$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/01D0FEFA79EB11F0B5CB2A62C4F9AE02.roa File: 01D0FEFA79EB11F0B5CB2A62C4F9AE02.roa (raw, json) Hash identifier: wThAj8/7pbQieHDakdgIa7taTMBaHneUB9WpII1jCl0= Subject key identifier: DC:7B:AE:9E:60:1D:39:21:7E:49:33:60:2F:21:95:CC:52:7C:0D:45 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: E0 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/01D0FEFA79EB11F0B5CB2A62C4F9AE02.roa Signing time: Sun 31 Aug 2025 06:24:33 +0000 ROA not before: Sun 31 Aug 2025 06:24:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151151 IP address blocks: 160.25.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 06:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Aug 31 06:24:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b3eaa0-7edf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:f6:6f:b7:ff:ee:4e:1e:4b:59:e7:11:44: 54:ad:18:44:19:d1:04:30:35:04:8f:1b:54:28:4e: 00:e1:e3:37:e1:1c:06:b1:7b:82:fa:a9:00:07:30: 31:da:32:e6:c7:4b:2d:36:30:83:f9:97:7d:2f:ca: ea:ec:bb:10:3a:cd:dd:3e:32:60:cc:71:ab:5b:39: c1:59:9d:b7:ac:4b:eb:27:20:5f:bb:c3:a9:96:84: df:51:8c:3b:ad:54:60:b1:b3:0f:cd:89:b0:fa:cc: da:9c:f4:9f:94:70:52:db:be:6c:66:c8:de:e1:78: 5d:19:68:dc:01:cd:ab:3d:77:d3:00:91:1e:4f:4e: ac:5b:41:b7:88:2a:91:67:9b:72:99:07:3c:28:f9: 7d:c6:f4:70:8a:e5:ea:a2:15:8c:a8:71:bc:83:26: f6:1a:f1:b7:51:a7:f2:46:3c:67:ac:40:48:f8:3b: 5f:bb:58:cf:f7:b8:97:d6:38:b0:f0:d5:69:f8:5a: a7:5f:cc:a4:1c:19:e4:ce:a9:7d:a3:31:70:05:c5: f6:96:63:a4:bf:59:fa:59:a1:f3:f1:90:24:c7:e8: bd:c9:8c:96:05:ac:9b:15:8c:30:21:de:67:2f:9c: 25:6d:d7:7c:41:5d:db:c8:0c:57:80:c1:3d:30:f7: 5a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7B:AE:9E:60:1D:39:21:7E:49:33:60:2F:21:95:CC:52:7C:0D:45 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/01D0FEFA79EB11F0B5CB2A62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.224.0/23 Signature Algorithm: sha256WithRSAEncryption 96:ff:88:ad:12:4e:5a:17:5c:fe:1c:4e:b9:e2:ae:51:3d:c5: 81:6a:9a:57:7c:8c:97:0a:71:7d:83:2a:05:25:9f:d7:38:69: aa:96:fa:e3:c4:b1:ff:ac:73:a2:c6:6b:23:3e:51:0a:76:ac: 20:fc:00:69:23:b1:35:be:b2:99:2a:5a:a5:3b:51:b4:2f:63: 46:6b:16:79:97:9b:59:cd:73:5f:f1:f5:8a:46:47:b6:af:6e: 91:97:24:81:90:ba:bc:47:6c:be:c2:6b:56:39:8a:87:96:ff: b1:2a:7b:03:ea:59:a8:5c:45:be:f4:7a:4c:7f:b5:57:88:2d: 2c:25:17:a5:88:6a:8e:4b:10:a7:a3:45:fc:f4:e1:94:7b:2a: aa:20:d4:52:9a:d5:21:41:3a:3a:89:f9:ae:10:ec:33:55:8f: 41:40:9d:25:c7:db:6e:54:4a:2e:87:9e:ce:da:af:93:ce:22: ee:d4:63:ad:32:ba:5c:7a:38:5e:7a:f7:1a:59:ef:93:76:cd: a3:46:d5:1f:92:fe:08:3f:c0:e0:17:6e:20:0c:d5:78:cc:f9: bd:ae:e9:23:58:b8:30:e9:3a:ee:a9:ea:0d:a6:fe:c3:49:88: ad:b4:2b:88:0b:a8:07:51:01:55:73:ac:60:d0:36:e0:4b:e7: 0e:7f:a8:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwODMxMDYyNDMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzZWFhMC03ZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurz2b7f/7k4eS1nnEURUrRhEGdEEMDUEjxtUKE4A4eM34RwGsXuC+qkABzAx 2jLmx0stNjCD+Zd9L8rq7LsQOs3dPjJgzHGrWznBWZ23rEvrJyBfu8OploTfUYw7 rVRgsbMPzYmw+szanPSflHBS275sZsje4XhdGWjcAc2rPXfTAJEeT06sW0G3iCqR Z5tymQc8KPl9xvRwiuXqohWMqHG8gyb2GvG3UafyRjxnrEBI+Dtfu1jP97iX1jiw 8NVp+FqnX8ykHBnkzql9ozFwBcX2lmOkv1n6WaHz8ZAkx+i9yYyWBaybFYwwId5n L5wlbdd8QV3byAxXgME9MPdahQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNx7rp5g HTkhfkkzYC8hlcxSfA1FMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA4NTUvNTA0Q0ZGRTI0NDk2MTFFRjhFODRFNjNEQzRGOUFFMDIvMDFEMEZFRkE3 OUVCMTFGMEI1Q0IyQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGeAwDQYJKoZIhvcNAQELBQADggEBAJb/iK0STloXXP4c TrnirlE9xYFqmld8jJcKcX2DKgUln9c4aaqW+uPEsf+sc6LGayM+UQp2rCD8AGkj sTW+spkqWqU7UbQvY0ZrFnmXm1nNc1/x9YpGR7avbpGXJIGQurxHbL7Ca1Y5ioeW /7EqewPqWahcRb70ekx/tVeILSwlF6WIao5LEKejRfz04ZR7Kqog1FKa1SFBOjqJ +a4Q7DNVj0FAnSXH225USi6Hns7ar5POIu7UY60yulx6OF569xpZ75N2zaNG1R+S /gg/wOAXbiAM1XjM+b2u6SNYuDDpOu6p6g2m/sNJiK20K4gLqAdRAVVzrGDQNuBL 5w5/qNQ= -----END CERTIFICATE-----Generated at Mon Sep 8 14:38:53 2025 by rpki-client