$ rpki-client -vvf rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/557F3136DCA511EF98B72959C4F9AE02.roa File: 557F3136DCA511EF98B72959C4F9AE02.roa (raw, json) Hash identifier: cnxNZMj+QIRmXguv60UDDfKFR7YxS7hEgIs9b4OWAQ4= Subject key identifier: 06:8B:F9:32:B3:D7:74:B2:04:20:72:48:3A:AE:90:09:55:69:A9:C7 Certificate issuer: /CN=A91443DC/serialNumber=FEABAD9235AEF17023CDCFB1619026F3CEDB2C7F Certificate serial: DB Authority key identifier: FE:AB:AD:92:35:AE:F1:70:23:CD:CF:B1:61:90:26:F3:CE:DB:2C:7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/557F3136DCA511EF98B72959C4F9AE02.roa Signing time: Fri 01 Aug 2025 07:12:20 +0000 ROA not before: Fri 01 Aug 2025 07:12:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45905 IP address blocks: 160.22.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.crl rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443DC, serialNumber=FEABAD9235AEF17023CDCFB1619026F3CEDB2C7F Validity Not Before: Aug 1 07:12:20 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688c68d4-b190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:99:2b:3b:ae:62:77:03:eb:8a:ca:19:90:70: 29:52:8c:4f:3c:fe:98:0f:53:d1:13:df:2d:c6:e4: 82:c1:b7:f4:88:73:a9:53:28:6d:6c:60:e9:36:6b: 31:ef:15:67:bd:9c:81:f1:1d:b9:b8:a2:a8:10:1c: 15:7b:cd:47:e1:17:82:8a:64:81:27:46:61:80:34: 24:1e:06:1c:dc:f3:b9:84:cc:01:b6:38:3f:85:68: 58:f6:9b:55:da:4f:64:a6:df:35:bc:e9:da:da:53: 5c:7a:f3:d1:2f:e8:15:da:b6:0b:95:7c:46:31:98: c0:7d:2d:4f:b0:64:a7:c4:ee:93:79:63:14:6f:d6: f1:8e:e4:ce:84:9b:9f:3c:76:90:db:e9:07:16:a3: 48:04:5b:ab:f8:17:6b:6f:de:25:79:18:db:89:7f: 2b:fb:c7:4d:2f:8a:35:5e:28:0e:ff:be:db:18:6d: 14:4d:99:b5:9a:76:69:dd:e2:fa:57:1f:ea:05:d3: 74:fa:e8:2a:0b:78:98:14:5d:31:1a:f8:94:d5:29: bc:2d:3a:a1:81:24:47:56:5e:ae:64:b3:a0:26:ba: ab:e7:15:2a:83:6a:91:77:97:d0:7b:21:75:45:38: a6:ff:bf:6a:c1:43:28:5b:78:87:d4:e0:34:e8:d6: 9b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8B:F9:32:B3:D7:74:B2:04:20:72:48:3A:AE:90:09:55:69:A9:C7 X509v3 Authority Key Identifier: keyid:FE:AB:AD:92:35:AE:F1:70:23:CD:CF:B1:61:90:26:F3:CE:DB:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/557F3136DCA511EF98B72959C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.150.0/24 Signature Algorithm: sha256WithRSAEncryption 69:42:98:b2:f9:10:b4:06:14:62:fb:c9:fb:c9:41:18:27:d6: f0:b4:e5:65:5c:21:0e:d7:cf:69:88:74:c3:46:b8:ac:eb:b1: 30:0f:7e:05:05:f5:69:8b:a1:b0:85:df:78:bb:3b:e4:d9:db: da:bf:de:df:64:61:b6:67:49:0f:1a:80:d2:b1:ed:d8:f1:87: 41:6e:03:59:10:e0:92:42:78:0f:15:43:30:1e:f6:90:21:c9: 2c:be:d8:e9:68:ef:b7:c7:bf:31:26:4a:4a:a2:72:a8:96:25: 53:eb:54:b6:1c:b4:32:34:82:09:e0:06:ec:d8:fb:49:20:71: d3:7e:07:89:12:e4:b7:5f:45:6f:69:d3:d5:11:6e:86:e7:3f: 6a:88:66:22:e6:00:00:02:a5:eb:cc:7c:a4:c5:61:80:36:3a: 57:39:88:ce:b2:a5:4a:d0:b0:47:6e:19:f5:72:38:28:0a:42: ea:b9:50:96:58:55:50:af:4c:fd:c3:70:c0:42:62:d9:63:64: 9f:59:4c:f6:f9:31:bf:77:7e:d9:80:88:cc:ef:fa:9f:e5:8c: 52:f1:0b:0d:af:05:2d:2b:ad:5d:2f:f4:12:a9:5a:98:7f:a9: 18:56:a4:e2:7c:cf:56:ef:63:b3:cc:6e:98:53:08:34:1c:c1: 4d:31:a7:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzREMxMTAvBgNVBAUTKEZFQUJBRDkyMzVBRUYxNzAyM0NEQ0ZCMTYxOTAyNkYz Q0VEQjJDN0YwHhcNMjUwODAxMDcxMjIwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjNjhkNC1iMTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZkrO65idwPrisoZkHApUoxPPP6YD1PRE98txuSCwbf0iHOpUyhtbGDpNmsx 7xVnvZyB8R25uKKoEBwVe81H4ReCimSBJ0ZhgDQkHgYc3PO5hMwBtjg/hWhY9ptV 2k9kpt81vOna2lNcevPRL+gV2rYLlXxGMZjAfS1PsGSnxO6TeWMUb9bxjuTOhJuf PHaQ2+kHFqNIBFur+Bdrb94leRjbiX8r+8dNL4o1XigO/77bGG0UTZm1mnZp3eL6 Vx/qBdN0+ugqC3iYFF0xGviU1Sm8LTqhgSRHVl6uZLOgJrqr5xUqg2qRd5fQeyF1 RTim/79qwUMoW3iH1OA06NabdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAaL+TKz 13SyBCBySDqukAlVaanHMB8GA1UdIwQYMBaAFP6rrZI1rvFwI83PsWGQJvPO2yx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDNEQy85N0RGN0ExMjMw NjIxMUVGOTc4QjQ3NjRDNEY5QUUwMi9fcXV0a2pXdThYQWp6Yy14WVpBbTg4N2JM SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19xdXRrald1OFhBanpjLXhZWkFtODg3YkxIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQzREMvOTdERjdBMTIzMDYyMTFFRjk3OEI0NzY0QzRGOUFFMDIvNTU3RjMxMzZE Q0E1MTFFRjk4QjcyOTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFpYwDQYJKoZIhvcNAQELBQADggEBAGlCmLL5ELQGFGL7 yfvJQRgn1vC05WVcIQ7Xz2mIdMNGuKzrsTAPfgUF9WmLobCF33i7O+TZ29q/3t9k YbZnSQ8agNKx7djxh0FuA1kQ4JJCeA8VQzAe9pAhySy+2Olo77fHvzEmSkqicqiW JVPrVLYctDI0ggngBuzY+0kgcdN+B4kS5LdfRW9p09URbobnP2qIZiLmAAACpevM fKTFYYA2Olc5iM6ypUrQsEduGfVyOCgKQuq5UJZYVVCvTP3DcMBCYtljZJ9ZTPb5 Mb93ftmAiMzv+p/ljFLxCw2vBS0rrV0v9BKpWph/qRhWpOJ8z1bvY7PMbphTCDQc wU0xp6s= -----END CERTIFICATE-----Generated at Sat Aug 9 23:07:13 2025 by rpki-client