$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/FA18CEA2F07A11EBBEBB415AC4F9AE02.roa File: FA18CEA2F07A11EBBEBB415AC4F9AE02.roa (raw, json) Hash identifier: 0MKRGhD7VGcMSXw/ROEFU8wnZ9ENIjqkmhL8/Vmz8tg= Subject key identifier: A5:FA:D1:0C:80:A5:A8:17:89:C0:4E:0F:D2:38:E0:FE:96:6C:2F:12 Certificate issuer: /CN=A91E1C16/serialNumber=70294605B017CB796CAD8842F5EFBA3F448707F5 Certificate serial: 060C Authority key identifier: 70:29:46:05:B0:17:CB:79:6C:AD:88:42:F5:EF:BA:3F:44:87:07:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/FA18CEA2F07A11EBBEBB415AC4F9AE02.roa Signing time: Thu 10 Jul 2025 23:35:00 +0000 ROA not before: Thu 10 Jul 2025 23:35:00 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142290 IP address blocks: 103.167.134.0/23 maxlen: 24 2001:df6:b780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.crl rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:20:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1548 (0x60c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1C16, serialNumber=70294605B017CB796CAD8842F5EFBA3F448707F5 Validity Not Before: Jul 10 23:35:00 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68704e23-e7c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:25:60:77:ad:1a:92:83:51:ed:3f:95:a2:92: fb:46:6c:de:ca:b2:c4:f4:41:e4:5b:91:c1:69:86: eb:66:35:d4:7b:e6:d0:2e:ff:9c:47:a7:19:3e:a5: 7c:b4:d7:b5:84:fc:7a:27:8f:1c:dc:e9:4a:4a:94: c2:5f:34:9e:29:a0:eb:1b:28:ad:fd:a5:91:a8:e6: 3d:92:46:b2:50:7f:20:46:51:bd:86:8e:d9:ef:d4: aa:7d:57:b7:ac:bd:43:b4:b5:1c:ab:16:fb:43:27: 04:7f:aa:7e:8a:aa:de:ef:33:eb:a1:a7:2a:6b:7e: 7c:b0:5b:db:db:6b:e6:5f:9f:51:55:88:c3:ea:a5: e9:92:a7:ef:03:50:3a:1d:5c:28:ba:53:6e:96:04: 4e:59:45:8e:e7:18:80:3d:96:d2:e8:0c:d7:76:1e: ed:ce:f8:90:cf:80:a4:67:d2:6b:b8:2d:a8:41:39: 4d:43:8b:f0:a6:e6:0f:8a:aa:86:83:4b:7e:38:89: cf:91:e0:d5:88:77:73:8d:ac:d2:cf:c0:64:21:1c: 42:09:ce:1a:bf:d3:4c:27:f8:72:f4:f7:17:1d:e2: 4c:98:09:a4:4b:31:43:51:41:05:c8:84:e7:a6:80: 2e:16:20:e8:da:e4:4a:8b:35:80:89:41:f1:54:c1: 45:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:FA:D1:0C:80:A5:A8:17:89:C0:4E:0F:D2:38:E0:FE:96:6C:2F:12 X509v3 Authority Key Identifier: keyid:70:29:46:05:B0:17:CB:79:6C:AD:88:42:F5:EF:BA:3F:44:87:07:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/cClGBbAXy3lsrYhC9e-6P0SHB_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cClGBbAXy3lsrYhC9e-6P0SHB_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1C16/8F0C6B00BE6111EBAEF35A61C4F9AE02/FA18CEA2F07A11EBBEBB415AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.134.0/23 IPv6: 2001:df6:b780::/48 Signature Algorithm: sha256WithRSAEncryption 7b:2d:20:c9:e0:17:37:33:8b:78:2a:c1:05:26:c5:5a:26:8f: cc:ae:09:1a:84:46:91:48:70:f3:ea:b2:96:83:d4:fe:0b:2c: c6:07:73:82:58:bd:a4:fc:bc:22:d7:30:b1:5d:fc:61:5d:8d: 90:17:b2:ae:de:15:11:a3:be:76:34:59:79:f1:23:f1:44:a8: af:d7:f7:5d:25:b5:dd:74:b2:ef:c5:f4:5c:35:b7:db:42:9b: b4:8d:37:46:6b:3d:32:43:e9:16:71:85:9e:95:16:6a:a7:3a: c0:a8:15:da:03:44:71:e4:fa:d3:0f:ad:6f:73:42:05:18:ca: a1:49:38:06:2c:48:d6:c3:e2:3b:c4:c0:dc:8c:a1:26:d6:e1: 76:78:7b:7d:d2:5b:00:d9:71:62:14:02:8a:88:eb:3e:55:6c: 5f:e4:a7:a8:0c:d1:f3:8e:d4:f9:50:c8:54:f6:29:27:6c:15: 8e:15:cf:f3:b4:80:54:c2:02:ef:6d:80:8d:dc:63:a8:cd:04: f0:22:4f:1a:67:6d:63:1b:aa:e1:72:43:9e:d3:68:e8:e3:85: c3:ec:a7:79:71:c1:08:2c:2e:b7:10:d1:c6:6b:36:1b:e4:39: 05:e9:de:dd:c2:7c:cd:69:8c:37:b7:14:ee:7c:dc:37:cb:27: c1:56:81:d9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFDMTYxMTAvBgNVBAUTKDcwMjk0NjA1QjAxN0NCNzk2Q0FEODg0MkY1RUZCQTNG NDQ4NzA3RjUwHhcNMjUwNzEwMjMzNTAwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwNGUyMy1lN2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8yVgd60akoNR7T+VopL7RmzeyrLE9EHkW5HBaYbrZjXUe+bQLv+cR6cZPqV8 tNe1hPx6J48c3OlKSpTCXzSeKaDrGyit/aWRqOY9kkayUH8gRlG9ho7Z79SqfVe3 rL1DtLUcqxb7QycEf6p+iqre7zProacqa358sFvb22vmX59RVYjD6qXpkqfvA1A6 HVwoulNulgROWUWO5xiAPZbS6AzXdh7tzviQz4CkZ9JruC2oQTlNQ4vwpuYPiqqG g0t+OInPkeDViHdzjazSz8BkIRxCCc4av9NMJ/hy9PcXHeJMmAmkSzFDUUEFyITn poAuFiDo2uRKizWAiUHxVMFF1wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKX60QyA pagXicBOD9I44P6WbC8SMB8GA1UdIwQYMBaAFHApRgWwF8t5bK2IQvXvuj9Ehwf1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUMxNi84RjBDNkIwMEJF NjExMUVCQUVGMzVBNjFDNEY5QUUwMi9jQ2xHQmJBWHkzbHNyWWhDOWUtNlAwU0hC X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NDbEdCYkFYeTNsc3JZaEM5ZS02UDBTSEJfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFDMTYvOEYwQzZCMDBCRTYxMTFFQkFFRjM1QTYxQzRGOUFFMDIvRkExOENFQTJG MDdBMTFFQkJFQkI0MTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnp4YwDwQCAAIwCQMHACABDfa3gDANBgkqhkiG9w0BAQsF AAOCAQEAey0gyeAXNzOLeCrBBSbFWiaPzK4JGoRGkUhw8+qyloPU/gssxgdzgli9 pPy8ItcwsV38YV2NkBeyrt4VEaO+djRZefEj8USor9f3XSW13XSy78X0XDW320Kb tI03Rms9MkPpFnGFnpUWaqc6wKgV2gNEceT60w+tb3NCBRjKoUk4BixI1sPiO8TA 3IyhJtbhdnh7fdJbANlxYhQCiojrPlVsX+SnqAzR847U+VDIVPYpJ2wVjhXP87SA VMIC722AjdxjqM0E8CJPGmdtYxuq4XJDntNo6OOFw+yneXHBCCwutxDRxms2G+Q5 Bene3cJ8zWmMN7cU7nzcN8snwVaB2Q== -----END CERTIFICATE-----Generated at Wed Jul 23 02:29:42 2025 by rpki-client