$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/1272CD8E65DB11F0A01C3E60C4F9AE02.roa File: 1272CD8E65DB11F0A01C3E60C4F9AE02.roa (raw, json) Hash identifier: EVkIEa29+KtvqbQ6gMLWGo1HWVznSyqTu9iTd0m1oV0= Subject key identifier: 56:D8:FD:F7:ED:77:91:8E:9C:E1:1B:08:58:2B:50:63:00:75:FD:E4 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 2243 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/1272CD8E65DB11F0A01C3E60C4F9AE02.roa Signing time: Fri 22 Aug 2025 20:36:10 +0000 ROA not before: Fri 22 Aug 2025 20:36:10 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 834 IP address blocks: 180.210.222.0/24 maxlen: 24 180.210.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:53:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8771 (0x2243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Aug 22 20:36:10 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68a8d4b9-8926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:02:91:f4:e5:86:2c:b3:e0:fe:b7:62:d2:a4: d8:c8:a7:ce:72:dc:3a:c0:51:c3:81:6b:db:85:bb: cb:58:89:f5:2d:74:cf:45:8d:28:3d:6c:5d:8b:52: 72:c4:e2:bf:b9:e9:69:9e:38:b4:2f:ff:41:ec:1a: d0:e9:2e:ca:70:57:53:e6:e1:2f:83:24:e9:2e:e1: 03:80:cd:53:d3:ed:d3:82:2e:3a:7b:e4:36:2f:3d: ee:98:bc:91:0a:7d:6d:10:3c:f1:27:ec:ec:d9:ca: 4c:68:33:9a:39:3d:72:9a:45:fc:66:bf:22:a5:1c: 4b:f3:ac:6c:3c:e3:1c:d4:97:2d:9c:ba:0b:1c:f0: f1:53:24:a3:c2:c0:93:31:3d:5a:ee:09:5a:28:b9: 7b:21:a4:82:1d:78:6c:12:9d:d1:13:55:68:24:83: b1:7e:9e:eb:61:3e:09:6f:91:56:32:ab:2a:fe:8a: 16:f3:b2:b0:16:91:e4:2b:f7:39:8b:fb:84:d2:de: a4:00:23:9b:c2:d3:89:f9:d6:32:3c:1e:03:9b:b7: 68:91:db:2c:04:cc:d5:f6:72:e1:ec:b1:e5:fe:4c: 72:b1:08:72:a7:b5:41:c2:1e:cd:78:d8:d0:9c:5c: 8c:cc:2c:95:96:98:33:58:b3:8e:bd:ed:aa:ad:b9: cb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D8:FD:F7:ED:77:91:8E:9C:E1:1B:08:58:2B:50:63:00:75:FD:E4 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/1272CD8E65DB11F0A01C3E60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.210.222.0/23 Signature Algorithm: sha256WithRSAEncryption a7:e8:9f:7f:4e:22:63:63:db:26:33:57:77:c8:83:cc:10:44: 3c:52:30:25:55:d2:d5:75:44:07:8c:e8:f3:3e:8e:9d:38:78: 88:7a:bf:b6:30:3d:f9:4e:4e:a4:53:f9:62:47:25:e0:d1:88: 9e:a7:d4:35:9e:1b:52:6d:02:5c:ca:ee:79:78:51:5a:a6:de: 14:1c:f8:32:7f:59:7c:56:03:8e:a9:41:f4:1a:ad:2a:20:58: f2:33:0e:e1:cc:7d:3e:17:db:3e:3d:4b:62:95:46:82:35:df: a2:5d:33:1a:e7:2d:42:19:06:6e:9d:17:72:06:df:3c:b0:cc: d6:1f:60:a5:82:e8:04:fd:da:3f:9f:77:8e:36:19:8b:80:5c: 08:f8:51:06:e3:ea:6b:a1:78:2c:94:f5:ca:ec:68:d7:75:8d: 8d:5b:72:d0:c5:e7:3d:2f:3f:57:64:c9:d2:b2:66:40:39:f7: a8:e2:06:e7:d2:1c:83:de:e5:94:ab:a2:3f:54:b9:24:12:a4: 2f:09:59:54:64:a1:aa:7c:0d:e1:23:1e:77:7b:13:fd:e9:ae: 5f:65:bf:d3:c4:28:be:6b:b0:4a:12:ce:b4:83:1e:61:6d:92: 63:4b:04:90:03:cc:52:85:a2:f8:2c:cf:a5:b8:2a:69:f6:95: 55:26:94:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUwODIyMjAzNjEwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4ZDRiOS04OTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7wKR9OWGLLPg/rdi0qTYyKfOctw6wFHDgWvbhbvLWIn1LXTPRY0oPWxdi1Jy xOK/uelpnji0L/9B7BrQ6S7KcFdT5uEvgyTpLuEDgM1T0+3Tgi46e+Q2Lz3umLyR Cn1tEDzxJ+zs2cpMaDOaOT1ymkX8Zr8ipRxL86xsPOMc1JctnLoLHPDxUySjwsCT MT1a7glaKLl7IaSCHXhsEp3RE1VoJIOxfp7rYT4Jb5FWMqsq/ooW87KwFpHkK/c5 i/uE0t6kACObwtOJ+dYyPB4Dm7dokdssBMzV9nLh7LHl/kxysQhyp7VBwh7NeNjQ nFyMzCyVlpgzWLOOve2qrbnLiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFbY/fft d5GOnOEbCFgrUGMAdf3kMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ4NDUvNDAwMTUzQjZEMkVCMTFFNUI0RDE1QTRFQzRGOUFFMDIvMTI3MkNEOEU2 NURCMTFGMEEwMUMzRTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAG00t4wDQYJKoZIhvcNAQELBQADggEBAKfon39OImNj2yYz V3fIg8wQRDxSMCVV0tV1RAeM6PM+jp04eIh6v7YwPflOTqRT+WJHJeDRiJ6n1DWe G1JtAlzK7nl4UVqm3hQc+DJ/WXxWA46pQfQarSogWPIzDuHMfT4X2z49S2KVRoI1 36JdMxrnLUIZBm6dF3IG3zywzNYfYKWC6AT92j+fd442GYuAXAj4UQbj6muheCyU 9crsaNd1jY1bctDF5z0vP1dkydKyZkA596jiBufSHIPe5ZSroj9UuSQSpC8JWVRk oap8DeEjHnd7E/3prl9lv9PEKL5rsEoSzrSDHmFtkmNLBJADzFKFovgsz6W4Kmn2 lVUmlLA= -----END CERTIFICATE-----Generated at Sat Aug 23 09:08:09 2025 by rpki-client