$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A51E38149A11EDB9CF2F70C4F9AE02.roa File: 43A51E38149A11EDB9CF2F70C4F9AE02.roa (raw, json) Hash identifier: i8CWkKRoywCFbXPlxQbKQpCaLKmDKlU2xmnzFnRBsxs= Subject key identifier: 64:22:54:61:F5:D1:84:12:D1:85:1C:0E:70:4D:F5:01:42:E5:3C:6A Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CAD Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A51E38149A11EDB9CF2F70C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:14 +0000 ROA not before: Thu 28 Aug 2025 14:52:14 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131342 IP address blocks: 103.4.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19629 (0x4cad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:14 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d1e-12d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ae:9d:07:b5:db:c2:07:35:98:f5:86:d1:e6: ca:49:5d:e6:cf:2f:30:8e:19:c1:85:56:51:c2:db: 8c:c9:a1:5b:7d:b9:00:b3:87:54:ad:56:32:ff:2a: bb:a0:30:8a:6d:03:6c:99:a7:26:c9:f1:2f:d8:be: 86:5d:1a:e4:17:36:1e:24:6c:08:79:56:97:c5:9a: f0:0e:dc:1d:9f:fd:d1:ce:97:1e:40:ec:3b:35:90: 02:cd:82:f2:2d:11:4d:d3:a4:dd:c9:75:e5:78:39: 83:23:87:bf:8d:36:2d:62:dc:4a:da:43:86:47:16: d0:69:73:35:88:cc:10:59:2d:fe:b8:54:9f:77:84: f7:a5:93:14:de:3a:43:c8:de:98:00:1c:29:1a:72: 7d:f7:0e:bf:5a:54:12:0f:49:8b:d9:c8:4e:8d:a0: 72:43:1e:0b:d4:f9:98:5f:a5:b4:86:a7:38:1c:dd: 16:85:31:ba:3c:cf:23:41:79:21:06:6b:5e:0b:d4: a8:d1:19:69:0d:6a:bd:a6:de:8a:21:fd:8a:b8:69: f5:2e:c2:d1:14:66:2e:17:4d:0b:f5:ad:24:2a:e6: ff:5c:c0:d9:88:0a:d8:d9:22:96:ed:3b:ce:1e:2b: 55:c3:87:40:33:05:24:6c:fe:c1:04:6c:3a:b4:f7: 79:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:22:54:61:F5:D1:84:12:D1:85:1C:0E:70:4D:F5:01:42:E5:3C:6A X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A51E38149A11EDB9CF2F70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.4.128.0/22 Signature Algorithm: sha256WithRSAEncryption 82:5d:a6:00:d7:dd:f5:4f:6f:28:8f:5f:55:9b:09:a5:c6:b4: 8b:77:39:2d:8a:a6:08:f9:41:75:6a:ed:75:28:48:2e:98:01: e7:de:6a:9c:91:d5:3b:e3:3f:c8:74:33:a0:25:dd:de:84:c1: b7:45:fa:d7:c5:e4:19:e8:1e:26:d0:28:53:38:09:75:ff:1c: 2b:0d:ed:48:78:8d:dc:4c:ef:b8:0d:26:1b:3f:35:2e:20:e6: 6a:29:b8:11:c0:89:10:bc:5e:f8:f2:db:e3:bd:7f:55:d8:62: f2:51:7a:26:3e:df:20:8e:1c:a9:84:e9:be:98:17:37:50:d8: ec:f0:2b:05:e8:4b:cb:f3:c1:8b:94:70:e0:c5:2a:64:44:60: b8:a6:db:5b:4c:1f:d2:cf:5c:b5:f5:3a:d0:0d:39:be:a1:84: a0:06:ba:05:4b:c5:29:41:1a:16:d3:db:bf:ae:d0:53:50:e9: b0:76:d1:dd:59:15:dc:f8:d3:c7:d3:47:e4:46:b7:57:70:ae: 01:ca:6c:33:9f:43:b1:14:28:4c:29:0c:b6:58:9a:a5:b4:1d: f5:f7:ad:6b:a7:6e:6d:13:1f:95:35:b3:52:50:7e:53:91:e4: 89:09:d2:1c:d1:08:f6:98:84:0f:a8:0d:9a:b8:60:de:61:86: eb:0c:db:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjE0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQxZS0xMmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq66dB7Xbwgc1mPWG0ebKSV3mzy8wjhnBhVZRwtuMyaFbfbkAs4dUrVYy/yq7 oDCKbQNsmacmyfEv2L6GXRrkFzYeJGwIeVaXxZrwDtwdn/3RzpceQOw7NZACzYLy LRFN06TdyXXleDmDI4e/jTYtYtxK2kOGRxbQaXM1iMwQWS3+uFSfd4T3pZMU3jpD yN6YABwpGnJ99w6/WlQSD0mL2chOjaByQx4L1PmYX6W0hqc4HN0WhTG6PM8jQXkh BmteC9So0RlpDWq9pt6KIf2KuGn1LsLRFGYuF00L9a0kKub/XMDZiArY2SKW7TvO HitVw4dAMwUkbP7BBGw6tPd5LwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGQiVGH1 0YQS0YUcDnBN9QFC5TxqMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDNBNTFFMzgx NDlBMTFFREI5Q0YyRjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBIAwDQYJKoZIhvcNAQELBQADggEBAIJdpgDX3fVPbyiP X1WbCaXGtIt3OS2Kpgj5QXVq7XUoSC6YAefeapyR1TvjP8h0M6Al3d6EwbdF+tfF 5BnoHibQKFM4CXX/HCsN7Uh4jdxM77gNJhs/NS4g5mopuBHAiRC8Xvjy2+O9f1XY YvJReiY+3yCOHKmE6b6YFzdQ2OzwKwXoS8vzwYuUcODFKmREYLim21tMH9LPXLX1 OtANOb6hhKAGugVLxSlBGhbT27+u0FNQ6bB20d1ZFdz408fTR+RGt1dwrgHKbDOf Q7EUKEwpDLZYmqW0HfX3rWunbm0TH5U1s1JQflOR5IkJ0hzRCPaYhA+oDZq4YN5h husM20k= -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:33 2025 by rpki-client