$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/14D49D84671711ED91494347C4F9AE02.roa File: 14D49D84671711ED91494347C4F9AE02.roa (raw, json) Hash identifier: gJUYPu4F4AMIHRRPnXDb6ltGb6/GRu0CNgXilxXgUC4= Subject key identifier: DC:A7:6A:51:25:5E:29:62:F9:94:2C:E5:5F:6F:E9:61:CF:7D:DF:BE Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E07 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/14D49D84671711ED91494347C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:02 +0000 ROA not before: Thu 28 Aug 2025 14:57:02 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38726 IP address blocks: 43.239.188.0/22 maxlen: 24 103.227.112.0/22 maxlen: 24 118.107.64.0/18 maxlen: 24 119.18.184.0/21 maxlen: 24 2400:bc80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19975 (0x4e07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:02 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e3e-7134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:05:ae:0d:60:05:d6:22:cf:68:08:b3:46:b5: c7:44:c5:f8:75:e9:ae:23:2e:cc:f7:df:e9:fc:a4: e8:e6:a1:1f:f6:ab:c9:fc:8b:2a:09:5a:a2:87:1b: fe:8c:aa:61:07:f5:08:0e:5f:29:9e:8b:87:ab:b8: af:fb:f9:69:33:fd:b6:cd:e9:ed:83:91:a1:86:67: b7:42:4f:90:df:4c:f4:2f:02:5f:74:6a:6d:9e:6d: b3:ff:59:c3:37:d8:be:d0:06:8a:76:a4:31:e7:4e: 70:00:9c:c4:05:0f:6b:c8:3e:fc:89:5d:02:34:2a: b8:3f:25:b6:a5:60:e8:1d:10:2f:dd:2f:e5:11:79: 43:31:ef:ef:b3:61:69:6a:5b:98:41:d5:b5:04:99: c3:9a:a6:51:42:ea:a7:41:a1:5c:7b:08:73:d6:ef: 03:42:5a:bd:60:76:84:38:3f:4b:8f:62:41:72:57: bc:b9:91:bc:5e:42:da:72:1a:52:7d:dc:a7:d3:4c: 84:a5:cc:f4:a3:fa:1c:39:f3:d3:9e:e3:76:7f:11: 9f:d7:25:29:e0:a6:db:e0:0b:f0:3b:77:7e:8c:d9: 26:66:2e:d1:3b:cc:67:93:fb:d3:fc:a0:ba:05:30: d1:fd:96:93:1d:98:ab:44:7e:59:45:6d:4e:87:ba: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A7:6A:51:25:5E:29:62:F9:94:2C:E5:5F:6F:E9:61:CF:7D:DF:BE X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/14D49D84671711ED91494347C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.188.0/22 103.227.112.0/22 118.107.64.0/18 119.18.184.0/21 IPv6: 2400:bc80::/32 Signature Algorithm: sha256WithRSAEncryption b8:8a:be:89:5a:14:15:52:7a:08:10:27:85:6b:82:1e:4b:18: 3e:01:ee:3d:75:5e:5c:e4:bb:8d:dc:09:2e:cf:07:27:2a:de: 16:e9:e7:49:13:e3:f0:a6:eb:e6:a4:57:fb:27:05:4e:08:89: 6f:c1:e4:b0:ed:1f:d0:47:28:21:e6:d5:c1:09:9f:bc:24:bf: 2b:7c:ba:47:1f:af:d4:24:62:fa:42:3a:16:7b:90:08:5e:7a: c0:ff:ea:af:00:52:3f:c7:89:71:3f:75:e8:82:f9:8c:84:6d: d6:e9:02:74:a8:18:24:28:4d:fb:02:bd:af:36:a5:b2:fe:37: 7e:74:c0:7c:1c:85:e1:c5:e7:c8:5a:91:ad:e5:c6:86:b3:fb: bc:35:bb:0b:3e:be:5f:ae:72:40:4d:19:b5:bd:cf:0d:37:42: 74:da:04:ea:20:be:9f:f1:10:52:ed:4e:d3:62:78:05:e0:ac: a2:22:c8:2a:93:39:8c:a7:2d:35:ec:13:f5:e8:41:cc:70:86: 6d:00:fe:bc:64:f9:57:3d:54:dc:ba:8a:78:d6:92:fb:d5:15: de:25:04:41:09:1d:08:55:2a:7f:e1:c0:10:30:31:4b:69:fa: 09:e7:af:f4:ce:e8:9b:5a:fc:15:c8:bb:b8:e5:76:78:2e:1d: 9d:0f:41:59 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICTgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzAyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUzZS03MTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAWuDWAF1iLPaAizRrXHRMX4demuIy7M99/p/KTo5qEf9qvJ/IsqCVqihxv+ jKphB/UIDl8pnouHq7iv+/lpM/22zentg5Ghhme3Qk+Q30z0LwJfdGptnm2z/1nD N9i+0AaKdqQx505wAJzEBQ9ryD78iV0CNCq4PyW2pWDoHRAv3S/lEXlDMe/vs2Fp aluYQdW1BJnDmqZRQuqnQaFcewhz1u8DQlq9YHaEOD9Lj2JBcle8uZG8XkLachpS fdyn00yEpcz0o/ocOfPTnuN2fxGf1yUp4Kbb4AvwO3d+jNkmZi7RO8xnk/vT/KC6 BTDR/ZaTHZirRH5ZRW1Oh7oZuQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFNynalEl Xili+ZQs5V9v6WHPfd++MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMTRENDlEODQ2 NzE3MTFFRDkxNDk0MzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIr77wDBAJn43ADBAZ2a0ADBAN3ErgwDQQCAAIwBwMFACQA vIAwDQYJKoZIhvcNAQELBQADggEBALiKvolaFBVSeggQJ4Vrgh5LGD4B7j11Xlzk u43cCS7PBycq3hbp50kT4/Cm6+akV/snBU4IiW/B5LDtH9BHKCHm1cEJn7wkvyt8 ukcfr9QkYvpCOhZ7kAheesD/6q8AUj/HiXE/deiC+YyEbdbpAnSoGCQoTfsCva82 pbL+N350wHwcheHF58haka3lxoaz+7w1uws+vl+uckBNGbW9zw03QnTaBOogvp/x EFLtTtNieAXgrKIiyCqTOYynLTXsE/XoQcxwhm0A/rxk+Vc9VNy6injWkvvVFd4l BEEJHQhVKn/hwBAwMUtp+gnnr/TO6Jta/BXIu7jldnguHZ0PQVk= -----END CERTIFICATE-----Generated at Mon Sep 8 05:44:53 2025 by rpki-client