$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1C9AFC389AEF11EC9717F22AC4F9AE02.roa File: 1C9AFC389AEF11EC9717F22AC4F9AE02.roa (raw, json) Hash identifier: 78LXfq8hrHdXP4+e/VTurYX0AYuq8M1Vl1/eNtpWG9A= Subject key identifier: A8:C5:B7:6E:34:DC:D7:62:FD:B1:97:96:DE:F7:C5:E0:3A:6A:B4:B6 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D4C Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1C9AFC389AEF11EC9717F22AC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:54:28 +0000 ROA not before: Thu 28 Aug 2025 14:54:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149079 IP address blocks: 103.182.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19788 (0x4d4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06da4-23f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dd:ab:da:47:2a:88:3a:9a:d4:9b:1e:31:b7: ef:da:43:a1:a7:af:44:ca:d8:0e:d8:a2:6b:1c:d9: 21:e3:c7:9c:00:0e:7f:b5:88:44:d8:9c:0c:1b:d5: ae:6a:33:f9:d9:78:79:86:78:99:88:68:6a:e1:10: de:63:78:51:2d:1a:95:16:48:cb:bc:98:c0:57:00: 4a:9a:f8:51:53:d6:9c:ff:7b:b6:fb:ab:4a:09:e6: c4:dc:91:76:3e:bf:08:a3:f7:49:1f:41:31:d3:05: ce:ba:19:23:38:2e:92:11:ca:17:ea:38:ed:e7:fa: eb:92:8e:77:23:99:0f:e9:54:ce:89:24:2c:10:11: 58:b6:25:ea:a1:f7:62:5a:e6:3f:17:81:eb:88:b7: 94:c5:75:05:23:16:2d:6a:a9:0b:ad:dc:2a:47:56: fe:46:35:d5:9d:9c:d5:f5:41:0e:4e:5e:0a:93:a0: bd:47:2f:26:60:44:5f:5a:1f:63:a9:4d:c6:51:94: d3:05:fd:71:57:30:94:5e:dd:02:2b:aa:7d:89:e9: 26:9d:3f:6f:2c:ef:c8:8c:46:6e:16:3b:fc:2b:a3: 9c:8e:e8:25:b3:cf:02:d2:9c:91:c4:32:50:cd:5d: b4:7e:ee:bd:7b:a2:7b:1c:1e:87:e7:82:6a:e4:a6: 01:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C5:B7:6E:34:DC:D7:62:FD:B1:97:96:DE:F7:C5:E0:3A:6A:B4:B6 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1C9AFC389AEF11EC9717F22AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.22.0/23 Signature Algorithm: sha256WithRSAEncryption 39:e6:0d:bb:b6:d0:de:16:7e:d5:f7:6f:1d:70:c2:62:4a:d1: 5f:34:3e:7a:16:c5:aa:fb:f3:9a:c6:fb:82:ac:04:c2:fe:a2: 57:9b:da:05:55:ff:b7:89:c1:65:d4:c6:76:79:4b:43:54:ba: 81:7c:a1:92:c7:a7:77:8c:a4:27:0f:3c:38:9d:31:1d:95:06: d4:4e:ab:58:b7:c6:1f:dc:a2:5d:a4:15:f8:38:56:ee:ae:f7: 00:0a:3f:f6:fa:21:af:e8:8a:c5:b1:fb:15:b2:17:bd:c0:a4: 2b:9f:bc:0f:a8:3b:e2:49:13:47:a7:47:d4:35:0d:0a:a9:6a: 47:d8:bf:91:ea:26:17:c2:80:ab:ce:3b:c3:27:eb:5c:22:1d: 8c:5b:09:06:df:e9:a4:cb:1e:bd:05:ab:43:43:9e:b3:fa:66: 49:5b:a3:90:27:96:62:fb:f8:c4:5f:15:f7:bf:b3:91:dd:82: 73:fb:60:88:84:53:e0:a2:c3:c3:e1:35:6d:26:cf:60:94:9d: 4e:43:12:ea:c6:37:34:d5:23:ab:df:6c:3b:42:62:ce:67:aa: 68:e5:92:45:10:ec:40:10:2e:99:b9:30:ca:82:36:b8:a1:4f: 04:fd:8a:42:15:3d:af:e2:86:f6:4c:2d:63:c6:a3:85:c1:57: e2:02:bc:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRhNC0yM2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd2r2kcqiDqa1JseMbfv2kOhp69EytgO2KJrHNkh48ecAA5/tYhE2JwMG9Wu ajP52Xh5hniZiGhq4RDeY3hRLRqVFkjLvJjAVwBKmvhRU9ac/3u2+6tKCebE3JF2 Pr8Io/dJH0Ex0wXOuhkjOC6SEcoX6jjt5/rrko53I5kP6VTOiSQsEBFYtiXqofdi WuY/F4HriLeUxXUFIxYtaqkLrdwqR1b+RjXVnZzV9UEOTl4Kk6C9Ry8mYERfWh9j qU3GUZTTBf1xVzCUXt0CK6p9iekmnT9vLO/IjEZuFjv8K6Ocjugls88C0pyRxDJQ zV20fu69e6J7HB6H54Jq5KYBzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKjFt240 3Ndi/bGXlt73xeA6arS2MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMUM5QUZDMzg5 QUVGMTFFQzk3MTdGMjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnthYwDQYJKoZIhvcNAQELBQADggEBADnmDbu20N4WftX3 bx1wwmJK0V80PnoWxar785rG+4KsBML+oleb2gVV/7eJwWXUxnZ5S0NUuoF8oZLH p3eMpCcPPDidMR2VBtROq1i3xh/col2kFfg4Vu6u9wAKP/b6Ia/oisWx+xWyF73A pCufvA+oO+JJE0enR9Q1DQqpakfYv5HqJhfCgKvOO8Mn61wiHYxbCQbf6aTLHr0F q0NDnrP6Zklbo5AnlmL7+MRfFfe/s5HdgnP7YIiEU+Ciw8PhNW0mz2CUnU5DEurG NzTVI6vfbDtCYs5nqmjlkkUQ7EAQLpm5MMqCNrihTwT9ikIVPa/ihvZMLWPGo4XB V+ICvJQ= -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:32 2025 by rpki-client