$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa File: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (raw, json) Hash identifier: k5X4by3Br8W/PYfkmb4iRMPeho37AmOnY5X1wBHf0bs= Subject key identifier: 61:3B:87:53:32:86:3B:07:B6:AA:F1:16:5E:BE:D7:EA:2C:C4:1B:E9 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0565 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa Signing time: Sat 19 Jul 2025 00:05:53 +0000 ROA not before: Sat 19 Jul 2025 00:05:53 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142300 IP address blocks: 103.167.162.0/24 maxlen: 24 103.167.163.0/24 maxlen: 24 2001:df6:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1381 (0x565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Jul 19 00:05:53 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687ae160-c1ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e4:63:c0:a4:9f:e1:60:7d:42:b1:bb:0f:75: d0:9b:c6:7d:75:a2:4a:fb:3b:9d:31:38:09:8f:97: d3:73:19:c5:79:42:c7:ae:fc:7e:a3:40:d1:83:ca: 73:ae:f8:72:bd:bc:15:45:de:35:f8:3b:9c:89:a6: c8:7e:b5:87:ed:ff:b6:5d:e9:b6:34:c8:6d:a6:32: a8:74:bd:ca:f5:0c:c9:2e:af:8f:45:e3:40:c8:7a: d3:27:7b:73:55:1f:95:a2:36:38:e3:5c:bc:5e:33: 6e:1d:5e:3c:77:f9:5a:77:6a:bb:bd:29:84:2b:3f: 04:31:34:cc:bf:9f:a0:d4:8e:da:6d:26:b6:a1:84: 83:82:f1:8a:95:ec:79:52:c4:74:76:5e:12:40:f1: bc:be:f4:0f:56:6c:76:2a:de:10:ae:77:62:66:88: df:b2:9a:e3:71:3b:ce:93:7e:fc:eb:51:e4:38:db: b0:80:45:b4:90:be:fb:05:6b:d7:f1:87:55:6a:bf: 30:c4:9c:ec:4b:97:d5:6d:08:5f:12:e2:a4:a1:5b: 7b:c6:23:56:50:af:66:93:78:94:4e:19:d7:36:2d: f5:1c:3e:34:74:fc:ad:2e:4f:22:3d:55:04:4e:87: be:01:1e:44:f3:69:15:2e:ff:5a:90:28:71:2c:8a: ab:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:3B:87:53:32:86:3B:07:B6:AA:F1:16:5E:BE:D7:EA:2C:C4:1B:E9 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.162.0/23 IPv6: 2001:df6:b980::/48 Signature Algorithm: sha256WithRSAEncryption 4f:bc:a0:80:72:c0:25:a7:a9:b3:91:aa:62:e5:27:4e:33:ed: bf:9e:40:a6:b7:0d:49:e9:26:19:3e:cb:c9:be:af:9e:05:f2: f3:d8:10:99:97:28:de:44:a3:15:7a:1c:fa:05:ea:4e:26:96: be:6f:bb:37:d2:40:94:28:dc:7f:5d:34:f2:36:59:b4:93:09: 17:a7:c6:10:e2:b0:59:90:9c:a5:a4:3f:f5:de:6d:9f:b9:43: ee:3b:f2:f3:17:03:b8:d0:95:1e:52:84:37:28:ac:f9:3d:40: 2b:54:48:33:d1:85:37:7a:d2:2f:25:20:28:1c:2e:ff:09:f2: 91:2e:93:69:eb:29:66:30:84:59:5b:f9:be:8f:71:1b:97:a4: df:af:38:2d:7d:5e:2f:71:5d:bb:6c:4e:da:40:25:c2:3c:63: 3b:2a:e5:40:17:43:18:b9:b6:31:91:1c:0b:39:8f:de:c4:3f: aa:de:e7:d8:33:a5:6e:55:8a:d8:5e:1d:62:91:bb:c2:35:aa: 84:f9:83:5b:1f:cc:d4:b6:0e:5e:9e:dc:c7:ce:fa:79:23:1f: 1b:8b:9a:48:73:88:98:17:f6:9c:dd:35:77:e5:f1:73:2a:d1: de:cf:3a:d3:83:6b:8b:cb:b4:42:13:3c:e7:14:c2:2a:60:fa: 3d:0e:26:cf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwNzE5MDAwNTUzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdhZTE2MC1jMWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzORjwKSf4WB9QrG7D3XQm8Z9daJK+zudMTgJj5fTcxnFeULHrvx+o0DRg8pz rvhyvbwVRd41+DuciabIfrWH7f+2Xem2NMhtpjKodL3K9QzJLq+PReNAyHrTJ3tz VR+VojY441y8XjNuHV48d/lad2q7vSmEKz8EMTTMv5+g1I7abSa2oYSDgvGKlex5 UsR0dl4SQPG8vvQPVmx2Kt4QrndiZojfsprjcTvOk37861HkONuwgEW0kL77BWvX 8YdVar8wxJzsS5fVbQhfEuKkoVt7xiNWUK9mk3iUThnXNi31HD40dPytLk8iPVUE Toe+AR5E82kVLv9akChxLIqrYwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGE7h1My hjsHtqrxFl6+1+osxBvpMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE3QTkvNUY4OUY2RUNGQjMxMTFFQjhGQkZBNTU5QzRGOUFFMDIvRTE5QjZBRDZE NUJFMTFFQ0E4QkU0NjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnp6IwDwQCAAIwCQMHACABDfa5gDANBgkqhkiG9w0BAQsF AAOCAQEAT7yggHLAJaeps5GqYuUnTjPtv55AprcNSekmGT7Lyb6vngXy89gQmZco 3kSjFXoc+gXqTiaWvm+7N9JAlCjcf1008jZZtJMJF6fGEOKwWZCcpaQ/9d5tn7lD 7jvy8xcDuNCVHlKENyis+T1AK1RIM9GFN3rSLyUgKBwu/wnykS6TaespZjCEWVv5 vo9xG5ek3684LX1eL3Fdu2xO2kAlwjxjOyrlQBdDGLm2MZEcCzmP3sQ/qt7n2DOl blWK2F4dYpG7wjWqhPmDWx/M1LYOXp7cx876eSMfG4uaSHOImBf2nN01d+XxcyrR 3s8604Nri8u0QhM85xTCKmD6PQ4mzw== -----END CERTIFICATE-----Generated at Sun Jul 20 12:34:14 2025 by rpki-client