$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/2139F0442F4811EDAB838650C4F9AE02.roa File: 2139F0442F4811EDAB838650C4F9AE02.roa (raw, json) Hash identifier: RG1FrraI9JqWtCYoqIZTX7DsLQYq3l5ltBOdF5mxG44= Subject key identifier: 11:49:29:00:C2:BD:B9:AB:14:25:D2:50:B6:6E:A0:F7:3E:AC:71:50 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E39 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/2139F0442F4811EDAB838650C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:48 +0000 ROA not before: Thu 28 Aug 2025 14:57:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 63731 IP address blocks: 61.14.236.0/22 maxlen: 24 103.89.84.0/22 maxlen: 24 103.141.176.0/23 maxlen: 24 103.205.96.0/22 maxlen: 24 2001:df0:2a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20025 (0x4e39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e6c-4a7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:43:72:1d:9c:b0:9b:52:4a:2f:bb:9f:e3:75: 2d:d8:6d:d4:cb:68:c3:b8:d6:d8:f0:c7:12:e3:e7: 51:f8:d3:6b:f7:40:05:69:f2:be:d0:b6:5c:76:d0: 87:f7:8e:52:ef:09:60:2a:b3:84:73:7d:04:38:e2: 80:9d:f2:39:bb:c7:79:9b:27:e7:51:57:09:2b:99: 7b:89:5e:5e:6c:f8:3b:a9:aa:96:90:b8:5d:02:50: 98:8d:71:65:bd:44:91:c9:49:d8:a3:fc:68:93:20: fd:87:0c:25:6f:d0:9a:83:37:5a:14:a5:d5:e9:90: 8d:de:5d:11:94:95:e1:cb:a8:82:1b:5f:81:09:0f: 83:0d:8b:cb:69:73:06:11:40:1e:43:3f:80:75:eb: 84:22:e6:8a:7c:39:6b:e4:e3:14:08:3b:22:71:1e: 4b:ae:12:45:31:a3:ff:69:3c:ea:d4:6d:20:80:d1: 4e:70:67:36:9c:92:24:9f:cf:c6:0a:75:8c:e7:7c: 43:61:a3:2d:74:89:fb:0f:33:93:70:67:56:49:10: b9:c9:07:3c:e1:f1:7f:a7:43:be:74:25:4a:7e:74: 6a:76:46:f7:c6:03:dc:88:5a:25:56:e2:c2:bb:0f: 5f:cd:2f:38:97:9d:58:10:1a:1b:e8:80:1e:bd:65: ad:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:49:29:00:C2:BD:B9:AB:14:25:D2:50:B6:6E:A0:F7:3E:AC:71:50 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/2139F0442F4811EDAB838650C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.14.236.0/22 103.89.84.0/22 103.141.176.0/23 103.205.96.0/22 IPv6: 2001:df0:2a00::/48 Signature Algorithm: sha256WithRSAEncryption 93:d2:95:a2:78:d7:ff:4c:9d:14:36:d7:8e:52:f1:a5:43:57: f2:43:fb:ba:0c:c7:60:39:aa:f1:17:27:ce:81:1f:cb:bd:42: 3a:e5:19:a4:32:3e:a8:bb:0c:ca:0e:8d:60:cf:ca:f2:a9:2c: 22:71:d9:10:df:f4:78:a7:11:79:45:e0:de:89:48:e5:d3:f9: 16:2e:ee:83:14:3d:38:5f:70:c7:fc:37:e7:23:27:42:58:94: eb:aa:4d:b3:68:c4:4c:76:8c:25:34:24:5f:ad:f6:23:72:66: e2:fa:99:12:8e:7d:ca:5e:66:7b:ce:20:01:33:78:d0:2f:47: 4c:ef:65:72:70:02:89:65:1b:43:5e:a4:e5:f0:e8:3d:fc:ed: 50:23:c8:3d:44:25:4d:b4:71:88:3d:91:eb:66:a7:78:fb:d3: 73:7c:52:d9:91:9f:89:b8:d5:a7:fc:0a:a4:2c:75:03:30:64: b9:53:1b:48:6f:f1:7f:6b:56:6e:41:3b:0e:49:99:85:1e:86: 19:af:87:f2:4b:4f:40:30:b4:31:4a:bc:87:fe:04:01:bf:8f: d7:9f:04:0d:43:94:91:27:09:32:cd:32:26:de:c7:b3:62:50: b1:a2:2b:0a:70:4a:3c:b3:74:a4:29:8b:c2:a1:09:33:31:1d: 39:44:66:56 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICTjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU2Yy00YTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkNyHZywm1JKL7uf43Ut2G3Uy2jDuNbY8McS4+dR+NNr90AFafK+0LZcdtCH 945S7wlgKrOEc30EOOKAnfI5u8d5myfnUVcJK5l7iV5ebPg7qaqWkLhdAlCYjXFl vUSRyUnYo/xokyD9hwwlb9CagzdaFKXV6ZCN3l0RlJXhy6iCG1+BCQ+DDYvLaXMG EUAeQz+AdeuEIuaKfDlr5OMUCDsicR5LrhJFMaP/aTzq1G0ggNFOcGc2nJIkn8/G CnWM53xDYaMtdIn7DzOTcGdWSRC5yQc84fF/p0O+dCVKfnRqdkb3xgPciFolVuLC uw9fzS84l51YEBob6IAevWWt1wIDAQABo4ICuDCCArQwHQYDVR0OBBYEFBFJKQDC vbmrFCXSULZuoPc+rHFQMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjEzOUYwNDQy RjQ4MTFFREFCODM4NjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAI9DuwDBAJnWVQDBAFnjbADBAJnzWAwDwQCAAIwCQMHACAB DfAqADANBgkqhkiG9w0BAQsFAAOCAQEAk9KVonjX/0ydFDbXjlLxpUNX8kP7ugzH YDmq8RcnzoEfy71COuUZpDI+qLsMyg6NYM/K8qksInHZEN/0eKcReUXg3olI5dP5 Fi7ugxQ9OF9wx/w35yMnQliU66pNs2jETHaMJTQkX632I3Jm4vqZEo59yl5me84g ATN40C9HTO9lcnACiWUbQ16k5fDoPfztUCPIPUQlTbRxiD2R62anePvTc3xS2ZGf ibjVp/wKpCx1AzBkuVMbSG/xf2tWbkE7DkmZhR6GGa+H8ktPQDC0MUq8h/4EAb+P 158EDUOUkScJMs0yJt7Hs2JQsaIrCnBKPLN0pCmLwqEJMzEdOURmVg== -----END CERTIFICATE-----Generated at Mon Sep 8 05:43:27 2025 by rpki-client