$ rpki-client -vvf rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/557F3136DCA511EF98B72959C4F9AE02.roa File: 557F3136DCA511EF98B72959C4F9AE02.roa (raw, json) Hash identifier: SrRGCeTkPcXvi63UKXsEnuqePLRhHVKqBX2soL9amKI= Subject key identifier: B8:42:95:D8:80:AE:20:8F:9E:26:DF:79:CF:64:49:13:DC:93:29:C4 Certificate issuer: /CN=A91443DC/serialNumber=FEABAD9235AEF17023CDCFB1619026F3CEDB2C7F Certificate serial: F4 Authority key identifier: FE:AB:AD:92:35:AE:F1:70:23:CD:CF:B1:61:90:26:F3:CE:DB:2C:7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/557F3136DCA511EF98B72959C4F9AE02.roa Signing time: Thu 11 Sep 2025 06:14:21 +0000 ROA not before: Thu 11 Sep 2025 06:14:21 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45905 IP address blocks: 160.22.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.crl rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443DC, serialNumber=FEABAD9235AEF17023CDCFB1619026F3CEDB2C7F Validity Not Before: Sep 11 06:14:21 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c268bd-2bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:69:80:99:40:85:6a:ce:c6:73:25:b7:6f:7d: 17:fe:95:d2:69:29:c4:9d:b3:5f:4c:bf:62:4c:75: a5:c1:c7:ac:ca:ce:e2:7e:62:6d:7d:9e:e9:ce:cd: 5e:eb:bf:91:9a:7c:c9:28:6e:a9:9d:1d:6d:4c:3b: 23:de:88:37:8d:36:0c:b1:87:61:58:19:f7:d9:90: ab:26:ac:88:54:66:0a:33:e2:ff:a0:2a:ab:57:2f: 3f:5e:b8:e7:eb:3a:53:49:d4:9c:76:90:76:65:24: 84:d7:db:eb:8d:61:c1:7c:75:3e:d2:53:e1:c3:a4: 49:36:da:13:ff:40:4e:16:15:71:ec:c6:75:3f:3f: b9:36:8b:4f:ba:0e:39:f4:d1:d1:d7:18:6a:34:dc: dc:e0:19:4e:14:55:ce:ad:bf:98:6f:e8:18:68:2d: 71:e1:c7:38:41:88:9f:16:f4:48:9b:0f:57:6e:0f: ee:66:03:e3:99:b2:eb:f7:b9:25:98:76:ba:a0:c1: 6f:fe:02:69:d4:2a:3b:6f:ba:a2:28:b1:fb:3f:68: 4d:0f:b7:04:2e:ce:23:11:f8:02:44:14:03:cc:16: ed:36:a3:a1:75:a8:79:a9:00:c6:68:b9:d4:55:d3: 30:84:80:a6:ce:5a:96:5f:28:67:51:4b:fa:dd:34: 80:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:42:95:D8:80:AE:20:8F:9E:26:DF:79:CF:64:49:13:DC:93:29:C4 X509v3 Authority Key Identifier: keyid:FE:AB:AD:92:35:AE:F1:70:23:CD:CF:B1:61:90:26:F3:CE:DB:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/557F3136DCA511EF98B72959C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.150.0/24 Signature Algorithm: sha256WithRSAEncryption 05:91:40:c6:ba:ff:db:c8:0b:01:31:07:5c:1e:7e:be:33:a3: 3b:dc:db:5a:4d:67:27:ac:ee:06:25:ec:50:2c:fe:13:62:76: 64:c5:b3:17:c9:39:1d:08:5a:47:00:68:8f:a7:e0:41:66:71: d3:9a:25:c0:cd:ed:5c:3b:6c:e2:38:ad:84:c4:4b:9a:70:3e: 75:8e:b6:5d:e9:ae:44:78:eb:4c:29:dd:55:2f:b3:32:9e:91: d9:a3:13:e8:45:95:dc:20:4a:b2:4f:a3:e4:2b:32:67:da:d0: 60:fa:f8:06:f9:68:c8:1a:9e:d2:92:29:cf:22:02:09:03:1c: bf:74:50:20:40:c3:23:40:6c:83:a6:7c:53:1f:b1:97:7e:87: 8c:df:15:f2:e5:c2:0f:00:4a:a1:da:c0:64:04:f7:80:d1:24: 45:6b:67:e4:5d:e5:4c:19:e8:cd:63:50:ad:44:fa:c5:0a:52: 2a:86:b1:de:6c:f4:a9:fe:a4:cd:85:6e:55:94:fd:6f:46:95: 82:58:92:5a:c9:c0:5c:3b:53:52:38:39:92:66:3e:72:c4:93: e9:4f:f5:42:64:a7:05:e8:b9:f7:ff:53:1e:e0:d4:bd:44:23: 27:9c:43:c7:81:77:e2:11:94:15:3d:25:72:1e:20:fa:39:37: c5:1b:c1:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzREMxMTAvBgNVBAUTKEZFQUJBRDkyMzVBRUYxNzAyM0NEQ0ZCMTYxOTAyNkYz Q0VEQjJDN0YwHhcNMjUwOTExMDYxNDIxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMyNjhiZC0yYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGmAmUCFas7GcyW3b30X/pXSaSnEnbNfTL9iTHWlwcesys7ifmJtfZ7pzs1e 67+RmnzJKG6pnR1tTDsj3og3jTYMsYdhWBn32ZCrJqyIVGYKM+L/oCqrVy8/Xrjn 6zpTSdScdpB2ZSSE19vrjWHBfHU+0lPhw6RJNtoT/0BOFhVx7MZ1Pz+5NotPug45 9NHR1xhqNNzc4BlOFFXOrb+Yb+gYaC1x4cc4QYifFvRImw9Xbg/uZgPjmbLr97kl mHa6oMFv/gJp1Co7b7qiKLH7P2hND7cELs4jEfgCRBQDzBbtNqOhdah5qQDGaLnU VdMwhICmzlqWXyhnUUv63TSA4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLhCldiA riCPnibfec9kSRPckynEMB8GA1UdIwQYMBaAFP6rrZI1rvFwI83PsWGQJvPO2yx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDNEQy85N0RGN0ExMjMw NjIxMUVGOTc4QjQ3NjRDNEY5QUUwMi9fcXV0a2pXdThYQWp6Yy14WVpBbTg4N2JM SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19xdXRrald1OFhBanpjLXhZWkFtODg3YkxIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQzREMvOTdERjdBMTIzMDYyMTFFRjk3OEI0NzY0QzRGOUFFMDIvNTU3RjMxMzZE Q0E1MTFFRjk4QjcyOTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFpYwDQYJKoZIhvcNAQELBQADggEBAAWRQMa6/9vICwEx B1wefr4zozvc21pNZyes7gYl7FAs/hNidmTFsxfJOR0IWkcAaI+n4EFmcdOaJcDN 7Vw7bOI4rYTES5pwPnWOtl3prkR460wp3VUvszKekdmjE+hFldwgSrJPo+QrMmfa 0GD6+Ab5aMgantKSKc8iAgkDHL90UCBAwyNAbIOmfFMfsZd+h4zfFfLlwg8ASqHa wGQE94DRJEVrZ+Rd5UwZ6M1jUK1E+sUKUiqGsd5s9Kn+pM2FblWU/W9GlYJYklrJ wFw7U1I4OZJmPnLEk+lP9UJkpwXouff/Ux7g1L1EIyecQ8eBd+IRlBU9JXIeIPo5 N8UbwQ4= -----END CERTIFICATE-----Generated at Mon Oct 20 16:26:42 2025 by rpki-client