$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5A40661A65DB11EDA2559051C4F9AE02.roa File: 5A40661A65DB11EDA2559051C4F9AE02.roa (raw, json) Hash identifier: 3d8JZNtDioNX6sgA5qDLBLklxvI6x87C2fiyQP2cCYw= Subject key identifier: 31:E9:FB:73:F1:1D:3B:F8:EF:26:F0:16:F5:3A:60:26:F6:F4:96:01 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D04 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5A40661A65DB11EDA2559051C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:53:29 +0000 ROA not before: Thu 28 Aug 2025 14:53:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135946 IP address blocks: 103.106.220.0/22 maxlen: 24 2001:df3:b500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19716 (0x4d04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d69-9c2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bf:4a:65:92:a4:d1:9a:bf:14:27:d3:9e:02: 01:fd:59:3c:b7:d2:36:0b:5d:3f:98:bc:1e:8d:27: 96:2c:42:cc:bf:b4:88:ea:20:17:81:04:79:59:c7: 42:74:b7:1f:78:3f:01:68:a1:aa:9f:7e:8f:f3:67: 39:8a:c3:f5:19:4e:be:64:09:9c:43:0e:f3:3b:26: 9a:08:69:f1:74:1e:bf:ab:84:55:9e:e7:a9:fb:4d: e4:2d:a0:f9:32:40:48:13:06:8c:99:49:c9:ac:9d: 02:2f:f9:71:77:97:c1:e2:74:df:50:1f:f8:44:a5: 4f:0c:ce:1c:8e:24:86:c5:c8:dd:19:1c:81:fc:02: 45:45:4c:94:67:a3:91:9f:b8:02:4f:a4:14:95:51: ee:78:22:7f:c6:a9:d2:a4:01:41:47:3b:07:da:17: a5:ae:1a:b2:fd:d2:af:00:47:a3:27:6e:3e:c0:85: c9:3e:c3:c6:27:5d:fb:29:fd:9f:ca:9e:7d:60:62: 3d:6a:f1:58:e9:6f:27:3e:ee:ec:a7:10:77:48:45: 37:32:99:41:09:8e:01:14:51:26:51:48:07:82:c2: 66:bc:68:95:8e:c8:5a:ff:0f:ba:bd:0e:8b:9f:ac: b2:10:eb:9d:2a:85:ee:a4:46:7a:27:4c:6e:e1:54: 16:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:E9:FB:73:F1:1D:3B:F8:EF:26:F0:16:F5:3A:60:26:F6:F4:96:01 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5A40661A65DB11EDA2559051C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.220.0/22 IPv6: 2001:df3:b500::/48 Signature Algorithm: sha256WithRSAEncryption 4c:79:02:07:3e:fb:31:43:c1:f7:35:a6:03:38:ea:7e:59:43: 00:60:8a:17:91:c7:3a:17:7b:58:8e:7c:eb:6d:ac:f5:0c:f9: 9f:2d:20:f6:46:6d:6e:4b:ea:82:93:52:4a:ae:a9:ad:98:20: b9:b4:ae:4a:80:29:86:39:cd:21:05:fb:79:b3:36:b2:d0:7f: b0:76:43:09:a7:56:f5:f4:ce:e4:8c:1a:72:a2:31:ee:2f:c6: 41:40:7e:97:38:16:b3:8e:e6:1f:2b:d7:54:70:18:6f:7c:7f: a4:a8:49:88:c2:7e:89:7c:54:4d:f2:25:da:74:75:76:55:72: 03:bc:a9:f2:01:21:e3:dc:37:53:d3:9f:6f:bb:6a:be:b0:b0: bf:d9:02:e8:0f:95:65:34:71:e7:d8:9f:8a:93:22:2e:03:cf: 5f:fa:6a:de:42:45:ba:e4:67:ac:b4:49:e2:84:61:dc:f8:8c: 79:05:29:b2:8e:5c:e6:56:c2:1e:25:36:cb:99:28:a9:18:6f: ab:74:95:96:97:01:f7:75:e1:e8:a7:0a:e3:47:c6:7c:e4:f9: d6:37:9f:45:e8:ef:bf:6f:50:65:ed:53:b6:9b:f4:d0:6a:78: ce:f8:b8:0d:82:8a:57:46:45:9e:78:10:51:61:20:22:ba:8b: a0:ca:ad:33 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ2OS05YzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr79KZZKk0Zq/FCfTngIB/Vk8t9I2C10/mLwejSeWLELMv7SI6iAXgQR5WcdC dLcfeD8BaKGqn36P82c5isP1GU6+ZAmcQw7zOyaaCGnxdB6/q4RVnuep+03kLaD5 MkBIEwaMmUnJrJ0CL/lxd5fB4nTfUB/4RKVPDM4cjiSGxcjdGRyB/AJFRUyUZ6OR n7gCT6QUlVHueCJ/xqnSpAFBRzsH2helrhqy/dKvAEejJ24+wIXJPsPGJ137Kf2f yp59YGI9avFY6W8nPu7spxB3SEU3MplBCY4BFFEmUUgHgsJmvGiVjsha/w+6vQ6L n6yyEOudKoXupEZ6J0xu4VQWuwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDHp+3Px HTv47ybwFvU6YCb29JYBMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNUE0MDY2MUE2 NURCMTFFREEyNTU5MDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnatwwDwQCAAIwCQMHACABDfO1ADANBgkqhkiG9w0BAQsF AAOCAQEATHkCBz77MUPB9zWmAzjqfllDAGCKF5HHOhd7WI58622s9Qz5ny0g9kZt bkvqgpNSSq6prZggubSuSoAphjnNIQX7ebM2stB/sHZDCadW9fTO5IwacqIx7i/G QUB+lzgWs47mHyvXVHAYb3x/pKhJiMJ+iXxUTfIl2nR1dlVyA7yp8gEh49w3U9Of b7tqvrCwv9kC6A+VZTRx59ifipMiLgPPX/pq3kJFuuRnrLRJ4oRh3PiMeQUpso5c 5lbCHiU2y5koqRhvq3SVlpcB93Xh6KcK40fGfOT51jefRejvv29QZe1Ttpv00Gp4 zvi4DYKKV0ZFnngQUWEgIrqLoMqtMw== -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:35 2025 by rpki-client