$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/340899165F9D11ED8521047DC4F9AE02.roa File: 340899165F9D11ED8521047DC4F9AE02.roa (raw, json) Hash identifier: 2jPDUHNjIVzHlrNm6U1GeIQvqHDjSEilcR+TdlmiMxQ= Subject key identifier: F6:98:2C:12:60:77:39:F1:08:82:69:9B:05:1A:C7:89:37:AB:5A:E7 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D6A Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/340899165F9D11ED8521047DC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:54:53 +0000 ROA not before: Thu 28 Aug 2025 14:54:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149139 IP address blocks: 103.102.128.0/24 maxlen: 24 103.102.129.0/24 maxlen: 24 103.102.130.0/24 maxlen: 24 103.102.131.0/24 maxlen: 24 2001:df2:d900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19818 (0x4d6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06dbc-48af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:de:a9:54:19:ac:10:50:0a:29:71:f1:f2:d1: e1:e1:8f:14:64:3b:f2:a7:5d:35:b8:f6:2b:72:bb: 51:b7:4e:fb:70:20:e8:3d:7d:24:a1:8f:92:7a:3e: cb:30:87:2c:ff:f7:1f:d5:e8:4a:08:af:4a:74:27: 2e:cd:b3:5e:27:38:be:0d:84:99:9f:50:1b:1d:dd: 25:e6:d8:83:df:14:da:28:cd:f3:db:b5:f4:ea:f8: f6:1f:9b:8c:66:29:1a:17:97:58:93:f9:83:f1:dd: 72:d2:d3:3c:88:74:72:a6:f7:5e:81:23:13:55:08: bd:69:dd:46:00:a0:88:39:b5:b7:56:f6:65:e7:1f: 2e:2a:03:26:cf:ea:d5:0f:24:63:07:a2:d4:ac:a4: 4b:f8:08:a5:96:cb:96:75:23:7b:c4:cb:0f:14:8b: 12:a0:d2:3e:66:92:de:1a:0b:01:1e:3f:2e:80:9f: 21:8d:0b:5d:8c:6b:d2:13:23:5d:92:48:9e:27:37: 69:6d:8d:d4:37:6a:f6:fd:7f:9f:03:0c:cf:46:5a: 04:fe:54:1c:8f:4c:d0:11:6d:fa:ac:3d:96:13:3d: 0e:34:c3:94:a7:c1:02:8b:fc:b1:33:d9:d0:b1:f5: 4c:63:e3:17:08:73:d2:cf:f2:cb:16:ea:04:9c:7f: 2f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:98:2C:12:60:77:39:F1:08:82:69:9B:05:1A:C7:89:37:AB:5A:E7 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/340899165F9D11ED8521047DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.128.0/22 IPv6: 2001:df2:d900::/48 Signature Algorithm: sha256WithRSAEncryption 48:68:40:0a:36:ab:04:37:ee:5c:85:62:da:70:6e:30:98:e7: 60:c3:9a:08:cf:ce:0c:66:ab:b2:b4:29:f9:b8:d3:d3:3e:02: 58:6b:99:05:f0:d3:bc:c7:79:ee:d5:37:0b:0a:ad:8c:8e:80: a0:22:d3:2f:1e:3a:bc:f2:d7:c3:c9:9f:bb:91:93:90:fc:6d: 63:40:08:fd:4c:3c:a2:b8:1c:94:b0:3c:5a:dc:6d:1f:d8:15: 79:b8:36:64:6e:7f:c5:97:a4:3a:a0:3c:e7:7d:3d:47:ce:e4: 45:6e:1b:69:44:6e:0c:f2:6c:6c:4e:77:02:c9:e0:e9:c8:19: 78:dc:45:03:67:a7:ba:08:6e:f5:a5:6f:5c:4b:05:3e:13:ff: 37:8a:44:f5:06:ad:4b:ed:6d:85:17:46:46:5f:92:77:56:0a: f0:e7:8f:69:f8:86:8c:99:9b:62:81:61:60:c1:d6:ca:98:f1: 38:54:65:02:d3:9e:53:33:95:81:34:f4:45:b8:2e:c3:1f:68: b5:ca:0e:e0:73:db:92:f0:ab:86:a3:b0:cb:06:48:92:86:ca: 9a:88:f0:50:1a:de:66:6e:be:05:ec:9d:70:ef:ea:b4:66:04: b6:74:44:84:c0:fd:42:71:3e:6e:e4:b9:62:7a:8a:03:8f:9d: 2e:0f:15:90 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRiYy00OGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8t6pVBmsEFAKKXHx8tHh4Y8UZDvyp101uPYrcrtRt077cCDoPX0koY+Sej7L MIcs//cf1ehKCK9KdCcuzbNeJzi+DYSZn1AbHd0l5tiD3xTaKM3z27X06vj2H5uM ZikaF5dYk/mD8d1y0tM8iHRypvdegSMTVQi9ad1GAKCIObW3VvZl5x8uKgMmz+rV DyRjB6LUrKRL+AillsuWdSN7xMsPFIsSoNI+ZpLeGgsBHj8ugJ8hjQtdjGvSEyNd kkieJzdpbY3UN2r2/X+fAwzPRloE/lQcj0zQEW36rD2WEz0ONMOUp8ECi/yxM9nQ sfVMY+MXCHPSz/LLFuoEnH8vhwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPaYLBJg dznxCIJpmwUax4k3q1rnMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzQwODk5MTY1 RjlEMTFFRDg1MjEwNDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnZoAwDwQCAAIwCQMHACABDfLZADANBgkqhkiG9w0BAQsF AAOCAQEASGhACjarBDfuXIVi2nBuMJjnYMOaCM/ODGarsrQp+bjT0z4CWGuZBfDT vMd57tU3CwqtjI6AoCLTLx46vPLXw8mfu5GTkPxtY0AI/Uw8orgclLA8WtxtH9gV ebg2ZG5/xZekOqA85309R87kRW4baURuDPJsbE53Asng6cgZeNxFA2enughu9aVv XEsFPhP/N4pE9QatS+1thRdGRl+Sd1YK8OePafiGjJmbYoFhYMHWypjxOFRlAtOe UzOVgTT0Rbguwx9otcoO4HPbkvCrhqOwywZIkobKmojwUBreZm6+BeydcO/qtGYE tnREhMD9QnE+buS5YnqKA4+dLg8VkA== -----END CERTIFICATE-----Generated at Mon Sep 8 05:39:23 2025 by rpki-client