$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa File: C0944D9067A511F0A26BDB35C4F9AE02.roa (raw, json) Hash identifier: 0CnGeajNDPIkv91nPVimuTx2XjGxd34YQiVH0gDZaOE= Subject key identifier: 06:4D:30:02:F0:4D:F8:DD:23:D8:F1:C7:A8:FF:09:54:9E:6A:21:85 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0666 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:50:45 +0000 ROA not before: Thu 28 Aug 2025 14:50:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131435 IP address blocks: 148.222.90.0/24 maxlen: 24 148.222.91.0/24 maxlen: 24 148.222.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cc5-375c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:45:5d:bf:b8:c4:05:c4:b6:6c:2e:8b:3b:f7: 17:c2:8b:bb:db:5b:49:1e:9a:f7:e7:e7:9d:00:77: 33:ac:17:88:58:89:c0:73:50:51:ca:83:ef:25:ca: 6d:25:21:17:63:ec:34:ab:a8:62:bb:ed:23:e1:aa: 60:a1:08:f4:5f:8b:95:0b:72:f7:50:dd:a5:d3:e6: 9b:e6:c3:30:0a:a0:33:4d:e8:8a:67:b3:18:a6:38: 3a:cd:c4:87:7e:e2:cd:3e:99:b6:20:18:31:05:4c: 19:b0:0e:c6:a0:8a:94:da:aa:3c:5d:1a:46:e7:c6: e8:ca:d5:68:01:f6:55:aa:29:28:8b:f8:34:fd:89: 5b:1b:d1:68:8d:84:13:bc:b9:64:0d:c9:06:1d:2a: aa:46:69:b7:e7:01:20:94:75:5b:21:65:25:db:b9: 2c:65:4b:fb:50:f2:7a:48:2e:48:41:9c:95:df:85: 0d:1c:00:35:23:3e:97:a6:7f:c4:6a:4f:cf:fb:6f: b0:96:69:02:c6:e7:9d:b4:f6:62:c0:bf:c4:de:d2: 44:ad:1e:78:2e:f7:8a:57:28:08:ba:1f:d7:07:58: 02:b6:33:42:a9:da:bc:0b:07:a3:d7:d4:5d:5b:48: 81:6f:a9:bd:42:01:b4:14:cb:06:27:02:5c:d4:3d: 8b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:4D:30:02:F0:4D:F8:DD:23:D8:F1:C7:A8:FF:09:54:9E:6A:21:85 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C0944D9067A511F0A26BDB35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.222.90.0/23 148.222.95.0/24 Signature Algorithm: sha256WithRSAEncryption 71:87:d4:d0:cd:23:73:a1:95:52:b4:29:6d:08:9d:e3:fc:3d: e9:b8:44:bd:a1:95:1c:2c:f6:db:8d:80:8d:5b:aa:39:35:af: 97:df:ff:b0:c6:41:b8:fb:99:82:47:d1:28:93:6d:00:32:f5: 72:c5:53:78:4f:71:b6:b6:e2:a6:a7:ba:65:c7:64:b2:6a:f2: eb:ce:3b:0f:b2:f6:91:df:1d:e2:77:53:a9:73:66:53:3b:07: bc:b1:c2:1e:bf:0c:a6:4c:60:92:f8:1f:c6:65:3b:5c:53:7b: a5:ee:03:8e:b5:5b:de:f4:f6:86:c6:23:cd:47:2d:04:a2:43: 5c:80:5f:d9:40:77:fd:37:b8:f2:ff:59:6c:db:17:0d:c9:4f: 3f:66:05:a4:1b:e0:ac:ae:74:f5:6b:b4:55:4f:d3:0d:2c:be: ca:2a:29:13:34:b2:be:b0:26:cb:56:b5:d3:40:d5:82:b1:25: 38:14:a7:3e:8c:7e:73:e4:c5:ec:f5:fb:59:fe:7e:ee:b8:ab: a9:f7:41:20:7c:72:a0:69:99:04:7c:0d:0d:15:4a:a5:ee:c9: c7:67:bd:e1:ca:b8:96:4c:e6:0b:d4:92:a5:2b:13:15:8b:ca: 37:40:a2:08:ac:61:d9:8e:46:43:88:f9:76:0f:cf:af:f6:14: 68:ca:6f:c5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNjNS0zNzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEVdv7jEBcS2bC6LO/cXwou721tJHpr35+edAHczrBeIWInAc1BRyoPvJcpt JSEXY+w0q6hiu+0j4apgoQj0X4uVC3L3UN2l0+ab5sMwCqAzTeiKZ7MYpjg6zcSH fuLNPpm2IBgxBUwZsA7GoIqU2qo8XRpG58boytVoAfZVqikoi/g0/YlbG9FojYQT vLlkDckGHSqqRmm35wEglHVbIWUl27ksZUv7UPJ6SC5IQZyV34UNHAA1Iz6Xpn/E ak/P+2+wlmkCxuedtPZiwL/E3tJErR54LveKVygIuh/XB1gCtjNCqdq8Cwej19Rd W0iBb6m9QgG0FMsGJwJc1D2LJQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAZNMALw TfjdI9jxx6j/CVSeaiGFMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQzA5NDREOTA2 N0E1MTFGMEEyNkJEQjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGU3loDBACU3l8wDQYJKoZIhvcNAQELBQADggEBAHGH1NDN I3OhlVK0KW0IneP8Pem4RL2hlRws9tuNgI1bqjk1r5ff/7DGQbj7mYJH0SiTbQAy 9XLFU3hPcba24qanumXHZLJq8uvOOw+y9pHfHeJ3U6lzZlM7B7yxwh6/DKZMYJL4 H8ZlO1xTe6XuA461W9709obGI81HLQSiQ1yAX9lAd/03uPL/WWzbFw3JTz9mBaQb 4KyudPVrtFVP0w0svsoqKRM0sr6wJstWtdNA1YKxJTgUpz6MfnPkxez1+1n+fu64 q6n3QSB8cqBpmQR8DQ0VSqXuycdnveHKuJZM5gvUkqUrExWLyjdAogisYdmORkOI +XYPz6/2FGjKb8U= -----END CERTIFICATE-----Generated at Sun Sep 7 00:32:34 2025 by rpki-client