$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa File: 0ED0913840C211EEB6B1731BC4F9AE02.roa (raw, json) Hash identifier: dnBitHpNJkd5iTOCcWSLBG1l2Yhg/S/MGLPkaExOFYI= Subject key identifier: 63:7B:C1:89:B0:2E:F6:A7:41:BE:C8:27:30:0A:49:6A:AE:E7:9C:7F Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CF9 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:53:19 +0000 ROA not before: Thu 28 Aug 2025 14:53:19 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135932 IP address blocks: 103.70.12.0/23 maxlen: 23 103.140.249.0/24 maxlen: 24 103.147.122.0/24 maxlen: 24 103.147.123.0/24 maxlen: 24 103.155.160.0/24 maxlen: 24 103.155.161.0/24 maxlen: 24 2001:df4:4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19705 (0x4cf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:19 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d5f-b134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8c:b5:be:b2:73:69:87:42:1b:97:48:83:51: fe:b2:af:a0:41:06:2f:a4:ee:17:a7:93:4c:41:4c: 41:b7:07:9f:db:b1:00:b1:65:1b:96:8c:84:8f:2b: a2:41:95:f3:f8:35:72:e3:0c:a6:05:79:47:5d:08: 2e:ed:93:c6:d2:12:e5:b1:db:c6:74:b9:b2:d8:01: 8b:e4:cf:08:eb:3f:3b:c6:1c:54:42:fe:15:76:3a: 74:ce:58:2e:39:cb:c8:93:9d:d0:45:07:30:20:ee: e3:09:01:f5:7c:4b:64:da:c7:6b:63:a5:f0:26:bf: c1:c1:10:a5:63:38:3a:be:ba:bf:e4:51:35:cc:fc: ae:87:c4:57:8e:2f:f0:36:f0:e0:2c:7f:ac:9e:08: e4:73:0b:e2:4a:70:03:df:3a:51:97:4e:af:a4:f6: ad:cd:0e:a9:c5:8f:15:9c:f5:18:56:ed:87:3d:22: 8e:c5:f3:ce:74:73:2a:3f:43:66:60:c5:c9:59:a9: 13:ba:64:8a:06:c4:67:fd:9a:79:bf:7d:f7:98:ae: 6a:f5:1f:1c:ff:fe:f8:da:66:d2:2b:73:d0:10:f9: 13:c3:06:11:42:bd:c6:8f:13:7e:e4:8c:da:fc:fe: 54:36:54:cd:26:b1:76:f0:96:da:05:ad:00:53:da: 80:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7B:C1:89:B0:2E:F6:A7:41:BE:C8:27:30:0A:49:6A:AE:E7:9C:7F X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.12.0/23 103.140.249.0/24 103.147.122.0/23 103.155.160.0/23 IPv6: 2001:df4:4c0::/48 Signature Algorithm: sha256WithRSAEncryption 30:2c:77:03:66:32:ed:17:f0:e5:12:50:cd:af:56:21:2c:d1: 6e:ef:38:51:ba:16:58:01:63:08:cf:b5:59:2c:be:f6:c2:29: 28:a4:d7:6a:7f:d1:f9:2a:1e:f0:be:54:4f:3e:d3:33:1c:ef: e9:84:58:e9:a9:de:85:39:d2:3e:d5:27:8b:5f:18:fc:e0:44: 0f:ca:06:42:49:d2:61:32:3b:25:80:c5:1c:65:6a:8c:e8:fe: 6d:53:c2:74:a1:59:9b:1c:36:8d:78:6e:a9:1a:54:cf:70:52: e1:5b:a4:d6:dd:82:45:ba:ca:c9:72:ad:9c:07:77:dd:d6:8e: 5f:f4:4a:1e:29:d4:1c:65:9a:f0:f8:cd:e8:00:32:42:f6:ca: b1:53:b2:aa:d1:4c:57:d3:6e:b2:94:a2:fa:d9:5d:90:76:0a: f8:19:5b:b3:68:97:87:5f:14:4e:63:9e:ac:b0:62:4d:6d:2e: b0:5f:a9:5a:a6:7b:a9:8a:f9:cb:89:d9:3a:d6:d7:02:fd:69: d8:92:ac:04:27:cf:f7:9a:2e:47:87:26:a6:c4:e2:b1:7e:60: 76:a8:ba:70:e9:e2:64:de:98:e9:2c:19:bc:4a:ad:c7:25:e1: a3:64:af:b3:48:8c:56:29:d7:88:c6:1a:99:fd:29:52:80:82: c6:67:d5:e9 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICTPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzE5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ1Zi1iMTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24y1vrJzaYdCG5dIg1H+sq+gQQYvpO4Xp5NMQUxBtwef27EAsWUbloyEjyui QZXz+DVy4wymBXlHXQgu7ZPG0hLlsdvGdLmy2AGL5M8I6z87xhxUQv4Vdjp0zlgu OcvIk53QRQcwIO7jCQH1fEtk2sdrY6XwJr/BwRClYzg6vrq/5FE1zPyuh8RXji/w NvDgLH+sngjkcwviSnAD3zpRl06vpPatzQ6pxY8VnPUYVu2HPSKOxfPOdHMqP0Nm YMXJWakTumSKBsRn/Zp5v333mK5q9R8c//742mbSK3PQEPkTwwYRQr3GjxN+5Iza /P5UNlTNJrF28JbaBa0AU9qArQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFGN7wYmw LvanQb7IJzAKSWqu55x/MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMEVEMDkxMzg0 MEMyMTFFRUI2QjE3MzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAFnRgwDBABnjPkDBAFnk3oDBAFnm6AwDwQCAAIwCQMHACAB DfQEwDANBgkqhkiG9w0BAQsFAAOCAQEAMCx3A2Yy7Rfw5RJQza9WISzRbu84UboW WAFjCM+1WSy+9sIpKKTXan/R+Soe8L5UTz7TMxzv6YRY6anehTnSPtUni18Y/OBE D8oGQknSYTI7JYDFHGVqjOj+bVPCdKFZmxw2jXhuqRpUz3BS4Vuk1t2CRbrKyXKt nAd33daOX/RKHinUHGWa8PjN6AAyQvbKsVOyqtFMV9NuspSi+tldkHYK+Blbs2iX h18UTmOerLBiTW0usF+pWqZ7qYr5y4nZOtbXAv1p2JKsBCfP95ouR4cmpsTisX5g dqi6cOniZN6Y6SwZvEqtxyXho2Svs0iMVinXiMYamf0pUoCCxmfV6Q== -----END CERTIFICATE-----Generated at Mon Sep 8 05:36:00 2025 by rpki-client