$ rpki-client -vvf rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/4F179FFA45C711F09D90C528C4F9AE02.roa File: 4F179FFA45C711F09D90C528C4F9AE02.roa (raw, json) Hash identifier: AoqGhpw1dfLgh3xeboUCFj7o3T5zts+KEOp4p0FPim4= Subject key identifier: 42:49:AF:09:2A:66:29:8C:A1:11:B2:F6:00:7E:6A:FE:DD:0C:DF:A1 Certificate issuer: /CN=A91106C7/serialNumber=229EE6CFB79584BA2310ACCE452838F7A48A501E Certificate serial: F9 Authority key identifier: 22:9E:E6:CF:B7:95:84:BA:23:10:AC:CE:45:28:38:F7:A4:8A:50:1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ip7mz7eVhLojEKzORSg496SKUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/4F179FFA45C711F09D90C528C4F9AE02.roa Signing time: Mon 15 Sep 2025 06:13:54 +0000 ROA not before: Mon 15 Sep 2025 06:13:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153038 IP address blocks: 160.22.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.crl rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ip7mz7eVhLojEKzORSg496SKUB4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91106C7, serialNumber=229EE6CFB79584BA2310ACCE452838F7A48A501E Validity Not Before: Sep 15 06:13:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c7aea2-573d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:06:f6:b3:ff:03:da:a5:9f:4f:e1:b1:b4:11: 18:76:42:5f:f1:56:30:54:2d:83:b5:b3:71:2b:d9: 80:71:17:f9:c2:9f:1b:52:25:bd:0b:ea:1f:a4:97: dc:ac:9d:9b:3c:d7:91:b3:93:b6:70:97:bf:68:3d: 94:dd:07:d0:c2:5d:96:fc:be:20:94:54:d6:c4:7f: ad:11:ce:56:db:44:0a:52:6e:e5:05:80:a3:0b:dc: e1:5e:71:fc:fd:f0:5e:08:61:51:ea:14:ab:5f:08: 6e:29:87:38:81:41:4f:61:74:dc:9e:24:36:e1:8d: ab:a5:ff:40:95:99:e6:ed:b9:5c:84:fc:19:51:65: 3c:da:1b:52:68:64:17:f0:b4:f4:0d:e2:2a:f2:aa: 42:31:6a:f9:a6:f8:4e:44:2a:b9:01:43:bf:79:6f: db:25:a2:af:f9:12:61:fd:a9:fd:7e:e5:ca:ff:ee: 42:11:e0:dc:23:a8:51:12:e9:55:d9:15:5c:4e:84: 7e:10:22:21:52:70:3a:c2:61:88:e1:e5:01:58:c2: a1:82:36:76:69:7f:6c:37:03:9d:cd:63:e5:03:1f: 4d:5e:80:bf:c4:2f:fa:63:b3:2f:d9:f8:a9:fe:16: 04:df:68:67:c0:74:8d:78:42:15:28:6f:ca:70:73: 06:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:49:AF:09:2A:66:29:8C:A1:11:B2:F6:00:7E:6A:FE:DD:0C:DF:A1 X509v3 Authority Key Identifier: keyid:22:9E:E6:CF:B7:95:84:BA:23:10:AC:CE:45:28:38:F7:A4:8A:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/Ip7mz7eVhLojEKzORSg496SKUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ip7mz7eVhLojEKzORSg496SKUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91106C7/6F03D630320E11EFB6E0DA76C4F9AE02/4F179FFA45C711F09D90C528C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.214.0/24 Signature Algorithm: sha256WithRSAEncryption 89:b1:72:68:46:40:47:c6:a5:53:3c:58:0f:a3:ff:2d:33:0c: d2:7e:19:20:55:51:b7:1b:9b:0c:d3:bb:7c:59:a3:ff:3d:07: 7c:7c:16:e4:44:cc:a4:ed:dd:5d:3d:22:61:7c:92:90:1e:60: 28:e8:6c:db:2a:4b:aa:a2:bd:db:98:42:10:37:d8:44:57:30: fe:ec:db:9e:fa:2d:96:a1:11:ab:31:f8:64:28:03:60:b2:cf: 28:80:40:2f:f4:6b:81:91:a6:7f:72:73:b2:19:1c:f2:09:1f: dc:93:24:6d:04:4d:7c:dd:eb:3b:44:2d:d7:b7:f8:0f:d3:4f: 7f:10:b5:5e:52:65:8a:09:f8:03:a4:1d:83:f8:6d:1c:cd:b6: eb:25:f0:92:2c:2e:ea:6d:04:fa:cb:a9:0f:9d:b0:d5:52:28: 3f:7c:b9:2d:d8:6b:c4:dd:5a:de:48:a6:46:c2:3b:58:84:06: ca:64:40:71:8c:f4:4c:0a:15:5e:a2:49:90:c1:3e:11:d7:5e: 7e:61:ac:2c:f1:2c:be:72:8b:ee:71:09:ab:11:dc:07:75:e7: aa:cb:dd:d9:de:fd:2e:8e:57:c9:f9:14:b3:33:33:c9:01:74: 65:70:ca:b1:ef:70:a7:5b:9f:17:6c:88:21:d2:77:3e:83:3d: a4:f1:be:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA2QzcxMTAvBgNVBAUTKDIyOUVFNkNGQjc5NTg0QkEyMzEwQUNDRTQ1MjgzOEY3 QTQ4QTUwMUUwHhcNMjUwOTE1MDYxMzU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM3YWVhMi01NzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Qb2s/8D2qWfT+GxtBEYdkJf8VYwVC2DtbNxK9mAcRf5wp8bUiW9C+ofpJfc rJ2bPNeRs5O2cJe/aD2U3QfQwl2W/L4glFTWxH+tEc5W20QKUm7lBYCjC9zhXnH8 /fBeCGFR6hSrXwhuKYc4gUFPYXTcniQ24Y2rpf9AlZnm7blchPwZUWU82htSaGQX 8LT0DeIq8qpCMWr5pvhORCq5AUO/eW/bJaKv+RJh/an9fuXK/+5CEeDcI6hREulV 2RVcToR+ECIhUnA6wmGI4eUBWMKhgjZ2aX9sNwOdzWPlAx9NXoC/xC/6Y7Mv2fip /hYE32hnwHSNeEIVKG/KcHMGtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEJJrwkq ZimMoRGy9gB+av7dDN+hMB8GA1UdIwQYMBaAFCKe5s+3lYS6IxCszkUoOPekilAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDZDNy82RjAzRDYzMDMy MEUxMUVGQjZFMERBNzZDNEY5QUUwMi9JcDdtejdlVmhMb2pFS3pPUlNnNDk2U0tV QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lwN216N2VWaExvakVLek9SU2c0OTZTS1VCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA2QzcvNkYwM0Q2MzAzMjBFMTFFRkI2RTBEQTc2QzRGOUFFMDIvNEYxNzlGRkE0 NUM3MTFGMDlEOTBDNTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFtYwDQYJKoZIhvcNAQELBQADggEBAImxcmhGQEfGpVM8 WA+j/y0zDNJ+GSBVUbcbmwzTu3xZo/89B3x8FuREzKTt3V09ImF8kpAeYCjobNsq S6qivduYQhA32ERXMP7s2576LZahEasx+GQoA2CyzyiAQC/0a4GRpn9yc7IZHPIJ H9yTJG0ETXzd6ztELde3+A/TT38QtV5SZYoJ+AOkHYP4bRzNtusl8JIsLuptBPrL qQ+dsNVSKD98uS3Ya8TdWt5IpkbCO1iEBspkQHGM9EwKFV6iSZDBPhHXXn5hrCzx LL5yi+5xCasR3Ad156rL3dne/S6OV8n5FLMzM8kBdGVwyrHvcKdbnxdsiCHSdz6D PaTxvrQ= -----END CERTIFICATE-----Generated at Mon Oct 20 16:26:53 2025 by rpki-client