$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C5EBF14444EB11F088B1CD7BC4F9AE02.roa File: C5EBF14444EB11F088B1CD7BC4F9AE02.roa (raw, json) Hash identifier: vZHLx1hddL6oeC1i4pIy9lb6vnBcUtYHbUmn70oURgw= Subject key identifier: 6A:92:52:BD:5A:D5:CA:99:76:C0:D2:E0:22:A3:75:58:87:EE:80:F5 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0683 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C5EBF14444EB11F088B1CD7BC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:09 +0000 ROA not before: Thu 28 Aug 2025 14:51:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151872 IP address blocks: 157.66.198.0/23 maxlen: 23 157.66.220.0/24 maxlen: 24 157.66.221.0/24 maxlen: 24 160.22.74.0/23 maxlen: 24 160.22.80.0/24 maxlen: 24 160.22.81.0/24 maxlen: 24 160.22.118.0/24 maxlen: 24 160.22.119.0/24 maxlen: 24 160.30.10.0/24 maxlen: 24 160.30.11.0/24 maxlen: 24 160.30.22.0/24 maxlen: 24 160.30.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cdc-9b72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:84:8f:88:1d:fa:db:62:3c:db:2e:ee:6d:f3: d8:d0:77:ee:9f:9c:ea:a4:0e:76:98:fd:f3:bf:ac: 35:3e:5e:c4:1f:bc:f5:74:59:da:06:82:82:f3:d8: 08:30:07:fb:73:56:37:f7:aa:8a:23:0a:94:8b:13: 2b:17:b1:12:ee:93:b0:99:15:de:0d:66:09:88:8b: 81:eb:6c:01:c1:46:01:f2:64:66:31:e3:32:a8:cb: 8c:af:7e:27:44:ad:13:09:f3:cf:db:5e:9b:ee:e2: 85:43:f9:69:15:14:0f:3e:64:66:ae:0e:e8:58:7c: be:50:78:03:fe:20:50:e6:69:95:c6:63:df:4a:48: e2:12:f7:77:15:7b:84:56:c1:ad:96:b2:3f:50:12: 4e:44:3a:18:5d:cb:96:55:26:14:b4:f8:ba:c4:0e: 8d:5c:d1:7f:a1:86:e1:f8:ef:d3:7f:9f:39:bd:e5: c0:4e:07:7c:21:ae:40:5b:97:23:cc:87:c2:bc:4a: 2f:4b:df:1c:28:d6:0f:5b:0a:b5:14:7b:df:0d:97: 83:bb:c9:f8:a7:5b:36:be:bc:a6:dc:c1:69:f2:34: 60:d4:18:2b:5d:c9:a2:45:06:f5:e1:39:da:72:e4: d9:77:eb:ca:7a:fa:98:fc:8f:7c:ac:b4:26:4c:23: 88:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:92:52:BD:5A:D5:CA:99:76:C0:D2:E0:22:A3:75:58:87:EE:80:F5 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/C5EBF14444EB11F088B1CD7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.198.0/23 157.66.220.0/23 160.22.74.0/23 160.22.80.0/23 160.22.118.0/23 160.30.10.0/23 160.30.22.0/23 Signature Algorithm: sha256WithRSAEncryption 52:07:3c:06:0f:0a:69:c0:0e:d1:2b:51:6a:2f:57:05:4e:0d: 8d:f6:a8:fa:60:77:29:85:e9:8e:a7:64:6d:50:a1:fa:ff:50: 2a:12:d5:23:e2:f1:57:e0:06:a5:e8:90:31:7c:d5:74:33:10: 43:16:03:47:dd:fb:87:e8:a4:3c:53:d0:07:6b:ec:ab:68:4f: f6:7b:61:ac:08:a2:7b:b2:90:3b:4b:f2:df:8c:a0:5a:2f:a3: 24:04:5b:7c:62:5b:9c:e0:e8:8e:ac:85:fb:f5:f2:4e:8e:6c: 65:7d:7b:5a:72:29:78:21:09:fb:ea:18:a6:b7:3e:35:ff:cc: 9a:fe:ed:52:77:bb:3d:f4:35:14:60:e5:61:53:b4:8e:90:13: 2b:d4:a7:24:3d:b1:bb:f8:20:67:94:d5:30:40:8e:cd:bc:83: 8b:06:c3:78:04:17:f8:ce:02:a2:93:26:45:ca:f0:e5:af:ff: 97:e0:fa:12:2c:39:02:28:10:18:92:7f:b9:fd:ba:81:01:f2: d2:23:23:75:67:18:98:77:15:de:2e:2c:9a:cb:6a:28:16:72: fb:4a:0e:48:32:7b:f6:49:c0:b6:9b:87:8a:d4:fe:3b:30:50: 47:cc:fa:cd:80:db:07:9e:37:19:a8:7e:fb:30:65:61:bd:4d: 13:0e:3e:70 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNkYy05YjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4SPiB3622I82y7ubfPY0Hfun5zqpA52mP3zv6w1Pl7EH7z1dFnaBoKC89gI MAf7c1Y396qKIwqUixMrF7ES7pOwmRXeDWYJiIuB62wBwUYB8mRmMeMyqMuMr34n RK0TCfPP216b7uKFQ/lpFRQPPmRmrg7oWHy+UHgD/iBQ5mmVxmPfSkjiEvd3FXuE VsGtlrI/UBJORDoYXcuWVSYUtPi6xA6NXNF/oYbh+O/Tf585veXATgd8Ia5AW5cj zIfCvEovS98cKNYPWwq1FHvfDZeDu8n4p1s2vrym3MFp8jRg1BgrXcmiRQb14Tna cuTZd+vKevqY/I98rLQmTCOI5QIDAQABo4ICuTCCArUwHQYDVR0OBBYEFGqSUr1a 1cqZdsDS4CKjdViH7oD1MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQzVFQkYxNDQ0 NEVCMTFGMDg4QjFDRDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBAGdQsYDBAGdQtwDBAGgFkoDBAGgFlADBAGgFnYDBAGgHgoD BAGgHhYwDQYJKoZIhvcNAQELBQADggEBAFIHPAYPCmnADtErUWovVwVODY32qPpg dymF6Y6nZG1Qofr/UCoS1SPi8VfgBqXokDF81XQzEEMWA0fd+4fopDxT0Adr7Kto T/Z7YawIonuykDtL8t+MoFovoyQEW3xiW5zg6I6shfv18k6ObGV9e1pyKXghCfvq GKa3PjX/zJr+7VJ3uz30NRRg5WFTtI6QEyvUpyQ9sbv4IGeU1TBAjs28g4sGw3gE F/jOAqKTJkXK8OWv/5fg+hIsOQIoEBiSf7n9uoEB8tIjI3VnGJh3Fd4uLJrLaigW cvtKDkgye/ZJwLabh4rU/jswUEfM+s2A2weeNxmofvswZWG9TRMOPnA= -----END CERTIFICATE-----Generated at Wed Sep 10 04:30:53 2025 by rpki-client