$ rpki-client -vvf rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/6DAC44BAA91E11F0B822717EC4F9AE02.roa File: 6DAC44BAA91E11F0B822717EC4F9AE02.roa (raw, json) Hash identifier: rMIYciZYzQpQ3or6eVOdlG8b1B7jrOe8q89C97qwQ6I= Subject key identifier: 47:8D:30:5D:90:A0:93:95:31:88:F3:4B:17:06:F0:D5:3F:F7:A1:2F Certificate issuer: /CN=A91886CC/serialNumber=0B10E5EFEF30F8CE04ED4C5B8F48A9CD24BCBA14 Certificate serial: 013F Authority key identifier: 0B:10:E5:EF:EF:30:F8:CE:04:ED:4C:5B:8F:48:A9:CD:24:BC:BA:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/6DAC44BAA91E11F0B822717EC4F9AE02.roa Signing time: Tue 14 Oct 2025 16:54:20 +0000 ROA not before: Tue 14 Oct 2025 16:54:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154256 IP address blocks: 157.20.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.crl rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91886CC, serialNumber=0B10E5EFEF30F8CE04ED4C5B8F48A9CD24BCBA14 Validity Not Before: Oct 14 16:54:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68ee803c-5722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:11:e2:87:b1:d0:55:62:fa:69:9a:ce:f9:72: 94:83:8a:25:34:5d:c4:9c:b2:ef:5d:9e:c1:01:bf: 1b:5f:b4:68:7f:bb:13:53:76:34:f5:6b:24:7f:22: 3e:40:71:94:13:b3:55:13:34:ac:b1:23:8f:6f:18: 4a:cf:05:a9:c0:47:56:7f:b2:73:2a:56:db:5f:0f: 48:cd:e7:cb:88:1a:90:95:50:d5:4a:6d:6c:88:68: 2d:6b:1a:ff:cb:ae:98:7d:2a:26:3f:21:06:06:fd: 32:d5:bb:3b:56:f9:ec:78:1e:c3:aa:e8:31:3b:92: 78:02:ec:e3:54:68:ba:e4:a2:02:9b:88:8f:c0:ef: a9:0e:fa:c7:50:92:f7:6e:27:dc:4b:4e:03:b1:60: 43:38:8f:a0:27:4b:d1:39:8a:b1:7e:82:6c:e1:22: 16:23:4e:f7:f9:37:47:cc:71:b6:d6:36:c9:10:f4: 91:15:e5:e2:ce:be:84:b1:73:e2:e6:f2:6d:18:26: f4:47:57:10:52:09:e1:01:60:2d:38:eb:5f:2d:65: 1a:8b:19:dc:d2:01:b6:71:be:61:6f:db:21:a1:8f: fc:98:4a:02:92:42:69:2c:d5:e9:29:e8:84:e8:67: 0a:1c:84:b2:04:bc:7c:fb:33:fb:e8:11:a9:92:01: 46:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:8D:30:5D:90:A0:93:95:31:88:F3:4B:17:06:F0:D5:3F:F7:A1:2F X509v3 Authority Key Identifier: keyid:0B:10:E5:EF:EF:30:F8:CE:04:ED:4C:5B:8F:48:A9:CD:24:BC:BA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/6DAC44BAA91E11F0B822717EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.101.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:07:ab:e0:7d:16:8e:95:aa:5c:9e:d5:04:fa:ba:ab:aa:3a: 62:e2:35:75:ee:a8:5a:d7:7d:3b:6c:95:3a:d4:21:ed:e8:f2: 41:f3:2a:b2:d1:7b:00:f0:4c:30:6e:fc:3a:68:cb:a4:99:d9: d9:18:2a:57:e9:d8:9b:4f:35:92:88:6e:c9:25:1a:eb:c2:22: 5b:e4:9b:b4:c1:af:16:ab:63:db:e2:1d:a3:30:68:00:89:89: 99:15:67:93:fc:f3:36:3a:d4:4f:36:09:b0:b1:08:d5:44:00: f9:68:33:21:f5:4d:4b:23:ed:4b:04:f4:7d:be:bd:d5:40:69: 36:72:ba:58:29:b1:a1:fb:b4:fb:02:61:ef:a3:2d:ff:c5:e6: 59:8b:dc:ba:c7:da:4b:f1:a7:be:6d:cf:15:7d:ab:f5:68:0a: 86:25:95:26:f4:1c:ef:8c:23:1c:af:91:37:7a:15:16:84:1c: 3b:32:e4:7b:ad:87:e0:4a:c2:f1:30:6d:cb:f0:6b:f5:2d:6c: 14:01:eb:e3:63:aa:8b:58:01:0b:da:f9:78:e2:4c:a5:2a:7e: 27:03:0c:f6:0e:4e:bb:70:97:ad:a2:7d:c0:5e:74:83:46:a2: 92:cb:9b:15:2f:88:42:1e:f3:28:0c:a4:23:95:67:45:0f:02: 32:e2:2c:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg2Q0MxMTAvBgNVBAUTKDBCMTBFNUVGRUYzMEY4Q0UwNEVENEM1QjhGNDhBOUNE MjRCQ0JBMTQwHhcNMjUxMDE0MTY1NDIwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlODAzYy01NzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxHih7HQVWL6aZrO+XKUg4olNF3EnLLvXZ7BAb8bX7Rof7sTU3Y09WskfyI+ QHGUE7NVEzSssSOPbxhKzwWpwEdWf7JzKlbbXw9IzefLiBqQlVDVSm1siGgtaxr/ y66YfSomPyEGBv0y1bs7VvnseB7DqugxO5J4AuzjVGi65KICm4iPwO+pDvrHUJL3 bifcS04DsWBDOI+gJ0vROYqxfoJs4SIWI073+TdHzHG21jbJEPSRFeXizr6EsXPi 5vJtGCb0R1cQUgnhAWAtOOtfLWUaixnc0gG2cb5hb9shoY/8mEoCkkJpLNXpKeiE 6GcKHISyBLx8+zP76BGpkgFG5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEeNMF2Q oJOVMYjzSxcG8NU/96EvMB8GA1UdIwQYMBaAFAsQ5e/vMPjOBO1MW49Iqc0kvLoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODZDQy81MTIxNDE1RUQ1 RjUxMUVFQjBGQTYwNUJDNEY5QUUwMi9DeERsNy04dy1NNEU3VXhiajBpcHpTUzh1 aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0N4RGw3LTh3LU00RTdVeGJqMGlwelNTOHVoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg2Q0MvNTEyMTQxNUVENUY1MTFFRUIwRkE2MDVCQzRGOUFFMDIvNkRBQzQ0QkFB OTFFMTFGMEI4MjI3MTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFGUwDQYJKoZIhvcNAQELBQADggEBAJoHq+B9Fo6Vqlye 1QT6uquqOmLiNXXuqFrXfTtslTrUIe3o8kHzKrLRewDwTDBu/Dpoy6SZ2dkYKlfp 2JtPNZKIbsklGuvCIlvkm7TBrxarY9viHaMwaACJiZkVZ5P88zY61E82CbCxCNVE APloMyH1TUsj7UsE9H2+vdVAaTZyulgpsaH7tPsCYe+jLf/F5lmL3LrH2kvxp75t zxV9q/VoCoYllSb0HO+MIxyvkTd6FRaEHDsy5Huth+BKwvEwbcvwa/UtbBQB6+Nj qotYAQva+XjiTKUqficDDPYOTrtwl62ifcBedINGopLLmxUviEIe8ygMpCOVZ0UP AjLiLKo= -----END CERTIFICATE-----Generated at Tue Oct 21 11:28:41 2025 by rpki-client