$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D674499A330E11ED904A987BC4F9AE02.roa File: D674499A330E11ED904A987BC4F9AE02.roa (raw, json) Hash identifier: PqECmumwJCLYT6Pz5DaSwKqxsadN7Ytg+sTvR9SF1ak= Subject key identifier: 2B:3D:72:D8:F0:83:BA:54:A5:89:08:84:11:90:CE:E7:36:26:E1:2E Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E1B Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D674499A330E11ED904A987BC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:21 +0000 ROA not before: Thu 28 Aug 2025 14:57:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45894 IP address blocks: 111.65.240.0/20 maxlen: 24 180.148.128.0/20 maxlen: 24 2001:df0:66::/48 maxlen: 48 2402:dd40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19995 (0x4e1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e51-f0de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:1b:aa:32:82:07:b5:36:7f:97:90:95:d5: e5:55:6f:ea:a0:d4:af:51:7f:58:88:ce:40:83:24: 2f:87:ac:bd:0f:8a:7a:21:e1:50:4b:70:ae:7f:76: 4e:48:2f:70:2f:d0:c4:74:cd:79:dd:ca:41:97:8a: 11:ec:b7:c2:7d:8d:bc:e7:7c:7e:45:91:a6:7d:e6: 15:aa:11:9d:91:1a:b0:ac:30:b9:3e:41:61:53:27: 1c:93:81:75:88:d5:00:35:e7:bb:32:93:a7:ce:76: e6:b7:f1:39:f8:52:f0:79:81:2d:1e:0e:a2:19:57: bd:6b:15:9c:0b:0f:6a:f4:1a:bb:03:43:ce:75:a8: 60:3e:6d:a4:c6:07:aa:52:74:b4:48:2d:29:e0:d3: 1d:01:3f:9e:74:e9:4e:36:02:8b:35:0b:4c:13:a9: af:e4:d3:e6:e7:da:98:a3:9c:ac:f4:ca:72:94:e2: b6:73:a6:12:36:7e:f0:b1:48:78:2c:e3:e2:d1:6e: 6b:66:ec:11:3a:30:63:88:4e:5d:55:fb:fd:b4:80: 78:74:80:01:bb:bf:e3:83:db:aa:db:32:f3:99:d9: 6d:33:72:77:52:16:f7:a8:de:b9:0e:21:0f:77:92: ce:7f:8e:1c:cd:18:b3:a6:28:64:ef:cb:f6:ed:21: fc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:3D:72:D8:F0:83:BA:54:A5:89:08:84:11:90:CE:E7:36:26:E1:2E X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D674499A330E11ED904A987BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.65.240.0/20 180.148.128.0/20 IPv6: 2001:df0:66::/48 2402:dd40::/32 Signature Algorithm: sha256WithRSAEncryption 47:fc:42:57:5d:09:9a:81:6c:91:91:d9:aa:6f:37:c9:b1:f5: 91:c7:90:f7:7f:9d:74:79:b5:38:c6:d7:3d:00:82:5a:a4:43: e0:bb:8f:71:cc:44:a2:35:1f:23:cd:39:5e:ee:51:5e:a2:19: 37:ef:7a:63:65:03:6b:dd:53:e9:c3:1c:2b:53:6c:eb:56:d9: f0:eb:45:16:4c:a0:22:59:aa:8a:15:7b:c9:82:cd:1b:9a:1d: 26:56:41:39:cf:ae:96:5f:89:cc:f6:ef:ea:a9:cb:08:b5:9a: 8a:82:88:21:d5:f6:5a:00:ff:cc:42:64:67:4b:1a:e5:ca:e5: ab:03:d1:bc:05:8f:d0:32:f5:fa:36:72:2c:bf:03:eb:2f:a5: 86:64:9a:8d:36:f6:fe:7b:36:ae:ba:54:31:50:fc:fb:f0:00: ea:ad:1b:5d:d5:99:e7:9f:fe:15:29:a9:ae:51:64:17:9f:f8: 60:22:8d:45:4e:db:27:89:19:1e:5c:96:6b:dc:f3:de:63:25: 33:20:64:ca:8f:7f:47:55:7d:61:34:ee:11:fc:b0:c1:53:d3: 91:2f:1a:b7:2a:84:74:cb:2f:b7:7e:6c:3f:cb:5a:0b:26:d8: a1:c3:9c:6c:f0:65:fe:c6:ae:c0:c8:67:4f:cc:14:c0:04:f5: 58:bb:e3:9a -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICThswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU1MS1mMGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVwbqjKCB7U2f5eQldXlVW/qoNSvUX9YiM5AgyQvh6y9D4p6IeFQS3Cuf3ZO SC9wL9DEdM153cpBl4oR7LfCfY2853x+RZGmfeYVqhGdkRqwrDC5PkFhUycck4F1 iNUANee7MpOnznbmt/E5+FLweYEtHg6iGVe9axWcCw9q9Bq7A0POdahgPm2kxgeq UnS0SC0p4NMdAT+edOlONgKLNQtME6mv5NPm59qYo5ys9MpylOK2c6YSNn7wsUh4 LOPi0W5rZuwROjBjiE5dVfv9tIB4dIABu7/jg9uq2zLzmdltM3J3Uhb3qN65DiEP d5LOf44czRizpihk78v27SH8twIDAQABo4ICszCCAq8wHQYDVR0OBBYEFCs9ctjw g7pUpYkIhBGQzuc2JuEuMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRDY3NDQ5OUEz MzBFMTFFRDkwNEE5ODdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBARvQfADBAS0lIAwFgQCAAIwEAMHACABDfAAZgMFACQC3UAw DQYJKoZIhvcNAQELBQADggEBAEf8QlddCZqBbJGR2apvN8mx9ZHHkPd/nXR5tTjG 1z0AglqkQ+C7j3HMRKI1HyPNOV7uUV6iGTfvemNlA2vdU+nDHCtTbOtW2fDrRRZM oCJZqooVe8mCzRuaHSZWQTnPrpZficz27+qpywi1moqCiCHV9loA/8xCZGdLGuXK 5asD0bwFj9Ay9fo2ciy/A+svpYZkmo029v57Nq66VDFQ/PvwAOqtG13Vmeef/hUp qa5RZBef+GAijUVO2yeJGR5clmvc895jJTMgZMqPf0dVfWE07hH8sMFT05EvGrcq hHTLL7d+bD/LWgsm2KHDnGzwZf7GrsDIZ0/MFMAE9Vi745o= -----END CERTIFICATE-----Generated at Mon Sep 8 05:39:22 2025 by rpki-client