$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1DF09E5E240211F0AEB8FC4DC4F9AE02.roa File: 1DF09E5E240211F0AEB8FC4DC4F9AE02.roa (raw, json) Hash identifier: 8rWqLFne6VtDwoF07pA/KDQ5bALf3y9KoT2VOJIZd/E= Subject key identifier: FB:A9:6B:D4:9A:3F:C1:02:C7:72:6D:94:D0:12:4F:79:8F:24:96:DA Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DE7 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1DF09E5E240211F0AEB8FC4DC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:36 +0000 ROA not before: Thu 28 Aug 2025 14:56:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153650 IP address blocks: 163.223.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19943 (0x4de7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e23-2d5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:29:fd:4a:0b:94:cd:7f:48:3e:ca:18:3e:7e: e5:1c:71:ae:44:98:1a:90:8c:37:98:d4:9a:30:43: 83:48:57:7e:c9:ec:44:2c:a2:35:8e:1f:b5:e7:c8: 9d:9b:2a:c3:50:05:20:55:a7:7a:a6:5f:14:ff:db: 5f:30:57:5a:c1:45:cd:8c:4b:11:53:58:d8:7a:36: ea:7f:b0:f0:19:5a:73:20:bd:94:ed:3f:29:59:20: ad:93:1c:88:f8:cc:70:4d:7d:f0:3a:18:18:4e:66: 2d:7b:03:5d:8e:4b:ec:8d:47:c0:54:3a:e6:be:13: 0f:9c:7f:39:aa:df:e7:02:ae:7f:9f:26:02:87:d3: dc:b0:f3:f0:86:e0:77:b9:75:90:a9:06:09:e1:2e: 7b:03:d7:1a:1f:a9:b1:ff:e6:38:8a:80:c4:a7:d4: 53:f7:f6:48:64:35:8b:7d:3e:b5:e8:8c:cb:9c:65: dd:21:84:af:29:32:58:b1:10:fc:ee:e2:e5:70:d7: 01:ae:8c:57:3b:67:fc:eb:f5:90:a9:96:8e:04:df: 1c:d4:57:35:03:8c:ec:83:0b:c8:41:06:39:74:83: 89:ad:eb:93:ab:93:5e:76:64:b5:2f:0b:ff:8b:88: f7:39:76:5f:ab:f0:f4:4e:a3:8b:85:e7:14:15:e4: 12:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A9:6B:D4:9A:3F:C1:02:C7:72:6D:94:D0:12:4F:79:8F:24:96:DA X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1DF09E5E240211F0AEB8FC4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.10.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:5a:e7:4b:14:ca:e1:da:af:50:7e:0e:b9:8a:62:48:13:c3: 17:b4:d9:9f:d6:11:3b:96:3b:dc:23:ba:f0:ba:ed:4f:87:f8: a9:2c:22:49:5f:ce:70:75:cf:ec:7f:4e:b9:47:fd:97:bc:3e: dc:d9:97:bf:ca:ee:e7:8c:25:7a:95:41:f1:17:07:a8:97:af: 8f:3b:7e:dc:d7:f1:f3:db:56:e1:90:fb:2e:dc:83:36:3f:12: e6:e8:6c:f7:75:cf:e1:3f:8e:b8:a8:01:90:03:cd:a9:68:18: 13:59:1b:22:1e:85:84:91:f9:47:86:ce:d2:c2:35:62:df:7a: c7:8c:a7:81:cb:c4:bd:df:f9:17:a9:e3:e8:3a:d2:99:01:a8: 45:3f:b6:83:98:83:62:88:fb:31:f8:41:2d:0f:89:89:e7:2a: 49:06:19:85:0b:54:d2:b7:28:58:d9:1f:d7:f2:51:47:99:ca: 5c:69:d7:3f:6f:6d:83:2b:a4:ce:0f:cb:1b:97:c2:ed:40:7e: 51:67:cf:04:2c:18:10:d8:f2:8a:24:c2:b7:2b:b3:7d:93:40: d8:65:e1:c1:c3:55:80:72:c1:9d:e8:47:0d:22:b1:88:f1:de: db:77:f8:e7:53:74:f4:c7:cd:a8:bc:72:46:07:1c:fd:d6:71: 35:f1:af:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUyMy0yZDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSn9SguUzX9IPsoYPn7lHHGuRJgakIw3mNSaMEODSFd+yexELKI1jh+158id myrDUAUgVad6pl8U/9tfMFdawUXNjEsRU1jYejbqf7DwGVpzIL2U7T8pWSCtkxyI +MxwTX3wOhgYTmYtewNdjkvsjUfAVDrmvhMPnH85qt/nAq5/nyYCh9PcsPPwhuB3 uXWQqQYJ4S57A9caH6mx/+Y4ioDEp9RT9/ZIZDWLfT616IzLnGXdIYSvKTJYsRD8 7uLlcNcBroxXO2f86/WQqZaOBN8c1Fc1A4zsgwvIQQY5dIOJreuTq5NedmS1Lwv/ i4j3OXZfq/D0TqOLhecUFeQSdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPupa9Sa P8ECx3JtlNAST3mPJJbaMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMURGMDlFNUUy NDAyMTFGMEFFQjhGQzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGj3wowDQYJKoZIhvcNAQELBQADggEBABxa50sUyuHar1B+ DrmKYkgTwxe02Z/WETuWO9wjuvC67U+H+KksIklfznB1z+x/TrlH/Ze8PtzZl7/K 7ueMJXqVQfEXB6iXr487ftzX8fPbVuGQ+y7cgzY/EubobPd1z+E/jrioAZADzalo GBNZGyIehYSR+UeGztLCNWLfeseMp4HLxL3f+Rep4+g60pkBqEU/toOYg2KI+zH4 QS0PiYnnKkkGGYULVNK3KFjZH9fyUUeZylxp1z9vbYMrpM4PyxuXwu1AflFnzwQs GBDY8ookwrcrs32TQNhl4cHDVYBywZ3oRw0isYjx3tt3+OdTdPTHzai8ckYHHP3W cTXxr84= -----END CERTIFICATE-----Generated at Tue Nov 4 19:00:15 2025 by rpki-client