$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa File: B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa (raw, json) Hash identifier: 7PT1hzEu8yFfZFQXURAd4+p59Mps1ow7oAQ1a2yeyaI= Subject key identifier: 2F:7B:B7:FF:EB:E0:46:81:9C:A6:F3:89:13:A4:F8:D3:1A:71:58:C7 Certificate issuer: /CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Certificate serial: D5 Authority key identifier: 04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa Signing time: Sat 19 Jul 2025 06:11:45 +0000 ROA not before: Sat 19 Jul 2025 06:11:45 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136030 IP address blocks: 160.22.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Validity Not Before: Jul 19 06:11:45 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687b3720-e11b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:94:8b:08:44:7e:3f:15:7c:25:9e:99:da:b3: e1:86:9b:8c:70:cb:66:9e:58:fc:96:f0:9e:39:41: b9:b1:94:83:49:47:be:25:43:0e:d2:00:89:77:19: 25:8d:07:b8:d8:4c:41:fb:55:1b:85:7c:62:92:f1: 5e:f5:5d:c6:23:dc:2f:19:f8:50:d6:7b:0a:8c:4c: 0f:57:23:de:d7:46:2f:6b:d3:79:24:f4:88:f7:7b: 1f:04:3e:47:d7:43:59:b3:87:3e:ae:ef:8d:d9:3c: 94:98:3c:83:67:fc:9d:9f:b0:89:17:e5:71:19:b2: 4e:9d:48:65:1a:f5:ca:c7:be:85:99:98:12:97:e2: 62:26:06:cb:09:79:3b:cd:a2:d2:db:5e:ed:03:57: ad:65:8d:42:26:ac:08:db:ac:d8:9f:6f:c7:5c:d0: b4:a1:cf:e5:61:eb:2a:80:fd:b7:4f:94:b7:7c:f4: e7:24:b1:b4:3a:4c:da:b8:0d:b6:9d:90:18:8a:7a: 9a:43:45:c2:09:e6:db:a0:e1:a2:96:21:4a:8c:44: e3:9b:58:6b:66:d3:09:09:61:2b:61:e9:b1:40:fd: d8:45:34:cd:3c:a8:a7:a8:50:16:3e:ac:5e:25:1c: d0:5c:29:f1:56:aa:11:10:db:cd:28:07:e9:1a:7d: 9b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:7B:B7:FF:EB:E0:46:81:9C:A6:F3:89:13:A4:F8:D3:1A:71:58:C7 X509v3 Authority Key Identifier: keyid:04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.140.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:21:33:10:41:d0:58:f5:13:c9:75:d9:f3:e6:7d:c8:39:c0: b6:5f:01:93:74:f6:26:e6:c6:52:4e:53:f9:f3:c3:99:bd:67: 32:fe:9f:ef:11:01:6e:9d:c3:58:85:32:b4:38:f9:a3:ba:64: 2a:44:41:8f:2a:66:3e:2e:67:c2:ac:75:58:2a:0a:6f:b0:d3: 1f:c4:79:75:56:2a:24:a0:d8:9c:76:db:f8:71:7e:29:3f:4b: 64:28:51:a8:ee:d4:80:e4:db:ed:a3:39:f9:e0:55:25:ab:fb: 35:8c:68:93:6c:a8:24:ab:3e:05:9d:40:87:21:3e:47:18:3d: ad:3c:82:8d:9c:e6:22:0e:c2:3f:d8:50:ff:70:d2:ab:05:38: fe:2d:50:bd:07:e5:55:71:22:2a:8e:bc:e9:60:c0:5c:98:b4: 1b:dc:11:b8:bd:d0:ad:89:21:ec:4b:c9:fd:06:30:ed:f6:e9: 35:d1:4c:b6:1e:e5:5e:40:ce:98:4e:5d:ba:96:80:6b:48:54: 25:7f:4a:9a:bd:31:44:3f:e5:34:3d:0c:21:e2:32:e0:22:21: d3:b2:82:ae:6a:45:74:7c:e4:88:7b:a4:a6:77:aa:50:c9:f8: f8:f7:3b:7b:79:92:f7:bd:5d:a8:49:18:f6:60:40:4e:b7:e2: 0d:1d:69:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKDA0NzRGNDA2QTE3OEQyMkM1NEQ1RUY3MjRDNkIyQzJD OUEzQjZCOTgwHhcNMjUwNzE5MDYxMTQ1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdiMzcyMC1lMTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopSLCER+PxV8JZ6Z2rPhhpuMcMtmnlj8lvCeOUG5sZSDSUe+JUMO0gCJdxkl jQe42ExB+1UbhXxikvFe9V3GI9wvGfhQ1nsKjEwPVyPe10Yva9N5JPSI93sfBD5H 10NZs4c+ru+N2TyUmDyDZ/ydn7CJF+VxGbJOnUhlGvXKx76FmZgSl+JiJgbLCXk7 zaLS217tA1etZY1CJqwI26zYn2/HXNC0oc/lYesqgP23T5S3fPTnJLG0OkzauA22 nZAYinqaQ0XCCebboOGiliFKjETjm1hrZtMJCWErYemxQP3YRTTNPKinqFAWPqxe JRzQXCnxVqoRENvNKAfpGn2bFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC97t//r 4EaBnKbziROk+NMacVjHMB8GA1UdIwQYMBaAFAR09AaheNIsVNXvckxrLCyaO2uY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FNTM2MDhGMDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBpeFUxZTl5VEdzc0xKbzdh NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JIVDBCcUY0MGl4VTFlOXlUR3NzTEpvN2E1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYwQ0YvRTUzNjA4RjAyQUZDMTFFRkEwMjQzQzRBQzRGOUFFMDIvQjU2RjQwREVF OURCMTFFRkJERDhCRDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFowwDQYJKoZIhvcNAQELBQADggEBAA4hMxBB0Fj1E8l1 2fPmfcg5wLZfAZN09ibmxlJOU/nzw5m9ZzL+n+8RAW6dw1iFMrQ4+aO6ZCpEQY8q Zj4uZ8KsdVgqCm+w0x/EeXVWKiSg2Jx22/hxfik/S2QoUaju1IDk2+2jOfngVSWr +zWMaJNsqCSrPgWdQIchPkcYPa08go2c5iIOwj/YUP9w0qsFOP4tUL0H5VVxIiqO vOlgwFyYtBvcEbi90K2JIexLyf0GMO326TXRTLYe5V5AzphOXbqWgGtIVCV/Spq9 MUQ/5TQ9DCHiMuAiIdOygq5qRXR85Ih7pKZ3qlDJ+Pj3O3t5kve9XahJGPZgQE63 4g0dab4= -----END CERTIFICATE-----Generated at Sat Aug 9 14:19:16 2025 by rpki-client