$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0CF9929A779411ECA4A8DC5BC4F9AE02.roa File: 0CF9929A779411ECA4A8DC5BC4F9AE02.roa (raw, json) Hash identifier: lBc+ij853GSRo2zyMWy095DrtAUzgFIIf2NoUfLkk2o= Subject key identifier: B8:A4:2A:8F:FE:34:73:10:2D:45:99:CA:D8:3C:CF:5C:3D:35:64:6B Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E21 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0CF9929A779411ECA4A8DC5BC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:27 +0000 ROA not before: Thu 28 Aug 2025 14:57:27 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55305 IP address blocks: 103.133.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20001 (0x4e21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:27 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e57-614d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8e:77:50:6e:8b:73:83:9c:2c:c0:01:33:4c: 1d:a2:21:06:78:68:65:06:55:20:fb:21:c0:8c:53: c1:c6:e8:8d:87:6d:ba:96:1f:cf:49:23:71:8a:08: 56:26:f5:49:26:3b:ad:66:03:00:f8:92:05:43:34: 5f:0e:2b:57:31:5a:c7:f7:f2:50:60:df:ab:33:60: 34:db:3e:a4:c2:04:8e:f6:a8:61:4f:a0:57:43:9f: 53:ca:86:05:20:d0:40:61:a9:70:e5:97:83:9e:8d: cd:7f:cd:a2:eb:d8:5a:17:d7:3a:6d:90:15:53:3a: b6:e6:a4:b9:69:5c:d2:bb:22:99:6a:f6:6a:64:db: ea:a8:97:a0:b1:02:35:32:2c:59:06:f1:3b:e6:03: de:38:2a:42:7c:7a:c8:ad:96:19:99:75:33:30:5f: ca:00:2e:b8:d6:0a:d9:86:79:93:3a:f7:06:44:bc: 1c:ae:90:d3:01:ec:21:1e:9a:c2:5c:4d:16:90:f3: 50:26:3a:2e:5b:4c:51:81:bc:5f:f6:ba:37:10:a7: f0:3e:c1:a4:fe:48:46:23:16:8a:e2:a3:e5:58:38: 0e:e3:f9:de:25:71:cd:42:60:ef:6e:4f:31:e4:04: cd:60:1f:e9:50:db:d4:89:b7:98:32:b9:a6:51:d0: a5:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A4:2A:8F:FE:34:73:10:2D:45:99:CA:D8:3C:CF:5C:3D:35:64:6B X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0CF9929A779411ECA4A8DC5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.100.0/22 Signature Algorithm: sha256WithRSAEncryption 41:38:be:14:9e:07:c0:0d:7c:58:c9:22:9b:31:d6:da:6e:6b: e9:56:5b:94:f7:14:57:b2:33:3d:a0:2a:73:64:a0:28:4d:3c: d7:b2:70:1c:bd:3e:a7:ea:3c:82:79:24:55:9a:01:38:b7:cd: 3a:39:71:4a:9f:6a:91:ba:c1:4e:b5:1d:6a:8a:58:cf:63:54: 83:26:5c:b2:af:28:c8:d7:74:2c:85:6b:10:50:91:52:6b:b7: aa:60:49:61:57:a6:ef:92:f5:6a:80:e7:e3:16:e4:aa:70:dc: 00:8a:a1:8a:27:0a:e3:2b:32:1e:61:e9:73:34:95:63:29:eb: ff:39:48:0e:7b:c3:ff:a2:c5:c9:b5:cb:6c:fa:f2:69:b8:84: a6:49:af:54:45:09:bd:e8:22:c7:eb:e0:8f:d8:84:95:59:5e: e7:54:df:ce:25:f1:76:f5:15:14:5d:42:b0:bd:f3:2e:6d:4a: 00:9f:86:23:4b:3a:bb:61:bf:de:fe:4c:dd:20:ee:53:56:ee: 81:e9:3a:1f:e4:c8:3d:36:69:46:32:e0:27:68:15:d0:99:0b: 05:b4:85:d7:49:40:81:ae:c0:1e:a7:dd:aa:d1:ae:f6:81:fb: fa:73:e8:5e:2b:fd:9c:79:04:4c:78:00:d6:be:0b:36:34:63: 15:16:65:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzI3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU1Ny02MTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Y53UG6Lc4OcLMABM0wdoiEGeGhlBlUg+yHAjFPBxuiNh226lh/PSSNxighW JvVJJjutZgMA+JIFQzRfDitXMVrH9/JQYN+rM2A02z6kwgSO9qhhT6BXQ59TyoYF INBAYalw5ZeDno3Nf82i69haF9c6bZAVUzq25qS5aVzSuyKZavZqZNvqqJegsQI1 MixZBvE75gPeOCpCfHrIrZYZmXUzMF/KAC641grZhnmTOvcGRLwcrpDTAewhHprC XE0WkPNQJjouW0xRgbxf9ro3EKfwPsGk/khGIxaK4qPlWDgO4/neJXHNQmDvbk8x 5ATNYB/pUNvUibeYMrmmUdClWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLikKo/+ NHMQLUWZytg8z1w9NWRrMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMENGOTkyOUE3 Nzk0MTFFQ0E0QThEQzVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhWQwDQYJKoZIhvcNAQELBQADggEBAEE4vhSeB8ANfFjJ Ipsx1tpua+lWW5T3FFeyMz2gKnNkoChNPNeycBy9PqfqPIJ5JFWaATi3zTo5cUqf apG6wU61HWqKWM9jVIMmXLKvKMjXdCyFaxBQkVJrt6pgSWFXpu+S9WqA5+MW5Kpw 3ACKoYonCuMrMh5h6XM0lWMp6/85SA57w/+ixcm1y2z68mm4hKZJr1RFCb3oIsfr 4I/YhJVZXudU384l8Xb1FRRdQrC98y5tSgCfhiNLOrthv97+TN0g7lNW7oHpOh/k yD02aUYy4CdoFdCZCwW0hddJQIGuwB6n3arRrvaB+/pz6F4r/Zx5BEx4ANa+CzY0 YxUWZQQ= -----END CERTIFICATE-----Generated at Mon Sep 8 05:35:24 2025 by rpki-client