$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/004C70608FEC11EC818F190FC4F9AE02.roa File: 004C70608FEC11EC818F190FC4F9AE02.roa (raw, json) Hash identifier: WLTSrOQWL3px5VuCFm7lCj67k9W+b1h51/OfT7Ww22g= Subject key identifier: 5F:E8:2B:0E:15:8A:3F:36:A6:71:8B:28:B6:67:A5:CB:97:62:38:23 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E32 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/004C70608FEC11EC818F190FC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:41 +0000 ROA not before: Thu 28 Aug 2025 14:57:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56149 IP address blocks: 45.121.160.0/22 maxlen: 24 103.3.252.0/22 maxlen: 24 2001:df5:8a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20018 (0x4e32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e65-8f07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:de:55:06:78:13:d2:3e:c0:4a:b6:d5:23:51: e2:52:3d:c3:87:4c:e6:f1:e5:52:21:f2:f1:33:a6: de:f0:6b:18:a4:d1:9a:8d:f8:ed:2d:5c:89:cb:d2: 17:df:96:42:bd:de:a4:49:d3:7f:8d:f4:46:8d:77: 58:1d:dd:43:09:4c:30:56:c9:a0:c0:aa:0c:de:91: 7a:80:ba:d8:62:ac:f4:3b:83:05:f4:f8:9f:56:9a: 7d:8c:e0:e7:e6:8e:c6:72:ce:d6:5d:ca:08:ab:53: a4:fc:68:7d:88:73:b8:25:1e:d3:25:e1:93:d9:17: 25:59:01:cf:76:ae:46:7e:82:57:c6:ae:6b:84:35: b9:cd:5d:bd:d9:99:6f:00:c4:f2:93:68:0b:da:93: 43:88:9b:7e:0e:d5:df:93:72:98:6a:d6:62:4d:b2: a6:6f:a3:2d:89:4d:eb:5a:9a:20:70:9d:ef:2c:c8: 66:b5:c3:04:a6:47:41:09:a9:04:e1:04:b2:70:02: 77:c7:83:19:1a:7f:06:2f:78:2d:da:a1:8d:ee:39: dc:3d:4b:99:48:8f:7b:b0:e9:71:10:1d:1b:93:21: aa:de:cd:6b:46:f5:f9:ba:65:df:56:5b:b9:d6:c3: b8:15:c2:4d:45:fe:c8:3e:b8:96:5e:75:c0:7d:15: ea:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E8:2B:0E:15:8A:3F:36:A6:71:8B:28:B6:67:A5:CB:97:62:38:23 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/004C70608FEC11EC818F190FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.160.0/22 103.3.252.0/22 IPv6: 2001:df5:8a00::/48 Signature Algorithm: sha256WithRSAEncryption 99:14:65:14:d3:aa:5c:6f:7f:a4:e5:ae:72:90:5b:f8:70:54: 5e:0d:f2:59:fa:6c:e0:29:cb:bc:18:eb:10:d9:98:24:64:57: f5:ee:b4:2a:ab:fe:44:82:b2:a9:fc:6c:56:f7:53:3e:75:70: 95:bc:7b:44:62:f5:ec:fb:9f:56:3a:b6:93:e0:c6:6b:50:39: d8:97:24:af:91:06:b0:39:44:35:1b:42:cd:68:cf:34:07:fc: af:8f:e1:13:1f:76:43:2d:c7:42:d8:5c:f2:48:eb:17:c3:3b: 62:a9:54:86:66:7c:47:fa:4c:b1:12:d6:df:0a:60:89:74:fb: de:de:3b:33:97:9e:08:b8:ab:f0:06:bb:95:b2:aa:d1:02:94: 37:31:93:26:26:b4:c4:e7:a6:e3:14:92:8a:24:ad:b2:d7:c1: 88:71:21:44:a7:68:55:f2:ad:7d:0d:29:b6:81:aa:3f:60:79: 96:7f:29:b8:74:17:5d:88:f4:cf:77:a6:6d:8c:e6:8a:d2:52: d1:35:70:45:a8:45:b1:f7:29:bd:60:1e:02:75:9f:7d:6c:03: 9a:4b:b2:54:d7:86:ee:cc:15:ad:35:b4:5b:f8:21:91:e6:ea: 6e:d9:9a:44:fb:2d:ac:2c:a3:ae:8e:cd:b3:85:39:8e:cd:2c: f3:94:d8:42 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICTjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU2NS04ZjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5d5VBngT0j7ASrbVI1HiUj3Dh0zm8eVSIfLxM6be8GsYpNGajfjtLVyJy9IX 35ZCvd6kSdN/jfRGjXdYHd1DCUwwVsmgwKoM3pF6gLrYYqz0O4MF9PifVpp9jODn 5o7Gcs7WXcoIq1Ok/Gh9iHO4JR7TJeGT2RclWQHPdq5GfoJXxq5rhDW5zV292Zlv AMTyk2gL2pNDiJt+DtXfk3KYatZiTbKmb6MtiU3rWpogcJ3vLMhmtcMEpkdBCakE 4QSycAJ3x4MZGn8GL3gt2qGN7jncPUuZSI97sOlxEB0bkyGq3s1rRvX5umXfVlu5 1sO4FcJNRf7IPriWXnXAfRXqDQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFF/oKw4V ij82pnGLKLZnpcuXYjgjMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMDA0QzcwNjA4 RkVDMTFFQzgxOEYxOTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAIteaADBAJnA/wwDwQCAAIwCQMHACABDfWKADANBgkqhkiG 9w0BAQsFAAOCAQEAmRRlFNOqXG9/pOWucpBb+HBUXg3yWfps4CnLvBjrENmYJGRX 9e60Kqv+RIKyqfxsVvdTPnVwlbx7RGL17PufVjq2k+DGa1A52Jckr5EGsDlENRtC zWjPNAf8r4/hEx92Qy3HQthc8kjrF8M7YqlUhmZ8R/pMsRLW3wpgiXT73t47M5ee CLir8Aa7lbKq0QKUNzGTJia0xOem4xSSiiStstfBiHEhRKdoVfKtfQ0ptoGqP2B5 ln8puHQXXYj0z3embYzmitJS0TVwRahFsfcpvWAeAnWffWwDmkuyVNeG7swVrTW0 W/ghkebqbtmaRPstrCyjro7Ns4U5js0s85TYQg== -----END CERTIFICATE-----Generated at Mon Sep 8 05:36:05 2025 by rpki-client