$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/08FA5F2C23D511EF8868CA4EC4F9AE02.roa File: 08FA5F2C23D511EF8868CA4EC4F9AE02.roa (raw, json) Hash identifier: apbseyW+E99EY9fuO6kJm/NyuSkRyCGQMs8tzM3yN0I= Subject key identifier: FB:FF:34:59:E6:1B:32:D9:29:FA:7F:55:76:55:49:BE:12:E2:59:EF Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 068B Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/08FA5F2C23D511EF8868CA4EC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:15 +0000 ROA not before: Thu 28 Aug 2025 14:51:15 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151938 IP address blocks: 160.19.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:15 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06ce3-0388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2a:f5:f7:cc:89:d6:b5:1b:dc:7f:79:ec:3e: 22:d5:17:94:f7:44:5c:36:3a:ed:fd:62:27:e5:f5: e7:ee:69:72:31:4f:8a:d4:7e:23:f5:b9:7d:cd:5c: ab:11:4a:b2:1f:20:a6:24:a9:14:ba:a3:3f:b5:82: e2:26:3a:b8:82:d6:b2:4a:67:32:53:e1:5b:1f:12: 33:e8:18:95:c2:71:16:bf:d4:62:76:00:d8:62:af: 0c:96:a0:e2:83:b5:90:eb:56:dd:cd:f7:c1:72:ea: b1:f6:f8:20:51:10:a0:fa:6c:92:da:90:be:66:b5: 8b:97:30:c7:96:ca:a3:aa:50:9c:05:df:26:58:cf: 7c:d9:7b:7c:2f:1c:44:e5:74:d2:f6:19:2f:90:16: bb:16:ac:e9:7f:3f:87:aa:75:ad:f8:3f:d8:c5:d6: d7:7c:de:45:5d:65:9c:1d:e8:bc:f5:0a:ad:90:cf: b1:37:f0:85:b6:fa:0f:c3:0b:05:93:af:b6:4a:d7: 87:27:39:48:18:a7:1e:df:6b:86:34:3d:e8:54:2d: 3c:83:61:1d:29:fa:d4:4c:aa:27:d4:f0:97:2b:c3: 07:22:e8:3a:3f:fd:e0:a0:b7:2b:b8:1b:53:4f:3c: e2:8b:f9:17:d9:29:e3:c3:91:44:d9:29:4f:e3:1b: b6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:FF:34:59:E6:1B:32:D9:29:FA:7F:55:76:55:49:BE:12:E2:59:EF X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/08FA5F2C23D511EF8868CA4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.19.204.0/23 Signature Algorithm: sha256WithRSAEncryption 01:9d:af:fd:58:a5:98:2c:5a:3b:96:13:3f:2f:54:7e:be:42: 3d:0f:cb:bf:46:2a:b1:88:e8:29:ed:a8:a6:64:58:e4:d5:e5: 38:22:a6:21:b1:a1:cf:11:1c:13:7c:13:1b:7a:aa:c9:a2:53: a2:19:13:be:32:05:1a:a0:2e:49:1d:88:0a:b3:24:6f:ae:98: 90:0c:22:53:db:09:0e:55:f5:87:e0:f2:b9:ff:02:7b:7c:aa: 42:f2:5c:01:83:42:81:29:ef:3d:88:58:5c:5b:fb:11:75:e6: 25:55:ce:3d:b7:24:a7:03:cd:b9:c8:9d:06:76:35:e0:21:5d: 9c:48:d1:e5:2f:24:1f:03:99:da:6d:80:83:4e:71:84:bd:db: 60:5c:6a:c6:25:36:e7:fa:1d:60:af:43:20:85:5d:24:68:49: ef:43:1e:70:72:c9:56:d4:bf:2e:dd:ed:3a:e4:65:c6:5b:41: 23:3a:99:b5:1d:34:e0:7f:71:b3:38:57:c7:d3:29:37:3d:55: 36:cd:61:e3:2e:0f:16:c5:71:2e:0f:25:28:6f:45:9d:18:cd: d4:77:c3:64:89:33:1a:61:a1:cc:bf:33:2a:b6:3b:c6:0d:43: bc:c8:93:b3:76:01:17:42:4b:e7:04:60:89:35:14:7b:c2:b0: be:bc:ae:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTE1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNlMy0wMzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCr198yJ1rUb3H957D4i1ReU90RcNjrt/WIn5fXn7mlyMU+K1H4j9bl9zVyr EUqyHyCmJKkUuqM/tYLiJjq4gtaySmcyU+FbHxIz6BiVwnEWv9RidgDYYq8MlqDi g7WQ61bdzffBcuqx9vggURCg+myS2pC+ZrWLlzDHlsqjqlCcBd8mWM982Xt8LxxE 5XTS9hkvkBa7Fqzpfz+HqnWt+D/YxdbXfN5FXWWcHei89QqtkM+xN/CFtvoPwwsF k6+2SteHJzlIGKce32uGND3oVC08g2EdKfrUTKon1PCXK8MHIug6P/3goLcruBtT Tzzii/kX2Snjw5FE2SlP4xu2vQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPv/NFnm GzLZKfp/VXZVSb4S4lnvMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMDhGQTVGMkMy M0Q1MTFFRjg4NjhDQTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgE8wwDQYJKoZIhvcNAQELBQADggEBAAGdr/1YpZgsWjuW Ez8vVH6+Qj0Py79GKrGI6CntqKZkWOTV5TgipiGxoc8RHBN8Ext6qsmiU6IZE74y BRqgLkkdiAqzJG+umJAMIlPbCQ5V9Yfg8rn/Ant8qkLyXAGDQoEp7z2IWFxb+xF1 5iVVzj23JKcDzbnInQZ2NeAhXZxI0eUvJB8DmdptgINOcYS922BcasYlNuf6HWCv QyCFXSRoSe9DHnByyVbUvy7d7TrkZcZbQSM6mbUdNOB/cbM4V8fTKTc9VTbNYeMu DxbFcS4PJShvRZ0YzdR3w2SJMxphocy/Myq2O8YNQ7zIk7N2ARdCS+cEYIk1FHvC sL68ru8= -----END CERTIFICATE-----Generated at Mon Oct 20 17:11:00 2025 by rpki-client