$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/9E334BDEF0E011EF80FCA362C4F9AE02.roa File: 9E334BDEF0E011EF80FCA362C4F9AE02.roa (raw, json) Hash identifier: Z1oYgE5vuIBrHA4dbqqGK2Sf1xgKlvyNz6FAeXJ9Kdo= Subject key identifier: A1:45:B8:7E:A2:C3:20:CE:67:01:C9:C9:A8:35:2D:94:B7:FE:D5:A3 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06B4 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/9E334BDEF0E011EF80FCA362C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:49 +0000 ROA not before: Thu 28 Aug 2025 14:51:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153429 IP address blocks: 160.250.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1716 (0x6b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d05-88e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:94:42:01:ea:16:a2:9f:ec:b0:9f:c0:9b:c3: db:7b:f9:5b:8b:0f:3c:d6:96:dc:dc:a3:ce:25:71: ad:aa:8f:b2:d9:51:cf:b1:5d:9c:26:5f:4a:59:fa: 0c:2f:2c:89:9f:83:bb:af:15:54:41:a1:c5:c5:20: bc:a9:43:fa:e1:35:87:cd:62:d8:ad:66:17:04:58: ba:87:5e:2a:53:d6:f5:c0:99:d7:d2:c4:b5:09:4f: 0a:10:d7:61:da:73:01:5d:77:73:8c:47:8c:af:42: 22:88:e1:f6:a1:9f:63:8e:07:df:09:f2:0c:50:72: 6f:82:bc:89:e0:c8:c3:fe:7c:09:31:62:0c:44:f4: 28:50:68:6f:bf:6c:20:ab:9e:12:86:ef:68:81:1e: 60:16:0f:ca:39:40:4f:88:27:3f:ce:ee:19:b7:a8: ef:23:05:d5:36:3b:28:4a:ab:6d:58:82:fa:29:d3: 34:74:d4:13:84:50:4e:a8:ff:be:0f:bd:86:16:ec: 02:35:d8:f0:1d:cf:b4:45:d2:04:17:2e:b6:4d:9d: 83:63:1d:9e:81:db:0b:2f:23:f1:c0:62:ab:94:48: 3e:7f:1a:b2:99:2e:31:2a:ba:0a:8f:da:ab:35:7b: 27:00:cc:41:bd:15:a6:8c:de:03:ca:f0:b1:3a:4f: 58:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:45:B8:7E:A2:C3:20:CE:67:01:C9:C9:A8:35:2D:94:B7:FE:D5:A3 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/9E334BDEF0E011EF80FCA362C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.58.0/23 Signature Algorithm: sha256WithRSAEncryption a8:21:65:80:f1:d7:fd:8a:40:3e:7e:d5:7f:7d:46:be:d5:63: b0:e2:6c:9c:fd:6d:81:ce:a1:73:9f:df:27:9b:c4:5b:9f:39: 22:d0:0a:d0:5f:a5:2a:03:6d:17:81:43:8b:c0:90:d7:63:59: 7f:ac:c5:d1:99:33:24:85:db:55:65:73:c3:ea:0c:38:c2:8d: b7:cc:a0:a5:1a:47:9f:b4:6c:49:b2:35:a7:d6:2d:b1:95:15: ba:1b:58:9e:ca:07:31:c5:6a:00:88:b5:21:5a:a3:e9:4a:31: 94:13:13:8c:46:fe:db:fc:59:3c:c8:3f:2e:c4:cf:fb:49:c4: 3f:78:12:b1:ad:00:dc:bd:60:02:8a:5f:da:84:db:f1:4e:79: f6:41:b9:de:c7:18:32:cd:0f:d4:1c:c1:10:4a:05:74:bb:02: 0a:e9:f5:79:2a:80:90:bd:a1:92:2a:7b:f5:67:8c:6e:6b:7f: 44:8f:3b:d1:1f:46:0e:6b:8b:21:cf:e5:62:38:f5:7a:c6:24: 06:df:5e:7f:0d:0f:d1:22:05:86:4e:e5:4f:3d:89:02:14:1e: c4:5e:f2:4c:dc:a1:be:6c:c2:95:e0:75:3f:d6:c9:38:c8:dd: 5b:c4:e7:2d:c3:30:f5:1e:1b:44:62:2d:fb:e6:a5:f9:b4:c9: 8d:66:86:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQwNS04OGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35RCAeoWop/ssJ/Am8Pbe/lbiw881pbc3KPOJXGtqo+y2VHPsV2cJl9KWfoM LyyJn4O7rxVUQaHFxSC8qUP64TWHzWLYrWYXBFi6h14qU9b1wJnX0sS1CU8KENdh 2nMBXXdzjEeMr0IiiOH2oZ9jjgffCfIMUHJvgryJ4MjD/nwJMWIMRPQoUGhvv2wg q54Shu9ogR5gFg/KOUBPiCc/zu4Zt6jvIwXVNjsoSqttWIL6KdM0dNQThFBOqP++ D72GFuwCNdjwHc+0RdIEFy62TZ2DYx2egdsLLyPxwGKrlEg+fxqymS4xKroKj9qr NXsnAMxBvRWmjN4DyvCxOk9YkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKFFuH6i wyDOZwHJyag1LZS3/tWjMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvOUUzMzRCREVG MEUwMTFFRjgwRkNBMzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGg+jowDQYJKoZIhvcNAQELBQADggEBAKghZYDx1/2KQD5+ 1X99Rr7VY7DibJz9bYHOoXOf3yebxFufOSLQCtBfpSoDbReBQ4vAkNdjWX+sxdGZ MySF21Vlc8PqDDjCjbfMoKUaR5+0bEmyNafWLbGVFbobWJ7KBzHFagCItSFao+lK MZQTE4xG/tv8WTzIPy7Ez/tJxD94ErGtANy9YAKKX9qE2/FOefZBud7HGDLND9Qc wRBKBXS7Agrp9XkqgJC9oZIqe/VnjG5rf0SPO9EfRg5riyHP5WI49XrGJAbfXn8N D9EiBYZO5U89iQIUHsRe8kzcob5swpXgdT/WyTjI3VvE5y3DMPUeG0RiLfvmpfm0 yY1mhvE= -----END CERTIFICATE-----Generated at Mon Oct 20 17:08:21 2025 by rpki-client