$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8F400B883FFE11EEBFDFCF4CC4F9AE02.roa File: 8F400B883FFE11EEBFDFCF4CC4F9AE02.roa (raw, json) Hash identifier: cQ11JKJulkreOUMh0QTZ0TRL58eFAWwQVz9jC+dfuYg= Subject key identifier: A6:5B:A7:7B:29:24:4E:4B:2B:45:C3:6E:A2:42:BB:AA:29:F8:D0:FC Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D8E Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8F400B883FFE11EEBFDFCF4CC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:23 +0000 ROA not before: Thu 28 Aug 2025 14:55:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150861 IP address blocks: 103.68.248.0/22 maxlen: 22 103.147.188.0/23 maxlen: 23 103.182.20.0/23 maxlen: 23 2001:df0:74c0::/48 maxlen: 48 2405:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19854 (0x4d8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06ddb-57bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:74:1f:67:75:55:30:ac:db:85:87:6d:cf:93: da:d1:ea:4b:0e:1a:57:00:be:43:44:f3:e6:25:23: a9:f1:59:b0:27:45:aa:17:a0:8a:e9:4b:fa:f7:e6: c2:a6:32:3e:74:b1:35:1a:18:be:ad:c2:db:f3:f3: fb:a6:5f:43:3a:d2:dc:8d:e4:8b:f2:eb:c3:26:ac: 68:9b:01:2a:dd:3f:15:5c:76:9e:cb:a6:76:08:3a: ed:a8:d6:b7:4e:d1:14:2d:9b:66:2a:cb:d2:ea:1b: ec:bd:af:61:88:6c:bd:e7:52:3a:c9:22:15:c0:23: f1:f6:5f:6c:d5:22:20:cd:20:7e:b9:40:2e:fa:dc: 4a:a5:ff:03:25:75:04:e3:d5:8c:59:20:0d:e1:a2: 77:b5:7b:f1:c3:8f:53:dd:db:aa:a9:60:72:e3:08: ce:6d:f9:c4:7f:2f:75:0d:43:9d:7b:48:a2:20:8a: a4:26:c6:02:d6:13:92:9c:ee:14:19:9f:e2:2d:6f: 4f:af:91:66:f7:3a:74:c8:8f:2b:0e:b6:cb:a4:ed: 22:ac:00:93:77:16:0d:02:63:22:3f:e6:a8:ae:b9: 7c:78:7c:ff:1c:44:f2:56:84:42:a0:7d:42:f6:27: 8a:19:85:c7:f8:a7:a0:c0:a8:49:59:29:de:b6:08: f0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5B:A7:7B:29:24:4E:4B:2B:45:C3:6E:A2:42:BB:AA:29:F8:D0:FC X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8F400B883FFE11EEBFDFCF4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.248.0/22 103.147.188.0/23 103.182.20.0/23 IPv6: 2001:df0:74c0::/48 2405:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 7c:15:a3:97:bd:72:55:dc:c1:e7:8f:06:5b:88:3e:83:ea:63: 40:74:33:e8:ad:44:c8:c1:f1:b1:7c:34:7b:94:b6:f0:22:60: 5b:a5:21:6f:95:5e:99:43:01:ca:0a:5a:77:f9:7e:8d:0b:cd: ec:0c:b0:80:60:16:07:35:34:f8:b5:a6:d2:4c:fa:cf:22:09: b5:26:d3:1f:c9:a2:b0:66:40:92:1c:21:31:78:7e:c7:c7:f2: 21:c7:d1:ab:1b:b5:74:29:b0:b0:70:52:b5:d1:e3:bf:2a:a3: b9:ef:41:34:83:4c:bc:bc:02:04:1c:f9:09:65:e7:66:0b:4a: 90:fe:2c:73:56:a9:c6:39:9a:78:7e:3c:aa:64:0c:70:35:fe: 2b:b6:2c:cf:39:b0:ee:f8:06:ef:e2:00:7f:38:de:69:f6:88: 50:8e:30:b5:ca:4a:3d:5f:3d:09:a1:4b:a4:82:3c:91:3d:36: 50:16:98:b0:15:4d:0e:11:bc:a8:ad:cf:c1:b9:06:2d:7a:c9: ab:9c:e3:50:5a:47:a6:52:6e:00:e3:d8:f5:29:99:4d:aa:ac: 79:b5:d3:e4:15:cd:f7:ae:d1:ba:df:98:83:9e:a3:8f:8c:db: 65:6a:a3:ac:0e:c7:db:40:26:6f:77:8a:16:85:03:3d:17:4f: 04:e8:bc:ed -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICTY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRkYi01N2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnQfZ3VVMKzbhYdtz5Pa0epLDhpXAL5DRPPmJSOp8VmwJ0WqF6CK6Uv69+bC pjI+dLE1Ghi+rcLb8/P7pl9DOtLcjeSL8uvDJqxomwEq3T8VXHaey6Z2CDrtqNa3 TtEULZtmKsvS6hvsva9hiGy951I6ySIVwCPx9l9s1SIgzSB+uUAu+txKpf8DJXUE 49WMWSAN4aJ3tXvxw49T3duqqWBy4wjObfnEfy91DUOde0iiIIqkJsYC1hOSnO4U GZ/iLW9Pr5Fm9zp0yI8rDrbLpO0irACTdxYNAmMiP+aorrl8eHz/HETyVoRCoH1C 9ieKGYXH+KegwKhJWSnetgjwgwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFKZbp3sp JE5LK0XDbqJCu6op+ND8MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEY0MDBCODgz RkZFMTFFRUJGREZDRjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAJnRPgDBAFnk7wDBAFnthQwGAQCAAIwEgMHACABDfB0wAMH ACQFEMAAADANBgkqhkiG9w0BAQsFAAOCAQEAfBWjl71yVdzB548GW4g+g+pjQHQz 6K1EyMHxsXw0e5S28CJgW6Uhb5VemUMBygpad/l+jQvN7AywgGAWBzU0+LWm0kz6 zyIJtSbTH8misGZAkhwhMXh+x8fyIcfRqxu1dCmwsHBStdHjvyqjue9BNINMvLwC BBz5CWXnZgtKkP4sc1apxjmaeH48qmQMcDX+K7Yszzmw7vgG7+IAfzjeafaIUI4w tcpKPV89CaFLpII8kT02UBaYsBVNDhG8qK3PwbkGLXrJq5zjUFpHplJuAOPY9SmZ TaqsebXT5BXN967Rut+Yg56jj4zbZWqjrA7H20Amb3eKFoUDPRdPBOi87Q== -----END CERTIFICATE-----Generated at Mon Sep 8 05:36:05 2025 by rpki-client