$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/A37BF67C6D5911F0BF752809C4F9AE02.roa File: A37BF67C6D5911F0BF752809C4F9AE02.roa (raw, json) Hash identifier: CbfUDPcBzU0n3WGkkfK+qGJeruWTZG0slUEhkMkoXfg= Subject key identifier: 22:1E:B1:35:BF:A5:93:A8:64:5D:D0:82:71:12:40:26:4C:7B:00:2E Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 064A Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/A37BF67C6D5911F0BF752809C4F9AE02.roa Signing time: Thu 07 Aug 2025 01:55:41 +0000 ROA not before: Thu 07 Aug 2025 01:55:41 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45899 IP address blocks: 157.66.13.0/24 maxlen: 24 160.19.78.0/23 maxlen: 23 160.22.2.0/23 maxlen: 24 160.25.74.0/23 maxlen: 24 160.30.54.0/23 maxlen: 24 160.191.52.0/23 maxlen: 24 161.248.30.0/23 maxlen: 24 165.99.58.0/24 maxlen: 24 165.99.59.0/24 maxlen: 24 165.101.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Aug 7 01:55:41 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6894079c-f902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b4:76:65:a4:19:0b:27:32:36:29:51:83:10: b6:d4:ad:ff:51:6c:c5:70:0c:98:75:6b:54:dc:ce: 40:69:40:76:b7:36:0a:73:52:13:27:71:fb:76:27: 04:de:d6:d5:19:af:ca:84:66:a7:f6:11:5b:fb:03: 1c:5a:f3:75:ea:c2:29:d2:2e:fe:2b:b6:3a:62:37: 56:54:c2:23:19:61:49:9c:29:3f:c8:cd:4e:00:55: 27:b0:09:64:08:6d:3a:f8:71:5e:16:8a:40:87:6c: 2a:5d:67:02:b0:d4:7c:23:75:56:68:f5:89:24:ad: fe:0b:79:9e:d6:10:5a:f0:25:60:25:bc:c8:8d:1e: 26:6c:c6:24:d8:6f:ae:7a:a0:54:97:bd:b8:8e:d0: 67:6d:e8:bb:69:7b:63:af:5e:16:fd:c4:34:fd:05: 64:20:20:c4:9e:d9:fa:fc:37:58:ea:cf:1c:f5:50: 41:00:98:63:c6:7c:cf:38:96:ad:b6:22:81:3a:39: d4:94:bc:d4:81:93:9f:10:89:18:6d:2c:7a:78:73: fe:dd:e8:ef:f0:82:e0:23:6a:e9:00:56:01:ae:d7: c9:d1:94:92:17:24:bf:a3:22:c9:2c:73:a4:55:99: 7c:81:5b:7d:c5:7c:91:df:92:5c:e2:17:cc:da:71: ee:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1E:B1:35:BF:A5:93:A8:64:5D:D0:82:71:12:40:26:4C:7B:00:2E X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/A37BF67C6D5911F0BF752809C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.13.0/24 160.19.78.0/23 160.22.2.0/23 160.25.74.0/23 160.30.54.0/23 160.191.52.0/23 161.248.30.0/23 165.99.58.0/23 165.101.234.0/23 Signature Algorithm: sha256WithRSAEncryption 77:b0:b0:95:28:a1:ec:b1:78:0e:38:34:69:3a:ba:f8:69:b0: 81:60:3f:0d:41:00:4c:81:0a:99:c4:96:cc:82:1c:19:cf:b3: 90:06:e9:b0:9f:fb:6f:ad:00:e0:90:78:68:77:3f:3b:a4:5b: 76:5b:eb:c7:db:95:46:67:4a:54:a2:d1:cb:bb:06:d0:5d:ec: 7c:13:dd:1b:ec:00:db:2b:39:e3:ee:12:f1:27:3a:e7:e4:0a: 58:e3:f9:5b:55:39:ed:69:c6:4e:b0:eb:06:69:65:47:30:d8: b4:56:81:cb:45:5b:9d:23:90:55:3e:98:42:15:c4:2c:73:18: 36:a5:f5:92:cb:2a:ff:66:f7:2c:d5:6f:34:3f:2b:e9:e1:b1: 59:52:bf:36:d8:d3:e3:28:fa:a0:4a:8d:b2:c6:e3:18:34:72: c7:6f:1a:17:f0:63:7f:68:99:d6:1b:de:49:c6:65:45:4b:7d: cd:74:80:27:8f:13:04:92:56:72:c7:de:26:2d:28:8e:d1:a2: 80:24:96:5e:72:d7:36:3f:c2:44:a7:0a:b7:20:93:2a:cc:63: ef:72:96:34:5d:b4:91:69:ec:93:db:ac:59:c0:f0:c8:14:01: d8:dc:5c:cd:62:43:76:db:5d:0a:ca:3e:ef:9e:fb:ad:83:06: d1:10:6f:7d -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwODA3MDE1NTQxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0MDc5Yy1mOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurR2ZaQZCycyNilRgxC21K3/UWzFcAyYdWtU3M5AaUB2tzYKc1ITJ3H7dicE 3tbVGa/KhGan9hFb+wMcWvN16sIp0i7+K7Y6YjdWVMIjGWFJnCk/yM1OAFUnsAlk CG06+HFeFopAh2wqXWcCsNR8I3VWaPWJJK3+C3me1hBa8CVgJbzIjR4mbMYk2G+u eqBUl724jtBnbei7aXtjr14W/cQ0/QVkICDEntn6/DdY6s8c9VBBAJhjxnzPOJat tiKBOjnUlLzUgZOfEIkYbSx6eHP+3ejv8ILgI2rpAFYBrtfJ0ZSSFyS/oyLJLHOk VZl8gVt9xXyR35Jc4hfM2nHuuQIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFCIesTW/ pZOoZF3QgnESQCZMewAuMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQTM3QkY2N0M2 RDU5MTFGMEJGNzUyODA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E QDA+MDwEAgABMDYDBACdQg0DBAGgE04DBAGgFgIDBAGgGUoDBAGgHjYDBAGgvzQD BAGh+B4DBAGlYzoDBAGlZeowDQYJKoZIhvcNAQELBQADggEBAHewsJUooeyxeA44 NGk6uvhpsIFgPw1BAEyBCpnElsyCHBnPs5AG6bCf+2+tAOCQeGh3PzukW3Zb68fb lUZnSlSi0cu7BtBd7HwT3RvsANsrOePuEvEnOufkCljj+VtVOe1pxk6w6wZpZUcw 2LRWgctFW50jkFU+mEIVxCxzGDal9ZLLKv9m9yzVbzQ/K+nhsVlSvzbY0+Mo+qBK jbLG4xg0csdvGhfwY39omdYb3knGZUVLfc10gCePEwSSVnLH3iYtKI7RooAkll5y 1zY/wkSnCrcgkyrMY+9yljRdtJFp7JPbrFnA8MgUAdjcXM1iQ3bbXQrKPu+e+62D BtEQb30= -----END CERTIFICATE-----Generated at Sun Aug 10 18:47:36 2025 by rpki-client