$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D5CBAE82014011EF9545275FC4F9AE02.roa File: D5CBAE82014011EF9545275FC4F9AE02.roa (raw, json) Hash identifier: XmBZ5vW1f86o1B36XFgS8S/b7l9om8AG6EezKBK+XXM= Subject key identifier: 21:92:B2:88:2C:D4:D6:BF:64:FE:74:3F:84:2B:EB:78:CC:02:B7:07 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 068A Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D5CBAE82014011EF9545275FC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:15 +0000 ROA not before: Thu 28 Aug 2025 14:51:15 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151923 IP address blocks: 157.66.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1674 (0x68a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:15 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06ce3-be11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4f:79:b1:37:46:57:b8:07:48:3a:33:5c:c7: 33:f4:36:c2:4c:37:ad:b8:8a:cb:75:2a:0e:92:10: 97:27:3c:41:f0:58:55:12:77:d2:0e:3b:52:01:1e: d0:d0:e8:61:fd:5b:56:ca:ff:fe:85:9f:ac:7a:fe: b1:87:c8:04:46:5e:e2:29:7e:d1:e8:6f:02:7d:3f: 58:46:04:d5:1b:a3:7c:09:ea:09:c8:a0:18:84:28: 02:35:82:2b:e0:ea:23:bd:f6:ef:09:0e:8e:f9:ad: 0f:73:61:92:fe:04:5b:e4:0c:5b:a6:3d:98:40:f3: da:78:e6:2d:18:4b:06:ec:5b:dd:a8:54:fe:81:7e: e3:a1:a9:f3:a7:22:08:6c:9c:1e:2a:55:63:b6:de: 3b:26:46:60:a3:31:41:00:02:f3:aa:9d:28:b5:16: 25:4b:80:61:f1:72:7b:fa:24:e8:60:c3:f6:a2:41: 80:40:06:35:ab:44:d0:87:d9:1d:a0:da:6a:83:32: d0:93:2b:f5:4a:ea:f1:6a:41:b6:1b:8b:4d:3d:c0: 79:08:b1:1c:b1:73:ee:cc:5c:16:02:01:49:8d:5d: 1f:84:37:8a:8e:49:c8:f0:8a:cb:cc:41:c3:f5:97: 8d:10:e6:2b:71:7f:b9:7a:1d:f2:41:72:16:57:52: 8c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:92:B2:88:2C:D4:D6:BF:64:FE:74:3F:84:2B:EB:78:CC:02:B7:07 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D5CBAE82014011EF9545275FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.134.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:21:ce:25:06:3f:a2:9c:8d:8a:82:dd:1d:ab:46:2e:11:76: 1d:ba:98:3d:74:08:15:c4:a1:59:29:e7:c7:21:4f:0a:09:e0: 44:b2:e3:f6:a6:4c:db:ef:4a:e8:4c:b3:90:40:f5:8d:c0:80: 86:75:ec:f4:e1:2d:2f:62:8b:8b:87:83:72:9e:20:1f:08:21: 00:7b:e3:81:c1:2f:ed:54:53:14:3c:7d:15:c5:83:e1:23:05: 70:71:b6:26:1e:f2:c1:15:22:73:bf:80:9b:c9:4c:2b:a5:a0: 14:77:97:25:5b:d8:8c:eb:e0:57:e9:2b:fe:ef:62:b2:b8:08: ab:d8:6b:d0:f7:dc:84:bf:05:21:74:a3:e8:cd:4e:5e:f0:e4: e6:64:a5:14:9b:37:83:45:59:9f:1b:6e:17:ac:5a:69:51:fb: e4:59:29:89:81:29:d0:3a:4d:4c:b3:91:1e:c4:99:f3:db:0a: 0c:33:f5:f8:77:43:c4:72:e9:43:45:b8:2a:84:77:71:52:11: 3e:d2:6c:05:dd:a3:70:db:af:86:6c:9f:f1:09:20:36:0b:07: 65:db:27:dd:5b:64:ce:31:2b:7a:d3:3c:c1:ab:d9:3a:ae:09: 78:77:cc:0b:2a:2e:66:bc:f3:3e:22:31:0c:0d:35:cd:c1:5d: fd:1c:7d:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTE1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNlMy1iZTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo095sTdGV7gHSDozXMcz9DbCTDetuIrLdSoOkhCXJzxB8FhVEnfSDjtSAR7Q 0Ohh/VtWyv/+hZ+sev6xh8gERl7iKX7R6G8CfT9YRgTVG6N8CeoJyKAYhCgCNYIr 4OojvfbvCQ6O+a0Pc2GS/gRb5Axbpj2YQPPaeOYtGEsG7FvdqFT+gX7joanzpyII bJweKlVjtt47JkZgozFBAALzqp0otRYlS4Bh8XJ7+iToYMP2okGAQAY1q0TQh9kd oNpqgzLQkyv1SurxakG2G4tNPcB5CLEcsXPuzFwWAgFJjV0fhDeKjknI8IrLzEHD 9ZeNEOYrcX+5eh3yQXIWV1KMAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCGSsogs 1Na/ZP50P4Qr63jMArcHMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRDVDQkFFODIw MTQwMTFFRjk1NDUyNzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdQoYwDQYJKoZIhvcNAQELBQADggEBAA4hziUGP6KcjYqC 3R2rRi4Rdh26mD10CBXEoVkp58chTwoJ4ESy4/amTNvvSuhMs5BA9Y3AgIZ17PTh LS9ii4uHg3KeIB8IIQB744HBL+1UUxQ8fRXFg+EjBXBxtiYe8sEVInO/gJvJTCul oBR3lyVb2Izr4FfpK/7vYrK4CKvYa9D33IS/BSF0o+jNTl7w5OZkpRSbN4NFWZ8b bhesWmlR++RZKYmBKdA6TUyzkR7EmfPbCgwz9fh3Q8Ry6UNFuCqEd3FSET7SbAXd o3Dbr4Zsn/EJIDYLB2XbJ91bZM4xK3rTPMGr2TquCXh3zAsqLma88z4iMQwNNc3B Xf0cfW0= -----END CERTIFICATE-----Generated at Sun Sep 7 00:33:17 2025 by rpki-client