$ rpki-client -vvf rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/D4F9C46CDCA511EF9BCCFC59C4F9AE02.roa File: D4F9C46CDCA511EF9BCCFC59C4F9AE02.roa (raw, json) Hash identifier: LbYezAC7HKWWVmK2xlsMHinqwJv1mR2uQHqkC2s/mFI= Subject key identifier: 47:00:0F:E9:FA:BE:F4:63:2B:AD:10:F9:F4:7F:88:B9:A0:56:9F:39 Certificate issuer: /CN=A91443DC/serialNumber=FEABAD9235AEF17023CDCFB1619026F3CEDB2C7F Certificate serial: DA Authority key identifier: FE:AB:AD:92:35:AE:F1:70:23:CD:CF:B1:61:90:26:F3:CE:DB:2C:7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/D4F9C46CDCA511EF9BCCFC59C4F9AE02.roa Signing time: Fri 01 Aug 2025 07:12:19 +0000 ROA not before: Fri 01 Aug 2025 07:12:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 149994 IP address blocks: 160.22.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.crl rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443DC, serialNumber=FEABAD9235AEF17023CDCFB1619026F3CEDB2C7F Validity Not Before: Aug 1 07:12:19 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688c68d3-91fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ef:bc:ba:bb:fb:4b:41:2b:d2:70:25:53:61: c5:84:d9:18:84:a4:dc:49:83:2d:92:29:af:f3:22: 9e:8e:ef:f3:41:6e:27:65:20:1e:60:55:51:5c:78: e6:1c:24:5b:0e:03:38:b3:41:dd:65:e1:d0:7d:39: 92:e3:5a:86:8e:e2:e1:13:fa:a7:4a:05:a9:a0:80: f5:b9:c2:59:28:b3:fd:e2:6f:2a:3b:a3:90:fa:23: d8:11:c1:e4:7e:e8:30:02:d2:e7:8b:1b:92:76:3f: ff:d1:31:d1:bb:59:35:be:69:cf:54:20:3b:ab:59: 2b:3f:22:5f:9c:0b:18:4c:60:1a:3a:4d:c2:58:fc: 75:94:bc:97:1d:ae:45:de:e6:0f:f7:d1:42:03:86: 87:6a:74:cf:01:6a:7c:d4:f6:25:83:b1:2a:9a:d3: cc:e4:c6:2e:6c:93:dc:4b:7b:f5:db:da:27:8b:e1: 92:95:54:67:f0:b3:3a:a6:c5:44:28:58:0d:13:ba: 54:1f:bc:9a:dd:db:9b:df:a7:e1:1b:0d:d0:dc:4b: 23:f4:0a:ac:c5:7c:74:04:c3:44:c5:5f:37:9a:e0: 36:18:4e:86:4e:63:64:0d:ff:55:0f:b0:70:cf:fe: 72:37:5c:17:ae:90:34:48:f8:e4:c0:6b:85:39:c3: 71:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:00:0F:E9:FA:BE:F4:63:2B:AD:10:F9:F4:7F:88:B9:A0:56:9F:39 X509v3 Authority Key Identifier: keyid:FE:AB:AD:92:35:AE:F1:70:23:CD:CF:B1:61:90:26:F3:CE:DB:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/_qutkjWu8XAjzc-xYZAm887bLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_qutkjWu8XAjzc-xYZAm887bLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91443DC/97DF7A12306211EF978B4764C4F9AE02/D4F9C46CDCA511EF9BCCFC59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.151.0/24 Signature Algorithm: sha256WithRSAEncryption 72:73:d4:5c:94:d4:cc:8f:1c:41:f1:54:db:79:c9:87:c5:a3: 3b:f3:25:45:c0:04:64:55:84:1b:ae:ae:0e:86:15:3b:70:49: 69:7a:c0:0e:c4:4e:99:eb:17:6a:28:68:3f:29:8e:47:ee:4f: 52:23:5e:63:e4:24:0a:77:87:9c:73:3e:95:2f:cb:f7:28:61: 3d:c5:e4:88:c1:cc:90:78:d6:9a:24:89:c5:bb:a6:67:29:d5: 77:e3:c5:9b:c3:45:27:3d:3c:62:ae:e5:fb:9f:81:65:f0:a3: f5:ec:c1:49:38:da:6d:ff:e0:c3:6a:e8:af:6c:52:72:13:b3: bc:18:5e:9f:cb:5d:71:3c:7a:96:9f:f5:d5:6f:b1:bd:a6:b5: 34:d6:ce:e4:44:b7:ca:16:1d:ac:70:25:20:28:c4:ee:84:dc: 0d:00:9b:11:cf:8b:66:ec:53:03:db:a6:88:cb:38:be:22:21: d9:85:1d:f0:de:73:a2:a8:0d:d5:96:67:94:7f:af:6a:d1:e0: 17:36:03:1e:84:7d:14:4f:b7:6f:dd:f9:91:56:6d:b3:33:47: 2b:90:bc:bb:74:54:69:ce:99:81:25:8b:7d:c3:11:dd:13:22: 13:3e:94:1b:8b:db:e1:58:f7:e2:c9:80:bd:91:7c:5a:aa:02: d0:66:f8:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzREMxMTAvBgNVBAUTKEZFQUJBRDkyMzVBRUYxNzAyM0NEQ0ZCMTYxOTAyNkYz Q0VEQjJDN0YwHhcNMjUwODAxMDcxMjE5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjNjhkMy05MWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtO+8urv7S0Er0nAlU2HFhNkYhKTcSYMtkimv8yKeju/zQW4nZSAeYFVRXHjm HCRbDgM4s0HdZeHQfTmS41qGjuLhE/qnSgWpoID1ucJZKLP94m8qO6OQ+iPYEcHk fugwAtLnixuSdj//0THRu1k1vmnPVCA7q1krPyJfnAsYTGAaOk3CWPx1lLyXHa5F 3uYP99FCA4aHanTPAWp81PYlg7EqmtPM5MYubJPcS3v129oni+GSlVRn8LM6psVE KFgNE7pUH7ya3dub36fhGw3Q3Esj9AqsxXx0BMNExV83muA2GE6GTmNkDf9VD7Bw z/5yN1wXrpA0SPjkwGuFOcNx9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEcAD+n6 vvRjK60Q+fR/iLmgVp85MB8GA1UdIwQYMBaAFP6rrZI1rvFwI83PsWGQJvPO2yx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDNEQy85N0RGN0ExMjMw NjIxMUVGOTc4QjQ3NjRDNEY5QUUwMi9fcXV0a2pXdThYQWp6Yy14WVpBbTg4N2JM SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19xdXRrald1OFhBanpjLXhZWkFtODg3YkxIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQzREMvOTdERjdBMTIzMDYyMTFFRjk3OEI0NzY0QzRGOUFFMDIvRDRGOUM0NkNE Q0E1MTFFRjlCQ0NGQzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFpcwDQYJKoZIhvcNAQELBQADggEBAHJz1FyU1MyPHEHx VNt5yYfFozvzJUXABGRVhBuurg6GFTtwSWl6wA7ETpnrF2ooaD8pjkfuT1IjXmPk JAp3h5xzPpUvy/coYT3F5IjBzJB41pokicW7pmcp1XfjxZvDRSc9PGKu5fufgWXw o/XswUk42m3/4MNq6K9sUnITs7wYXp/LXXE8epaf9dVvsb2mtTTWzuREt8oWHaxw JSAoxO6E3A0AmxHPi2bsUwPbpojLOL4iIdmFHfDec6KoDdWWZ5R/r2rR4Bc2Ax6E fRRPt2/d+ZFWbbMzRyuQvLt0VGnOmYEli33DEd0TIhM+lBuL2+FY9+LJgL2RfFqq AtBm+E0= -----END CERTIFICATE-----Generated at Fri Aug 8 00:34:13 2025 by rpki-client