$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6769F04C700E11EFB014A77BC4F9AE02.roa File: 6769F04C700E11EFB014A77BC4F9AE02.roa (raw, json) Hash identifier: MiX0JJKse0hQTl4OjUWk+d17/KVDUBaqDFGZgFT5ZZ4= Subject key identifier: AE:60:0B:EE:6E:7D:90:6A:75:76:33:FF:CF:CF:6A:E2:C0:A5:55:5E Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E36 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6769F04C700E11EFB014A77BC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:45 +0000 ROA not before: Thu 28 Aug 2025 14:57:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56156 IP address blocks: 117.122.112.0/22 maxlen: 24 2001:dc8:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20022 (0x4e36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e69-1013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4c:44:30:47:6e:c0:ab:2b:4c:52:af:00:14: 04:ff:39:92:c6:9a:d6:15:e9:5a:49:60:5d:e3:c5: 61:37:19:a0:09:62:c7:c7:10:76:f7:94:c3:fe:5e: d2:b9:3a:e0:46:43:88:ee:d3:f4:ab:d9:dc:da:49: e6:d4:1f:54:dc:18:98:7e:75:34:ec:8a:52:29:97: 23:f3:59:b0:b7:e3:e0:85:e0:74:c6:01:42:3f:88: 5d:95:1a:bf:be:63:78:3f:fe:d2:0a:22:83:92:5d: 80:ff:12:ad:a6:16:84:6d:60:ae:4f:2e:51:c6:60: 3f:52:ed:01:d3:11:b0:65:1d:d8:f5:3f:69:ca:8c: 71:f4:85:7d:7d:f9:40:18:8d:a4:30:57:0a:1e:27: f6:b0:f1:b5:04:d3:53:77:83:96:11:1d:1e:71:e1: c2:26:4b:46:88:18:3f:61:af:18:ec:05:ac:94:73: 5e:df:03:98:a3:49:37:d8:48:b7:92:46:bd:86:2b: 41:67:10:36:f1:c6:03:c8:fb:9c:6a:5f:9b:51:68: e1:31:90:c3:d9:62:1c:f9:00:09:e2:81:b0:26:eb: 6e:73:01:64:ff:89:8f:eb:60:6c:a3:c2:97:50:69: c0:f1:72:73:0a:e7:23:02:b4:53:ce:56:dd:0a:6a: ac:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:60:0B:EE:6E:7D:90:6A:75:76:33:FF:CF:CF:6A:E2:C0:A5:55:5E X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6769F04C700E11EFB014A77BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.122.112.0/22 IPv6: 2001:dc8:4000::/48 Signature Algorithm: sha256WithRSAEncryption 36:78:e4:30:2a:b3:ba:42:1c:cf:dc:31:7e:ee:5a:ca:2f:f2: 13:92:fb:31:03:db:3c:89:bc:61:7e:f7:f8:9b:cc:c3:3a:2a: 40:9d:8b:7e:55:1c:b7:22:71:e8:ef:98:c5:45:a3:a0:ac:f6: 28:2d:ee:1a:85:55:ee:d1:29:56:e0:1a:c5:4a:27:e4:c3:b0: b7:5b:57:4d:6a:22:9a:9f:16:da:e3:c2:d4:32:a4:5d:0f:18: 45:74:68:ed:da:6b:3a:c6:b9:99:94:5a:95:3b:0b:ab:96:73: ac:48:22:20:77:79:c4:b5:4a:cd:4d:27:ad:a9:cf:40:10:b1: 84:c4:2c:ba:72:e7:ff:ab:91:10:3c:0e:9f:61:ef:f2:50:58: e9:b5:03:87:a8:03:8c:81:e2:46:11:89:63:d0:ec:3f:46:96: 3b:e9:81:04:cf:fe:45:9e:2c:21:7c:67:5c:db:7c:c3:0e:6f: fe:24:88:b3:9b:48:3f:6f:53:3b:bc:31:db:7d:fd:55:c0:76: 5d:57:69:09:74:93:45:95:e7:d1:c6:d1:f3:43:4c:45:62:cc: c5:93:da:2e:d7:a2:92:ce:4a:3c:d4:0f:63:f7:8e:39:4c:03: c1:cb:f8:c4:f6:e0:1d:d3:1c:75:92:e4:85:20:33:4e:f4:42: d4:c9:e8:b0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU2OS0xMDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0xEMEduwKsrTFKvABQE/zmSxprWFelaSWBd48VhNxmgCWLHxxB295TD/l7S uTrgRkOI7tP0q9nc2knm1B9U3BiYfnU07IpSKZcj81mwt+PgheB0xgFCP4hdlRq/ vmN4P/7SCiKDkl2A/xKtphaEbWCuTy5RxmA/Uu0B0xGwZR3Y9T9pyoxx9IV9fflA GI2kMFcKHif2sPG1BNNTd4OWER0eceHCJktGiBg/Ya8Y7AWslHNe3wOYo0k32Ei3 kka9hitBZxA28cYDyPucal+bUWjhMZDD2WIc+QAJ4oGwJutucwFk/4mP62Bso8KX UGnA8XJzCucjArRTzlbdCmqsywIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK5gC+5u fZBqdXYz/8/PauLApVVeMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNjc2OUYwNEM3 MDBFMTFFRkIwMTRBNzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJ1enAwDwQCAAIwCQMHACABDchAADANBgkqhkiG9w0BAQsF AAOCAQEANnjkMCqzukIcz9wxfu5ayi/yE5L7MQPbPIm8YX73+JvMwzoqQJ2LflUc tyJx6O+YxUWjoKz2KC3uGoVV7tEpVuAaxUon5MOwt1tXTWoimp8W2uPC1DKkXQ8Y RXRo7dprOsa5mZRalTsLq5ZzrEgiIHd5xLVKzU0nranPQBCxhMQsunLn/6uREDwO n2Hv8lBY6bUDh6gDjIHiRhGJY9DsP0aWO+mBBM/+RZ4sIXxnXNt8ww5v/iSIs5tI P29TO7wx2339VcB2XVdpCXSTRZXn0cbR80NMRWLMxZPaLteiks5KPNQPY/eOOUwD wcv4xPbgHdMcdZLkhSAzTvRC1MnosA== -----END CERTIFICATE-----Generated at Mon Sep 8 05:39:24 2025 by rpki-client