$ rpki-client -vvf rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/4DA7A7766C6611F0883DC646C4F9AE02.roa File: 4DA7A7766C6611F0883DC646C4F9AE02.roa (raw, json) Hash identifier: Q+FmthFDMCnpB7Yj2dZxhxoV/SktKs7HXODFGAlvqdE= Subject key identifier: 10:6B:C7:63:E4:5E:D9:CA:6C:B6:54:C8:DA:FB:81:C3:37:FE:7C:DF Certificate issuer: /CN=A91D488C/serialNumber=100B25354664681DAAB905CEFF4A4DA749C4EB8A Certificate serial: 0B Authority key identifier: 10:0B:25:35:46:64:68:1D:AA:B9:05:CE:FF:4A:4D:A7:49:C4:EB:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EAslNUZkaB2quQXO_0pNp0nE64o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/4DA7A7766C6611F0883DC646C4F9AE02.roa Signing time: Tue 29 Jul 2025 10:25:09 +0000 ROA not before: Tue 29 Jul 2025 10:25:09 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55501 IP address blocks: 160.250.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/EAslNUZkaB2quQXO_0pNp0nE64o.crl rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/EAslNUZkaB2quQXO_0pNp0nE64o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EAslNUZkaB2quQXO_0pNp0nE64o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D488C, serialNumber=100B25354664681DAAB905CEFF4A4DA749C4EB8A Validity Not Before: Jul 29 10:25:09 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6888a185-fe98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a3:e0:8a:8e:d0:bc:ac:fe:71:f9:09:fc:82: ec:cb:bb:fe:80:41:d9:7f:44:90:f3:40:82:9d:6d: 79:91:67:a5:6c:76:86:fc:90:7c:c2:b6:85:93:65: 9a:f0:d8:06:7b:96:74:78:bd:a9:dc:6c:3e:b3:40: 5d:87:06:da:bb:13:b7:33:40:a6:24:60:97:91:9e: b4:f1:f7:68:00:56:4c:79:6b:37:21:3a:2c:cd:de: d0:ff:0f:d4:4b:7c:a6:f8:ba:d0:ea:eb:b3:ce:ad: 26:8d:49:50:31:b7:e8:b4:cd:e0:ad:2f:e1:89:ae: 13:22:2a:11:0d:59:ce:40:ad:51:ee:71:dd:a1:08: ff:5b:90:54:d5:5a:9c:d9:8e:73:46:98:c4:9c:a0: af:47:10:09:0d:27:0f:ee:9b:27:bf:01:23:69:21: a7:d2:99:bd:33:7c:bc:2a:5e:84:43:3f:74:69:88: 47:b1:ca:f6:58:8d:cc:a6:4a:6c:68:ce:8f:33:37: 3d:f5:97:29:11:b0:98:29:fb:da:65:7e:4f:37:6f: e9:c2:f8:06:d5:3b:55:40:0e:9b:76:9d:b8:ec:b1: 7d:bb:66:2c:47:a6:ab:40:38:92:a1:8a:98:86:71: c4:e3:40:b1:5e:2d:ba:8f:e8:95:e9:79:ab:0a:74: ad:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6B:C7:63:E4:5E:D9:CA:6C:B6:54:C8:DA:FB:81:C3:37:FE:7C:DF X509v3 Authority Key Identifier: keyid:10:0B:25:35:46:64:68:1D:AA:B9:05:CE:FF:4A:4D:A7:49:C4:EB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/EAslNUZkaB2quQXO_0pNp0nE64o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EAslNUZkaB2quQXO_0pNp0nE64o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D488C/46B005046B8911F095F1102BC4F9AE02/4DA7A7766C6611F0883DC646C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.96.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:b3:5a:0f:8f:56:19:78:df:12:ae:e5:98:1c:d6:59:01:0d: ed:28:6e:d2:d3:20:2f:23:49:75:8a:12:08:5a:11:c4:6e:6c: a6:c7:1a:26:8e:2c:40:49:0e:ba:88:fe:d4:e1:d1:3c:dd:d3: 6f:c5:3d:7a:f1:9c:5a:ec:3f:9b:82:be:13:85:34:86:0e:2e: 89:07:dd:17:cd:7c:af:73:a5:cb:b5:0a:03:48:1c:18:2d:17: 72:be:a2:ad:ac:55:7f:24:a0:3a:80:8c:0d:a9:56:8c:45:29: 68:e8:df:5a:75:92:b9:dc:64:d2:50:63:23:d7:fe:1c:51:c5: 0d:5f:62:d0:08:ad:58:07:ed:86:1b:31:27:6c:d3:09:8f:6e: eb:1e:bb:5a:53:af:e8:a3:dd:d5:da:78:e2:a8:89:ba:67:8e: e1:57:d0:5c:ca:2e:11:a0:18:d1:75:e4:06:d4:1c:5f:49:05: f4:d8:2f:21:9a:d6:ef:43:80:56:f1:70:24:98:4c:90:67:c4: 79:20:7f:68:66:d7:0a:b4:27:f5:bc:1c:c3:0d:0d:3d:f7:d9: 74:a7:cd:33:fe:46:0d:79:a3:0e:da:51:38:4c:6c:17:f5:58: e3:17:cc:27:14:09:3d:5a:97:06:51:74:f0:7a:6e:71:f1:f5: b6:ef:c6:c0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDg4QzExMC8GA1UEBRMoMTAwQjI1MzU0NjY0NjgxREFBQjkwNUNFRkY0QTREQTc0 OUM0RUI4QTAeFw0yNTA3MjkxMDI1MDlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ODhhMTg1LWZlOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2o+CKjtC8rP5x+Qn8guzLu/6AQdl/RJDzQIKdbXmRZ6Vsdob8kHzCtoWTZZrw 2AZ7lnR4vancbD6zQF2HBtq7E7czQKYkYJeRnrTx92gAVkx5azchOizN3tD/D9RL fKb4utDq67POrSaNSVAxt+i0zeCtL+GJrhMiKhENWc5ArVHucd2hCP9bkFTVWpzZ jnNGmMScoK9HEAkNJw/umye/ASNpIafSmb0zfLwqXoRDP3RpiEexyvZYjcymSmxo zo8zNz31lykRsJgp+9plfk83b+nC+AbVO1VADpt2nbjssX27ZixHpqtAOJKhipiG ccTjQLFeLbqP6JXpeasKdK03AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEGvHY+Re 2cpstlTI2vuBwzf+fN8wHwYDVR0jBBgwFoAUEAslNUZkaB2quQXO/0pNp0nE64ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0ODhDLzQ2QjAwNTA0NkI4 OTExRjA5NUYxMTAyQkM0RjlBRTAyL0VBc2xOVVprYUIycXVRWE9fMHBOcDBuRTY0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRUFzbE5VWmthQjJxdVFYT18wcE5wMG5FNjRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDg4Qy80NkIwMDUwNDZCODkxMUYwOTVGMTEwMkJDNEY5QUUwMi80REE3QTc3NjZD NjYxMUYwODgzREM2NDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6YDANBgkqhkiG9w0BAQsFAAOCAQEALLNaD49WGXjfEq7l mBzWWQEN7Shu0tMgLyNJdYoSCFoRxG5spscaJo4sQEkOuoj+1OHRPN3Tb8U9evGc Wuw/m4K+E4U0hg4uiQfdF818r3Oly7UKA0gcGC0Xcr6iraxVfySgOoCMDalWjEUp aOjfWnWSudxk0lBjI9f+HFHFDV9i0AitWAfthhsxJ2zTCY9u6x67WlOv6KPd1dp4 4qiJumeO4VfQXMouEaAY0XXkBtQcX0kF9NgvIZrW70OAVvFwJJhMkGfEeSB/aGbX CrQn9bwcww0NPffZdKfNM/5GDXmjDtpROExsF/VY4xfMJxQJPVqXBlF08HpucfH1 tu/GwA== -----END CERTIFICATE-----Generated at Sun Aug 10 13:52:12 2025 by rpki-client