$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/EED3285ADDB011EE9A15F138C4F9AE02.roa File: EED3285ADDB011EE9A15F138C4F9AE02.roa (raw, json) Hash identifier: pvTnYvwLp80diM14u/+i7bd2oIjbp9P17RAYA1DkbkY= Subject key identifier: 73:87:56:51:7A:B3:FE:A3:05:9B:FD:52:83:9B:DB:D0:0D:EF:6D:DB Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 066E Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/EED3285ADDB011EE9A15F138C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:50:50 +0000 ROA not before: Thu 28 Aug 2025 14:50:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135983 IP address blocks: 157.15.86.0/23 maxlen: 23 157.66.80.0/23 maxlen: 24 160.187.240.0/23 maxlen: 24 165.99.16.0/23 maxlen: 24 165.99.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 28 14:50:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06cca-371b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:65:f0:2f:aa:41:6e:53:2e:dc:0e:76:01:08: a6:92:a3:0e:56:b7:b7:90:8f:74:cc:f5:45:2f:75: 68:94:dd:59:6f:37:bf:29:f2:c5:49:7e:60:94:00: 3c:ee:5c:3a:cd:ba:79:66:6a:80:c4:bc:78:32:80: be:5b:dd:90:c4:5e:c4:88:6d:b8:61:d3:c3:6c:2a: 5f:1d:da:b4:fa:3b:19:76:52:1d:52:78:15:6b:fd: 6f:b9:c3:a4:47:ef:49:df:01:41:9a:9e:3a:de:76: 48:c8:08:fe:cc:e5:b3:09:45:33:56:34:b4:9a:bd: 08:27:a4:d9:a8:6e:69:ee:f7:41:14:72:c4:3e:59: 02:5d:6d:03:f9:64:16:39:ca:29:2e:ea:48:44:d5: 6e:83:f1:bf:fa:68:d7:02:41:d7:42:cc:42:70:be: 99:09:42:fa:d2:1a:6c:18:08:bb:04:b8:02:b8:24: 9b:a1:6c:80:34:c6:ff:a0:bf:21:44:b5:f7:8d:34: c7:85:ec:af:11:95:ca:13:78:73:16:24:a9:e4:e4: 5b:18:2d:1b:80:2a:3f:1d:4b:eb:20:5c:65:fb:32: 8f:47:3c:8c:4a:7a:6e:b7:a4:14:ff:95:42:d5:65: 9c:5b:5f:28:28:43:85:1d:f0:e6:6a:b0:94:01:18: 3c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:87:56:51:7A:B3:FE:A3:05:9B:FD:52:83:9B:DB:D0:0D:EF:6D:DB X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/EED3285ADDB011EE9A15F138C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.86.0/23 157.66.80.0/23 160.187.240.0/23 165.99.16.0/23 165.99.96.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:fd:52:5b:01:b4:90:1a:99:12:98:1e:91:ae:72:00:7d:20: cc:3f:82:27:90:45:12:f6:50:68:0a:49:e4:a7:66:c1:66:7c: c0:75:c1:96:40:11:c4:9b:b3:42:5d:6e:33:89:42:51:eb:a0: 06:7b:8d:8a:ee:1e:1f:71:33:2a:29:1e:66:85:a6:c6:18:ad: fe:2e:d1:5e:1c:9a:f9:b6:29:b5:11:0b:b5:b7:76:42:4f:47: ea:1f:5b:bd:8b:67:a4:ad:ec:74:55:f6:91:ce:0e:49:d0:74: c1:c8:66:50:b6:bf:a2:cc:6e:70:e8:92:29:f4:52:84:53:d2: 2c:d3:8c:27:bb:a7:b8:b0:6c:09:91:d5:74:e7:7a:70:8c:03: 71:83:93:a4:74:f1:c8:86:ae:44:3b:51:63:12:f0:7d:fd:7a: 5d:64:af:75:1f:4b:13:a1:10:47:f0:ab:ab:1b:df:62:e4:32: 8f:28:77:90:2a:74:ae:96:76:82:d6:94:1e:d4:b6:85:76:b1: 1a:b3:f4:20:59:68:2e:fd:df:83:47:5e:d8:90:fd:66:9f:e6: 06:f5:09:9e:65:a2:db:7d:8f:7a:2b:21:cc:43:52:42:f0:ff: 46:78:c2:57:b6:12:ec:e8:61:e8:8c:33:15:c9:9a:63:31:56: 59:d4:0a:17 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODI4MTQ1MDUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmNjYS0zNzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmXwL6pBblMu3A52AQimkqMOVre3kI90zPVFL3VolN1Zbze/KfLFSX5glAA8 7lw6zbp5ZmqAxLx4MoC+W92QxF7EiG24YdPDbCpfHdq0+jsZdlIdUngVa/1vucOk R+9J3wFBmp463nZIyAj+zOWzCUUzVjS0mr0IJ6TZqG5p7vdBFHLEPlkCXW0D+WQW OcopLupIRNVug/G/+mjXAkHXQsxCcL6ZCUL60hpsGAi7BLgCuCSboWyANMb/oL8h RLX3jTTHheyvEZXKE3hzFiSp5ORbGC0bgCo/HUvrIFxl+zKPRzyMSnput6QU/5VC 1WWcW18oKEOFHfDmarCUARg8AwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFHOHVlF6 s/6jBZv9UoOb29AN723bMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvRUVEMzI4NUFE REIwMTFFRTlBMTVGMTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAGdD1YDBAGdQlADBAGgu/ADBAGlYxADBAGlY2AwDQYJKoZI hvcNAQELBQADggEBAH39UlsBtJAamRKYHpGucgB9IMw/gieQRRL2UGgKSeSnZsFm fMB1wZZAEcSbs0JdbjOJQlHroAZ7jYruHh9xMyopHmaFpsYYrf4u0V4cmvm2KbUR C7W3dkJPR+ofW72LZ6St7HRV9pHODknQdMHIZlC2v6LMbnDokin0UoRT0izTjCe7 p7iwbAmR1XTnenCMA3GDk6R08ciGrkQ7UWMS8H39el1kr3UfSxOhEEfwq6sb32Lk Mo8od5AqdK6WdoLWlB7UtoV2sRqz9CBZaC7934NHXtiQ/Waf5gb1CZ5lott9j3or IcxDUkLw/0Z4wle2EuzoYeiMMxXJmmMxVlnUChc= -----END CERTIFICATE-----Generated at Mon Oct 20 17:13:19 2025 by rpki-client