$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4AF9C7926EF811EE8230D338C4F9AE02.roa File: 4AF9C7926EF811EE8230D338C4F9AE02.roa (raw, json) Hash identifier: rZpUTVj3VGVToXDLZ+JPC75Bcm5b/XJhTg/9C2zruOY= Subject key identifier: 5E:24:9B:FC:2E:3D:8B:7E:AB:99:1C:FB:B0:57:92:E5:E2:E8:88:20 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DA7 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4AF9C7926EF811EE8230D338C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:43 +0000 ROA not before: Thu 28 Aug 2025 14:55:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151855 IP address blocks: 103.242.100.0/24 maxlen: 24 103.242.101.0/24 maxlen: 24 2401:4220::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19879 (0x4da7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06def-8cbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8f:c4:61:89:3c:49:c1:64:fe:d4:79:9e:e5: 0b:dc:5d:59:e3:da:9f:92:9c:3b:ca:3f:4f:37:77: e3:cc:e4:5a:09:41:4e:0b:58:6c:8b:98:62:10:08: 87:7c:7c:ec:5f:e7:89:3b:ec:3b:0e:b6:71:71:f0: d6:65:9a:8d:d5:bd:cd:2c:1a:aa:7c:d4:89:cd:f3: 68:7c:97:82:22:ff:22:4c:af:32:0e:b2:d8:89:33: 8c:7c:58:c1:d0:5f:96:56:d0:df:8f:b5:93:44:cc: c9:d6:fc:18:dd:73:7b:21:94:52:10:ad:dd:d8:e0: a0:3e:58:c2:5a:02:f5:5c:2d:68:d0:b9:a5:72:56: 16:c0:0c:da:b4:19:3a:0b:cf:54:ad:18:66:8c:72: 0b:b7:f0:6b:51:ee:9e:f9:43:4c:14:3a:9d:41:cf: 51:42:ef:50:6f:ec:4b:7b:ef:c5:ba:4c:4f:f0:7d: 60:82:5e:e0:ba:74:55:5d:7e:32:51:12:90:66:c0: e3:0c:ab:88:4a:2a:16:56:90:73:d6:70:aa:73:a4: 43:d2:c7:d8:18:19:c0:eb:fe:f5:20:79:6f:d1:cd: 44:7f:0d:7a:b9:26:c2:ac:12:ac:ff:8f:3c:27:92: 87:1c:4b:a3:13:fb:76:b7:ca:3f:41:2e:55:21:28: ac:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:24:9B:FC:2E:3D:8B:7E:AB:99:1C:FB:B0:57:92:E5:E2:E8:88:20 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4AF9C7926EF811EE8230D338C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.242.100.0/23 IPv6: 2401:4220::/48 Signature Algorithm: sha256WithRSAEncryption 72:5a:f7:fd:e6:90:68:19:e3:05:79:10:aa:7a:a2:a7:ce:0a: e3:9a:69:96:4e:f9:a6:3c:0f:42:61:ce:c7:05:e3:f5:9c:bd: fe:20:3c:a0:c9:9e:ee:f4:d7:14:0d:89:50:21:44:ea:cd:d8: 80:8f:5d:55:62:3e:10:a8:74:e9:00:b1:06:ae:80:dd:5f:c4: 6d:fe:c0:ce:45:24:58:d7:ad:d1:03:61:bf:10:9c:0a:a8:7c: f8:47:fe:e6:f7:94:49:bb:38:66:9f:e3:55:f1:f5:64:57:12: 9c:39:6a:66:59:ae:a4:13:80:cc:c2:38:fd:70:44:54:14:b0: ae:c1:a9:53:ef:ad:3b:65:21:d4:77:72:56:61:9e:fb:d9:6a: ae:e8:5f:0f:77:f4:c5:9c:c9:68:bc:8e:78:25:44:2d:22:8b: 82:00:3b:bc:4c:7c:c6:be:d6:98:99:10:c8:06:3f:3d:7f:73: e5:ce:db:c5:41:ca:8a:4a:44:b7:40:a4:65:18:d1:c4:7f:b5: ff:c1:2b:75:02:1d:01:35:85:bb:ff:e1:c2:12:65:ab:72:49: 00:dd:bd:c1:e2:ef:c9:fd:fd:ae:07:3a:cc:5a:e7:fc:56:54: 28:75:9f:20:ef:c3:d4:85:b4:3d:a8:30:99:be:99:3e:13:8f: 73:bf:0e:03 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRlZi04Y2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsY/EYYk8ScFk/tR5nuUL3F1Z49qfkpw7yj9PN3fjzORaCUFOC1hsi5hiEAiH fHzsX+eJO+w7DrZxcfDWZZqN1b3NLBqqfNSJzfNofJeCIv8iTK8yDrLYiTOMfFjB 0F+WVtDfj7WTRMzJ1vwY3XN7IZRSEK3d2OCgPljCWgL1XC1o0LmlclYWwAzatBk6 C89UrRhmjHILt/BrUe6e+UNMFDqdQc9RQu9Qb+xLe+/FukxP8H1ggl7gunRVXX4y URKQZsDjDKuISioWVpBz1nCqc6RD0sfYGBnA6/71IHlv0c1Efw16uSbCrBKs/488 J5KHHEujE/t2t8o/QS5VISisBwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF4km/wu PYt+q5kc+7BXkuXi6IggMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNEFGOUM3OTI2 RUY4MTFFRTgyMzBEMzM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn8mQwDwQCAAIwCQMHACQBQiAAADANBgkqhkiG9w0BAQsF AAOCAQEAclr3/eaQaBnjBXkQqnqip84K45pplk75pjwPQmHOxwXj9Zy9/iA8oMme 7vTXFA2JUCFE6s3YgI9dVWI+EKh06QCxBq6A3V/Ebf7AzkUkWNet0QNhvxCcCqh8 +Ef+5veUSbs4Zp/jVfH1ZFcSnDlqZlmupBOAzMI4/XBEVBSwrsGpU++tO2Uh1Hdy VmGe+9lqruhfD3f0xZzJaLyOeCVELSKLggA7vEx8xr7WmJkQyAY/PX9z5c7bxUHK ikpEt0CkZRjRxH+1/8ErdQIdATWFu//hwhJlq3JJAN29weLvyf39rgc6zFrn/FZU KHWfIO/D1IW0Pagwmb6ZPhOPc78OAw== -----END CERTIFICATE-----Generated at Mon Sep 8 05:33:14 2025 by rpki-client