$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/5B7DA256ACCB11F08E05C84AC4F9AE02.roa File: 5B7DA256ACCB11F08E05C84AC4F9AE02.roa (raw, json) Hash identifier: JIk04y36avfxNyJYsMCYG62Md4+/wx7B5wlEtJd+Sg0= Subject key identifier: 17:29:18:64:36:B9:31:E6:0D:96:74:E4:FB:17:9A:50:BE:26:30:6E Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: 0130 Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/5B7DA256ACCB11F08E05C84AC4F9AE02.roa Signing time: Sun 19 Oct 2025 09:09:46 +0000 ROA not before: Sun 19 Oct 2025 09:09:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152726 IP address blocks: 160.20.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Oct 19 09:09:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68f4aada-9aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:8e:94:52:6f:34:34:d7:8f:e9:ee:76:c4: 4a:a4:c0:42:a4:4c:45:d4:24:d0:3e:52:d2:e9:ec: 6e:44:b0:5b:22:b7:c5:6d:03:27:97:42:20:a2:b6: 74:ea:03:d8:b6:71:11:0f:f2:ec:35:e7:1b:86:c4: 32:4f:c7:dd:da:75:fc:77:9e:71:13:9b:64:d9:1b: 80:1d:ab:8d:d7:bf:49:19:07:ec:dc:40:66:64:d3: 6d:b6:a0:10:17:f0:e2:ac:0e:88:a0:5c:7f:99:e2: da:92:ce:9c:ad:55:15:4a:d7:35:05:eb:2e:94:18: 7c:92:9f:d9:71:aa:aa:b2:38:37:d4:3f:16:e3:04: 5a:a5:4a:7d:25:a8:e5:be:81:e1:fa:56:1d:d7:a1: 10:d5:08:fb:83:9c:e1:1a:06:ba:8d:04:5a:ca:3e: a0:eb:ff:1a:2a:58:58:61:d5:a2:2b:66:99:bd:ee: 80:ea:3b:a3:54:e1:32:61:9a:cd:68:f1:50:a2:ca: 27:c1:02:5c:df:1c:a6:93:0a:6d:f5:23:9d:3a:06: ac:78:1d:c4:09:be:6d:30:a3:39:c3:eb:f3:cb:09: d1:f1:a8:fe:a1:89:62:61:8e:96:95:0e:1b:21:ef: dc:1c:b3:ef:d0:82:fd:d0:85:67:30:0a:e8:58:ae: 16:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:29:18:64:36:B9:31:E6:0D:96:74:E4:FB:17:9A:50:BE:26:30:6E X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/5B7DA256ACCB11F08E05C84AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.121.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:12:a2:d0:e7:af:50:22:41:fd:7f:12:93:86:d1:6c:ce:99: a1:1b:80:07:cc:d4:7e:64:fd:58:5e:4e:a5:2f:76:f6:76:d4: 06:f6:fb:d7:8a:38:27:84:74:9a:d6:8d:68:07:c5:bd:ef:eb: 94:d0:9f:75:09:91:11:0d:b1:1a:4d:b0:14:70:12:a0:95:21: c9:9c:65:f4:a9:26:d8:91:d4:15:56:b5:5b:da:3f:32:dc:30: 52:1e:83:4c:e9:c3:94:de:bf:77:40:1f:12:b5:85:ec:d2:e0: 28:a6:37:ac:d4:87:19:ba:4c:98:e2:e5:90:1e:4a:d5:fd:a2: 24:94:cd:97:28:9c:b9:08:98:87:69:aa:cd:b1:ff:e9:12:1d: 38:6c:b0:33:c6:a9:4a:4a:4e:2b:dc:0d:c4:5f:73:13:3b:dd: ef:28:10:4d:e7:0f:0a:3c:3f:2d:91:d0:d6:4d:b0:6f:51:af: f2:40:56:b6:fc:63:42:8e:39:59:bf:de:dd:f4:50:e6:cd:78: 98:e0:f5:21:12:c4:7b:5e:54:6f:9b:b4:ca:0a:99:fd:90:f8: 12:d3:17:96:64:fd:f9:79:c3:26:6c:05:dc:a7:5a:72:2d:80: 03:40:39:24:39:53:aa:5c:9b:5b:33:47:e0:ef:11:9c:19:45: a8:35:ce:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjUxMDE5MDkwOTQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY0YWFkYS05YWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwraOlFJvNDTXj+nudsRKpMBCpExF1CTQPlLS6exuRLBbIrfFbQMnl0IgorZ0 6gPYtnERD/LsNecbhsQyT8fd2nX8d55xE5tk2RuAHauN179JGQfs3EBmZNNttqAQ F/DirA6IoFx/meLaks6crVUVStc1BesulBh8kp/Zcaqqsjg31D8W4wRapUp9Jajl voHh+lYd16EQ1Qj7g5zhGga6jQRayj6g6/8aKlhYYdWiK2aZve6A6jujVOEyYZrN aPFQosonwQJc3xymkwpt9SOdOgaseB3ECb5tMKM5w+vzywnR8aj+oYliYY6WlQ4b Ie/cHLPv0IL90IVnMAroWK4WzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBcpGGQ2 uTHmDZZ05PsXmlC+JjBuMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgwQzIvOTgzRTYxNTAxNzFBMTFFRjg2NTc3NTRGQzRGOUFFMDIvNUI3REEyNTZB Q0NCMTFGMDhFMDVDODRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFHkwDQYJKoZIhvcNAQELBQADggEBADsSotDnr1AiQf1/ EpOG0WzOmaEbgAfM1H5k/VheTqUvdvZ21Ab2+9eKOCeEdJrWjWgHxb3v65TQn3UJ kRENsRpNsBRwEqCVIcmcZfSpJtiR1BVWtVvaPzLcMFIeg0zpw5Tev3dAHxK1hezS 4CimN6zUhxm6TJji5ZAeStX9oiSUzZconLkImIdpqs2x/+kSHThssDPGqUpKTivc DcRfcxM73e8oEE3nDwo8Py2R0NZNsG9Rr/JAVrb8Y0KOOVm/3t30UObNeJjg9SES xHteVG+btMoKmf2Q+BLTF5Zk/fl5wyZsBdynWnItgANAOSQ5U6pcm1szR+DvEZwZ Rag1zlM= -----END CERTIFICATE-----Generated at Tue Oct 21 16:46:34 2025 by rpki-client