$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/6F723CC0830B11F0B82E836DC4F9AE02.roa File: 6F723CC0830B11F0B82E836DC4F9AE02.roa (raw, json) Hash identifier: 20LByREQakyZFtw7XXZgcAlPRUMCZmgOccSGiPQln6o= Subject key identifier: 38:21:8D:52:63:21:AA:99:D8:FA:68:03:68:59:2A:E0:9B:B0:DB:C9 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: E1 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/6F723CC0830B11F0B82E836DC4F9AE02.roa Signing time: Sun 31 Aug 2025 06:24:33 +0000 ROA not before: Sun 31 Aug 2025 06:24:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154024 IP address blocks: 160.25.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Aug 31 06:24:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b3eaa1-e8c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:68:59:77:4d:2e:47:c3:7d:e3:cc:29:70:97: a4:7a:a8:dc:8a:21:4d:ed:e0:49:d8:f4:c2:ac:92: d0:08:29:d7:7e:4e:59:3f:54:a4:15:d9:e4:c4:da: a4:2c:d8:01:45:cd:29:23:0d:80:a3:79:79:00:55: 94:42:fb:ff:51:dc:e4:30:ca:54:0a:89:cc:f2:33: 0e:7f:0e:53:14:2d:a8:98:3e:66:de:5e:9a:29:88: 4b:ae:53:4b:9c:b0:8b:50:54:ed:2d:26:9f:25:98: 1c:0c:8e:ba:c2:a1:1e:49:ec:7b:73:9a:7c:33:79: 01:90:6d:14:b8:7e:10:ec:3d:5d:0a:74:fd:64:3e: 74:0b:94:89:0f:c1:61:83:e1:c0:2c:f7:8d:bf:c2: 1e:13:eb:79:52:0d:5d:a2:3c:43:2b:ba:78:77:a8: 68:0c:4d:a5:c8:34:25:27:db:31:15:ce:38:3b:87: da:88:f8:4e:54:c0:ed:9a:a9:56:73:ee:3c:c0:90: 86:05:0a:24:14:eb:51:f5:1f:6c:32:ab:a7:00:9b: 5a:ef:62:05:d4:73:73:25:db:a1:a4:6b:ba:9f:43: b1:60:34:e1:7e:00:df:06:27:53:9f:78:ca:75:7d: 76:91:c6:4b:f4:c5:68:7f:ad:d3:81:11:03:e2:fc: 81:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:21:8D:52:63:21:AA:99:D8:FA:68:03:68:59:2A:E0:9B:B0:DB:C9 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/6F723CC0830B11F0B82E836DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.224.0/23 Signature Algorithm: sha256WithRSAEncryption 78:c9:6f:85:74:5d:87:23:2a:25:ff:38:e1:65:98:0c:b6:73: 78:2a:91:3d:d2:2d:b0:9a:cb:29:76:7c:3e:09:d4:bb:ea:7c: 3c:3a:82:1d:5f:93:2d:18:5c:f2:00:1d:1a:7e:d2:38:a9:e5: 19:d4:3a:dc:b1:7a:8a:81:3d:82:f0:6f:9b:47:e9:48:42:9b: 03:b6:c5:21:1f:b5:3b:f5:22:4d:bb:b2:be:cf:04:05:29:4a: 97:3b:f0:2f:05:0b:86:b0:18:b1:2d:d1:4f:1f:55:ec:2e:c0: 29:58:a9:9d:d1:fe:f2:6d:ee:48:21:79:17:e5:11:6b:9b:71: 88:89:7f:58:fb:88:9b:26:85:85:41:c4:c4:fe:89:28:b5:19: 46:4b:5a:ab:16:a9:7e:e8:94:fc:c6:0d:4b:3d:bb:82:6b:63: fc:57:b5:d6:8a:99:b3:c9:e3:2c:2f:e9:bd:7f:fc:59:95:5b: 83:61:86:c2:e1:8f:ba:30:eb:71:3f:76:62:76:e4:ee:41:45: 63:d4:ee:d3:4f:3c:94:13:6a:40:bc:02:36:42:5f:e9:8b:74: 79:6f:02:c2:34:54:56:6c:7d:2b:55:62:b2:cb:39:11:2e:0f: 6e:0e:ed:5d:d3:d9:74:89:cf:20:5c:ed:23:7f:d4:32:13:af: ac:ba:8e:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUwODMxMDYyNDMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzZWFhMS1lOGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWhZd00uR8N948wpcJekeqjciiFN7eBJ2PTCrJLQCCnXfk5ZP1SkFdnkxNqk LNgBRc0pIw2Ao3l5AFWUQvv/UdzkMMpUConM8jMOfw5TFC2omD5m3l6aKYhLrlNL nLCLUFTtLSafJZgcDI66wqEeSex7c5p8M3kBkG0UuH4Q7D1dCnT9ZD50C5SJD8Fh g+HALPeNv8IeE+t5Ug1dojxDK7p4d6hoDE2lyDQlJ9sxFc44O4faiPhOVMDtmqlW c+48wJCGBQokFOtR9R9sMqunAJta72IF1HNzJduhpGu6n0OxYDThfgDfBidTn3jK dX12kcZL9MVof63TgRED4vyBJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDghjVJj IaqZ2PpoA2hZKuCbsNvJMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA4NTUvNTA0Q0ZGRTI0NDk2MTFFRjhFODRFNjNEQzRGOUFFMDIvNkY3MjNDQzA4 MzBCMTFGMEI4MkU4MzZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGeAwDQYJKoZIhvcNAQELBQADggEBAHjJb4V0XYcjKiX/ OOFlmAy2c3gqkT3SLbCayyl2fD4J1LvqfDw6gh1fky0YXPIAHRp+0jip5RnUOtyx eoqBPYLwb5tH6UhCmwO2xSEftTv1Ik27sr7PBAUpSpc78C8FC4awGLEt0U8fVewu wClYqZ3R/vJt7kgheRflEWubcYiJf1j7iJsmhYVBxMT+iSi1GUZLWqsWqX7olPzG DUs9u4JrY/xXtdaKmbPJ4ywv6b1//FmVW4NhhsLhj7ow63E/dmJ25O5BRWPU7tNP PJQTakC8AjZCX+mLdHlvAsI0VFZsfStVYrLLOREuD24O7V3T2XSJzyBc7SN/1DIT r6y6juk= -----END CERTIFICATE-----Generated at Tue Sep 9 14:10:07 2025 by rpki-client