$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/921900E0F38011EE9DA42620C4F9AE02.roa File: 921900E0F38011EE9DA42620C4F9AE02.roa (raw, json) Hash identifier: Gkz4CkjpufP564OCVolGroS34svCRGN2eH6zg0A75uo= Subject key identifier: 71:4F:5D:BC:E9:6A:7B:D6:3F:C0:28:57:43:A2:FD:D6:8A:32:49:FD Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D1B Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/921900E0F38011EE9DA42620C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:53:47 +0000 ROA not before: Thu 28 Aug 2025 14:53:47 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135990 IP address blocks: 103.143.206.0/23 maxlen: 24 103.171.92.0/24 maxlen: 24 103.171.93.0/24 maxlen: 24 2405:5b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19739 (0x4d1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:47 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d7b-8ba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c0:2a:90:5f:ef:c9:95:f2:f4:57:46:37:55: 6f:c1:d7:d3:7a:19:f2:d7:58:39:8e:fa:00:11:3f: 89:ba:b6:77:04:33:36:79:ad:c3:20:c3:1a:15:a5: 89:32:3f:a2:ce:d5:7f:8a:b5:17:0d:a1:7b:0d:d0: 02:db:39:79:a9:d5:b5:90:22:17:d8:11:98:17:63: 06:1f:bd:a1:fd:e6:ef:eb:db:59:11:a3:86:3f:ad: 09:73:a7:a5:c9:77:ca:db:ab:ce:1c:d8:aa:dc:ba: 81:a1:39:df:3e:5f:24:a5:51:22:74:8b:b6:25:48: 72:d4:b6:a0:b3:6b:7a:d4:12:bc:12:5d:59:8d:12: 12:8b:5c:49:01:df:15:69:03:b3:c9:78:6f:a2:1b: ca:81:ab:11:2d:b5:c8:71:79:a8:4e:42:0a:86:0b: e5:db:00:8b:dc:1c:19:22:ed:7a:1f:f1:aa:19:d0: fb:e5:81:4b:8f:12:93:a2:17:87:97:d7:df:79:96: 9e:f9:54:3e:e4:d3:84:28:f0:ed:fa:c9:d0:00:6c: 33:df:5c:d7:8a:4a:88:bb:ed:87:79:a7:f3:4f:45: de:54:2c:36:2f:d3:dc:32:7a:7f:4f:7b:2f:a2:41: d3:db:d7:13:c9:a0:b6:49:b2:3e:21:ff:ab:20:32: 2c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:4F:5D:BC:E9:6A:7B:D6:3F:C0:28:57:43:A2:FD:D6:8A:32:49:FD X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/921900E0F38011EE9DA42620C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.206.0/23 103.171.92.0/23 IPv6: 2405:5b40::/48 Signature Algorithm: sha256WithRSAEncryption 14:f4:c9:5a:7f:5e:e7:65:23:50:71:3e:1d:ee:db:d4:9d:1f: 7a:d8:41:fd:e3:32:40:e6:86:96:50:f9:66:15:bc:f8:70:42: db:33:69:c8:21:10:b7:85:b5:81:31:f3:63:28:21:c7:55:1c: de:53:95:be:90:13:5e:13:15:64:5a:ba:05:7b:4b:8e:87:d5: ad:c6:3a:02:e3:6b:22:49:14:1d:42:2d:eb:37:1e:90:b8:f2: a7:da:7d:0b:d6:05:11:0e:91:f7:62:c7:ea:54:f2:6f:40:25: f0:7e:21:35:67:da:b8:bf:8c:5e:ef:7c:0d:b3:bb:89:58:ce: 8a:74:cd:ef:76:13:c2:a6:b4:07:57:0e:91:26:c8:37:0d:c2: f3:e6:81:61:f4:6c:63:08:74:a4:d3:aa:21:de:01:27:9b:c3: d2:16:1f:9c:9f:7c:50:71:6f:ab:31:48:c8:da:eb:9d:3f:60: 90:1b:bc:8b:5e:b1:aa:cf:7d:a8:89:c2:5c:74:8e:93:c4:b5: 3e:5a:3d:f0:d9:14:74:a8:17:a4:a7:78:2f:a5:a7:31:33:61: 76:18:f1:1a:41:ec:c4:4a:e5:2b:b7:77:70:d6:e3:50:8f:09: 04:97:e2:ba:0a:da:c3:4a:c1:2f:b9:fa:ad:4e:7a:72:86:a1: 39:a1:39:7c -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICTRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzQ3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ3Yi04YmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsAqkF/vyZXy9FdGN1VvwdfTehny11g5jvoAET+JurZ3BDM2ea3DIMMaFaWJ Mj+iztV/irUXDaF7DdAC2zl5qdW1kCIX2BGYF2MGH72h/ebv69tZEaOGP60Jc6el yXfK26vOHNiq3LqBoTnfPl8kpVEidIu2JUhy1Lags2t61BK8El1ZjRISi1xJAd8V aQOzyXhvohvKgasRLbXIcXmoTkIKhgvl2wCL3BwZIu16H/GqGdD75YFLjxKToheH l9ffeZae+VQ+5NOEKPDt+snQAGwz31zXikqIu+2HeafzT0XeVCw2L9PcMnp/T3sv okHT29cTyaC2SbI+If+rIDIsfQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHFPXbzp anvWP8AoV0Oi/daKMkn9MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTIxOTAwRTBG MzgwMTFFRTlEQTQyNjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnj84DBAFnq1wwDwQCAAIwCQMHACQFW0AAADANBgkqhkiG 9w0BAQsFAAOCAQEAFPTJWn9e52UjUHE+He7b1J0fethB/eMyQOaGllD5ZhW8+HBC 2zNpyCEQt4W1gTHzYyghx1Uc3lOVvpATXhMVZFq6BXtLjofVrcY6AuNrIkkUHUIt 6zcekLjyp9p9C9YFEQ6R92LH6lTyb0Al8H4hNWfauL+MXu98DbO7iVjOinTN73YT wqa0B1cOkSbINw3C8+aBYfRsYwh0pNOqId4BJ5vD0hYfnJ98UHFvqzFIyNrrnT9g kBu8i16xqs99qInCXHSOk8S1Plo98NkUdKgXpKd4L6WnMTNhdhjxGkHsxErlK7d3 cNbjUI8JBJfiugraw0rBL7n6rU56coahOaE5fA== -----END CERTIFICATE-----Generated at Mon Sep 8 05:42:16 2025 by rpki-client