$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BB117C7263E311EC8B936683C4F9AE02.roa File: BB117C7263E311EC8B936683C4F9AE02.roa (raw, json) Hash identifier: fCQ/1bRKLJ/4HiIu9MUn36kw690w9V73gc47s0Q3Z84= Subject key identifier: FF:EA:D8:75:BC:1C:02:9E:F7:AE:DB:98:B3:D6:F8:63:77:F9:50:0C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DF8 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BB117C7263E311EC8B936683C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:50 +0000 ROA not before: Thu 28 Aug 2025 14:56:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24066 IP address blocks: 117.122.124.0/22 maxlen: 24 203.119.36.0/22 maxlen: 24 2001:dc8:c000::/48 maxlen: 48 2001:dc8:c001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19960 (0x4df8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e32-df09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:58:a9:03:6d:39:55:fa:fe:d5:74:e8:6c:3a: a4:f0:a0:b8:ca:b0:11:c4:d5:56:f7:be:6f:15:bc: 73:0d:b2:20:9d:22:3d:ad:ca:23:71:02:97:fa:eb: c4:9d:24:be:bd:a7:3c:64:25:0c:f1:a9:27:80:35: 41:30:0c:35:eb:4a:5b:10:de:31:0d:64:d1:b8:44: 3f:58:03:17:be:5e:0d:d6:85:20:aa:a6:d0:d2:30: 4c:70:32:04:55:aa:38:ba:79:32:e4:ec:d8:8d:8b: 06:75:8f:46:1a:59:f4:d7:2d:61:20:88:65:b8:e6: af:9b:34:80:99:b1:7d:4b:df:e7:2f:6b:aa:53:83: bc:77:5d:57:50:59:59:b4:8c:a2:b8:cb:31:9a:71: a6:0b:77:a5:28:c0:66:65:87:4e:f6:07:cd:ce:0f: d8:cd:03:86:e1:26:d8:ad:73:ee:cf:53:d4:cb:48: fc:59:d3:ce:ee:24:72:20:8d:9a:18:ab:8b:45:06: f3:66:5d:5e:d6:04:fc:71:5d:74:22:c8:3d:68:a8: 9d:43:29:e9:70:71:81:5b:91:82:5c:ed:9a:43:d1: 05:96:30:be:a4:3a:01:10:3d:f3:33:7b:a8:86:4d: a7:b8:2e:77:30:cc:e5:12:63:69:1c:08:74:94:74: 03:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EA:D8:75:BC:1C:02:9E:F7:AE:DB:98:B3:D6:F8:63:77:F9:50:0C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BB117C7263E311EC8B936683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.122.124.0/22 203.119.36.0/22 IPv6: 2001:dc8:c000::/47 Signature Algorithm: sha256WithRSAEncryption 0c:08:04:6f:bf:f3:35:a5:15:1f:bb:23:17:5d:53:d2:48:32: ef:d7:08:00:cc:47:f4:28:1e:0b:1c:80:af:47:b3:b0:ac:9f: 84:de:03:8a:e5:32:4b:f8:01:a1:ef:b0:61:8a:17:d4:5f:a9: fa:fc:dc:b4:4e:7d:af:e7:5f:87:13:cf:7f:5a:e3:69:6f:c6: 85:46:c1:3d:5a:41:84:01:77:6f:e7:27:d0:c8:aa:06:58:c8: 13:d5:f0:6f:fd:33:03:01:82:29:79:d2:42:6b:c7:a4:d0:4a: ea:a4:14:a1:58:29:3c:55:11:6b:7a:94:99:d0:1e:f7:64:e5: 44:82:26:d7:c6:be:ff:81:53:11:c8:85:f7:59:1f:3b:01:fa: 7c:61:2f:e8:1a:c8:a9:53:a2:2f:49:f9:c9:34:6e:3a:4a:7c: 43:b8:d5:df:4a:29:b9:9f:52:39:d4:8a:29:84:70:e5:73:07: ea:31:a0:09:28:c0:49:3d:b3:51:9e:01:13:08:16:9e:79:f0: dd:d6:be:b6:c8:e5:58:ea:0f:71:7e:bc:5b:5e:95:22:4b:dc: e0:51:67:c2:84:b4:fa:6f:9d:15:f0:71:2b:43:bf:6a:bd:42: 48:d8:81:3e:f0:ef:13:9c:e8:eb:75:08:b6:0a:95:db:5b:85: 49:69:4a:9a -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICTfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUzMi1kZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVipA205Vfr+1XTobDqk8KC4yrARxNVW975vFbxzDbIgnSI9rcojcQKX+uvE nSS+vac8ZCUM8akngDVBMAw160pbEN4xDWTRuEQ/WAMXvl4N1oUgqqbQ0jBMcDIE Vao4unky5OzYjYsGdY9GGln01y1hIIhluOavmzSAmbF9S9/nL2uqU4O8d11XUFlZ tIyiuMsxmnGmC3elKMBmZYdO9gfNzg/YzQOG4SbYrXPuz1PUy0j8WdPO7iRyII2a GKuLRQbzZl1e1gT8cV10Isg9aKidQynpcHGBW5GCXO2aQ9EFljC+pDoBED3zM3uo hk2nuC53MMzlEmNpHAh0lHQDtQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFP/q2HW8 HAKe967bmLPW+GN3+VAMMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkIxMTdDNzI2 M0UzMTFFQzhCOTM2NjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJ1enwDBALLdyQwDwQCAAIwCQMHASABDcjAADANBgkqhkiG 9w0BAQsFAAOCAQEADAgEb7/zNaUVH7sjF11T0kgy79cIAMxH9CgeCxyAr0ezsKyf hN4DiuUyS/gBoe+wYYoX1F+p+vzctE59r+dfhxPPf1rjaW/GhUbBPVpBhAF3b+cn 0MiqBljIE9Xwb/0zAwGCKXnSQmvHpNBK6qQUoVgpPFURa3qUmdAe92TlRIIm18a+ /4FTEciF91kfOwH6fGEv6BrIqVOiL0n5yTRuOkp8Q7jV30opuZ9SOdSKKYRw5XMH 6jGgCSjAST2zUZ4BEwgWnnnw3da+tsjlWOoPcX68W16VIkvc4FFnwoS0+m+dFfBx K0O/ar1CSNiBPvDvE5zo63UItgqV21uFSWlKmg== -----END CERTIFICATE-----Generated at Mon Oct 20 14:20:38 2025 by rpki-client