$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/31D2BFEE839311EE89CA110FC4F9AE02.roa File: 31D2BFEE839311EE89CA110FC4F9AE02.roa (raw, json) Hash identifier: lkFRVvbPyHIVDv0krfLoQZH4V6zoOHH+WfcE2P5zX6w= Subject key identifier: 80:A4:0F:2D:68:08:81:7F:90:D4:E0:E5:45:84:1D:7D:AA:CE:76:98 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DAB Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/31D2BFEE839311EE89CA110FC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:46 +0000 ROA not before: Thu 28 Aug 2025 14:55:46 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151866 IP address blocks: 103.93.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19883 (0x4dab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:46 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06df2-f3f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:25:b0:4e:d1:c9:57:9b:3f:d2:aa:7b:dd:c7: 25:96:83:8d:e8:a7:c8:29:88:63:5f:aa:ad:31:d7: 60:5a:43:aa:74:ee:ee:34:41:8a:fd:ff:f2:48:5e: 05:65:e3:a5:a5:a0:80:a3:12:89:89:ef:2a:91:80: 34:d6:be:aa:0b:de:30:5b:7a:1c:13:8d:fa:8d:c5: 94:a1:62:0e:75:f7:39:8f:52:25:fd:58:07:1a:d2: b7:36:e2:3c:4a:8a:27:b8:ba:38:06:b5:32:a4:a0: d7:df:55:be:b6:af:03:94:48:61:e5:12:f7:af:1c: 4e:78:72:6f:67:88:c4:f0:e5:5a:d1:37:51:16:37: 2f:38:2b:a0:00:ad:53:72:20:b1:ab:40:e9:33:a7: 0b:25:f5:7d:ff:20:31:e9:ea:80:d1:46:10:10:48: 13:39:cc:62:65:19:74:23:a3:30:e2:fb:76:c1:9c: f7:be:58:25:82:78:ab:b3:63:07:67:fa:10:c1:d2: 13:ae:a9:59:f1:87:88:80:71:a8:33:dd:e6:60:4b: 86:f7:ec:49:08:a2:6a:32:16:3d:22:07:77:96:eb: 90:5b:e1:bd:3b:df:4c:53:e9:a9:bd:c6:ad:d6:d4: 5f:7f:8f:d0:77:a1:81:ee:68:83:a5:5d:3c:8e:38: fd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A4:0F:2D:68:08:81:7F:90:D4:E0:E5:45:84:1D:7D:AA:CE:76:98 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/31D2BFEE839311EE89CA110FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.92.0/24 Signature Algorithm: sha256WithRSAEncryption ae:29:5d:a2:b9:bc:08:33:12:b4:6e:07:17:e4:a3:a9:65:be: 17:04:9b:27:04:85:6d:0f:07:69:38:e4:1d:99:2d:98:b2:da: 57:cd:63:58:6d:fa:f4:a1:79:db:c5:5f:6d:4f:04:2a:c1:c6: 00:5c:56:8d:2b:3b:dd:66:6a:76:f5:da:6a:4a:13:fe:10:75: 3c:a9:38:af:cd:41:d8:0b:2c:a5:15:a6:70:06:51:ce:e3:6c: 00:60:17:1b:ce:6c:59:5a:82:b4:ba:ca:c9:95:8a:f8:73:1e: 52:36:67:bd:7c:28:20:6e:a4:04:40:ea:bc:67:19:fb:74:5d: 72:3b:9d:c7:c6:bd:f9:fe:47:bf:08:9d:3f:59:a2:31:15:c7: 5a:f5:3d:2d:a1:37:b8:a1:11:1c:ae:3b:68:ec:30:fe:c1:99: a2:03:d8:34:87:51:40:54:ae:4f:71:aa:6d:3b:82:b0:2c:5d: cd:7e:68:bf:a9:b8:e0:01:fb:6e:22:1b:4a:09:0f:f8:f6:53: 91:b2:3c:cc:34:83:7d:87:18:26:8c:15:dd:56:29:27:3c:c8: 72:d7:59:b6:e4:29:3d:a4:d7:c8:7e:73:4a:b6:82:a9:0e:d7: 76:19:f6:08:7b:51:39:db:27:44:38:92:61:46:b9:6e:31:fe: 95:2a:04:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTQ2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRmMi1mM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CWwTtHJV5s/0qp73cclloON6KfIKYhjX6qtMddgWkOqdO7uNEGK/f/ySF4F ZeOlpaCAoxKJie8qkYA01r6qC94wW3ocE436jcWUoWIOdfc5j1Il/VgHGtK3NuI8 SoonuLo4BrUypKDX31W+tq8DlEhh5RL3rxxOeHJvZ4jE8OVa0TdRFjcvOCugAK1T ciCxq0DpM6cLJfV9/yAx6eqA0UYQEEgTOcxiZRl0I6Mw4vt2wZz3vlglgnirs2MH Z/oQwdITrqlZ8YeIgHGoM93mYEuG9+xJCKJqMhY9Igd3luuQW+G9O99MU+mpvcat 1tRff4/Qd6GB7miDpV08jjj9LwIDAQABo4IClTCCApEwHQYDVR0OBBYEFICkDy1o CIF/kNTg5UWEHX2qznaYMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzFEMkJGRUU4 MzkzMTFFRTg5Q0ExMTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnXVwwDQYJKoZIhvcNAQELBQADggEBAK4pXaK5vAgzErRu Bxfko6llvhcEmycEhW0PB2k45B2ZLZiy2lfNY1ht+vShedvFX21PBCrBxgBcVo0r O91manb12mpKE/4QdTypOK/NQdgLLKUVpnAGUc7jbABgFxvObFlagrS6ysmVivhz HlI2Z718KCBupARA6rxnGft0XXI7ncfGvfn+R78InT9ZojEVx1r1PS2hN7ihERyu O2jsMP7BmaID2DSHUUBUrk9xqm07grAsXc1+aL+puOAB+24iG0oJD/j2U5GyPMw0 g32HGCaMFd1WKSc8yHLXWbbkKT2k18h+c0q2gqkO13YZ9gh7UTnbJ0Q4kmFGuW4x /pUqBKQ= -----END CERTIFICATE-----Generated at Mon Sep 8 05:43:26 2025 by rpki-client