$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8358F046710211F0A1DDE769C4F9AE02.roa File: 8358F046710211F0A1DDE769C4F9AE02.roa (raw, json) Hash identifier: BnGLqJ1RmFG763c9lw2EXkK6eloDFEFZitSZ7IfnLIo= Subject key identifier: 6F:C8:7A:CE:CA:A8:37:4D:7F:45:12:7A:14:42:1B:86:48:E1:B9:7D Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D42 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8358F046710211F0A1DDE769C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:54:20 +0000 ROA not before: Thu 28 Aug 2025 14:54:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140825 IP address blocks: 59.153.216.0/22 maxlen: 24 103.12.76.0/23 maxlen: 24 103.81.84.0/22 maxlen: 24 2001:df0:5b40::/48 maxlen: 48 2001:df0:5bc0::/48 maxlen: 48 2001:df0:90c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19778 (0x4d42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d9c-8ee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:ce:89:2c:1b:04:3d:eb:47:5e:30:d8:7a: 1e:6e:fd:5a:ab:22:ae:f5:49:e9:3b:bb:c7:71:1b: a1:6a:a4:fa:eb:cd:dc:77:8f:44:7b:0a:73:6c:9b: 4b:9e:ed:c4:cf:b4:83:19:cb:b1:0b:cc:67:82:51: 63:d1:30:11:fe:92:13:2a:9d:77:a8:f7:47:a6:6f: 22:1e:50:bc:9a:c4:36:8a:22:d4:97:b6:c7:63:56: be:f7:8f:d7:c7:ae:46:63:34:f3:ef:3a:e6:be:c3: d7:80:a8:93:0a:07:25:bf:0c:ba:6e:96:0f:a3:85: 94:e3:be:a1:d0:d1:d0:32:79:fa:01:d5:42:a0:7e: e1:99:b9:af:f5:e8:91:ee:ee:5c:72:24:6b:ed:a6: 33:ae:84:06:f6:9e:20:73:e6:ae:6d:54:9a:c2:0a: 38:7d:db:f5:79:b0:fb:d6:f5:a0:92:7e:64:81:c2: cf:ee:33:6d:98:6d:50:2f:f9:67:82:58:bc:7f:9c: 01:d6:fd:05:7d:a7:58:8f:aa:c5:cd:90:e5:b4:d3: f7:ab:80:42:85:1e:53:c3:47:63:6c:5e:5e:80:18: d0:4e:32:ba:18:e9:3f:ed:08:ae:01:2f:34:86:41: 4d:70:1d:17:cf:68:ff:1b:8d:4b:83:6c:bb:f7:34: 47:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:C8:7A:CE:CA:A8:37:4D:7F:45:12:7A:14:42:1B:86:48:E1:B9:7D X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8358F046710211F0A1DDE769C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.216.0/22 103.12.76.0/23 103.81.84.0/22 IPv6: 2001:df0:5b40::/48 2001:df0:5bc0::/48 2001:df0:90c0::/48 Signature Algorithm: sha256WithRSAEncryption 00:a4:ad:fa:4c:b3:eb:47:3a:26:4d:25:08:c5:8f:ce:21:18: 2b:1c:21:44:10:bb:72:52:3d:7d:92:fc:a6:60:f7:82:dd:58: 32:0c:1a:0f:25:6d:e8:d0:86:7a:3c:30:bb:56:ae:ae:d3:6f: 88:eb:e3:c4:2b:b9:92:6a:4b:12:f3:3a:4d:2d:e5:14:8a:fd: ad:87:c8:5c:a1:d2:a6:0b:15:0a:43:37:50:4b:d9:05:ee:55: a9:28:8e:8c:47:90:20:1a:cd:4d:91:b7:e8:52:d6:8b:b3:df: 6e:92:2c:1e:69:35:25:f9:35:87:c4:9e:e6:43:13:69:40:d7: ba:ab:15:00:6a:c1:34:60:3b:17:10:bd:4e:fe:e2:f6:21:18: 3a:6c:46:55:24:2b:8c:de:4e:e2:71:48:af:83:a7:fe:05:aa: f6:e5:dd:e6:3a:fe:70:d3:8d:de:4e:13:3a:fc:fd:8d:62:2d: ec:61:9e:cb:11:72:d7:cf:46:70:70:17:ff:77:2a:c9:a9:b6: be:b5:d7:51:97:56:6f:e6:ab:a1:01:d8:72:0e:91:89:79:ce: ae:72:97:ff:f8:f9:4f:4c:73:f3:82:ec:bc:7c:13:a8:ef:db: a2:0f:7b:cc:15:de:4c:5c:0c:fa:78:86:b6:db:0b:2a:66:e9: 8d:c9:db:8c -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgICTUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ5Yy04ZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVbOiSwbBD3rR14w2Hoebv1aqyKu9UnpO7vHcRuhaqT6683cd49EewpzbJtL nu3Ez7SDGcuxC8xnglFj0TAR/pITKp13qPdHpm8iHlC8msQ2iiLUl7bHY1a+94/X x65GYzTz7zrmvsPXgKiTCgclvwy6bpYPo4WU476h0NHQMnn6AdVCoH7hmbmv9eiR 7u5cciRr7aYzroQG9p4gc+aubVSawgo4fdv1ebD71vWgkn5kgcLP7jNtmG1QL/ln gli8f5wB1v0FfadYj6rFzZDltNP3q4BChR5Tw0djbF5egBjQTjK6GOk/7QiuAS80 hkFNcB0Xz2j/G41Lg2y79zRH2QIDAQABo4ICxDCCAsAwHQYDVR0OBBYEFG/Ies7K qDdNf0USehRCG4ZI4bl9MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvODM1OEYwNDY3 MTAyMTFGMEExRERFNzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTgYIKwYBBQUHAQcBAf8E PzA9MBgEAgABMBIDBAI7mdgDBAFnDEwDBAJnUVQwIQQCAAIwGwMHACABDfBbQAMH ACABDfBbwAMHACABDfCQwDANBgkqhkiG9w0BAQsFAAOCAQEAAKSt+kyz60c6Jk0l CMWPziEYKxwhRBC7clI9fZL8pmD3gt1YMgwaDyVt6NCGejwwu1aurtNviOvjxCu5 kmpLEvM6TS3lFIr9rYfIXKHSpgsVCkM3UEvZBe5VqSiOjEeQIBrNTZG36FLWi7Pf bpIsHmk1Jfk1h8Se5kMTaUDXuqsVAGrBNGA7FxC9Tv7i9iEYOmxGVSQrjN5O4nFI r4On/gWq9uXd5jr+cNON3k4TOvz9jWIt7GGeyxFy189GcHAX/3cqyam2vrXXUZdW b+aroQHYcg6RiXnOrnKX//j5T0xz84LsvHwTqO/bog97zBXeTFwM+niGttsLKmbp jcnbjA== -----END CERTIFICATE-----Generated at Mon Sep 8 05:41:43 2025 by rpki-client