$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0920F6E27D8D11EBB267662EC4F9AE02.roa File: 0920F6E27D8D11EBB267662EC4F9AE02.roa (raw, json) Hash identifier: 1Q96lFQ4cq0E8l1d9dO0IaGF5XZlUQuezGaf48jai0k= Subject key identifier: D4:5B:D3:7F:98:4F:6F:65:BD:F8:3F:91:BB:81:18:30:C1:F8:0D:53 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D2D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0920F6E27D8D11EBB267662EC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:54:03 +0000 ROA not before: Thu 28 Aug 2025 14:54:03 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140770 IP address blocks: 103.161.38.0/23 maxlen: 24 103.165.142.0/23 maxlen: 24 103.176.144.0/23 maxlen: 24 2400:32e0::/48 maxlen: 48 2407:4940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19757 (0x4d2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:03 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d8a-ff28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:35:a0:eb:d8:79:95:0e:e7:ea:c7:1f:90:8b: 4a:45:a7:d1:07:d9:14:34:50:62:ed:6b:99:53:97: 53:1d:fa:f1:b7:a4:ac:f2:1b:1e:00:33:7d:0c:0e: 72:5f:3b:9f:c2:c1:34:8c:45:6e:3e:dd:df:5d:ed: 2d:ca:08:dc:ba:1d:1f:9e:51:0d:7a:07:73:0b:a3: 66:e9:02:32:84:13:39:db:b9:a1:64:64:b7:b8:67: 76:7e:92:e0:d6:d0:a8:92:90:c2:1f:36:12:4c:65: 47:f7:8e:be:f9:88:64:bc:c2:ad:12:16:09:71:7d: fd:8a:6c:47:25:80:6b:dd:c1:6a:1b:fd:11:40:1b: 6e:80:41:28:6a:7e:9d:66:e6:60:1c:d5:44:99:51: 7b:de:ad:97:fa:d1:b9:cd:5b:d4:59:e0:78:3f:3a: 14:d1:8a:75:7b:ed:42:6b:e8:2d:ac:61:57:bb:ac: bf:42:01:e1:90:e3:ef:b2:70:29:85:12:5e:48:b8: f6:ab:0c:1d:cc:81:c8:b0:c1:97:e8:11:77:02:78: 05:05:b4:6d:9c:46:95:37:32:ae:a3:ee:51:a8:16: 17:e7:99:65:3b:6e:12:ba:fd:03:c9:19:09:ce:eb: e1:d0:c4:11:5a:4c:26:e5:c3:45:61:1b:07:c7:2f: 6a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5B:D3:7F:98:4F:6F:65:BD:F8:3F:91:BB:81:18:30:C1:F8:0D:53 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0920F6E27D8D11EBB267662EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.38.0/23 103.165.142.0/23 103.176.144.0/23 IPv6: 2400:32e0::/48 2407:4940::/48 Signature Algorithm: sha256WithRSAEncryption 03:e4:ff:57:74:97:d1:fc:50:3d:73:77:ba:85:35:bf:9c:9a: 79:40:67:9b:27:6d:f2:31:3c:a2:cb:a0:d7:3f:01:4b:24:ff: 69:79:29:dc:6c:e1:7a:63:04:03:ef:c5:4d:74:4f:ba:c6:71: d5:60:d4:e4:33:b7:1d:a3:cf:d3:1d:49:66:f7:5c:d1:89:f4: be:de:60:38:a4:53:b4:ff:8c:17:f9:af:2e:54:7c:73:11:a9: 5d:44:48:11:5b:ae:a2:83:d2:54:0e:de:8a:42:6e:f1:32:49: 36:c0:b8:f6:4a:56:e7:2e:c6:f8:44:4e:78:96:e4:04:e0:87: 2f:21:0e:bf:29:52:89:db:53:b1:06:dc:09:ce:3b:49:09:75: 55:34:11:de:28:ce:a0:d7:ce:14:27:34:ab:64:b8:75:8d:d3: 7b:70:cb:a7:13:fb:e9:f4:c5:0a:44:c1:75:3e:db:56:3a:64: 0b:84:1a:4c:26:87:ad:58:7b:ae:d4:7b:86:5a:2d:5a:5e:ab: 8a:bd:e8:a9:60:4c:dc:fe:e2:ba:20:ed:ac:a3:a8:6a:aa:74: 20:83:fc:f4:35:60:4b:63:bd:53:83:8d:1c:7f:59:2d:14:99: 69:71:bd:2a:34:c2:70:3e:f8:4c:0b:83:a0:5f:f6:95:01:5f: 55:aa:db:1a -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICTS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDAzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ4YS1mZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTWg69h5lQ7n6scfkItKRafRB9kUNFBi7WuZU5dTHfrxt6Ss8hseADN9DA5y XzufwsE0jEVuPt3fXe0tygjcuh0fnlENegdzC6Nm6QIyhBM527mhZGS3uGd2fpLg 1tCokpDCHzYSTGVH946++YhkvMKtEhYJcX39imxHJYBr3cFqG/0RQBtugEEoan6d ZuZgHNVEmVF73q2X+tG5zVvUWeB4PzoU0Yp1e+1Ca+gtrGFXu6y/QgHhkOPvsnAp hRJeSLj2qwwdzIHIsMGX6BF3AngFBbRtnEaVNzKuo+5RqBYX55llO24Suv0DyRkJ zuvh0MQRWkwm5cNFYRsHxy9q8QIDAQABo4ICuzCCArcwHQYDVR0OBBYEFNRb03+Y T29lvfg/kbuBGDDB+A1TMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMDkyMEY2RTI3 RDhEMTFFQkIyNjc2NjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAFnoSYDBAFnpY4DBAFnsJAwGAQCAAIwEgMHACQAMuAAAAMH ACQHSUAAADANBgkqhkiG9w0BAQsFAAOCAQEAA+T/V3SX0fxQPXN3uoU1v5yaeUBn mydt8jE8osug1z8BSyT/aXkp3GzhemMEA+/FTXRPusZx1WDU5DO3HaPP0x1JZvdc 0Yn0vt5gOKRTtP+MF/mvLlR8cxGpXURIEVuuooPSVA7eikJu8TJJNsC49kpW5y7G +EROeJbkBOCHLyEOvylSidtTsQbcCc47SQl1VTQR3ijOoNfOFCc0q2S4dY3Te3DL pxP76fTFCkTBdT7bVjpkC4QaTCaHrVh7rtR7hlotWl6rir3oqWBM3P7iuiDtrKOo aqp0IIP89DVgS2O9U4ONHH9ZLRSZaXG9KjTCcD74TAuDoF/2lQFfVarbGg== -----END CERTIFICATE-----Generated at Mon Sep 8 05:40:42 2025 by rpki-client