$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa File: E9A9DFEAEB7F11EEB477F078C4F9AE02.roa (raw, json) Hash identifier: 8xDZWr7KFhWNTAskd5/GPdMQ51lOCuX8QG6pSVDHqy0= Subject key identifier: BF:0A:32:6E:8A:EF:0D:A1:21:EB:22:E5:BA:77:32:C0:FC:B3:34:4F Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0681 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:07 +0000 ROA not before: Thu 28 Aug 2025 14:51:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151863 IP address blocks: 157.20.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cdb-55bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:09:20:bc:51:9e:42:17:0a:13:a9:36:c4:52: 47:a3:5b:69:35:5a:71:7c:74:77:98:99:c2:95:af: 9e:ee:42:25:f4:cd:ff:5e:e1:69:a5:68:19:c6:84: dc:da:91:ca:d2:44:03:32:f2:34:0a:f7:24:62:73: 15:b2:44:74:bc:c8:b0:32:4b:6b:d4:4f:2d:92:7c: 0d:c1:ba:10:89:f7:bf:38:68:b5:c7:d8:32:14:83: 66:eb:86:3d:1c:b1:07:e4:f1:2f:29:07:da:cc:4f: 5c:b0:ad:96:a5:42:67:7e:e6:ea:2d:3a:09:98:b8: 25:bf:ac:0a:e5:73:30:23:3e:80:a7:56:3d:a0:e2: da:25:af:7e:5b:34:1b:5d:a5:f6:03:e7:af:f9:02: e5:93:97:a1:c1:9b:64:d9:7c:85:ae:bc:c1:be:2f: 9e:0a:a1:ca:19:78:7c:dc:a2:d8:0e:f5:7d:12:7f: a8:b7:75:18:fc:13:5c:ed:98:03:af:48:d2:a4:02: ad:34:5a:e2:14:8a:e7:4b:cb:b0:9a:1c:9b:aa:a8: 0a:22:e8:48:0c:bc:92:a5:53:00:e6:f0:90:93:39: 01:a6:fa:ab:3a:d9:e8:c4:d0:47:02:ca:13:f9:1a: d7:d1:df:a8:88:ab:49:0c:f3:bb:35:c6:e4:30:5d: 56:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0A:32:6E:8A:EF:0D:A1:21:EB:22:E5:BA:77:32:C0:FC:B3:34:4F X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/E9A9DFEAEB7F11EEB477F078C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.58.0/23 Signature Algorithm: sha256WithRSAEncryption 57:df:ff:c2:d0:a5:2c:9e:a6:b8:11:6d:e6:46:35:bb:08:ed: 9e:bd:4b:b3:8d:ec:c3:fa:33:d8:88:14:66:cb:05:fb:bd:d3: ff:b3:70:64:08:b2:ce:4e:c6:d6:aa:62:b6:ec:d4:35:00:41: c4:aa:bf:45:05:1e:6e:06:9d:9e:e9:c8:bc:c8:5c:ae:76:b5: de:be:12:ee:d6:07:d4:eb:14:d7:df:55:c9:66:45:d6:41:0b: 0c:05:b8:d2:ae:18:d9:78:8b:84:be:ed:2c:a7:89:7f:f9:09: bf:ad:33:5f:c4:35:1d:1e:04:b6:c4:a7:23:3a:61:94:40:3f: da:00:ea:38:19:8a:ce:c7:34:a3:0a:13:b4:c4:51:f7:c5:3b: d7:6e:71:bd:10:3c:36:ef:11:d0:32:a8:f0:4d:1b:a1:00:bb: 31:33:76:44:b5:1f:66:5d:be:a0:5a:51:62:76:13:ab:4d:14: 25:aa:a7:d2:ec:15:5d:a1:9f:71:eb:0f:55:5b:51:52:03:57: 2a:66:2b:6e:98:b7:9f:37:cf:06:52:ab:60:97:d6:35:a1:bc: c0:61:9c:d1:58:f2:88:43:87:a5:f2:3a:1e:fb:aa:e8:7d:0f: 3d:d9:b6:1b:b0:f3:1c:57:b8:56:1f:09:25:50:05:65:8e:48: 61:06:9c:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNkYi01NWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQkgvFGeQhcKE6k2xFJHo1tpNVpxfHR3mJnCla+e7kIl9M3/XuFppWgZxoTc 2pHK0kQDMvI0CvckYnMVskR0vMiwMktr1E8tknwNwboQife/OGi1x9gyFINm64Y9 HLEH5PEvKQfazE9csK2WpUJnfubqLToJmLglv6wK5XMwIz6Ap1Y9oOLaJa9+WzQb XaX2A+ev+QLlk5ehwZtk2XyFrrzBvi+eCqHKGXh83KLYDvV9En+ot3UY/BNc7ZgD r0jSpAKtNFriFIrnS8uwmhybqqgKIuhIDLySpVMA5vCQkzkBpvqrOtnoxNBHAsoT +RrX0d+oiKtJDPO7NcbkMF1WwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL8KMm6K 7w2hIesi5bp3MsD8szRPMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRTlBOURGRUFF QjdGMTFFRUI0NzdGMDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFDowDQYJKoZIhvcNAQELBQADggEBAFff/8LQpSyeprgR beZGNbsI7Z69S7ON7MP6M9iIFGbLBfu90/+zcGQIss5OxtaqYrbs1DUAQcSqv0UF Hm4GnZ7pyLzIXK52td6+Eu7WB9TrFNffVclmRdZBCwwFuNKuGNl4i4S+7SyniX/5 Cb+tM1/ENR0eBLbEpyM6YZRAP9oA6jgZis7HNKMKE7TEUffFO9ducb0QPDbvEdAy qPBNG6EAuzEzdkS1H2ZdvqBaUWJ2E6tNFCWqp9LsFV2hn3HrD1VbUVIDVypmK26Y t583zwZSq2CX1jWhvMBhnNFY8ohDh6XyOh77quh9Dz3Zthuw8xxXuFYfCSVQBWWO SGEGnGc= -----END CERTIFICATE-----Generated at Tue Sep 9 03:40:16 2025 by rpki-client