$ rpki-client -vvf rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/A1CF550A912511EF8FF0813AC4F9AE02.roa File: A1CF550A912511EF8FF0813AC4F9AE02.roa (raw, json) Hash identifier: AtI/2Ua9nQqNbzSJOCRvMvTqRCV50QJmjGrd4yNCBfo= Subject key identifier: 07:79:C9:4B:1B:AB:30:A5:53:FC:6D:95:A8:C7:8D:11:87:5B:F9:10 Certificate issuer: /CN=A91396E7/serialNumber=1247081E9BA97C13C7DD3D68E443D1F5479B2AFF Certificate serial: C4 Authority key identifier: 12:47:08:1E:9B:A9:7C:13:C7:DD:3D:68:E4:43:D1:F5:47:9B:2A:FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EkcIHpupfBPH3T1o5EPR9UebKv8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/A1CF550A912511EF8FF0813AC4F9AE02.roa Signing time: Mon 27 Oct 2025 08:19:59 +0000 ROA not before: Mon 27 Oct 2025 08:19:59 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 132855 IP address blocks: 160.191.58.0/23 maxlen: 23 160.191.58.0/24 maxlen: 24 160.191.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/EkcIHpupfBPH3T1o5EPR9UebKv8.crl rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/EkcIHpupfBPH3T1o5EPR9UebKv8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EkcIHpupfBPH3T1o5EPR9UebKv8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:04:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91396E7, serialNumber=1247081E9BA97C13C7DD3D68E443D1F5479B2AFF Validity Not Before: Oct 27 08:19:59 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68ff2b2f-3a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8d:15:97:97:cd:31:51:47:e3:de:5c:a9:08: ea:7c:01:a4:a1:a1:5e:e6:4f:3b:7e:8b:94:b6:b5: 14:c9:02:04:2c:dd:41:f5:37:02:f2:76:1b:b4:7e: 67:1c:cd:f2:c0:c8:ec:47:96:3c:ea:04:92:1b:53: ea:b6:2b:19:44:88:4f:26:96:95:e3:5c:75:33:a8: 04:85:c3:23:77:dc:30:74:46:6d:26:bc:db:7c:ef: ae:d0:c3:38:1b:9f:90:d1:e7:bc:e7:13:ba:6f:ec: be:d6:fe:70:ad:af:66:be:2b:ea:4d:eb:2f:c2:a2: 7b:06:3a:09:27:d9:a2:34:4c:b4:0a:90:f3:14:c6: f6:0e:ef:74:27:f9:fe:61:9a:03:10:e5:fd:1d:16: 63:bd:9a:b2:71:af:52:2b:a0:e2:68:45:fd:ef:b6: dc:84:6e:0d:fe:5f:3c:6f:6e:02:f7:fa:59:d1:3b: 80:ed:92:d5:e8:7f:10:ec:d3:dd:f2:4d:88:0b:a7: db:82:69:35:0e:0c:6a:44:b7:dc:ad:17:b8:c4:56: 3e:9d:41:a1:16:e5:6a:b5:dc:f8:32:90:ca:2f:3d: 0f:45:37:02:51:4d:1a:9b:34:b4:64:35:46:72:21: b2:ed:e4:83:47:a2:4d:13:b0:ff:8c:9a:23:c1:3a: 7a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:79:C9:4B:1B:AB:30:A5:53:FC:6D:95:A8:C7:8D:11:87:5B:F9:10 X509v3 Authority Key Identifier: keyid:12:47:08:1E:9B:A9:7C:13:C7:DD:3D:68:E4:43:D1:F5:47:9B:2A:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/EkcIHpupfBPH3T1o5EPR9UebKv8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EkcIHpupfBPH3T1o5EPR9UebKv8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91396E7/0679ACF4912511EF942A2B28C4F9AE02/A1CF550A912511EF8FF0813AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.58.0/23 Signature Algorithm: sha256WithRSAEncryption d8:63:77:02:a1:ca:dc:7f:8d:84:de:4a:bb:54:77:05:45:d8: 22:b6:4a:dc:a4:29:b2:82:03:e1:e6:e5:52:c5:46:07:5b:66: de:67:95:aa:57:f4:b1:6b:75:fa:66:c9:90:91:3d:07:7c:c6: eb:0a:27:90:ab:2f:c7:47:31:7e:af:18:f0:25:a6:81:60:5f: 53:fe:73:d9:31:aa:3b:21:6b:55:0a:3c:60:3a:8e:ab:78:79: 33:e0:38:45:c8:10:14:8f:a5:db:e5:c2:61:48:27:54:85:24: d5:9c:7d:01:b9:c1:eb:0f:2b:81:ab:13:40:2d:b5:67:74:e4: 1a:ac:c0:80:aa:c8:4b:1a:a2:8a:a1:ec:c1:02:72:ca:54:7d: cb:73:79:9a:54:f7:c5:81:5a:c0:26:c7:3c:5d:6d:52:2f:d5: d7:6b:62:f7:d3:e0:ae:f4:9c:e1:6c:a2:f8:01:7e:b4:17:79: 2e:e5:27:41:41:a9:8b:8f:69:2a:5f:57:c1:ad:03:35:17:d3: b8:93:b6:03:a0:fb:ff:83:ec:26:2d:5d:c4:26:62:9c:03:56: 29:db:fb:6c:54:e8:b2:cd:40:49:5a:a6:97:02:d6:68:36:4b: 2b:36:0a:38:18:12:95:97:df:20:b3:d4:da:c0:a3:f8:ca:f8: 57:66:c4:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk2RTcxMTAvBgNVBAUTKDEyNDcwODFFOUJBOTdDMTNDN0REM0Q2OEU0NDNEMUY1 NDc5QjJBRkYwHhcNMjUxMDI3MDgxOTU5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZmMmIyZi0zYTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo40Vl5fNMVFH495cqQjqfAGkoaFe5k87fouUtrUUyQIELN1B9TcC8nYbtH5n HM3ywMjsR5Y86gSSG1PqtisZRIhPJpaV41x1M6gEhcMjd9wwdEZtJrzbfO+u0MM4 G5+Q0ee85xO6b+y+1v5wra9mvivqTesvwqJ7BjoJJ9miNEy0CpDzFMb2Du90J/n+ YZoDEOX9HRZjvZqyca9SK6DiaEX977bchG4N/l88b24C9/pZ0TuA7ZLV6H8Q7NPd 8k2IC6fbgmk1DgxqRLfcrRe4xFY+nUGhFuVqtdz4MpDKLz0PRTcCUU0amzS0ZDVG ciGy7eSDR6JNE7D/jJojwTp6qQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAd5yUsb qzClU/xtlajHjRGHW/kQMB8GA1UdIwQYMBaAFBJHCB6bqXwTx909aORD0fVHmyr/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTZFNy8wNjc5QUNGNDkx MjUxMUVGOTQyQTJCMjhDNEY5QUUwMi9Fa2NJSHB1cGZCUEgzVDFvNUVQUjlVZWJL djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VrY0lIcHVwZkJQSDNUMW81RVBSOVVlYkt2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk2RTcvMDY3OUFDRjQ5MTI1MTFFRjk0MkEyQjI4QzRGOUFFMDIvQTFDRjU1MEE5 MTI1MTFFRjhGRjA4MTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgvzowDQYJKoZIhvcNAQELBQADggEBANhjdwKhytx/jYTe SrtUdwVF2CK2StykKbKCA+Hm5VLFRgdbZt5nlapX9LFrdfpmyZCRPQd8xusKJ5Cr L8dHMX6vGPAlpoFgX1P+c9kxqjsha1UKPGA6jqt4eTPgOEXIEBSPpdvlwmFIJ1SF JNWcfQG5wesPK4GrE0AttWd05BqswICqyEsaooqh7MECcspUfctzeZpU98WBWsAm xzxdbVIv1ddrYvfT4K70nOFsovgBfrQXeS7lJ0FBqYuPaSpfV8GtAzUX07iTtgOg +/+D7CYtXcQmYpwDVinb+2xU6LLNQElappcC1mg2Sys2CjgYEpWX3yCz1NrAo/jK +FdmxJw= -----END CERTIFICATE-----Generated at Wed Nov 5 19:26:45 2025 by rpki-client