$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BB0AAA1CAFDB11F0B4868557C4F9AE02.roa File: BB0AAA1CAFDB11F0B4868557C4F9AE02.roa (raw, json) Hash identifier: HtzyZrnutrYSEEpAE99y2b2s43amSekR28tN0IgF+3E= Subject key identifier: AC:53:75:05:CA:CD:23:1C:39:7C:EA:95:D8:03:A0:4D:7D:33:CB:FB Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 06FD Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BB0AAA1CAFDB11F0B4868557C4F9AE02.roa Signing time: Thu 23 Oct 2025 06:44:32 +0000 ROA not before: Thu 23 Oct 2025 06:44:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153401 IP address blocks: 160.191.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Oct 23 06:44:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68f9ced0-8331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ec:f7:58:3a:65:96:cd:76:dc:fb:ce:60:87: 0d:fc:55:c1:86:24:3f:2b:36:54:db:64:dc:f7:91: 03:95:ac:19:a9:cc:db:6a:9e:db:88:1a:a1:4e:0d: d0:f8:b7:ea:72:df:c6:f1:ca:4f:cf:bf:8a:48:4d: f8:2a:91:f9:30:46:11:80:fe:c9:a7:27:e8:1d:87: bd:2e:62:95:66:ea:cf:1c:93:1c:b3:57:50:7d:c2: c9:af:7c:fd:75:99:4d:d3:e4:d4:f2:4b:7a:71:05: 4b:76:91:55:4b:30:2b:59:9b:cc:5c:25:30:34:d6: a5:33:8a:e7:78:78:84:2b:56:72:05:f1:db:e5:95: ec:1d:39:78:6b:5c:e7:2f:5c:2c:04:6f:6b:26:73: 13:2c:26:09:1c:06:1f:77:c6:3c:c5:f7:eb:c5:82: e4:45:53:51:fd:91:6c:7b:4a:00:d5:e2:7b:2d:c8: 03:ae:59:fc:9b:e4:8a:13:01:24:b5:96:42:e8:a4: 86:71:9e:94:64:18:19:ef:9f:d1:a5:da:1a:18:8f: a8:8d:74:5f:9b:e7:7f:f8:d8:2a:5d:e7:e1:43:4b: be:d4:15:ab:c4:57:60:ce:8b:1d:fb:3c:4f:c3:70: 86:b7:ce:1e:e4:b6:3c:9f:f4:97:e2:de:69:8e:31: e9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:53:75:05:CA:CD:23:1C:39:7C:EA:95:D8:03:A0:4D:7D:33:CB:FB X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/BB0AAA1CAFDB11F0B4868557C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.161.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:34:84:e9:5e:3d:40:fa:29:b0:d4:9d:1b:bf:eb:2e:c8:86: 04:bc:70:84:90:cc:c3:6a:11:df:bb:db:a9:23:51:9c:35:fd: 64:c3:f9:23:fd:23:77:f5:f2:83:06:e1:44:39:48:ca:04:5b: b7:87:9b:8e:9e:a4:3c:f3:5d:6c:7f:fa:e9:ca:0e:0e:30:bc: 1b:68:38:c0:a6:40:fc:dc:a3:56:85:d4:e3:98:cc:be:b7:b6: 7c:fc:6c:0c:6b:c0:7f:c2:12:8d:c4:8c:eb:34:01:1d:b1:3a: bc:02:d2:5f:6d:76:69:ae:5a:b4:04:bc:1b:c2:61:0f:2b:97: 04:15:5c:b5:16:7d:35:41:01:0b:30:97:78:78:91:79:e1:90: af:51:e0:83:45:1a:b7:91:66:25:a4:0d:06:78:6b:21:2e:3f: a7:be:3f:3f:7e:97:ea:f7:da:66:b4:2b:3a:b6:98:f8:4f:29: de:a1:e1:f3:db:85:42:66:17:b3:69:94:f5:ce:d2:50:1f:65: 9b:10:2d:d6:47:d2:fb:c2:c1:bb:1e:d0:71:c9:38:90:37:d9: 41:bd:52:b0:50:bd:6b:12:ea:ac:28:7a:5a:95:ad:ba:65:59: 05:68:28:bb:38:63:90:65:ad:54:26:fc:3a:f2:68:f4:e7:47: f4:48:c0:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUxMDIzMDY0NDMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5Y2VkMC04MzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApez3WDplls123PvOYIcN/FXBhiQ/KzZU22Tc95EDlawZqczbap7biBqhTg3Q +Lfqct/G8cpPz7+KSE34KpH5MEYRgP7JpyfoHYe9LmKVZurPHJMcs1dQfcLJr3z9 dZlN0+TU8kt6cQVLdpFVSzArWZvMXCUwNNalM4rneHiEK1ZyBfHb5ZXsHTl4a1zn L1wsBG9rJnMTLCYJHAYfd8Y8xffrxYLkRVNR/ZFse0oA1eJ7LcgDrln8m+SKEwEk tZZC6KSGcZ6UZBgZ75/RpdoaGI+ojXRfm+d/+NgqXefhQ0u+1BWrxFdgzosd+zxP w3CGt84e5LY8n/SX4t5pjjHpvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKxTdQXK zSMcOXzqldgDoE19M8v7MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQkIwQUFBMUNB RkRCMTFGMEI0ODY4NTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgv6EwDQYJKoZIhvcNAQELBQADggEBAG80hOlePUD6KbDU nRu/6y7IhgS8cISQzMNqEd+726kjUZw1/WTD+SP9I3f18oMG4UQ5SMoEW7eHm46e pDzzXWx/+unKDg4wvBtoOMCmQPzco1aF1OOYzL63tnz8bAxrwH/CEo3EjOs0AR2x OrwC0l9tdmmuWrQEvBvCYQ8rlwQVXLUWfTVBAQswl3h4kXnhkK9R4INFGreRZiWk DQZ4ayEuP6e+Pz9+l+r32ma0Kzq2mPhPKd6h4fPbhUJmF7NplPXO0lAfZZsQLdZH 0vvCwbse0HHJOJA32UG9UrBQvWsS6qwoelqVrbplWQVoKLs4Y5BlrVQm/DryaPTn R/RIwLY= -----END CERTIFICATE-----Generated at Wed Nov 5 09:47:45 2025 by rpki-client