$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/BCA395126C1811EFAFBE6B0FC4F9AE02.roa File: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (raw, json) Hash identifier: xTh/XECRIgCR6mcMb4Sy7r1o1s9piU8w2MVo6gmyMfs= Subject key identifier: 08:A1:58:0C:3C:A2:39:1D:9D:0F:AA:0B:2E:F8:22:AA:7D:96:22:3B Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: AC Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/BCA395126C1811EFAFBE6B0FC4F9AE02.roa Signing time: Fri 01 Aug 2025 07:43:36 +0000 ROA not before: Fri 01 Aug 2025 07:43:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153049 IP address blocks: 160.25.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Aug 1 07:43:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688c7028-30f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7f:80:50:35:42:e2:0a:8a:d6:ad:40:36:66: 95:20:67:33:50:67:bf:b8:39:cb:c9:4c:e3:6e:dc: e9:0f:43:47:6e:cd:b1:00:86:c3:be:44:86:70:b0: 56:38:cc:20:3f:84:d0:ff:b7:de:ee:fe:7b:64:61: 8e:d1:f2:b6:4b:ad:f6:9e:b4:10:3a:b8:d8:ba:0f: 14:0f:0a:b2:05:92:19:4f:6b:10:2b:ab:06:ca:54: 81:a4:b6:a1:c8:c4:fa:86:31:35:bb:84:3a:b1:be: ff:42:f2:91:72:73:f7:eb:d5:57:b2:2b:db:0f:14: e5:60:59:0f:1d:95:99:ce:91:aa:66:78:b7:8f:1e: 02:36:f3:c3:8c:10:38:40:91:a4:5c:b4:0c:d1:0a: 68:6e:11:42:f9:4e:34:5a:1e:5b:83:ef:2e:c9:ed: f4:dd:95:35:d4:d5:6c:69:a2:c0:75:49:31:1a:b8: fa:0d:d1:33:db:82:76:4f:e1:d9:4e:63:c5:6a:7d: e4:59:a7:d5:99:fe:0a:0b:a0:0d:23:5e:c5:cf:76: b2:64:e6:13:8c:b8:b1:5b:38:47:30:3e:11:58:28: 40:a2:fc:8a:1f:dd:ad:9a:00:d2:78:4b:a8:45:33: 45:1a:b7:73:58:32:34:fd:4f:c4:82:17:d9:38:5f: 72:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A1:58:0C:3C:A2:39:1D:9D:0F:AA:0B:2E:F8:22:AA:7D:96:22:3B X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/BCA395126C1811EFAFBE6B0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.66.0/23 Signature Algorithm: sha256WithRSAEncryption a3:4e:17:d2:5b:d9:c7:82:20:2b:b1:25:a3:81:af:0c:ee:27: 4a:1d:cb:3b:7d:0d:50:dc:e2:23:cd:3d:15:a1:3c:a8:a2:53: 5f:df:f7:e9:47:73:32:71:ba:69:8d:dc:dd:ac:bd:57:55:df: 0f:7d:9e:e4:9c:6c:e1:91:cc:e8:44:72:83:7f:d2:3f:51:f2: a6:49:1a:f0:fa:64:d3:51:5a:40:59:ad:6b:89:a3:50:dc:ce: 0a:80:40:6d:e8:70:1a:42:55:fb:5c:25:05:41:3e:c9:c4:ad: 0d:a7:d0:15:83:47:49:84:b5:3f:ef:79:b1:8e:d4:b4:9f:38: 7b:5f:a7:65:0f:3d:56:15:d5:f6:ea:38:e7:a1:ae:32:7f:0b: 49:56:53:09:e7:28:6c:6b:27:25:49:9c:e2:04:31:97:50:45: b7:ae:97:e4:2d:40:f8:64:cd:5c:13:d7:5d:8b:b1:cc:23:46: 91:e0:b2:a3:bc:dc:c5:0e:97:d3:ed:a5:45:e1:33:c9:31:fb: 4d:af:f6:6a:e3:2f:12:7b:e4:2a:93:d8:d7:79:75:3b:14:97: 1b:d0:8e:24:a8:4f:27:e8:89:20:e1:cf:69:77:e1:f9:47:fa: 81:92:71:22:15:45:16:f0:21:55:f5:cf:8e:7e:ba:c4:4c:54: f1:2b:f6:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjUwODAxMDc0MzM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjNzAyOC0zMGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqn+AUDVC4gqK1q1ANmaVIGczUGe/uDnLyUzjbtzpD0NHbs2xAIbDvkSGcLBW OMwgP4TQ/7fe7v57ZGGO0fK2S632nrQQOrjYug8UDwqyBZIZT2sQK6sGylSBpLah yMT6hjE1u4Q6sb7/QvKRcnP369VXsivbDxTlYFkPHZWZzpGqZni3jx4CNvPDjBA4 QJGkXLQM0QpobhFC+U40Wh5bg+8uye303ZU11NVsaaLAdUkxGrj6DdEz24J2T+HZ TmPFan3kWafVmf4KC6ANI17Fz3ayZOYTjLixWzhHMD4RWChAovyKH92tmgDSeEuo RTNFGrdzWDI0/U/EghfZOF9ytQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAihWAw8 ojkdnQ+qCy74Iqp9liI7MB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTEyQzQvRjMxOUVEQzI2QzE3MTFFRkJEQkZENTBCQzRGOUFFMDIvQkNBMzk1MTI2 QzE4MTFFRkFGQkU2QjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGUIwDQYJKoZIhvcNAQELBQADggEBAKNOF9Jb2ceCICux JaOBrwzuJ0odyzt9DVDc4iPNPRWhPKiiU1/f9+lHczJxummN3N2svVdV3w99nuSc bOGRzOhEcoN/0j9R8qZJGvD6ZNNRWkBZrWuJo1DczgqAQG3ocBpCVftcJQVBPsnE rQ2n0BWDR0mEtT/vebGO1LSfOHtfp2UPPVYV1fbqOOehrjJ/C0lWUwnnKGxrJyVJ nOIEMZdQRbeul+QtQPhkzVwT112LscwjRpHgsqO83MUOl9PtpUXhM8kx+02v9mrj LxJ75CqT2Nd5dTsUlxvQjiSoTyfoiSDhz2l34flH+oGScSIVRRbwIVX1z45+usRM VPEr9o0= -----END CERTIFICATE-----Generated at Thu Aug 7 02:04:01 2025 by rpki-client