$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa File: D3204D78E81811EEACBDBB30C4F9AE02.roa (raw, json) Hash identifier: Nr+uOXyikmGTfOE0vME4TYMciiJAEtEn7U1NfFLUWGw= Subject key identifier: 22:A5:18:98:33:D7:E6:9E:8F:E4:62:9B:F1:87:A4:F3:D4:02:C9:38 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0686 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:11 +0000 ROA not before: Thu 28 Aug 2025 14:51:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151911 IP address blocks: 157.20.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1670 (0x686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cdf-434d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:88:b7:cb:97:98:49:2d:87:66:87:fa:0d:0a: 28:c3:61:65:95:33:e7:99:83:7e:74:87:c8:a0:db: 4d:39:d3:ab:91:ca:03:c5:cb:b3:0b:f4:3d:e2:44: 25:d5:68:d6:fb:3e:23:c2:d1:03:6f:c7:c7:20:0e: 8d:4a:57:38:29:70:bf:9c:27:a4:dc:16:36:28:2e: 00:37:bb:59:61:f2:12:53:40:f2:6d:82:08:94:e1: 75:85:fb:46:9e:44:06:d6:7e:18:b7:07:9b:c8:48: 6a:05:42:71:a8:b5:e8:3e:2f:62:0c:43:11:27:82: 20:02:ee:b7:56:1a:a8:3b:b6:3f:5f:c5:f3:3b:3b: 7f:11:88:ad:97:5f:3b:56:75:8f:7d:df:55:46:c6: 4d:09:19:99:b2:d2:36:5d:7a:ab:ca:11:7a:ba:1b: e4:7f:5e:cb:14:4d:55:e9:aa:f9:d2:b5:c3:96:91: 00:25:fc:14:01:36:7e:a7:de:8b:f2:6a:d8:e3:e7: 95:e5:cb:ee:85:73:6c:83:4c:04:2c:9a:31:d6:c1: 3d:d1:bf:d0:ba:9a:0f:dd:76:c1:d4:e6:37:07:ee: 5b:ca:cb:8f:26:83:e3:3c:e4:70:a3:cb:8f:9b:cb: 8c:11:2c:de:8a:21:d8:29:91:ec:a5:cb:34:aa:cb: e0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A5:18:98:33:D7:E6:9E:8F:E4:62:9B:F1:87:A4:F3:D4:02:C9:38 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D3204D78E81811EEACBDBB30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.200.0/23 Signature Algorithm: sha256WithRSAEncryption 21:1b:a2:ac:56:82:ad:89:b4:c9:73:a4:d8:f4:3d:b4:41:7f: a2:bf:02:b4:bd:5a:36:d6:70:18:4b:ba:f2:7c:02:6b:a9:3d: 30:58:4b:d5:3e:40:01:e8:a1:b8:b4:40:ec:a8:e3:08:d4:6f: 3c:39:a6:7f:1a:2f:e4:a7:8b:6c:a3:20:61:56:94:a0:bd:ef: 38:8d:ab:5e:06:b7:19:56:e4:30:1d:10:24:7c:37:eb:6d:e1: b8:78:c1:2b:25:49:d4:0a:b9:67:98:d3:b7:5e:81:6c:49:2b: 18:e3:ee:b7:00:ce:f6:4f:ff:2c:d7:81:3d:b3:4a:26:91:85: f0:c4:eb:5d:40:6a:19:5d:26:ae:bf:34:ce:a5:d6:c2:98:17: 30:f7:46:90:c6:4b:64:09:db:b1:99:4b:38:bb:f5:c4:33:39: ee:a9:dd:8e:9e:ab:47:ac:5c:2a:fa:59:e0:b1:cc:9d:ea:22: 55:e1:b2:0d:12:a3:50:e6:65:f6:76:81:4a:ee:14:6f:2d:d2: 76:14:7d:f1:91:a6:fb:06:a7:d6:c6:3e:df:27:c4:5b:71:f5: 8d:a7:b3:e5:89:47:22:31:88:51:e8:f9:04:5f:c5:91:8a:46: 03:8e:d9:9f:00:25:19:25:78:9c:fd:ef:7a:4a:06:c4:ec:28: 96:87:64:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNkZi00MzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Yi3y5eYSS2HZof6DQoow2FllTPnmYN+dIfIoNtNOdOrkcoDxcuzC/Q94kQl 1WjW+z4jwtEDb8fHIA6NSlc4KXC/nCek3BY2KC4AN7tZYfISU0DybYIIlOF1hftG nkQG1n4YtwebyEhqBUJxqLXoPi9iDEMRJ4IgAu63VhqoO7Y/X8XzOzt/EYitl187 VnWPfd9VRsZNCRmZstI2XXqryhF6uhvkf17LFE1V6ar50rXDlpEAJfwUATZ+p96L 8mrY4+eV5cvuhXNsg0wELJox1sE90b/QupoP3XbB1OY3B+5bysuPJoPjPORwo8uP m8uMESzeiiHYKZHspcs0qsvgywIDAQABo4IClTCCApEwHQYDVR0OBBYEFCKlGJgz 1+aej+Rim/GHpPPUAsk4MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRDMyMDRENzhF ODE4MTFFRUFDQkRCQjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFMgwDQYJKoZIhvcNAQELBQADggEBACEboqxWgq2JtMlz pNj0PbRBf6K/ArS9WjbWcBhLuvJ8AmupPTBYS9U+QAHoobi0QOyo4wjUbzw5pn8a L+Sni2yjIGFWlKC97ziNq14GtxlW5DAdECR8N+tt4bh4wSslSdQKuWeY07degWxJ Kxjj7rcAzvZP/yzXgT2zSiaRhfDE611AahldJq6/NM6l1sKYFzD3RpDGS2QJ27GZ Szi79cQzOe6p3Y6eq0esXCr6WeCxzJ3qIlXhsg0So1DmZfZ2gUruFG8t0nYUffGR pvsGp9bGPt8nxFtx9Y2ns+WJRyIxiFHo+QRfxZGKRgOO2Z8AJRkleJz973pKBsTs KJaHZBo= -----END CERTIFICATE-----Generated at Sun Sep 7 00:32:34 2025 by rpki-client