$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3ADB89C0388C11ED98D7570EC4F9AE02.roa File: 3ADB89C0388C11ED98D7570EC4F9AE02.roa (raw, json) Hash identifier: LqTSrVsIculSXrOomRaB6j46IAhTLe9Hb08SU8o4DhA= Subject key identifier: FC:BF:54:E2:15:47:59:BF:D0:3F:6A:B7:4F:50:2E:97:08:18:4C:9C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E29 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3ADB89C0388C11ED98D7570EC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:34 +0000 ROA not before: Thu 28 Aug 2025 14:57:34 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55316 IP address blocks: 122.102.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20009 (0x4e29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:34 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e5e-7568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ee:8a:24:4a:cd:4d:3f:b3:56:90:28:76:44: 63:c6:d1:77:24:7b:2f:73:e3:52:45:58:fb:52:42: b1:27:3d:72:0c:7d:14:f6:70:fc:28:2a:81:6a:7a: 22:5d:08:b7:05:e1:af:78:f3:1c:ec:c2:4c:f5:23: 0a:68:90:a1:98:4a:b5:16:b3:bb:c0:ad:99:e6:3d: da:02:8e:d1:7c:fc:48:0e:84:61:61:b6:12:70:e0: 8c:4e:54:32:bc:8e:01:b3:68:48:1f:a6:1e:b1:e1: 08:d1:ec:59:02:8f:58:3e:bb:8b:66:14:90:fa:98: f7:44:66:03:d4:45:17:03:e8:b5:8e:93:39:a7:fd: 25:ab:f5:dc:58:ba:82:e8:1b:1d:ef:5b:ee:ed:7c: 85:96:74:cc:69:66:a7:4c:6f:9e:5e:a1:1e:97:d5: 2e:de:28:bc:3b:24:d9:4e:31:61:d6:c4:ba:ae:bd: 07:ef:ae:ee:99:56:59:d7:56:a1:08:02:38:3a:53: 54:50:4a:2b:45:1a:42:22:3c:47:2b:af:34:ef:a9: ca:18:43:fe:17:8d:8d:0f:21:30:6d:e9:c4:82:62: 3e:ad:36:e9:1f:67:89:7a:23:7c:ab:75:c0:b3:17: 89:53:0a:c1:9a:0c:07:a1:6c:fc:42:03:a2:bf:7f: 2a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:BF:54:E2:15:47:59:BF:D0:3F:6A:B7:4F:50:2E:97:08:18:4C:9C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3ADB89C0388C11ED98D7570EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.102.112.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:bb:42:1f:6e:4d:b6:ec:a0:be:eb:45:ab:1d:70:93:f1:a9: 56:a5:7d:55:4b:ac:f6:b7:22:92:43:49:50:74:29:94:47:48: de:f3:43:95:14:e6:d7:9b:8e:bf:c9:94:ed:9f:1d:d1:e5:19: 83:c0:da:45:ea:d0:79:22:c4:c3:61:ed:3d:65:c2:a6:c2:9e: 9a:b5:7d:65:68:37:f8:f6:3e:85:22:58:75:85:94:2a:3c:16: 7a:83:b4:ee:29:46:a7:fa:1f:c5:24:f6:c1:56:72:bf:a2:83: 29:80:21:42:3a:e4:64:8b:1b:5b:15:ea:13:ca:0c:83:cf:77: 21:60:ed:7c:7c:9a:ec:8c:3b:14:8a:29:30:ee:68:04:83:7e: 25:f6:1b:d1:12:5f:5c:98:13:27:72:32:0c:28:04:62:74:db: 13:70:e1:7d:da:71:25:4f:fa:14:95:97:1c:3e:c3:2d:32:fd: a7:3b:8f:75:4b:e9:9c:3e:e4:8f:8a:d1:dc:13:72:80:b5:2f: 85:12:55:29:8e:18:af:ea:35:d8:32:17:41:35:a0:e7:07:1c: 37:ee:ac:b1:5c:c6:69:2b:7d:82:36:43:8c:dc:20:36:09:59: 52:cc:81:97:0d:7d:83:29:37:d3:12:90:e2:ac:c0:96:a7:6a: 12:05:37:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzM0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU1ZS03NTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+6KJErNTT+zVpAodkRjxtF3JHsvc+NSRVj7UkKxJz1yDH0U9nD8KCqBanoi XQi3BeGvePMc7MJM9SMKaJChmEq1FrO7wK2Z5j3aAo7RfPxIDoRhYbYScOCMTlQy vI4Bs2hIH6YeseEI0exZAo9YPruLZhSQ+pj3RGYD1EUXA+i1jpM5p/0lq/XcWLqC 6Bsd71vu7XyFlnTMaWanTG+eXqEel9Uu3ii8OyTZTjFh1sS6rr0H767umVZZ11ah CAI4OlNUUEorRRpCIjxHK68076nKGEP+F42NDyEwbenEgmI+rTbpH2eJeiN8q3XA sxeJUwrBmgwHoWz8QgOiv38qTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPy/VOIV R1m/0D9qt09QLpcIGEycMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvM0FEQjg5QzAz ODhDMTFFRDk4RDc1NzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ6ZnAwDQYJKoZIhvcNAQELBQADggEBAGy7Qh9uTbbsoL7r RasdcJPxqValfVVLrPa3IpJDSVB0KZRHSN7zQ5UU5tebjr/JlO2fHdHlGYPA2kXq 0HkixMNh7T1lwqbCnpq1fWVoN/j2PoUiWHWFlCo8FnqDtO4pRqf6H8Uk9sFWcr+i gymAIUI65GSLG1sV6hPKDIPPdyFg7Xx8muyMOxSKKTDuaASDfiX2G9ESX1yYEydy MgwoBGJ02xNw4X3acSVP+hSVlxw+wy0y/ac7j3VL6Zw+5I+K0dwTcoC1L4USVSmO GK/qNdgyF0E1oOcHHDfurLFcxmkrfYI2Q4zcIDYJWVLMgZcNfYMpN9MSkOKswJan ahIFN08= -----END CERTIFICATE-----Generated at Mon Oct 20 17:01:23 2025 by rpki-client