$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/60EB8700B30E11F0B1F91F33C4F9AE02.roa File: 60EB8700B30E11F0B1F91F33C4F9AE02.roa (raw, json) Hash identifier: oa8YoqBgu2XD8u013Oqu4jH2bIZq2qI0pfqpKkAncRw= Subject key identifier: 7E:BE:0B:44:BD:E1:3B:50:C1:26:44:FA:28:C8:C8:F1:02:28:F0:A5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4F12 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/60EB8700B30E11F0B1F91F33C4F9AE02.roa Signing time: Tue 04 Nov 2025 10:25:34 +0000 ROA not before: Tue 04 Nov 2025 10:25:34 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153410 IP address blocks: 163.227.158.0/23 maxlen: 24 2001:df4:97c0::/48 maxlen: 48 2001:df5:7340::/48 maxlen: 48 2001:df5:c2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20242 (0x4f12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Nov 4 10:25:34 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6909d49d-e9c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:15:05:35:bb:92:b6:8f:5b:c7:da:df:7e:89: 95:fb:11:a3:11:23:dd:cf:e6:35:f8:63:94:88:eb: 73:75:7a:7d:1a:63:95:65:66:55:03:91:0a:28:cd: 06:72:15:5d:b5:79:1f:f0:03:26:3d:ba:6c:55:62: c2:81:ca:5c:0c:09:bc:00:a5:b0:b3:b3:a9:cf:e0: 64:55:ae:bf:8b:67:35:cf:02:c8:4c:31:69:28:b2: 3c:8a:48:81:ff:05:1c:1f:e3:13:c1:23:cf:25:74: 11:52:a6:46:a4:36:40:37:fd:0c:bf:ba:7f:ba:21: 6c:70:09:37:cd:da:7b:d1:12:82:d9:f6:d3:07:d3: d7:26:4e:ec:1e:18:a9:c1:e4:4c:83:c1:51:09:a7: 83:fd:f0:c3:72:7c:a7:b5:59:1a:2d:c9:f2:46:51: 4e:c0:aa:c9:54:2e:3b:f2:d8:6e:c2:74:c2:24:4c: a2:56:28:fe:50:5e:ce:20:14:96:a2:63:2c:f1:44: 26:a9:92:35:b0:df:72:75:71:bd:da:1e:58:78:46: 55:19:d3:77:b1:8e:b2:d6:56:96:4e:c5:37:62:ad: 5f:8d:a0:d8:91:37:ea:0b:78:df:b2:ed:c0:b2:2f: d5:2b:7c:af:1c:51:26:46:ca:66:f9:55:72:50:1c: 43:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:BE:0B:44:BD:E1:3B:50:C1:26:44:FA:28:C8:C8:F1:02:28:F0:A5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/60EB8700B30E11F0B1F91F33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.158.0/23 IPv6: 2001:df4:97c0::/48 2001:df5:7340::/48 2001:df5:c2c0::/48 Signature Algorithm: sha256WithRSAEncryption b7:92:5f:e1:81:5f:e6:78:76:cf:69:58:08:21:b4:3b:76:77: 71:cd:42:5e:8d:ec:4a:3d:38:fe:ed:7b:5e:53:eb:b2:9c:4c: bd:d6:ab:57:90:a1:b0:7c:b7:21:ec:dd:b7:25:84:77:2c:8c: ca:a1:10:3b:d9:9e:d6:29:33:53:d8:ad:a6:bc:96:38:98:04: 5d:a3:c0:d0:2c:f0:a1:7c:30:8a:02:3f:c1:be:9f:d6:62:6a: 8c:e7:a9:38:e6:b7:f8:ce:50:ba:19:ab:ab:29:bc:1a:96:3f: 6b:b6:a1:d0:1d:8c:5e:75:70:c8:cd:0d:a5:f8:e2:13:85:d1: ae:9b:2e:d3:65:e7:27:10:4d:6c:47:b2:d9:0f:63:90:25:dc: df:c9:c2:30:29:10:c2:30:49:a0:d8:9f:ad:b7:61:e7:08:cf: 92:62:40:56:6d:86:5b:2e:70:52:3b:b0:85:77:8a:04:d9:12: 9c:ed:3c:43:39:1a:d6:0e:79:73:d6:99:7d:10:f8:a2:5a:f1: 56:d2:47:5b:17:97:ce:ba:7b:c0:37:6c:a1:51:a5:91:e5:58: 3e:fe:33:4e:1f:db:2c:4e:d3:16:2b:a6:7d:f3:81:d3:2b:1a: 1d:bb:4b:20:9f:16:0e:6d:06:23:07:48:a0:8b:71:52:3b:6f: d2:08:af:f7 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICTxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUxMTA0MTAyNTM0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA5ZDQ5ZC1lOWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxUFNbuSto9bx9rffomV+xGjESPdz+Y1+GOUiOtzdXp9GmOVZWZVA5EKKM0G chVdtXkf8AMmPbpsVWLCgcpcDAm8AKWws7Opz+BkVa6/i2c1zwLITDFpKLI8ikiB /wUcH+MTwSPPJXQRUqZGpDZAN/0Mv7p/uiFscAk3zdp70RKC2fbTB9PXJk7sHhip weRMg8FRCaeD/fDDcnyntVkaLcnyRlFOwKrJVC478thuwnTCJEyiVij+UF7OIBSW omMs8UQmqZI1sN9ydXG92h5YeEZVGdN3sY6y1laWTsU3Yq1fjaDYkTfqC3jfsu3A si/VK3yvHFEmRspm+VVyUBxDqwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFH6+C0S9 4TtQwSZE+ijIyPECKPClMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNjBFQjg3MDBC MzBFMTFGMEIxRjkxRjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMAwEAgABMAYDBAGj454wIQQCAAIwGwMHACABDfSXwAMHACABDfVzQAMHACAB DfXCwDANBgkqhkiG9w0BAQsFAAOCAQEAt5Jf4YFf5nh2z2lYCCG0O3Z3cc1CXo3s Sj04/u17XlPrspxMvdarV5ChsHy3IezdtyWEdyyMyqEQO9me1ikzU9itpryWOJgE XaPA0CzwoXwwigI/wb6f1mJqjOepOOa3+M5Quhmrqym8GpY/a7ah0B2MXnVwyM0N pfjiE4XRrpsu02XnJxBNbEey2Q9jkCXc38nCMCkQwjBJoNifrbdh5wjPkmJAVm2G Wy5wUjuwhXeKBNkSnO08Qzka1g55c9aZfRD4olrxVtJHWxeXzrp7wDdsoVGlkeVY Pv4zTh/bLE7TFiumffOB0ysaHbtLIJ8WDm0GIwdIoItxUjtv0giv9w== -----END CERTIFICATE-----Generated at Tue Nov 4 18:58:08 2025 by rpki-client