$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/243E2854305711ED9363AB84C4F9AE02.roa File: 243E2854305711ED9363AB84C4F9AE02.roa (raw, json) Hash identifier: O6/JuXc4ytZf+ZR+XY6eZoK1BAqiFeIlc1zttx7DHNs= Subject key identifier: 19:13:8D:93:AB:AB:FA:C1:0A:6D:64:3E:01:74:25:32:B0:A3:1F:EB Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CEF Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/243E2854305711ED9363AB84C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:53:11 +0000 ROA not before: Thu 28 Aug 2025 14:53:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135912 IP address blocks: 103.90.223.0/24 maxlen: 24 103.162.93.0/24 maxlen: 24 103.183.109.0/24 maxlen: 24 2405:f540:9::/48 maxlen: 48 2405:f540:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19695 (0x4cef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d56-0388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d1:2f:30:b9:0c:37:e5:71:9c:89:64:25:d0: 3f:47:65:be:5e:c8:ef:07:b8:b4:4b:b5:c3:ee:45: 1f:fd:99:ab:12:be:c1:8c:c6:78:8a:f2:a4:14:01: a0:00:f0:cc:1d:08:12:bd:01:d6:fc:ac:b9:a5:d3: 34:03:c0:84:23:9d:dd:ea:1d:fb:02:60:68:49:60: b4:e1:6b:f0:8d:3c:00:97:d6:ae:7e:69:95:7d:b3: 93:30:31:2f:62:51:7c:bc:d9:76:76:85:d9:69:2a: 9b:e1:3b:b2:7b:21:77:8a:9c:90:75:da:52:0e:76: b8:26:43:2a:a7:e7:e6:00:c4:f7:7a:64:44:57:c5: 89:9f:a3:2d:90:50:4f:c7:b0:23:fd:7a:9c:88:a3: 2b:4f:14:ad:db:3d:02:3a:62:6c:2d:a7:2d:8f:96: 4c:d6:d1:c4:8b:b0:9d:21:94:70:44:72:ec:0d:1b: 2c:bb:f4:38:52:8a:fd:86:1c:10:fd:21:85:f2:a8: 6f:aa:9d:4a:55:3e:64:f1:35:0d:8f:d2:7c:ce:38: 93:c0:eb:2e:33:3a:e0:62:8b:9b:35:6a:dd:56:c4: 9b:e4:7f:4f:3c:14:9d:fa:b4:92:80:2e:6e:71:62: 08:6e:95:e0:2e:00:05:84:5d:8f:ef:34:48:01:06: 47:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:13:8D:93:AB:AB:FA:C1:0A:6D:64:3E:01:74:25:32:B0:A3:1F:EB X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/243E2854305711ED9363AB84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.223.0/24 103.162.93.0/24 103.183.109.0/24 IPv6: 2405:f540:9::-2405:f540:a:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 85:6c:25:28:b3:a9:61:d0:a7:16:a3:27:1c:58:d9:e8:18:d8: 53:8d:93:77:44:68:9d:b8:e4:04:61:cc:b6:80:d0:79:22:3b: aa:64:9f:ab:09:5c:46:a7:c8:37:0e:ec:dc:18:37:27:8f:30: 1f:df:99:bf:ea:8d:23:b4:b0:71:ab:f7:bd:39:a6:de:38:84: 2f:11:40:42:66:a7:52:39:cf:50:f3:47:3c:5f:6d:85:d3:db: 2d:c8:c4:ee:9e:fe:47:3a:1e:94:fc:ea:94:86:69:56:7f:19: b3:22:1d:d3:57:8a:e0:7c:ca:26:e0:06:80:a8:7e:05:03:34: 11:2a:01:62:d6:28:64:50:2d:0c:ec:bb:8f:2d:d4:5e:dc:82: d4:c4:ac:5b:b9:49:b3:cb:6a:d2:ed:8f:b5:67:c8:81:59:05: 1b:61:3c:3a:66:bf:2e:a7:c7:fa:1d:db:cc:a3:64:76:8e:f8: d4:3a:ab:4b:dd:76:f4:da:21:54:75:18:ae:aa:7b:5e:41:35: 75:c8:f9:bc:0f:75:12:88:84:4f:82:e9:20:85:17:bc:b9:2e: 84:67:33:54:87:77:5d:13:30:6d:c2:fb:80:2a:01:fe:48:1d: ba:73:b0:8e:b8:eb:61:e9:de:7b:77:db:08:0e:8c:5e:2c:25: 15:ae:3c:45 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICTO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ1Ni0wMzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9EvMLkMN+VxnIlkJdA/R2W+XsjvB7i0S7XD7kUf/ZmrEr7BjMZ4ivKkFAGg APDMHQgSvQHW/Ky5pdM0A8CEI53d6h37AmBoSWC04WvwjTwAl9aufmmVfbOTMDEv YlF8vNl2doXZaSqb4TuyeyF3ipyQddpSDna4JkMqp+fmAMT3emREV8WJn6MtkFBP x7Aj/XqciKMrTxSt2z0COmJsLactj5ZM1tHEi7CdIZRwRHLsDRssu/Q4Uor9hhwQ /SGF8qhvqp1KVT5k8TUNj9J8zjiTwOsuMzrgYoubNWrdVsSb5H9PPBSd+rSSgC5u cWIIbpXgLgAFhF2P7zRIAQZHWQIDAQABo4ICvTCCArkwHQYDVR0OBBYEFBkTjZOr q/rBCm1kPgF0JTKwox/rMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjQzRTI4NTQz MDU3MTFFRDkzNjNBQjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MBgEAgABMBIDBABnWt8DBABnol0DBABnt20wGgQCAAIwFDASAwcAJAX1QAAJ AwcAJAX1QAAKMA0GCSqGSIb3DQEBCwUAA4IBAQCFbCUos6lh0KcWoyccWNnoGNhT jZN3RGiduOQEYcy2gNB5IjuqZJ+rCVxGp8g3DuzcGDcnjzAf35m/6o0jtLBxq/e9 OabeOIQvEUBCZqdSOc9Q80c8X22F09styMTunv5HOh6U/OqUhmlWfxmzIh3TV4rg fMom4AaAqH4FAzQRKgFi1ihkUC0M7LuPLdRe3ILUxKxbuUmzy2rS7Y+1Z8iBWQUb YTw6Zr8up8f6HdvMo2R2jvjUOqtL3Xb02iFUdRiuqnteQTV1yPm8D3USiIRPgukg hRe8uS6EZzNUh3ddEzBtwvuAKgH+SB26c7COuOth6d57d9sIDoxeLCUVrjxF -----END CERTIFICATE-----Generated at Mon Sep 8 15:53:53 2025 by rpki-client