$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/8D431594FFDF11EF8DF72930C4F9AE02.roa File: 8D431594FFDF11EF8DF72930C4F9AE02.roa (raw, json) Hash identifier: pDBpwWzy3RFOzY6mOa1pibkze94QAdG3zJbynRenhAw= Subject key identifier: E8:F1:99:F0:0A:49:8B:FD:E8:07:39:5B:30:6F:EB:1A:47:5C:00:3C Certificate issuer: /CN=A91288D9/serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Certificate serial: 6E Authority key identifier: A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/8D431594FFDF11EF8DF72930C4F9AE02.roa Signing time: Tue 24 Jun 2025 19:14:37 +0000 ROA not before: Tue 24 Jun 2025 19:14:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58935 IP address blocks: 160.250.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Validity Not Before: Jun 24 19:14:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685af91c-ba7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:b7:e2:6c:77:09:51:9f:bb:8a:0e:e0:37: e2:91:ce:43:df:da:37:5e:a5:c2:6b:a4:03:e5:46: ba:81:49:e2:ac:56:cf:68:89:f7:cf:fd:14:b6:30: 25:b3:ca:b1:20:4e:54:65:2e:7d:bf:83:d0:ff:f7: b0:f3:d6:fc:df:9a:d8:b9:fb:2d:b3:60:ed:5d:22: 59:bc:5f:86:25:d1:a5:9c:10:60:e3:17:2f:ce:3e: db:e6:a6:57:88:95:e9:b1:4b:ce:10:d5:a6:8d:1a: 1e:60:47:f8:2a:35:c2:1f:9d:77:34:57:02:3c:66: d1:aa:6b:3e:c4:72:4c:c7:83:19:9f:57:02:f3:e9: 58:88:0d:d2:06:1c:8f:96:db:d2:6f:fd:cf:1f:9f: 86:73:fa:5b:57:91:91:e8:a6:bc:6a:f3:2a:4c:20: 2d:28:6a:45:3b:7e:7f:25:06:d6:a9:b7:f3:27:d9: ff:3b:0c:2c:ff:f1:82:d7:74:70:a2:ca:9b:3b:1d: d4:ab:b9:04:df:2a:b4:dc:c8:51:b1:e1:7c:94:40: d1:ec:23:62:d7:78:e5:2b:b5:47:e6:62:2e:50:e6: 28:01:7e:94:7d:7a:f9:25:e8:ef:94:fd:c1:35:7c: 34:05:6f:e5:db:a8:1d:87:1d:2e:1a:6f:52:63:a3: 09:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F1:99:F0:0A:49:8B:FD:E8:07:39:5B:30:6F:EB:1A:47:5C:00:3C X509v3 Authority Key Identifier: keyid:A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/8D431594FFDF11EF8DF72930C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.89.0/24 Signature Algorithm: sha256WithRSAEncryption 33:db:76:5b:15:e5:cc:bc:3c:91:86:62:b8:35:02:68:e4:65: 20:d0:0b:d0:b2:2d:c1:04:29:5f:49:65:cb:07:74:f3:19:6c: 70:8d:76:ad:6b:ac:da:8e:52:c6:95:44:4a:da:c1:f4:60:0a: 6f:eb:c7:31:98:2d:c2:7d:66:21:9d:8d:14:4a:b6:07:9a:e2: 34:e3:59:4e:05:ec:f8:b8:68:98:c4:37:73:5b:cc:61:6c:ba: 4b:ca:d6:05:29:90:24:d5:d1:5d:35:e9:bf:8c:2c:15:14:45: 0e:6b:97:af:da:4f:c8:00:b8:7f:15:89:32:9b:c2:74:14:1a: 6c:05:71:3b:3b:36:4e:bd:4d:5d:50:c5:cc:c3:68:c6:75:9e: c3:f5:42:d3:98:e8:b5:6c:84:bc:4c:ea:0f:8d:14:3e:3c:89: 93:59:b7:5e:63:57:20:0d:11:01:79:4d:a7:3f:36:50:eb:91: b1:8c:7a:89:df:df:f8:f8:c4:f6:ea:61:9d:4c:0a:78:dc:b1: f3:13:4b:1a:ed:09:4b:1e:c4:40:c6:51:31:af:cb:97:02:d6: 86:aa:5d:d6:ff:fa:e6:5a:cc:6c:35:f5:83:4e:f3:c3:b8:98: 31:dc:08:8b:c7:91:cd:06:6b:d4:5c:3e:a4:04:c8:ad:d6:b1: 6d:25:71:a1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy ODhEOTExMC8GA1UEBRMoQTY0QkU0NEFDQjAwRTRCREFFNDQ5MUIwRkEwQ0Q3MDk5 RDJDNzI3QzAeFw0yNTA2MjQxOTE0MzZaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWFmOTFjLWJhN2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEA7fibHcJUZ+7ig7gN+KRzkPf2jdepcJrpAPlRrqBSeKsVs9oiffP/RS2MCWz yrEgTlRlLn2/g9D/97Dz1vzfmti5+y2zYO1dIlm8X4Yl0aWcEGDjFy/OPtvmpleI lemxS84Q1aaNGh5gR/gqNcIfnXc0VwI8ZtGqaz7EckzHgxmfVwLz6ViIDdIGHI+W 29Jv/c8fn4Zz+ltXkZHoprxq8ypMIC0oakU7fn8lBtapt/Mn2f87DCz/8YLXdHCi yps7HdSruQTfKrTcyFGx4XyUQNHsI2LXeOUrtUfmYi5Q5igBfpR9evkl6O+U/cE1 fDQFb+XbqB2HHS4ab1Jjowl3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6PGZ8ApJ i/3oBzlbMG/rGkdcADwwHwYDVR0jBBgwFoAUpkvkSssA5L2uRJGw+gzXCZ0scnww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4OEQ5L0Y4M0UzRkNFQURC QzExRUZCMzAyOTgzRUM0RjlBRTAyL3BrdmtTc3NBNUwydVJKR3ctZ3pYQ1owc2Nu dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcGt2a1Nzc0E1TDJ1UkpHdy1nelhDWjBzY253LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9GODNFM0ZDRUFEQkMxMUVGQjMwMjk4M0VDNEY5QUUwMi84RDQzMTU5NEZG REYxMUVGOERGNzI5MzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6WTANBgkqhkiG9w0BAQsFAAOCAQEAM9t2WxXlzLw8kYZi uDUCaORlINAL0LItwQQpX0llywd08xlscI12rWus2o5SxpVEStrB9GAKb+vHMZgt wn1mIZ2NFEq2B5riNONZTgXs+LhomMQ3c1vMYWy6S8rWBSmQJNXRXTXpv4wsFRRF DmuXr9pPyAC4fxWJMpvCdBQabAVxOzs2Tr1NXVDFzMNoxnWew/VC05jotWyEvEzq D40UPjyJk1m3XmNXIA0RAXlNpz82UOuRsYx6id/f+PjE9uphnUwKeNyx8xNLGu0J Sx7EQMZRMa/LlwLWhqpd1v/65lrMbDX1g07zw7iYMdwIi8eRzQZr1Fw+pATIrdax bSVxoQ== -----END CERTIFICATE-----Generated at Fri Jul 4 06:21:00 2025 by rpki-client