$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/A4CC914E9EA011F0A7B92A1EC4F9AE02.roa File: A4CC914E9EA011F0A7B92A1EC4F9AE02.roa (raw, json) Hash identifier: juPGvBgA6sd3e+25RSGNC1Y9ZQiQHWaS+pRIRJtHwEw= Subject key identifier: 1A:0C:BF:F3:61:2A:D9:EE:08:7A:71:40:6A:68:C9:25:F5:77:F7:8D Certificate issuer: /CN=A91E3F3C/serialNumber=09710B5B66749E339D124CDE6D66CE366ACCABB0 Certificate serial: 03 Authority key identifier: 09:71:0B:5B:66:74:9E:33:9D:12:4C:DE:6D:66:CE:36:6A:CC:AB:B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CXELW2Z0njOdEkzebWbONmrMq7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/A4CC914E9EA011F0A7B92A1EC4F9AE02.roa Signing time: Wed 01 Oct 2025 08:28:45 +0000 ROA not before: Wed 01 Oct 2025 08:28:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151660 IP address blocks: 160.222.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/CXELW2Z0njOdEkzebWbONmrMq7A.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/CXELW2Z0njOdEkzebWbONmrMq7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CXELW2Z0njOdEkzebWbONmrMq7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 06:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=09710B5B66749E339D124CDE6D66CE366ACCABB0 Validity Not Before: Oct 1 08:28:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dce63c-4c69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:af:7d:ca:a9:de:bc:27:36:1e:f7:d8:71:b7: 66:0f:7b:95:43:88:7d:27:f5:a9:31:e8:19:bc:20: 9a:48:fb:bb:46:c2:ca:7b:86:76:e0:1e:eb:a9:dc: af:69:59:47:94:cf:5e:fc:d4:9a:e2:d6:93:1d:77: 77:0f:7d:63:e7:01:b5:10:ca:55:da:fe:47:24:73: 41:1d:84:3c:9b:34:85:63:82:56:02:cb:1b:37:f3: d1:08:40:91:7a:e5:6d:91:e5:a8:0f:c2:4c:31:60: d8:60:f6:35:92:d7:2b:66:f4:8a:0d:5a:84:bc:d0: d7:4a:ad:22:33:0f:56:c9:9c:78:b1:a0:8f:85:15: 68:b2:a8:92:39:30:d4:64:af:c3:64:2a:c5:cd:06: 5d:e0:6e:d5:b8:cb:ed:68:a4:64:00:be:14:90:f1: fe:78:f5:be:69:51:9c:d8:48:cb:29:2b:b7:08:c2: 4d:a1:52:93:3f:81:00:0e:1f:cd:b9:0b:50:4c:d3: 6e:dc:24:f6:00:30:68:82:92:6c:c0:e1:19:7f:8b: 67:ff:db:48:92:c6:3d:ba:87:b3:e3:c4:3a:18:22: fe:64:4e:ae:c1:31:d7:8c:94:d2:da:03:25:dd:dd: e9:5a:82:d1:c2:6d:2d:d6:d6:a5:79:3d:78:ab:3d: e6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:0C:BF:F3:61:2A:D9:EE:08:7A:71:40:6A:68:C9:25:F5:77:F7:8D X509v3 Authority Key Identifier: keyid:09:71:0B:5B:66:74:9E:33:9D:12:4C:DE:6D:66:CE:36:6A:CC:AB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/CXELW2Z0njOdEkzebWbONmrMq7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CXELW2Z0njOdEkzebWbONmrMq7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/A0D49CC89E9E11F090FF0D4FC4F9AE02/A4CC914E9EA011F0A7B92A1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.222.152.0/21 Signature Algorithm: sha256WithRSAEncryption 14:92:e7:91:84:07:95:7e:c8:93:92:c0:ab:ce:c1:f3:7b:9c: 32:ee:56:ab:cc:00:ea:8f:ba:ca:03:dd:43:66:17:a6:11:9a: 59:1e:12:af:3b:b9:fb:e0:9c:21:e9:3f:45:fd:0b:5f:39:1d: fa:3d:e8:19:8a:86:e7:f9:f0:ce:bd:a6:b3:c1:f6:31:df:99: e2:93:a0:f8:fb:2f:57:7f:89:ce:2a:b7:25:16:1e:e3:91:42: c2:a6:87:d2:8a:dc:1b:8b:29:ac:73:87:78:7c:60:70:4a:80: 93:fd:c3:ff:09:b3:02:3a:40:80:44:da:0d:eb:9f:ba:28:25: a8:3f:9b:f4:dd:33:67:c5:01:08:f2:a0:e8:73:aa:a6:80:f6: 08:83:35:5c:18:a0:1e:55:67:43:0d:93:08:1b:fa:33:c1:50: 29:86:74:ea:5e:37:8e:ab:e5:15:97:84:42:7e:60:59:5f:04: 74:bb:ba:70:dd:8d:c3:b1:cf:5e:e4:55:d8:05:b5:9e:66:c6: cb:58:63:4e:cb:7f:00:99:49:42:70:14:94:d8:33:f2:05:f3: ae:06:7f:66:8a:85:43:49:40:36:b2:de:0d:f4:41:c7:5a:da: cc:d0:ec:3a:37:83:01:6b:4e:e5:b2:d3:88:56:4c:bb:cb:b7: 43:11:e6:82 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0YzQzExMC8GA1UEBRMoMDk3MTBCNUI2Njc0OUUzMzlEMTI0Q0RFNkQ2NkNFMzY2 QUNDQUJCMDAeFw0yNTEwMDEwODI4NDVaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGNlNjNjLTRjNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnr33Kqd68JzYe99hxt2YPe5VDiH0n9akx6Bm8IJpI+7tGwsp7hnbgHuup3K9p WUeUz1781Jri1pMdd3cPfWPnAbUQylXa/kckc0EdhDybNIVjglYCyxs389EIQJF6 5W2R5agPwkwxYNhg9jWS1ytm9IoNWoS80NdKrSIzD1bJnHixoI+FFWiyqJI5MNRk r8NkKsXNBl3gbtW4y+1opGQAvhSQ8f549b5pUZzYSMspK7cIwk2hUpM/gQAOH825 C1BM027cJPYAMGiCkmzA4Rl/i2f/20iSxj26h7PjxDoYIv5kTq7BMdeMlNLaAyXd 3elagtHCbS3W1qV5PXirPealAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGgy/82Eq 2e4IenFAamjJJfV3940wHwYDVR0jBBgwFoAUCXELW2Z0njOdEkzebWbONmrMq7Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRjNDL0EwRDQ5Q0M4OUU5 RTExRjA5MEZGMEQ0RkM0RjlBRTAyL0NYRUxXMlowbmpPZEVremViV2JPTm1yTXE3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ1hFTFcyWjBuak9kRWt6ZWJXYk9ObXJNcTdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy9BMEQ0OUNDODlFOUUxMUYwOTBGRjBENEZDNEY5QUUwMi9BNENDOTE0RTlF QTAxMUYwQTdCOTJBMUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA6DemDANBgkqhkiG9w0BAQsFAAOCAQEAFJLnkYQHlX7Ik5LA q87B83ucMu5Wq8wA6o+6ygPdQ2YXphGaWR4Srzu5++CcIek/Rf0LXzkd+j3oGYqG 5/nwzr2ms8H2Md+Z4pOg+PsvV3+Jziq3JRYe45FCwqaH0orcG4sprHOHeHxgcEqA k/3D/wmzAjpAgETaDeufuiglqD+b9N0zZ8UBCPKg6HOqpoD2CIM1XBigHlVnQw2T CBv6M8FQKYZ06l43jqvlFZeEQn5gWV8EdLu6cN2Nw7HPXuRV2AW1nmbGy1hjTst/ AJlJQnAUlNgz8gXzrgZ/ZoqFQ0lANrLeDfRBx1razNDsOjeDAWtO5bLTiFZMu8u3 QxHmgg== -----END CERTIFICATE-----Generated at Sun Oct 19 00:38:13 2025 by rpki-client