$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/A8F5426250E311F09F3F2B1BC4F9AE02.roa File: A8F5426250E311F09F3F2B1BC4F9AE02.roa (raw, json) Hash identifier: TRnNVoMiwQ6ZhiElb/0Y9VLIsehKNmu+1efnXTmukN4= Subject key identifier: 3E:E0:90:F3:FF:38:24:4C:AD:28:DF:13:F5:8C:0E:11:DE:C1:34:52 Certificate issuer: /CN=A91A4690/serialNumber=02CFF7798F053E9C81FDCCED7962ECBB76C1D21A Certificate serial: A7 Authority key identifier: 02:CF:F7:79:8F:05:3E:9C:81:FD:CC:ED:79:62:EC:BB:76:C1:D2:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/A8F5426250E311F09F3F2B1BC4F9AE02.roa Signing time: Tue 24 Jun 2025 10:11:57 +0000 ROA not before: Tue 24 Jun 2025 10:11:57 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 36352 IP address blocks: 59.153.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.crl rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4690, serialNumber=02CFF7798F053E9C81FDCCED7962ECBB76C1D21A Validity Not Before: Jun 24 10:11:57 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=685a79ed-3424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d9:22:91:2b:0b:a0:f2:60:fc:b5:7c:b6:bc: c7:76:df:0d:f7:fc:9c:6d:9d:cf:e4:2d:a5:38:52: 94:d1:b2:15:11:f6:9b:3e:99:70:d0:bb:35:4e:cc: 1f:7b:bc:d2:90:fd:d4:1d:cc:f5:77:63:3d:8a:0d: f2:af:4d:94:95:da:4d:40:15:29:20:b0:14:20:a4: 1c:12:c3:90:22:23:96:d2:32:63:ce:6a:0f:8a:90: a9:8c:9b:df:eb:d8:ae:82:27:bc:5f:4a:13:bf:e8: e8:72:71:a2:29:57:d5:70:f4:0c:a6:a2:04:29:f8: 11:7e:df:68:a8:fb:5b:b2:86:85:04:17:c1:2d:56: 8d:29:a3:91:2a:d8:22:56:87:dc:0f:e3:44:ee:a9: 3e:43:02:22:e2:e4:9c:36:ca:ea:eb:03:fd:36:79: b9:c2:29:0b:73:c7:c5:ab:a6:c8:a0:4f:6d:05:7e: de:5a:06:7a:53:8b:f0:09:ce:bd:25:31:1d:d7:c8: 7b:44:1e:78:e1:9b:3e:48:35:36:49:fd:e6:7c:16: 2f:98:48:26:6f:f1:fc:5e:89:ff:8e:c4:00:f7:98: 83:3f:5e:6d:fd:3f:08:9f:e3:64:7f:9d:b5:b0:ef: 44:be:af:02:a5:25:b3:60:a8:37:5e:f8:b4:48:98: d3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E0:90:F3:FF:38:24:4C:AD:28:DF:13:F5:8C:0E:11:DE:C1:34:52 X509v3 Authority Key Identifier: keyid:02:CF:F7:79:8F:05:3E:9C:81:FD:CC:ED:79:62:EC:BB:76:C1:D2:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/A8F5426250E311F09F3F2B1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.160.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:df:43:f9:ff:1f:42:21:18:45:56:eb:31:b1:05:0e:13:39: 6d:47:5a:bf:3c:c6:f6:47:c5:97:3a:78:c8:c3:32:ea:b5:05: 90:cb:8f:62:d8:7c:02:ef:74:3c:bb:33:18:14:b8:ec:9e:51: 51:90:e1:51:43:4b:2e:48:4a:73:76:fe:cf:1f:ac:d3:c2:32: f3:35:fa:cd:8f:9c:d7:da:74:84:79:9d:eb:8d:7d:69:05:08: c8:71:29:ae:d9:23:bc:84:f0:36:31:53:d3:9e:dd:f5:7a:7c: 71:5a:62:55:20:24:1b:de:a1:4d:df:65:20:65:e3:f4:6b:6b: 49:1c:b8:7c:e9:16:13:db:58:f8:3d:5d:37:18:0f:8c:c0:18: fe:26:ab:ee:53:c3:b3:2f:a6:77:56:1f:88:0a:ed:84:49:a4: eb:12:06:06:17:1d:1e:d3:bb:bf:9b:e1:2c:2d:56:be:cb:5f: 9c:9b:af:cc:13:a0:3e:d4:10:d7:1f:35:6f:e9:70:48:0b:1c: e2:d7:72:5f:6f:01:f2:a9:06:3d:13:64:7a:6f:88:a4:3c:4b: f4:be:1a:e6:d8:a6:2d:9a:c1:0f:c7:aa:80:5b:f8:46:d8:35: d1:a8:7e:48:81:6c:df:3f:cd:0a:27:78:29:7b:66:1b:95:2b: 4e:37:68:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2OTAxMTAvBgNVBAUTKDAyQ0ZGNzc5OEYwNTNFOUM4MUZEQ0NFRDc5NjJFQ0JC NzZDMUQyMUEwHhcNMjUwNjI0MTAxMTU3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVhNzllZC0zNDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudkikSsLoPJg/LV8trzHdt8N9/ycbZ3P5C2lOFKU0bIVEfabPplw0Ls1Tswf e7zSkP3UHcz1d2M9ig3yr02UldpNQBUpILAUIKQcEsOQIiOW0jJjzmoPipCpjJvf 69iugie8X0oTv+jocnGiKVfVcPQMpqIEKfgRft9oqPtbsoaFBBfBLVaNKaORKtgi VofcD+NE7qk+QwIi4uScNsrq6wP9Nnm5wikLc8fFq6bIoE9tBX7eWgZ6U4vwCc69 JTEd18h7RB544Zs+SDU2Sf3mfBYvmEgmb/H8Xon/jsQA95iDP15t/T8In+Nkf521 sO9Evq8CpSWzYKg3Xvi0SJjTlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD7gkPP/ OCRMrSjfE/WMDhHewTRSMB8GA1UdIwQYMBaAFALP93mPBT6cgf3M7Xli7Lt2wdIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY5MC80MDlDOTcwQTVB RTAxMUVGODU4MjcwN0ZDNEY5QUUwMi9Bc18zZVk4RlBweUJfY3p0ZVdMc3UzYkIw aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FzXzNlWThGUHB5Ql9jenRlV0xzdTNiQjBoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ2OTAvNDA5Qzk3MEE1QUUwMTFFRjg1ODI3MDdGQzRGOUFFMDIvQThGNTQyNjI1 MEUzMTFGMDlGM0YyQjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAI7maAwDQYJKoZIhvcNAQELBQADggEBACrfQ/n/H0IhGEVW 6zGxBQ4TOW1HWr88xvZHxZc6eMjDMuq1BZDLj2LYfALvdDy7MxgUuOyeUVGQ4VFD Sy5ISnN2/s8frNPCMvM1+s2PnNfadIR5neuNfWkFCMhxKa7ZI7yE8DYxU9Oe3fV6 fHFaYlUgJBveoU3fZSBl4/Rra0kcuHzpFhPbWPg9XTcYD4zAGP4mq+5Tw7MvpndW H4gK7YRJpOsSBgYXHR7Tu7+b4SwtVr7LX5ybr8wToD7UENcfNW/pcEgLHOLXcl9v AfKpBj0TZHpviKQ8S/S+GubYpi2awQ/HqoBb+EbYNdGofkiBbN8/zQoneCl7ZhuV K043aB8= -----END CERTIFICATE-----Generated at Thu Jul 3 09:38:13 2025 by rpki-client