$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CC5A2760062711F0B26BB948C4F9AE02.roa File: CC5A2760062711F0B26BB948C4F9AE02.roa (raw, json) Hash identifier: RJ3N7Dfcj3SldeWiaAEopdSPY6NQPo20MY19EajBpqY= Subject key identifier: F6:AD:59:51:28:DD:37:0A:04:F9:30:A0:83:A5:AD:BA:9D:31:20:6E Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 067E Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CC5A2760062711F0B26BB948C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:02 +0000 ROA not before: Thu 28 Aug 2025 14:51:02 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150862 IP address blocks: 157.10.42.0/23 maxlen: 23 157.10.44.0/23 maxlen: 23 157.15.108.0/23 maxlen: 23 157.15.110.0/23 maxlen: 23 160.22.106.0/23 maxlen: 23 160.30.20.0/23 maxlen: 23 160.30.156.0/23 maxlen: 23 160.30.192.0/23 maxlen: 23 160.30.200.0/23 maxlen: 23 160.187.122.0/23 maxlen: 23 160.187.226.0/23 maxlen: 23 160.187.228.0/23 maxlen: 23 160.187.246.0/23 maxlen: 23 160.191.54.0/23 maxlen: 23 160.191.138.0/23 maxlen: 23 160.191.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:02 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cd6-34c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:35:4b:45:1f:1a:43:e3:2e:b4:f7:11:a4:5a: f4:cd:93:89:75:ec:8c:f4:33:ef:b9:65:97:62:ab: 29:34:2c:37:6c:88:be:de:f8:4f:af:d3:18:69:9e: 87:dd:21:a9:63:8f:2c:19:20:4d:df:0c:90:3c:a3: bc:74:93:fc:4a:9d:a9:68:56:93:94:32:18:80:33: 60:fa:41:73:cf:43:c7:d4:5d:b0:73:09:13:30:90: 5e:ae:a4:6d:a4:35:07:2b:61:05:cd:87:74:88:cc: 69:35:7d:6b:69:b6:af:e2:52:94:36:40:15:24:ea: bd:d6:90:07:04:f4:07:9f:c6:30:c5:ae:52:ba:6a: 8c:58:b2:86:ad:34:56:53:c1:b8:eb:c3:47:27:21: 26:fd:ed:fa:b0:c6:05:f4:5f:6c:9f:b7:32:78:af: fe:57:61:2b:b7:66:57:54:3f:77:16:fa:8e:69:92: 1f:aa:76:5a:44:d2:b8:8d:39:2c:be:11:d1:7c:5c: 41:90:38:eb:63:e4:0d:59:fb:0d:98:34:81:9b:81: 9e:20:89:d2:27:3a:48:8a:95:02:0b:97:4a:ea:4e: 8f:21:78:3b:c2:71:2c:54:68:1a:e2:c3:53:30:fc: 55:19:32:a9:c8:52:90:4d:b9:c9:81:3d:50:10:d6: e9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AD:59:51:28:DD:37:0A:04:F9:30:A0:83:A5:AD:BA:9D:31:20:6E X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CC5A2760062711F0B26BB948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.42.0-157.10.45.255 157.15.108.0/22 160.22.106.0/23 160.30.20.0/23 160.30.156.0/23 160.30.192.0/23 160.30.200.0/23 160.187.122.0/23 160.187.226.0-160.187.229.255 160.187.246.0/23 160.191.54.0/23 160.191.138.0/23 160.191.174.0/23 Signature Algorithm: sha256WithRSAEncryption 48:6b:dd:25:c1:20:35:31:9a:e1:4f:ec:f5:82:8d:f0:fb:31: 39:8d:14:04:0e:8f:af:bd:c9:60:e6:60:c7:b6:30:b4:38:a0: 18:7b:59:d6:16:b5:cc:6d:99:03:fd:53:78:dc:b1:dc:bb:e4: aa:3d:04:15:ee:ca:0f:9d:25:5a:cb:59:ea:a4:35:29:a8:14: 95:3e:9b:f8:ea:50:56:20:aa:71:a5:c8:45:5b:4f:40:7c:6e: 5b:05:b3:a9:86:f4:95:6c:cc:da:4f:70:f0:95:33:5a:46:26: 86:1e:65:cd:c4:04:11:3c:17:6a:46:a0:fc:62:0c:a7:fa:e0: 36:5c:e6:71:bb:ca:10:ef:63:cf:ad:32:05:a6:04:04:26:54: 23:a4:eb:cf:e7:d0:de:f0:48:a0:32:e0:55:70:f6:05:74:17: c0:58:59:99:73:3b:5d:78:53:fa:0b:47:29:fc:56:0f:06:70: 9f:25:29:0c:27:9a:e6:f8:5a:bb:2e:68:a0:05:f8:5c:f5:82: fc:58:07:05:57:62:01:a9:1b:dc:4c:5a:fe:1d:1a:f0:73:e9: ec:33:89:a0:25:e0:69:c4:11:6b:32:69:58:47:6e:99:ca:ff: d9:dc:fd:6c:2e:44:40:6e:d2:a9:af:de:b0:4e:28:81:5a:57: 6e:37:91:74 -----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTAyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNkNi0zNGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zVLRR8aQ+MutPcRpFr0zZOJdeyM9DPvuWWXYqspNCw3bIi+3vhPr9MYaZ6H 3SGpY48sGSBN3wyQPKO8dJP8Sp2paFaTlDIYgDNg+kFzz0PH1F2wcwkTMJBerqRt pDUHK2EFzYd0iMxpNX1rabav4lKUNkAVJOq91pAHBPQHn8Ywxa5SumqMWLKGrTRW U8G468NHJyEm/e36sMYF9F9sn7cyeK/+V2Ert2ZXVD93FvqOaZIfqnZaRNK4jTks vhHRfFxBkDjrY+QNWfsNmDSBm4GeIInSJzpIipUCC5dK6k6PIXg7wnEsVGga4sNT MPxVGTKpyFKQTbnJgT1QENbprwIDAQABo4IC7TCCAukwHQYDVR0OBBYEFPatWVEo 3TcKBPkwoIOlrbqdMSBuMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQ0M1QTI3NjAw NjI3MTFGMEIyNkJCOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwdwYIKwYBBQUHAQcBAf8E aDBmMGQEAgABMF4wDAMEAZ0KKgMEAZ0KLAMEAp0PbAMEAaAWagMEAaAeFAMEAaAe nAMEAaAewAMEAaAeyAMEAaC7ejAMAwQBoLviAwQBoLvkAwQBoLv2AwQBoL82AwQB oL+KAwQBoL+uMA0GCSqGSIb3DQEBCwUAA4IBAQBIa90lwSA1MZrhT+z1go3w+zE5 jRQEDo+vvclg5mDHtjC0OKAYe1nWFrXMbZkD/VN43LHcu+SqPQQV7soPnSVay1nq pDUpqBSVPpv46lBWIKpxpchFW09AfG5bBbOphvSVbMzaT3DwlTNaRiaGHmXNxAQR PBdqRqD8Ygyn+uA2XOZxu8oQ72PPrTIFpgQEJlQjpOvP59De8EigMuBVcPYFdBfA WFmZcztdeFP6C0cp/FYPBnCfJSkMJ5rm+Fq7LmigBfhc9YL8WAcFV2IBqRvcTFr+ HRrwc+nsM4mgJeBpxBFrMmlYR26Zyv/Z3P1sLkRAbtKpr96wTiiBWlduN5F0 -----END CERTIFICATE-----Generated at Sun Sep 7 00:33:39 2025 by rpki-client