$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/48543F6A8E5111EC9893FC68C4F9AE02.roa File: 48543F6A8E5111EC9893FC68C4F9AE02.roa (raw, json) Hash identifier: quQ4J7i+3zhXrNffIgp16FyC1swL1A3dgzISPsXkQ7E= Subject key identifier: C6:06:B4:57:AE:38:05:1A:FC:5D:96:B7:9F:4C:70:10:8C:F9:65:89 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E24 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/48543F6A8E5111EC9893FC68C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:30 +0000 ROA not before: Thu 28 Aug 2025 14:57:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55309 IP address blocks: 103.235.208.0/22 maxlen: 24 112.109.88.0/21 maxlen: 24 182.237.20.0/22 maxlen: 24 2405:cb00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20004 (0x4e24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e59-49f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:39:25:50:68:49:7d:b8:bb:71:d0:41:b4:17: d4:a3:e7:19:f3:aa:39:3b:12:b2:06:f8:12:72:6b: 8c:64:a9:48:26:cd:85:39:6e:28:da:28:8b:68:ec: e4:2a:9c:ab:c7:91:d6:9b:a7:1e:af:62:4c:fc:43: ff:80:36:30:b7:ed:13:55:82:b9:9f:e3:76:a0:30: 20:b4:cd:86:a8:1b:95:c8:53:41:46:32:dc:15:95: 2c:cd:1f:ff:0a:b5:b7:da:d1:d3:e0:30:41:4a:c7: 31:0f:2f:ef:5b:02:be:6b:8e:49:b7:e3:d6:16:39: 63:10:7c:98:fa:0f:cf:9a:cd:46:67:89:10:c7:34: 1a:35:d3:2a:72:ea:a7:1c:b6:ce:b2:c8:53:f7:50: 16:ea:33:4f:c2:07:da:8c:ed:42:a7:f6:95:79:dd: 3d:34:e5:c6:61:6e:c0:64:43:96:27:fd:c1:48:8f: 24:b5:50:c9:07:20:0b:f1:6f:2f:e1:d8:57:bb:9b: 91:8c:e7:ae:83:f0:4b:7e:2e:b4:04:5e:8f:cd:df: 7d:a4:b5:04:4e:63:8a:dc:7d:a4:5a:4c:71:00:92: 58:08:b6:ca:eb:19:e2:cc:6f:68:4d:7c:4a:a0:8a: 7e:d3:c3:8a:32:5a:c2:3d:bf:14:3f:82:1e:82:97: 87:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:06:B4:57:AE:38:05:1A:FC:5D:96:B7:9F:4C:70:10:8C:F9:65:89 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/48543F6A8E5111EC9893FC68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.208.0/22 112.109.88.0/21 182.237.20.0/22 IPv6: 2405:cb00::/48 Signature Algorithm: sha256WithRSAEncryption 43:29:e9:32:b5:fe:ad:8f:cc:ce:2b:6d:3a:13:0d:d2:d7:69: 44:eb:4f:c8:2f:bb:9c:89:0e:07:91:42:75:0d:38:88:1e:4f: ae:f7:ad:2d:a2:51:0a:c5:92:fa:97:ef:27:0c:01:69:5e:80: 6f:bc:a9:e5:54:85:6f:9a:54:3c:1f:db:fe:65:af:f6:0a:24: 84:e0:e0:12:00:c3:ea:c2:12:7c:d4:5d:af:86:ba:5f:c1:d1: a0:fc:b4:7b:fc:2b:e5:32:80:3f:6c:9a:56:cd:4a:95:50:2d: 39:57:9e:2f:86:8e:b6:fe:38:c3:74:8e:5e:76:c7:65:cd:9d: eb:15:14:03:3f:c6:0d:9e:a7:40:61:3d:0d:67:a9:c7:36:53: cb:b4:c8:51:a4:7e:3e:b0:ca:d1:96:1e:26:44:92:71:fa:44: de:5a:a0:0c:8b:b4:e5:db:07:79:2b:2f:b2:08:33:2b:b7:05: 44:9c:80:ca:68:bc:7b:14:56:a8:30:ab:7d:db:fb:df:be:a3: 0a:6e:2e:8a:4a:ee:4e:f2:e4:d6:90:02:12:73:0d:46:32:80: e9:b7:8b:92:d1:45:6b:f7:4e:6e:e1:2f:17:cf:cb:df:83:74: cc:ba:b3:6e:37:30:6e:11:16:03:b7:cc:ac:7d:51:c1:c4:8d: 93:f1:7d:87 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICTiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU1OS00OWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTklUGhJfbi7cdBBtBfUo+cZ86o5OxKyBvgScmuMZKlIJs2FOW4o2iiLaOzk Kpyrx5HWm6cer2JM/EP/gDYwt+0TVYK5n+N2oDAgtM2GqBuVyFNBRjLcFZUszR// CrW32tHT4DBBSscxDy/vWwK+a45Jt+PWFjljEHyY+g/Pms1GZ4kQxzQaNdMqcuqn HLbOsshT91AW6jNPwgfajO1Cp/aVed09NOXGYW7AZEOWJ/3BSI8ktVDJByAL8W8v 4dhXu5uRjOeug/BLfi60BF6Pzd99pLUETmOK3H2kWkxxAJJYCLbK6xnizG9oTXxK oIp+08OKMlrCPb8UP4IegpeHrQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFMYGtFeu OAUa/F2Wt59McBCM+WWJMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDg1NDNGNkE4 RTUxMTFFQzk4OTNGQzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAJn69ADBANwbVgDBAK27RQwDwQCAAIwCQMHACQFywAAADAN BgkqhkiG9w0BAQsFAAOCAQEAQynpMrX+rY/MzittOhMN0tdpROtPyC+7nIkOB5FC dQ04iB5PrvetLaJRCsWS+pfvJwwBaV6Ab7yp5VSFb5pUPB/b/mWv9gokhODgEgDD 6sISfNRdr4a6X8HRoPy0e/wr5TKAP2yaVs1KlVAtOVeeL4aOtv44w3SOXnbHZc2d 6xUUAz/GDZ6nQGE9DWepxzZTy7TIUaR+PrDK0ZYeJkSScfpE3lqgDIu05dsHeSsv sggzK7cFRJyAymi8exRWqDCrfdv7376jCm4uikruTvLk1pACEnMNRjKA6beLktFF a/dObuEvF8/L34N0zLqzbjcwbhEWA7fMrH1RwcSNk/F9hw== -----END CERTIFICATE-----Generated at Mon Sep 8 05:43:24 2025 by rpki-client