$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D8F3720ED7DA11EFAEC65586C4F9AE02.roa File: D8F3720ED7DA11EFAEC65586C4F9AE02.roa (raw, json) Hash identifier: vsyMoSClBVB60YKjqOgW9p6hZn7Ich+BDUXGPu943eY= Subject key identifier: 82:5A:44:4F:AA:99:74:CD:70:7B:D4:DE:04:F4:CE:BE:B5:CE:60:B0 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06BB Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D8F3720ED7DA11EFAEC65586C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:51:54 +0000 ROA not before: Thu 28 Aug 2025 14:51:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153507 IP address blocks: 161.248.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1723 (0x6bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:51:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d0a-e0e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4a:cd:8f:fc:3f:45:9d:96:d1:5f:39:0b:9a: 3c:d9:19:e0:f2:e8:99:e5:5a:af:3c:c9:cc:d4:d1: f0:f8:d7:de:98:c8:2f:bf:b3:68:e5:ec:25:8e:30: 53:b5:c5:4d:2b:f9:ac:db:0e:f4:5e:22:c3:dd:a4: bf:a9:6a:58:85:41:b9:9a:45:c2:87:bd:ff:b9:3c: 71:37:ba:e3:35:29:21:a0:af:a0:0b:fc:e5:62:bf: a0:19:61:8e:8a:67:fc:98:da:4e:69:9a:5f:19:4b: 27:c1:86:74:95:5a:fd:df:0a:2a:28:b4:77:68:d1: c1:6b:ae:10:a9:53:04:a9:22:73:00:77:d9:e6:60: a0:29:74:51:1d:a7:77:6e:36:88:42:77:35:fe:8d: 97:60:71:9e:e8:2c:48:af:83:db:1e:cb:f7:cb:34: 1d:c2:a3:f4:c9:c7:f3:8d:95:56:46:d9:d0:92:e8: 5a:6a:e3:49:ff:12:2c:9e:c3:39:fa:ee:86:e2:a9: 75:96:11:b8:f8:79:45:65:0a:5d:30:9a:af:8b:c6: 39:61:cd:9e:53:8f:e1:5b:36:03:d0:9d:d2:60:08: ca:bf:07:5a:e9:ec:3a:8c:0d:84:63:ef:23:52:b3: ec:ce:b0:e7:06:d5:2b:f1:5c:4c:f9:2d:be:db:13: d0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5A:44:4F:AA:99:74:CD:70:7B:D4:DE:04:F4:CE:BE:B5:CE:60:B0 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/D8F3720ED7DA11EFAEC65586C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.148.0/23 Signature Algorithm: sha256WithRSAEncryption ac:32:fc:ed:51:9a:06:6a:a9:f8:48:20:95:46:bf:eb:de:61: e1:47:98:2b:74:59:50:77:da:ee:41:11:ef:b0:28:14:52:b7: ca:94:e1:2d:69:76:c6:66:5c:cc:82:12:b4:11:7a:5f:17:06: 9f:3e:7e:05:97:63:91:33:ac:d3:09:47:c5:d1:f6:25:fe:2c: 6c:f3:7f:9c:9e:9f:60:e3:d1:77:c5:14:d9:dc:51:f8:c8:f4: 00:d9:39:a3:a6:ff:e8:c6:32:f9:d8:52:b9:fa:0a:3d:bf:01: cc:29:93:58:1d:fb:0a:42:10:36:dc:23:dc:68:0b:3c:ac:c4: b2:76:8a:28:19:40:32:4d:ed:c3:0f:68:a0:b8:0c:32:10:9c: 05:f5:68:f8:8d:a9:11:d6:89:23:7f:cd:e3:c1:f4:5b:81:8b: 2b:d6:3e:26:09:e4:ca:7a:70:af:5b:41:eb:96:0b:21:8e:06: 97:3d:1c:7a:9c:2f:e3:0b:f8:97:0e:f6:28:83:a6:13:62:ad: f3:e6:91:ec:99:a6:bf:92:f5:2d:7d:38:74:9f:43:75:ed:2e: 60:fb:96:bf:a0:02:83:aa:77:12:bc:6c:b4:2b:81:33:77:b2: 77:f6:db:aa:b9:b5:b1:3a:27:54:15:3b:6f:52:55:31:c2:96: fc:e8:02:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MTU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQwYS1lMGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0krNj/w/RZ2W0V85C5o82Rng8uiZ5VqvPMnM1NHw+NfemMgvv7No5ewljjBT tcVNK/ms2w70XiLD3aS/qWpYhUG5mkXCh73/uTxxN7rjNSkhoK+gC/zlYr+gGWGO imf8mNpOaZpfGUsnwYZ0lVr93woqKLR3aNHBa64QqVMEqSJzAHfZ5mCgKXRRHad3 bjaIQnc1/o2XYHGe6CxIr4PbHsv3yzQdwqP0ycfzjZVWRtnQkuhaauNJ/xIsnsM5 +u6G4ql1lhG4+HlFZQpdMJqvi8Y5Yc2eU4/hWzYD0J3SYAjKvwda6ew6jA2EY+8j UrPszrDnBtUr8VxM+S2+2xPQLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIJaRE+q mXTNcHvU3gT0zr61zmCwMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRDhGMzcyMEVE N0RBMTFFRkFFQzY1NTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+JQwDQYJKoZIhvcNAQELBQADggEBAKwy/O1RmgZqqfhI IJVGv+veYeFHmCt0WVB32u5BEe+wKBRSt8qU4S1pdsZmXMyCErQRel8XBp8+fgWX Y5EzrNMJR8XR9iX+LGzzf5yen2Dj0XfFFNncUfjI9ADZOaOm/+jGMvnYUrn6Cj2/ Acwpk1gd+wpCEDbcI9xoCzysxLJ2iigZQDJN7cMPaKC4DDIQnAX1aPiNqRHWiSN/ zePB9FuBiyvWPiYJ5Mp6cK9bQeuWCyGOBpc9HHqcL+ML+JcO9iiDphNirfPmkeyZ pr+S9S19OHSfQ3XtLmD7lr+gAoOqdxK8bLQrgTN3snf226q5tbE6J1QVO29SVTHC lvzoAhg= -----END CERTIFICATE-----Generated at Mon Oct 20 17:08:33 2025 by rpki-client