$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/C7AAEA76637311EF97465324C4F9AE02.roa File: C7AAEA76637311EF97465324C4F9AE02.roa (raw, json) Hash identifier: ZzX2pAU2hf9tsTLmwqMICAJ5lNGrFfo//Sr5B58TslI= Subject key identifier: 83:14:AD:0C:C5:23:A8:65:2D:36:ED:61:88:C4:D1:66:3F:E8:89:79 Certificate issuer: /CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Certificate serial: 012E Authority key identifier: 7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/C7AAEA76637311EF97465324C4F9AE02.roa Signing time: Sun 07 Sep 2025 00:04:47 +0000 ROA not before: Sun 07 Sep 2025 00:04:47 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 142629 IP address blocks: 157.20.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:59:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE056, serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Validity Not Before: Sep 7 00:04:47 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68bccc1f-ce3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:af:c2:30:75:e4:84:03:bc:87:30:7e:16:e8: 44:e4:38:d3:98:50:cc:e2:a7:4c:4c:dc:07:f4:4f: 25:1c:21:7a:e4:b6:91:d4:69:44:1d:e8:c6:cd:34: b6:77:d2:16:89:8c:25:cd:cc:c7:0d:15:09:31:a8: 86:08:4f:44:2d:45:34:08:97:ab:a2:41:d2:37:d2: e6:c1:bd:52:37:7b:58:f2:60:c5:b2:b3:11:c0:32: d2:91:ec:f7:9b:26:9f:79:9d:42:62:ce:c3:8b:cc: 33:bd:a3:0c:5f:97:c0:82:9c:24:47:f1:4c:4f:eb: b9:47:d3:ab:3b:70:2b:2d:41:33:63:9c:4d:eb:b0: d7:5b:64:3c:01:08:8a:da:88:f0:17:1a:28:e5:c4: ea:6d:3f:ec:4a:0c:0a:c1:60:bd:f8:ae:ac:e3:24: ec:ac:e6:f3:83:0a:6d:f0:cd:a4:49:23:1f:22:87: 1b:a5:94:01:31:07:8b:9d:fe:53:66:ec:e9:d2:64: 2f:c5:9a:84:c3:61:df:2a:73:bf:95:0e:19:1d:e6: 03:e8:69:1c:6b:14:87:ce:ae:20:a4:91:18:0f:18: 9c:40:c7:d6:9d:61:c8:5d:74:ea:b3:b7:86:a9:88: c5:5c:02:5b:8b:76:23:90:10:84:0b:90:9f:ca:4c: d2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:14:AD:0C:C5:23:A8:65:2D:36:ED:61:88:C4:D1:66:3F:E8:89:79 X509v3 Authority Key Identifier: keyid:7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/C7AAEA76637311EF97465324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.142.0/24 Signature Algorithm: sha256WithRSAEncryption 22:83:06:33:28:d5:57:d1:64:bc:22:ce:37:4d:de:e1:1e:bc: 73:c3:e4:9e:e8:81:31:f4:2e:87:d2:fc:30:50:87:81:28:07: 1c:66:10:bd:62:bc:e8:a9:7c:e9:c3:03:14:84:32:d9:a8:5d: 66:dc:30:04:30:26:ef:49:3d:4f:49:59:44:bf:c4:8b:cf:ef: 1f:57:04:c5:27:27:70:98:00:8c:06:66:61:7b:85:52:cd:35: 0f:c7:52:df:f4:46:6e:76:7b:7f:49:a2:be:c8:bb:f4:5c:f7: 63:46:f1:65:af:81:a5:ba:8d:c5:f1:bf:9e:6f:c5:c0:cc:fc: 03:f6:97:33:9a:ef:ee:d8:83:d2:4a:33:57:4d:d0:a4:5d:59: 5c:e5:b8:cf:37:e3:9e:60:19:ae:11:cf:e3:87:1f:99:a7:29: e3:b5:e7:63:c4:17:4c:e2:3f:2d:48:43:a2:5e:24:14:b1:31: 87:f4:98:c2:90:86:26:f3:83:f5:57:24:83:47:a7:a7:1b:6c: 8f:85:f7:73:e0:e3:e2:0a:f6:d4:38:d8:54:e2:4c:6f:76:54: b7:c8:94:4f:fc:e6:d2:31:98:a2:0f:26:5d:9a:44:3d:1a:8a: 6a:3c:ff:6b:00:a2:8b:3d:c4:75:49:91:fa:5b:f1:f4:0c:93: 1f:b2:e3:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwNTYxMTAvBgNVBAUTKDdDMTk0RkVEQjhBNUM4Qzk3NkVCREVDODQ5M0RGM0Mz RjA4Q0M4RTIwHhcNMjUwOTA3MDAwNDQ3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJjY2MxZi1jZTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya/CMHXkhAO8hzB+FuhE5DjTmFDM4qdMTNwH9E8lHCF65LaR1GlEHejGzTS2 d9IWiYwlzczHDRUJMaiGCE9ELUU0CJerokHSN9Lmwb1SN3tY8mDFsrMRwDLSkez3 myafeZ1CYs7Di8wzvaMMX5fAgpwkR/FMT+u5R9OrO3ArLUEzY5xN67DXW2Q8AQiK 2ojwFxoo5cTqbT/sSgwKwWC9+K6s4yTsrObzgwpt8M2kSSMfIocbpZQBMQeLnf5T Zuzp0mQvxZqEw2HfKnO/lQ4ZHeYD6GkcaxSHzq4gpJEYDxicQMfWnWHIXXTqs7eG qYjFXAJbi3YjkBCEC5CfykzSuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIMUrQzF I6hlLTbtYYjE0WY/6Il5MB8GA1UdIwQYMBaAFHwZT+24pcjJduveyEk988PwjMji MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA1Ni8wMDNFMTE1OEQ3 OEIxMUVFQTJFQkQ3MTJDNEY5QUUwMi9mQmxQN2JpbHlNbDI2OTdJU1QzendfQ015 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZCbFA3YmlseU1sMjY5N0lTVDN6d19DTXlPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUwNTYvMDAzRTExNThENzhCMTFFRUEyRUJENzEyQzRGOUFFMDIvQzdBQUVBNzY2 MzczMTFFRjk3NDY1MzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFI4wDQYJKoZIhvcNAQELBQADggEBACKDBjMo1VfRZLwi zjdN3uEevHPD5J7ogTH0LofS/DBQh4EoBxxmEL1ivOipfOnDAxSEMtmoXWbcMAQw Ju9JPU9JWUS/xIvP7x9XBMUnJ3CYAIwGZmF7hVLNNQ/HUt/0Rm52e39Jor7Iu/Rc 92NG8WWvgaW6jcXxv55vxcDM/AP2lzOa7+7Yg9JKM1dN0KRdWVzluM83455gGa4R z+OHH5mnKeO152PEF0ziPy1IQ6JeJBSxMYf0mMKQhibzg/VXJINHp6cbbI+F93Pg 4+IK9tQ42FTiTG92VLfIlE/85tIxmKIPJl2aRD0aimo8/2sAoos9xHVJkfpb8fQM kx+y4yg= -----END CERTIFICATE-----Generated at Sun Oct 19 14:08:51 2025 by rpki-client