$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B57021F4BA6B11EC82BC5B32C4F9AE02.roa File: B57021F4BA6B11EC82BC5B32C4F9AE02.roa (raw, json) Hash identifier: 88S4m7oS2tcXdrbI7PUoahVLVqjcVMKsqcKcIFDS2sY= Subject key identifier: D1:81:EE:10:C5:04:82:C5:01:0B:69:EC:C0:FF:88:2E:CC:71:25:BE Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E14 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B57021F4BA6B11EC82BC5B32C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:16 +0000 ROA not before: Thu 28 Aug 2025 14:57:16 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45543 IP address blocks: 27.2.0.0/15 maxlen: 15 27.2.0.0/16 maxlen: 24 27.3.0.0/16 maxlen: 24 112.197.0.0/16 maxlen: 24 2403:e200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19988 (0x4e14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:16 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e4b-bd62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bd:8b:05:b0:26:21:eb:96:ba:5c:89:c2:08: 22:25:1f:f9:c3:12:7d:bf:db:b4:ab:e1:00:79:04: b9:9c:ac:a3:7e:7e:a3:0b:11:f1:f0:da:04:8c:2b: 03:44:8b:84:b2:0b:06:43:50:2b:dc:18:45:b8:ea: c5:54:b3:34:5f:65:1c:0c:57:9c:f9:b4:7f:6c:08: 77:cd:00:9d:89:96:61:c9:16:bb:8e:18:bc:f1:09: 22:ef:62:83:51:af:1b:87:28:e9:61:1b:eb:2a:b3: cd:05:a6:d3:93:d9:5f:2b:65:a4:09:24:67:5b:77: d3:04:4e:88:db:a2:1f:01:c0:c9:36:77:82:6f:17: a0:f6:04:65:ca:d1:2d:57:8c:78:8a:b1:6a:1f:ba: 23:ca:58:9e:e8:21:09:b6:cb:58:d6:5a:d9:07:e4: 2c:bd:9f:31:66:34:87:12:ab:3d:25:39:0e:77:80: b8:22:40:8a:4b:16:91:b5:9b:3f:7c:f4:24:d1:f0: 68:b5:43:86:c5:e4:b9:67:b0:89:8e:2a:df:d7:74: 90:12:06:59:d2:00:d9:50:00:e7:4f:d6:67:7d:a7: 60:4c:5b:80:1c:9d:4e:f3:81:6d:95:c7:1b:22:4b: cc:70:6e:f3:09:e6:8a:f6:d8:93:50:86:c9:37:94: d7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:81:EE:10:C5:04:82:C5:01:0B:69:EC:C0:FF:88:2E:CC:71:25:BE X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B57021F4BA6B11EC82BC5B32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.2.0.0/15 112.197.0.0/16 IPv6: 2403:e200::/32 Signature Algorithm: sha256WithRSAEncryption 85:ec:2d:9c:22:e8:f4:90:c9:c1:0f:0b:00:bc:08:5c:b0:ad: f3:31:3b:0a:8a:1a:11:5c:b9:45:c3:7e:38:f9:80:11:08:8d: 10:0d:50:62:e5:4d:7b:d7:df:8d:c6:40:59:1f:1e:bb:6f:c0: 5e:5e:eb:03:6c:29:d6:3c:b6:87:1b:c0:de:35:f7:93:63:15: a3:21:bf:5a:06:be:4e:13:92:4f:0e:38:cd:65:c4:3c:e8:d3: 6e:3c:a9:7e:66:73:0b:a8:d1:ca:50:4d:c2:7d:ef:ba:99:7b: a1:72:ca:1e:2b:4a:9d:62:3d:ae:cc:94:52:25:ea:a0:47:1a: 4c:0a:67:5d:02:a5:45:43:0c:5d:18:65:96:75:de:64:8c:9a: 70:cf:e6:96:23:4c:a6:31:89:63:fd:1e:3e:82:4c:dc:70:e5: 3c:da:7f:72:38:fc:21:1b:02:b4:5a:f9:c5:02:ea:d7:c0:43: 4e:59:9b:44:36:61:2f:ba:ab:8c:a4:ad:d4:9b:21:14:a3:30: 39:3a:d1:f3:e5:2e:88:72:0b:e9:01:45:9b:1a:38:81:b1:2f: 22:1b:a8:fe:0d:da:71:18:11:29:9d:36:fe:16:fc:c5:f9:03: 66:1f:d3:95:c2:67:f5:1a:93:5f:d2:66:48:8d:ee:55:61:03: 8b:6a:93:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICThQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzE2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU0Yi1iZDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb2LBbAmIeuWulyJwggiJR/5wxJ9v9u0q+EAeQS5nKyjfn6jCxHx8NoEjCsD RIuEsgsGQ1Ar3BhFuOrFVLM0X2UcDFec+bR/bAh3zQCdiZZhyRa7jhi88Qki72KD Ua8bhyjpYRvrKrPNBabTk9lfK2WkCSRnW3fTBE6I26IfAcDJNneCbxeg9gRlytEt V4x4irFqH7ojylie6CEJtstY1lrZB+QsvZ8xZjSHEqs9JTkOd4C4IkCKSxaRtZs/ fPQk0fBotUOGxeS5Z7CJjirf13SQEgZZ0gDZUADnT9ZnfadgTFuAHJ1O84Ftlccb IkvMcG7zCeaK9tiTUIbJN5TXDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGB7hDF BILFAQtp7MD/iC7McSW+MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQjU3MDIxRjRC QTZCMTFFQzgyQkM1QjMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMBAEAgABMAoDAwEbAgMDAHDFMA0EAgACMAcDBQAkA+IAMA0GCSqGSIb3DQEB CwUAA4IBAQCF7C2cIuj0kMnBDwsAvAhcsK3zMTsKihoRXLlFw344+YARCI0QDVBi 5U1719+NxkBZHx67b8BeXusDbCnWPLaHG8DeNfeTYxWjIb9aBr5OE5JPDjjNZcQ8 6NNuPKl+ZnMLqNHKUE3Cfe+6mXuhcsoeK0qdYj2uzJRSJeqgRxpMCmddAqVFQwxd GGWWdd5kjJpwz+aWI0ymMYlj/R4+gkzccOU82n9yOPwhGwK0WvnFAurXwENOWZtE NmEvuquMpK3UmyEUozA5OtHz5S6IcgvpAUWbGjiBsS8iG6j+DdpxGBEpnTb+FvzF +QNmH9OVwmf1GpNf0mZIje5VYQOLapO4 -----END CERTIFICATE-----Generated at Mon Sep 8 05:39:24 2025 by rpki-client