$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CF94F4D82B1F11F0A19F8C33C4F9AE02.roa File: CF94F4D82B1F11F0A19F8C33C4F9AE02.roa (raw, json) Hash identifier: EUItxDrep2RmoJZ3w/WN2JK2EGovBCzXzIonTpPRMRI= Subject key identifier: F8:8D:17:26:59:DA:CC:58:BB:BE:47:1B:BA:D7:56:FB:8F:C5:70:D0 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0676 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CF94F4D82B1F11F0A19F8C33C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:50:56 +0000 ROA not before: Thu 28 Aug 2025 14:50:56 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149107 IP address blocks: 157.66.24.0/23 maxlen: 23 157.66.26.0/23 maxlen: 23 160.30.18.0/23 maxlen: 23 160.191.164.0/23 maxlen: 23 160.250.182.0/23 maxlen: 23 160.250.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1654 (0x676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:56 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cd0-1ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b2:2a:4d:17:92:c2:03:1d:41:4a:d5:3e:6a: 3d:ec:62:95:c4:71:23:23:92:09:3f:63:08:a0:eb: 8a:0c:e9:8e:f2:65:96:ba:5e:b3:f7:63:67:20:f1: e7:04:91:f6:11:e5:69:1d:28:73:9d:4d:bf:fc:d9: 52:64:fb:a6:6a:0f:85:19:2d:39:02:1c:ab:c8:98: 0a:ff:47:99:0a:7f:de:90:e2:a9:60:6a:c4:45:f0: 9a:31:40:35:09:7d:be:aa:01:f8:4b:39:d7:29:eb: 56:6f:1b:02:5c:19:6a:09:9e:02:db:51:ef:59:87: 38:34:0d:62:2c:0e:3f:67:c2:42:19:b0:03:66:90: ae:b2:3f:89:e7:f9:38:c8:b1:3b:3b:ee:00:08:38: 96:d7:d5:6b:b4:fa:11:bb:f4:75:8f:ae:a8:6e:1e: a1:a7:1a:e1:5d:ab:7a:0b:b5:e1:85:ea:52:e3:d0: f8:5c:d3:fb:74:16:71:ec:61:38:19:a0:31:8d:ca: a4:4f:da:8d:ae:8e:96:71:66:82:25:c2:32:92:57: be:17:82:7e:b9:12:fe:6a:15:e7:fc:a7:04:07:b0: 55:f7:84:72:a3:6c:4f:53:e9:3f:4d:30:a5:c5:a5: d3:80:9e:3d:dd:d2:54:e9:27:bb:4a:7e:ad:44:99: 1b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8D:17:26:59:DA:CC:58:BB:BE:47:1B:BA:D7:56:FB:8F:C5:70:D0 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/CF94F4D82B1F11F0A19F8C33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.24.0/22 160.30.18.0/23 160.191.164.0/23 160.250.182.0-160.250.185.255 Signature Algorithm: sha256WithRSAEncryption 90:ab:d9:31:43:4e:71:9e:34:bb:6d:05:be:b9:78:b8:c7:ae: 5b:6a:9c:ea:88:a9:20:aa:b4:2c:17:bd:eb:41:17:d3:c1:65: d7:37:bd:8f:f6:07:52:fd:30:57:91:a0:98:d4:6d:d5:50:54: 57:5e:2d:bb:e3:b5:9d:73:a2:62:8f:d8:6a:9f:cf:8d:04:e7: 44:0e:2a:6b:33:cb:09:11:83:20:bb:ca:52:6b:b0:fb:94:61: f4:67:9a:fb:24:99:73:32:19:8c:b7:7f:41:ca:90:89:fa:9f: bf:65:4f:5a:13:07:62:74:72:2d:76:2c:07:4a:67:8d:08:68: 77:2d:53:d3:a7:fd:92:e5:57:a5:f5:80:59:9e:85:57:df:1c: 20:8b:cc:02:c0:34:16:7c:14:5e:18:96:7a:9f:29:46:f1:43: 63:fd:48:20:20:2f:7d:df:c3:b4:fb:5e:c8:cb:16:25:c3:5a: c5:cc:ce:99:e9:6c:76:a5:c1:33:9a:c7:a2:2c:42:8a:dc:ce: 2a:18:c1:fc:54:c4:ad:32:79:e0:ef:65:e6:6d:93:5d:b1:fa: e4:5d:c4:6b:05:4c:9f:6a:7e:32:a9:02:f1:f7:a0:9f:1c:d8: c5:c5:21:01:33:88:f8:f2:1e:54:be:5c:70:b0:a4:51:9d:f6: ce:a4:92:32 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDU2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNkMC0xYWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLIqTReSwgMdQUrVPmo97GKVxHEjI5IJP2MIoOuKDOmO8mWWul6z92NnIPHn BJH2EeVpHShznU2//NlSZPumag+FGS05AhyryJgK/0eZCn/ekOKpYGrERfCaMUA1 CX2+qgH4SznXKetWbxsCXBlqCZ4C21HvWYc4NA1iLA4/Z8JCGbADZpCusj+J5/k4 yLE7O+4ACDiW19VrtPoRu/R1j66obh6hpxrhXat6C7XhhepS49D4XNP7dBZx7GE4 GaAxjcqkT9qNro6WcWaCJcIykle+F4J+uRL+ahXn/KcEB7BV94Ryo2xPU+k/TTCl xaXTgJ493dJU6Se7Sn6tRJkb3QIDAQABo4ICrzCCAqswHQYDVR0OBBYEFPiNFyZZ 2sxYu75HG7rXVvuPxXDQMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQ0Y5NEY0RDgy QjFGMTFGMEExOUY4QzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAKdQhgDBAGgHhIDBAGgv6QwDAMEAaD6tgMEAaD6uDANBgkq hkiG9w0BAQsFAAOCAQEAkKvZMUNOcZ40u20Fvrl4uMeuW2qc6oipIKq0LBe960EX 08Fl1ze9j/YHUv0wV5GgmNRt1VBUV14tu+O1nXOiYo/Yap/PjQTnRA4qazPLCRGD ILvKUmuw+5Rh9Gea+ySZczIZjLd/QcqQifqfv2VPWhMHYnRyLXYsB0pnjQhody1T 06f9kuVXpfWAWZ6FV98cIIvMAsA0FnwUXhiWep8pRvFDY/1IICAvfd/DtPteyMsW JcNaxczOmelsdqXBM5rHoixCitzOKhjB/FTErTJ54O9l5m2TXbH65F3EawVMn2p+ MqkC8fegnxzYxcUhATOI+PIeVL5ccLCkUZ32zqSSMg== -----END CERTIFICATE-----Generated at Wed Oct 22 21:25:28 2025 by rpki-client