$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1637570ECDDB11ED90586709C4F9AE02.roa File: 1637570ECDDB11ED90586709C4F9AE02.roa (raw, json) Hash identifier: B0LTasm3byG+q7CbMDbMyTSaARD6WkiZlYBd91fAPNk= Subject key identifier: CF:FD:D0:19:CE:0A:82:11:3F:78:C1:72:96:BA:62:73:43:09:93:75 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DF9 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1637570ECDDB11ED90586709C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:51 +0000 ROA not before: Thu 28 Aug 2025 14:56:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24085 IP address blocks: 116.193.64.0/20 maxlen: 24 120.72.80.0/21 maxlen: 24 120.72.96.0/19 maxlen: 24 202.78.224.0/21 maxlen: 24 210.2.64.0/18 maxlen: 24 2403:6000::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19961 (0x4df9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e32-36dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c4:0d:e4:f1:b9:97:fd:ff:8a:91:49:06:91: 72:f0:65:8d:3a:27:0f:08:27:9c:76:0a:6c:26:19: be:74:e5:75:52:63:14:e9:6b:48:ca:84:fd:dd:47: c4:3e:04:d5:6a:52:22:9c:db:45:c4:9f:27:67:a2: 90:60:f8:8f:49:85:c9:ea:69:49:66:ae:b0:49:88: ab:b7:50:ba:87:6b:7a:91:b3:85:98:3d:07:96:d0: 7d:0a:24:89:b0:cf:91:0d:f2:58:8d:e9:6e:d1:c9: fe:3c:74:32:9d:c9:1c:cb:e7:0f:27:e4:3a:58:b2: ad:20:c0:80:09:d0:17:d5:da:2a:0d:48:e7:85:70: 65:d1:69:c3:e3:b8:c6:ca:ab:ac:8a:15:57:f3:41: 13:37:76:bc:ff:03:4e:4e:59:e2:03:e2:c7:48:4d: 98:be:63:b6:0f:8d:80:2d:9b:d3:a4:7c:91:09:07: 62:73:62:a1:38:b6:5c:4a:23:8d:de:35:80:c5:76: 07:e7:12:9a:f2:ef:26:81:19:3b:9a:1c:3c:91:1e: 2a:f7:04:10:d1:4a:6a:8c:55:b1:6b:fa:a3:fe:be: 42:86:48:16:0a:ae:8d:43:a2:25:2d:aa:e5:64:e4: 33:d6:2c:2e:70:a5:91:d6:39:c0:89:ce:d7:4b:63: 62:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FD:D0:19:CE:0A:82:11:3F:78:C1:72:96:BA:62:73:43:09:93:75 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1637570ECDDB11ED90586709C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.193.64.0/20 120.72.80.0/21 120.72.96.0/19 202.78.224.0/21 210.2.64.0/18 IPv6: 2403:6000::/32 Signature Algorithm: sha256WithRSAEncryption 2e:02:68:7f:dc:0c:c4:8c:66:b9:3f:99:e4:0b:b7:c2:3c:b5: a5:04:13:47:6d:40:98:9a:d2:07:10:18:e6:e8:3a:17:7c:95: 1c:49:9a:6d:dc:8f:3d:81:4d:34:de:e2:70:8c:9a:05:13:c5: f2:31:48:8b:89:31:a1:b7:f6:bf:bf:80:70:6d:a5:96:26:af: 50:12:a7:da:3f:21:4a:35:ed:89:b8:b2:a1:6a:a7:9d:d2:a7: 8e:57:28:bb:5d:75:ca:78:19:23:f4:e2:22:43:e1:c0:0a:d4: 96:ea:f2:58:a6:d1:74:1c:2d:88:5a:d2:a1:c6:44:49:fb:6c: 8d:57:f6:95:84:f6:4c:85:51:fa:75:8e:47:f0:5d:8f:94:ca: 24:1b:56:3b:19:79:8a:2f:0e:6d:3c:7a:5a:ed:5d:e1:26:f5: c0:c3:2c:e6:73:df:40:1b:5f:88:53:86:7a:d3:94:8a:62:38: 21:42:9d:f6:3c:b9:7c:ee:08:5d:75:06:6b:db:f0:cf:64:e3: 1a:b9:9d:42:d9:71:16:7f:ac:16:92:61:af:9c:a4:5a:fe:c2: c9:3d:6d:f0:b0:bc:ea:d0:cd:ea:1d:70:cd:62:5a:26:57:fa: cc:cd:d9:d9:aa:fe:23:26:04:f7:4c:d3:bb:1f:fa:ff:dd:53: 86:0f:0e:f3 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICTfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUzMi0zNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMQN5PG5l/3/ipFJBpFy8GWNOicPCCecdgpsJhm+dOV1UmMU6WtIyoT93UfE PgTValIinNtFxJ8nZ6KQYPiPSYXJ6mlJZq6wSYirt1C6h2t6kbOFmD0HltB9CiSJ sM+RDfJYjelu0cn+PHQynckcy+cPJ+Q6WLKtIMCACdAX1doqDUjnhXBl0WnD47jG yqusihVX80ETN3a8/wNOTlniA+LHSE2YvmO2D42ALZvTpHyRCQdic2KhOLZcSiON 3jWAxXYH5xKa8u8mgRk7mhw8kR4q9wQQ0UpqjFWxa/qj/r5ChkgWCq6NQ6IlLarl ZOQz1iwucKWR1jnAic7XS2NiXQIDAQABo4ICvDCCArgwHQYDVR0OBBYEFM/90BnO CoIRP3jBcpa6YnNDCZN1MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMTYzNzU3MEVD RERCMTFFRDkwNTg2NzA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAR0wUADBAN4SFADBAV4SGADBAPKTuADBAbSAkAwDQQCAAIw BwMFACQDYAAwDQYJKoZIhvcNAQELBQADggEBAC4CaH/cDMSMZrk/meQLt8I8taUE E0dtQJia0gcQGOboOhd8lRxJmm3cjz2BTTTe4nCMmgUTxfIxSIuJMaG39r+/gHBt pZYmr1ASp9o/IUo17Ym4sqFqp53Sp45XKLtddcp4GSP04iJD4cAK1Jbq8lim0XQc LYha0qHGREn7bI1X9pWE9kyFUfp1jkfwXY+UyiQbVjsZeYovDm08elrtXeEm9cDD LOZz30AbX4hThnrTlIpiOCFCnfY8uXzuCF11Bmvb8M9k4xq5nULZcRZ/rBaSYa+c pFr+wsk9bfCwvOrQzeodcM1iWiZX+szN2dmq/iMmBPdM07sf+v/dU4YPDvM= -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:36 2025 by rpki-client