$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/235E43DAA4EC11F0A43BAF7EC4F9AE02.roa File: 235E43DAA4EC11F0A43BAF7EC4F9AE02.roa (raw, json) Hash identifier: yFwPFQG5nqW7BmIXN3FZfVUei75QY4vbXiy+rvkeWSs= Subject key identifier: 23:61:6F:0D:FE:1F:C5:89:31:E8:D6:72:77:60:0B:8D:26:AF:D4:B3 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06F1 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/235E43DAA4EC11F0A43BAF7EC4F9AE02.roa Signing time: Thu 09 Oct 2025 08:44:16 +0000 ROA not before: Thu 09 Oct 2025 08:44:16 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151914 IP address blocks: 157.66.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Oct 9 08:44:16 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68e775e0-def2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:25:c7:21:52:c7:d9:11:2f:fa:a0:f1:33:1b: 0c:e7:81:77:00:50:b3:9e:02:dd:f8:d3:a8:80:79: 37:71:e4:17:97:6f:be:0a:55:fa:dd:99:9d:f8:e0: d8:42:21:ff:c3:33:d4:72:f7:90:5d:b2:03:18:ff: 8b:8c:2c:d9:96:04:6a:77:b9:70:a0:8e:32:48:b1: 8f:6b:6b:df:4e:cf:10:44:dc:cb:7e:f9:ab:07:5f: e3:d3:f4:9e:bf:c7:0f:73:58:86:32:36:2d:2e:45: 34:82:fe:2e:66:8c:2d:5b:c5:e5:c4:d0:f3:e2:ad: 59:72:d1:d4:87:0e:58:37:76:cf:01:57:bc:61:d9: b0:71:cf:40:b2:e9:f8:e9:57:ce:fc:1b:dc:c2:ee: 8a:6f:19:f5:5c:31:2c:ee:bb:15:df:ec:48:a3:ac: d9:22:6d:e1:66:59:3c:92:83:58:16:03:04:b1:6f: b3:a6:6e:98:64:1c:f3:b3:8a:81:2b:43:85:3e:3e: fb:c4:8a:a9:11:bc:35:b9:b8:2a:4c:4b:2d:59:d7: 99:30:14:64:6e:67:95:f3:07:4d:2e:5e:b2:b1:a8: 2a:d1:4b:0d:3e:e6:36:07:6e:6c:2b:eb:60:a3:e2: 8f:98:c0:d6:cc:87:89:24:d1:00:fe:77:4f:b5:7b: 1d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:61:6F:0D:FE:1F:C5:89:31:E8:D6:72:77:60:0B:8D:26:AF:D4:B3 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/235E43DAA4EC11F0A43BAF7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.13.0/24 Signature Algorithm: sha256WithRSAEncryption a7:32:f5:ee:a7:01:be:36:c1:2b:9d:43:e4:44:49:7a:30:05: 08:14:34:bf:ce:fb:23:95:8d:49:f9:9f:0e:6c:af:b7:17:a5: 9f:7b:c7:75:64:92:a5:32:d4:4b:d6:bd:83:5a:e9:22:f7:f6: 6f:68:05:e4:ef:9d:48:bd:c5:a5:51:26:3f:b5:35:cc:17:a5: 29:53:a1:7f:4d:d2:ae:f3:8f:65:12:42:f4:9e:6f:35:f1:74: fc:e9:de:d5:e2:5b:bc:3c:93:36:70:dc:3a:9a:b6:e5:2b:97: 2c:67:4c:16:fd:a2:fa:13:32:7d:0b:9d:90:52:c4:a3:ec:6a: a9:57:30:e7:f1:ed:d8:6a:9a:ab:78:67:b9:7e:85:2d:66:4c: 0a:96:81:e0:cc:6c:f8:f3:d5:cd:1c:d7:5a:53:8e:0b:d4:be: 78:1b:0d:95:0b:ff:54:d8:63:a1:b9:50:34:59:5b:3a:e5:b9: b8:a6:6e:d3:a0:d7:08:bc:93:eb:b0:81:7c:ed:7e:63:39:c7: 17:d5:0b:97:79:a4:de:a2:12:07:c4:3e:0a:9b:37:ab:a4:80: a3:18:ec:09:96:89:06:81:8a:26:3c:33:d0:06:4a:90:a2:9a: dc:34:fc:15:39:1b:9b:62:f5:ea:3c:35:96:dd:fe:be:00:da: 0a:d3:84:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUxMDA5MDg0NDE2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3NzVlMC1kZWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviXHIVLH2REv+qDxMxsM54F3AFCzngLd+NOogHk3ceQXl2++ClX63Zmd+ODY QiH/wzPUcveQXbIDGP+LjCzZlgRqd7lwoI4ySLGPa2vfTs8QRNzLfvmrB1/j0/Se v8cPc1iGMjYtLkU0gv4uZowtW8XlxNDz4q1ZctHUhw5YN3bPAVe8Ydmwcc9Asun4 6VfO/Bvcwu6Kbxn1XDEs7rsV3+xIo6zZIm3hZlk8koNYFgMEsW+zpm6YZBzzs4qB K0OFPj77xIqpEbw1ubgqTEstWdeZMBRkbmeV8wdNLl6ysagq0UsNPuY2B25sK+tg o+KPmMDWzIeJJNEA/ndPtXsdFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCNhbw3+ H8WJMejWcndgC40mr9SzMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMjM1RTQzREFB NEVDMTFGMEE0M0JBRjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdQg0wDQYJKoZIhvcNAQELBQADggEBAKcy9e6nAb42wSud Q+RESXowBQgUNL/O+yOVjUn5nw5sr7cXpZ97x3VkkqUy1EvWvYNa6SL39m9oBeTv nUi9xaVRJj+1NcwXpSlToX9N0q7zj2USQvSebzXxdPzp3tXiW7w8kzZw3DqatuUr lyxnTBb9ovoTMn0LnZBSxKPsaqlXMOfx7dhqmqt4Z7l+hS1mTAqWgeDMbPjz1c0c 11pTjgvUvngbDZUL/1TYY6G5UDRZWzrlubimbtOg1wi8k+uwgXztfmM5xxfVC5d5 pN6iEgfEPgqbN6ukgKMY7AmWiQaBiiY8M9AGSpCimtw0/BU5G5ti9eo8NZbd/r4A 2grThD8= -----END CERTIFICATE-----Generated at Mon Oct 20 17:05:26 2025 by rpki-client