$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0CA779BCAB1011EFA3DA074FC4F9AE02.roa File: 0CA779BCAB1011EFA3DA074FC4F9AE02.roa (raw, json) Hash identifier: 2vSdNqxBh71qYGJUzkV4rWPkSM1fUb/CSc5GhBilORY= Subject key identifier: 45:98:60:89:66:02:F4:DF:E0:2F:BE:E5:CF:AA:2B:D9:C2:48:1C:0C Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0692 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0CA779BCAB1011EFA3DA074FC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:21 +0000 ROA not before: Thu 28 Aug 2025 14:51:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152947 IP address blocks: 160.25.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06ce8-889a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d2:59:bd:92:1d:b6:2b:58:e6:81:68:f8:d3: a7:a3:49:b5:36:a0:c0:12:30:0f:86:9f:32:0b:78: c5:28:e4:d7:e5:b8:ca:a8:b2:bc:75:c1:9f:e9:98: 7c:dd:d4:2d:f3:46:82:ce:63:db:b3:1c:5e:9e:78: 89:11:92:3c:9a:7f:bc:a0:0f:d1:a6:c2:75:94:46: b0:e3:5e:52:32:16:36:69:16:04:99:75:21:59:32: 67:8d:d0:3f:f6:9c:e3:96:be:31:37:90:37:0e:41: bf:bc:83:29:52:29:ad:eb:24:e2:f7:58:32:08:ed: 38:e2:27:b3:67:94:05:9a:91:98:ec:1f:6f:e8:a3: 06:d8:1a:12:ba:08:7d:39:4b:78:34:d8:3e:5f:f7: f7:22:d9:db:55:f4:3b:ba:99:1b:10:9b:c4:99:24: f2:e3:55:a0:66:2c:e2:af:5c:34:1a:9d:a8:3d:a2: 4a:f4:90:3d:fa:75:ca:a3:cd:59:7f:42:11:ef:0b: 10:40:4d:9e:0a:d8:2c:10:82:ce:fb:d8:c1:1a:fa: be:f4:70:08:e8:ca:46:b6:95:21:10:c8:1e:2b:cb: ea:c7:20:07:bb:9e:1e:49:e3:b1:dd:ce:02:93:93: 10:a2:c1:75:24:5e:f5:eb:dc:2f:dc:ee:eb:21:b7: cc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:98:60:89:66:02:F4:DF:E0:2F:BE:E5:CF:AA:2B:D9:C2:48:1C:0C X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/0CA779BCAB1011EFA3DA074FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.148.0/23 Signature Algorithm: sha256WithRSAEncryption a6:86:c3:17:0a:cb:70:0f:54:c4:1b:04:b5:c2:86:36:78:f0: d8:15:35:c8:70:93:49:19:69:9f:6b:e5:a3:75:80:5f:82:b9: 39:d0:63:6f:e0:ad:97:ae:a7:4b:7b:4b:86:fb:df:bb:c2:ef: 35:2e:9a:89:b9:ce:d0:c8:5f:93:63:07:90:b0:84:b1:d4:27: 2c:e1:cc:2e:04:99:0b:11:69:9a:28:b9:e7:26:c0:45:09:a2: 3c:08:81:b1:ac:8b:c1:6f:99:27:33:95:56:96:32:14:28:9e: 0a:e6:9d:c7:ba:e1:f1:b1:e7:4d:f7:0c:b0:94:d8:04:81:e9: 27:51:c5:8f:95:07:2b:b1:b6:4a:80:59:24:b8:bc:89:66:d9: d2:70:88:04:14:8f:93:6a:66:48:b0:9e:06:34:ff:a8:e4:7c: d8:25:ad:3d:86:0c:01:ea:1f:bc:8a:b8:42:d4:1b:23:63:ab: ec:55:4b:ff:46:48:93:30:b3:e2:34:f6:a1:6a:55:21:a4:4b: cb:c0:37:63:41:69:06:a7:fd:06:a8:17:cd:91:cd:40:5b:5e: eb:40:d2:32:f1:1c:d6:cb:b8:fb:14:bc:92:87:58:fd:fb:f4: 73:5f:90:33:e0:87:fa:2b:fc:76:63:e9:72:fd:33:0b:02:c4: 5a:56:fd:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNlOC04ODlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9JZvZIdtitY5oFo+NOno0m1NqDAEjAPhp8yC3jFKOTX5bjKqLK8dcGf6Zh8 3dQt80aCzmPbsxxenniJEZI8mn+8oA/RpsJ1lEaw415SMhY2aRYEmXUhWTJnjdA/ 9pzjlr4xN5A3DkG/vIMpUimt6yTi91gyCO044iezZ5QFmpGY7B9v6KMG2BoSugh9 OUt4NNg+X/f3ItnbVfQ7upkbEJvEmSTy41WgZizir1w0Gp2oPaJK9JA9+nXKo81Z f0IR7wsQQE2eCtgsEILO+9jBGvq+9HAI6MpGtpUhEMgeK8vqxyAHu54eSeOx3c4C k5MQosF1JF7169wv3O7rIbfMwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEWYYIlm AvTf4C++5c+qK9nCSBwMMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMENBNzc5QkNB QjEwMTFFRkEzREEwNzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGZQwDQYJKoZIhvcNAQELBQADggEBAKaGwxcKy3APVMQb BLXChjZ48NgVNchwk0kZaZ9r5aN1gF+CuTnQY2/grZeup0t7S4b737vC7zUumom5 ztDIX5NjB5CwhLHUJyzhzC4EmQsRaZoouecmwEUJojwIgbGsi8FvmSczlVaWMhQo ngrmnce64fGx5033DLCU2ASB6SdRxY+VByuxtkqAWSS4vIlm2dJwiAQUj5NqZkiw ngY0/6jkfNglrT2GDAHqH7yKuELUGyNjq+xVS/9GSJMws+I09qFqVSGkS8vAN2NB aQan/QaoF82RzUBbXutA0jLxHNbLuPsUvJKHWP379HNfkDPgh/or/HZj6XL9MwsC xFpW/TM= -----END CERTIFICATE-----Generated at Mon Oct 20 17:13:18 2025 by rpki-client