$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa File: 8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa (raw, json) Hash identifier: oYSJ4n/6EbVIAWmK/4F9Alv0B3yIeEC1nwzqw03Aen0= Subject key identifier: 64:4C:83:E6:FD:1C:64:C7:27:05:4F:C3:85:18:45:25:2E:74:A8:F8 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E41 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:55 +0000 ROA not before: Thu 28 Aug 2025 14:57:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 63741 IP address blocks: 103.51.120.0/23 maxlen: 24 103.216.72.0/22 maxlen: 24 103.245.244.0/22 maxlen: 24 163.227.120.0/24 maxlen: 24 163.227.121.0/24 maxlen: 24 163.227.228.0/23 maxlen: 24 203.167.8.0/22 maxlen: 24 2001:df5:66c0::/48 maxlen: 48 2001:df5:7c40::/48 maxlen: 48 2404:ee80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20033 (0x4e41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e73-ff1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f6:d2:a3:bf:e2:74:95:87:41:e6:4c:de:7d: 10:32:7a:fe:60:b6:90:10:46:c3:9e:26:f3:87:5f: c3:1f:32:39:e0:4c:6d:b2:11:e9:6a:9f:0c:24:6f: d4:b8:ee:40:31:b1:24:89:e4:47:ee:04:c1:f1:5e: ea:cc:cc:4f:92:8f:d0:b2:c5:c8:bb:49:c0:91:71: b8:17:37:81:0c:e5:17:9d:80:ae:dc:aa:e6:63:3d: c0:c6:ca:cf:7f:9e:2e:98:78:7a:24:46:6c:1f:25: ba:4b:0b:b9:20:8e:df:60:b4:70:c2:ed:5e:04:03: 54:6f:a0:e9:df:cf:5d:e1:7a:a3:1f:58:0f:45:53: 50:a7:5e:b4:72:d2:37:c8:f9:f6:0f:87:f8:31:75: b6:11:56:0d:d1:ef:5e:1b:0d:3e:67:a1:57:24:2f: db:01:ac:58:b3:5a:87:1b:92:77:05:60:85:cb:8e: 85:86:c7:91:f3:6b:8d:43:43:0a:8d:00:e4:ea:ed: 4e:e3:7f:d3:3c:69:f0:b8:75:04:d5:c6:1a:06:70: 40:c7:d9:e3:1f:0c:00:87:3a:f4:1e:15:44:c6:ca: 88:80:f5:fc:5e:3a:9b:0e:e0:d2:c0:74:47:68:e9: 6b:10:e6:c3:59:80:43:f8:74:73:67:30:35:0d:d9: ba:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4C:83:E6:FD:1C:64:C7:27:05:4F:C3:85:18:45:25:2E:74:A8:F8 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.120.0/23 103.216.72.0/22 103.245.244.0/22 163.227.120.0/23 163.227.228.0/23 203.167.8.0/22 IPv6: 2001:df5:66c0::/48 2001:df5:7c40::/48 2404:ee80::/48 Signature Algorithm: sha256WithRSAEncryption 61:fe:84:20:2f:ea:a7:60:f2:d9:b9:d3:71:3b:33:fa:ed:e6: b1:2a:ff:6b:ad:8a:f4:cc:64:b0:f9:5f:a9:ea:6a:0f:53:c8: 68:b5:a4:a9:6a:09:81:00:e0:b0:0d:0b:3e:54:4c:57:37:f6: 94:67:c5:45:de:21:2b:c1:bd:01:e5:87:53:e0:05:c4:7b:04: a0:f4:0f:19:62:b3:cb:68:7b:a6:43:31:df:d5:20:63:aa:30: 29:b2:fc:21:21:63:1d:53:f0:4f:35:b2:0d:80:ff:c5:5b:45: 65:bd:5b:09:95:07:42:54:dc:12:33:30:45:f0:b5:95:57:d0: 4a:81:88:9c:5e:90:d2:84:bd:2b:6b:1d:07:21:c9:37:34:4a: 42:da:e4:9a:30:f4:2a:38:05:0f:00:5d:a1:7d:0e:8f:9a:ea: 30:65:34:c1:5c:11:bd:67:80:9c:1e:d3:07:cf:4a:25:a6:0a: 60:e4:41:d4:07:18:96:ed:04:07:22:e4:ba:23:f2:4b:21:2a: ab:f9:5e:20:e4:da:36:b7:e0:6d:53:0e:a1:36:93:79:de:93: 8a:d7:1f:8e:ca:8b:0e:0e:e4:3e:50:e0:1e:b9:41:8d:b8:9c: 60:d9:99:56:72:50:69:f4:5e:16:ea:04:19:3c:d5:e1:5b:94: 49:36:c7:59 -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgICTkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU3My1mZjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvbSo7/idJWHQeZM3n0QMnr+YLaQEEbDnibzh1/DHzI54ExtshHpap8MJG/U uO5AMbEkieRH7gTB8V7qzMxPko/QssXIu0nAkXG4FzeBDOUXnYCu3KrmYz3AxsrP f54umHh6JEZsHyW6Swu5II7fYLRwwu1eBANUb6Dp389d4XqjH1gPRVNQp160ctI3 yPn2D4f4MXW2EVYN0e9eGw0+Z6FXJC/bAaxYs1qHG5J3BWCFy46FhseR82uNQ0MK jQDk6u1O43/TPGnwuHUE1cYaBnBAx9njHwwAhzr0HhVExsqIgPX8XjqbDuDSwHRH aOlrEObDWYBD+HRzZzA1Ddm6uwIDAQABo4IC1jCCAtIwHQYDVR0OBBYEFGRMg+b9 HGTHJwVPw4UYRSUudKj4MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEFFQThEM0NE RkZDMTFFQ0FFN0NFNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYAYIKwYBBQUHAQcBAf8E UTBPMCoEAgABMCQDBAFnM3gDBAJn2EgDBAJn9fQDBAGj43gDBAGj4+QDBALLpwgw IQQCAAIwGwMHACABDfVmwAMHACABDfV8QAMHACQE7oAAADANBgkqhkiG9w0BAQsF AAOCAQEAYf6EIC/qp2Dy2bnTcTsz+u3msSr/a62K9MxksPlfqepqD1PIaLWkqWoJ gQDgsA0LPlRMVzf2lGfFRd4hK8G9AeWHU+AFxHsEoPQPGWKzy2h7pkMx39UgY6ow KbL8ISFjHVPwTzWyDYD/xVtFZb1bCZUHQlTcEjMwRfC1lVfQSoGInF6Q0oS9K2sd ByHJNzRKQtrkmjD0KjgFDwBdoX0Oj5rqMGU0wVwRvWeAnB7TB89KJaYKYORB1AcY lu0EByLkuiPySyEqq/leIOTaNrfgbVMOoTaTed6TitcfjsqLDg7kPlDgHrlBjbic YNmZVnJQafReFuoEGTzV4VuUSTbHWQ== -----END CERTIFICATE-----Generated at Mon Sep 8 08:35:09 2025 by rpki-client