$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3C50B390F40D11EA8F33167EC4F9AE02.roa File: 3C50B390F40D11EA8F33167EC4F9AE02.roa (raw, json) Hash identifier: VeeaV87Th/lhx3aZ9ws2cOkh4l2LV3G4PtAe07ENgTQ= Subject key identifier: 4B:CD:0E:0E:0C:ED:BF:EC:B6:27:AB:C7:A2:7F:10:9A:1B:A7:8B:38 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CB9 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3C50B390F40D11EA8F33167EC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:24 +0000 ROA not before: Thu 28 Aug 2025 14:52:24 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131365 IP address blocks: 103.9.84.0/22 maxlen: 24 2001:df0:3780::/48 maxlen: 48 2001:df0:3781::/48 maxlen: 48 2001:df0:3782::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19641 (0x4cb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:24 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d28-8f40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5d:8b:32:56:32:7a:bc:0c:fe:af:37:3b:b2: d5:b6:28:7a:7d:9e:12:4b:a5:8b:74:3d:8b:1a:d4: 41:65:60:1a:c8:9a:eb:7f:b0:82:91:30:16:d8:e8: 95:34:75:c3:cb:cf:23:d2:ba:90:99:55:cf:03:1b: e8:55:5b:29:23:cd:78:38:e2:25:31:55:f6:0c:25: de:49:08:c5:ea:66:ec:e8:b0:d7:f8:83:9a:1b:60: 60:7c:2e:ed:44:73:37:d0:b4:4d:58:ef:3f:06:99: 9e:84:49:11:2a:e3:78:53:2a:b7:94:a5:05:ad:83: cf:94:6d:70:65:23:81:cb:84:e5:e8:3c:a2:df:3e: be:e0:25:b5:46:b0:85:fa:36:a6:4b:11:4e:08:b4: 40:54:8e:c6:b8:e3:d4:dc:ca:52:50:04:cd:15:d0: 75:41:6a:7c:3c:38:03:6d:b1:49:2d:3b:5a:f6:ca: d6:d6:4b:d4:ee:d0:69:40:9b:de:56:07:d1:f5:8c: d7:93:9c:a9:3f:83:62:09:bb:b9:f2:a9:04:c7:64: 5e:01:1a:2e:2f:61:d7:32:04:6e:ba:cd:49:3b:9f: 7e:34:19:51:02:f4:c6:b4:7d:f0:59:7b:81:42:c1: 31:54:d3:0d:25:c5:33:12:59:d2:33:cc:8d:65:4e: ef:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:CD:0E:0E:0C:ED:BF:EC:B6:27:AB:C7:A2:7F:10:9A:1B:A7:8B:38 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3C50B390F40D11EA8F33167EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.84.0/22 IPv6: 2001:df0:3780::-2001:df0:3782:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 48:28:3e:a7:b8:b1:a9:b2:bd:7b:17:1e:69:20:f3:ea:94:e6: 71:2e:03:aa:40:24:f0:59:c0:f5:d4:e9:f6:0b:0c:c6:18:a0: 38:2f:9b:d3:e8:fb:5c:1f:61:0d:48:0e:8e:d2:c4:2d:2f:e1: d6:1b:ec:d0:d6:e2:28:be:ff:14:02:1c:8c:93:74:7d:78:73: 02:d1:e7:e3:48:70:94:65:69:0c:dc:fa:4b:d8:07:b3:b5:fa: 57:dd:bf:e4:6b:ac:09:66:10:49:1d:77:f8:a7:36:ab:cb:5f: 39:03:12:c8:39:84:b0:7e:d5:28:5f:c7:c4:20:74:3b:2d:d1: 5a:16:79:3c:dc:1a:58:e3:81:34:d5:35:06:c5:47:4b:55:4a: 2c:87:e1:18:d2:19:90:68:50:75:6b:c8:e3:19:85:29:f0:51: ff:f8:df:24:65:9b:d5:9c:3f:21:d7:fe:27:ca:44:9a:99:68: e6:f7:72:b9:d6:63:c6:7e:3b:50:d8:ab:4e:b3:0c:e2:d2:f4: 05:ce:69:af:ba:37:e7:e7:6f:16:8e:94:43:d8:b7:a5:3d:3e: 46:85:0f:01:fa:0b:fb:48:27:ef:68:cb:60:5a:f0:c1:0c:e0: 3c:88:7b:4b:7e:ba:5b:24:d2:3c:5a:28:a6:2a:86:cc:14:60: 54:50:e4:a2 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICTLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjI0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQyOC04ZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnF2LMlYyerwM/q83O7LVtih6fZ4SS6WLdD2LGtRBZWAayJrrf7CCkTAW2OiV NHXDy88j0rqQmVXPAxvoVVspI814OOIlMVX2DCXeSQjF6mbs6LDX+IOaG2BgfC7t RHM30LRNWO8/BpmehEkRKuN4Uyq3lKUFrYPPlG1wZSOBy4Tl6Dyi3z6+4CW1RrCF +jamSxFOCLRAVI7GuOPU3MpSUATNFdB1QWp8PDgDbbFJLTta9srW1kvU7tBpQJve VgfR9YzXk5ypP4NiCbu58qkEx2ReARouL2HXMgRuus1JO59+NBlRAvTGtH3wWXuB QsExVNMNJcUzElnSM8yNZU7vZQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFEvNDg4M 7b/stierx6J/EJobp4s4MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvM0M1MEIzOTBG NDBEMTFFQThGMzMxNjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAJnCVQwGgQCAAIwFDASAwcHIAEN8DeAAwcAIAEN8DeCMA0G CSqGSIb3DQEBCwUAA4IBAQBIKD6nuLGpsr17Fx5pIPPqlOZxLgOqQCTwWcD11On2 CwzGGKA4L5vT6PtcH2ENSA6O0sQtL+HWG+zQ1uIovv8UAhyMk3R9eHMC0efjSHCU ZWkM3PpL2AeztfpX3b/ka6wJZhBJHXf4pzary185AxLIOYSwftUoX8fEIHQ7LdFa Fnk83BpY44E01TUGxUdLVUosh+EY0hmQaFB1a8jjGYUp8FH/+N8kZZvVnD8h1/4n ykSamWjm93K51mPGfjtQ2KtOswzi0vQFzmmvujfn528WjpRD2LelPT5GhQ8B+gv7 SCfvaMtgWvDBDOA8iHtLfrpbJNI8WiimKobMFGBUUOSi -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:35 2025 by rpki-client