI9dGIJl2Qz Lg1eknanhtLUciNWxtWJuRXXSGeFg7R5jLFaSTkWLW7dLI88+LgM7sp9DSxlFR4S 41+/tARRCaacSSqC5X7f+u+e7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLAxsMaS 5MlypFo4b4d2nJFcJfeGMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQkQ3MTI3NTgz MTVCMTFGMDhFOTFGOTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQngwDQYJKoZIhvcNAQELBQADggEBAGNLJu7iZtQnG3Ho hy+NLaPovF7wIHsq1fMxQYzaXOHKyb5efw2vxgqP8jKRfZTQZk7Rad8se4LOLz4r xN6uGG1g0G8+3v/7/TSHSnTYNOQZRNb9mOjmwDOKXwk3U9wo1wsJzw44UD4Znwar pyg8eOA2JQVuCnUBr9NFMRFB4Sn1luBx/P7CW84YGZ77xtNF1xyz6FPQ6xFY6mgU pDNtqIbevxBZKnsHRHgkXEWB87zdJuPRw9S7pCzImMQt3k3LTau02RH6OSuGsk0I 36vowitqu64qlIVQCMACVUmOMNcSpNA2PTw1L1n8/za0tJYmUiEaPdLLbDr5qanX mhM72II= -----END CERTIFICATE-----Generated at Wed Jun 4 12:23:30 2025 by rpki-client