$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/38EF307A603B11EFBF7CD531C4F9AE02.roa File: 38EF307A603B11EFBF7CD531C4F9AE02.roa (raw, json) Hash identifier: 7w5SeRGRBgrl6UOmjufW6+MUDbsMWvTL1RUvBCo++HM= Subject key identifier: E3:8E:44:01:08:D0:E5:B8:A5:D7:FF:BE:01:4F:91:D3:48:4F:35:09 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CC6 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/38EF307A603B11EFBF7CD531C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:35 +0000 ROA not before: Thu 28 Aug 2025 14:52:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131389 IP address blocks: 103.241.248.0/24 maxlen: 24 103.241.249.0/24 maxlen: 24 103.241.250.0/24 maxlen: 24 103.241.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19654 (0x4cc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d33-a8e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:65:f1:ac:a6:ce:3e:46:dc:a1:01:a1:89:d4: 56:9b:45:d3:38:cd:38:a1:eb:64:e6:d8:3f:6c:9c: 7d:c3:88:aa:71:5f:7e:3a:b4:f2:ed:89:76:ca:06: e6:d2:7f:e7:18:7f:6c:47:7f:c4:dc:61:9d:ca:fa: 20:c1:ce:11:cc:bb:ea:a6:8d:59:68:1f:fa:f3:b0: 2b:fd:8f:6f:1d:51:65:f8:06:eb:fa:24:65:6d:e9: 92:67:8d:09:54:fd:d0:cd:60:c7:42:72:07:0b:7a: 23:9a:b9:74:c3:8e:68:2e:b4:16:bf:42:35:87:23: ce:63:b6:64:4b:d7:44:fa:4a:f3:04:fd:cb:fb:cb: 12:a9:a5:94:71:76:df:02:b5:0b:31:44:85:ad:4d: 9a:c2:ac:52:66:10:98:68:aa:fa:53:18:bf:b2:f0: df:73:e2:76:fe:bb:da:51:1e:28:33:ac:11:94:23: 42:60:59:fa:a5:a1:6b:c0:ff:84:57:03:d9:26:83: 05:bc:e6:82:b7:47:65:fc:73:2d:5d:d2:a6:5c:69: e9:97:2a:69:3f:cf:40:d7:bf:40:55:d0:dd:5a:5d: bf:4d:7a:bc:0f:94:d8:c7:e4:9d:d5:5e:4e:83:a1: 81:00:a9:21:9d:24:26:b0:cb:98:75:4e:8b:05:b2: a6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:8E:44:01:08:D0:E5:B8:A5:D7:FF:BE:01:4F:91:D3:48:4F:35:09 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/38EF307A603B11EFBF7CD531C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.248.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:88:c5:ac:ce:e5:6c:0c:d1:27:08:be:63:1a:35:8a:9c:c0: f1:90:f7:4f:3c:fe:5f:86:e3:5f:dc:79:ec:c3:5c:73:03:93: 50:99:8e:71:bb:bc:ec:85:cd:a5:61:53:b3:33:c1:ca:0c:c1: 7d:60:af:cf:f6:53:4f:34:da:6b:71:c0:68:9a:4a:05:00:2f: 27:2a:b7:c8:75:4e:33:6b:75:24:b4:43:26:40:97:e2:42:17: df:ea:00:c4:8e:47:e2:cf:21:b8:a1:5c:bb:89:33:c7:99:b3: 88:f5:d1:79:1f:ba:7b:5f:5e:93:ea:1c:37:43:9d:0c:27:4b: 6d:70:24:ef:6d:f3:bf:a4:1d:d2:49:fd:41:88:27:d3:d3:71: 98:8f:ad:41:9f:5f:76:ae:cb:4b:8c:96:39:1f:d0:a4:42:bd: 2e:25:14:89:4a:2b:c7:c3:cd:26:86:97:eb:67:9d:82:4d:b2: 62:53:bb:c4:af:6e:06:3a:ec:3c:97:23:7d:4e:7a:71:06:7e: b7:a5:6f:8e:70:94:49:32:a8:e0:cb:b2:2d:b5:75:94:47:cd: 9b:ff:86:22:da:df:c4:94:f8:04:bf:2d:ea:3d:dc:fa:5c:91: d8:f1:6c:82:40:99:fc:bb:b4:07:07:52:dc:30:22:d9:bb:4e: 5d:0d:e9:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQzMy1hOGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mXxrKbOPkbcoQGhidRWm0XTOM04oetk5tg/bJx9w4iqcV9+OrTy7Yl2ygbm 0n/nGH9sR3/E3GGdyvogwc4RzLvqpo1ZaB/687Ar/Y9vHVFl+Abr+iRlbemSZ40J VP3QzWDHQnIHC3ojmrl0w45oLrQWv0I1hyPOY7ZkS9dE+krzBP3L+8sSqaWUcXbf ArULMUSFrU2awqxSZhCYaKr6Uxi/svDfc+J2/rvaUR4oM6wRlCNCYFn6paFrwP+E VwPZJoMFvOaCt0dl/HMtXdKmXGnplyppP89A179AVdDdWl2/TXq8D5TYx+Sd1V5O g6GBAKkhnSQmsMuYdU6LBbKmFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOOORAEI 0OW4pdf/vgFPkdNITzUJMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzhFRjMwN0E2 MDNCMTFFRkJGN0NENTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8fgwDQYJKoZIhvcNAQELBQADggEBAB+IxazO5WwM0ScI vmMaNYqcwPGQ9088/l+G41/ceezDXHMDk1CZjnG7vOyFzaVhU7MzwcoMwX1gr8/2 U0802mtxwGiaSgUALycqt8h1TjNrdSS0QyZAl+JCF9/qAMSOR+LPIbihXLuJM8eZ s4j10XkfuntfXpPqHDdDnQwnS21wJO9t87+kHdJJ/UGIJ9PTcZiPrUGfX3auy0uM ljkf0KRCvS4lFIlKK8fDzSaGl+tnnYJNsmJTu8SvbgY67DyXI31OenEGfrelb45w lEkyqODLsi21dZRHzZv/hiLa38SU+AS/Leo93PpckdjxbIJAmfy7tAcHUtwwItm7 Tl0N6cQ= -----END CERTIFICATE-----Generated at Mon Sep 8 05:39:26 2025 by rpki-client