$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/921900E0F38011EE9DA42620C4F9AE02.roa File: 921900E0F38011EE9DA42620C4F9AE02.roa (raw, json) Hash identifier: OuiiXEdtKhdFLzNwGbJU+P81wy/icTUBJnwPvURt76M= Subject key identifier: 63:56:D5:D2:BE:5D:E4:8B:D8:07:18:8F:52:48:08:F9:8A:09:37:49 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4BCA Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/921900E0F38011EE9DA42620C4F9AE02.roa Signing time: Fri 18 Jul 2025 09:33:14 +0000 ROA not before: Fri 18 Jul 2025 09:33:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135990 IP address blocks: 103.143.206.0/23 maxlen: 24 103.171.92.0/24 maxlen: 24 103.171.93.0/24 maxlen: 24 2405:5b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 14:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19402 (0x4bca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Jul 18 09:33:14 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=687a14da-8457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ed:5b:d5:9d:8e:96:21:6e:f3:6b:7e:43:d6: ee:2c:ba:7c:07:b9:a8:8e:62:68:ab:5b:89:bd:41: c0:70:ef:a5:91:61:91:3b:eb:b6:cc:77:96:2f:55: 7c:ae:69:21:94:de:5c:05:ba:66:39:4c:89:28:04: e9:0e:36:c7:f2:1b:13:3a:b3:ee:2e:6d:ac:40:f7: 94:0c:be:04:f5:9a:60:c1:35:1a:79:7d:48:d6:f4: 91:b4:86:78:bb:bd:f1:7c:51:a8:2e:f2:31:0a:80: aa:63:fe:d7:29:db:39:05:51:d9:72:c0:cc:70:2a: 04:4c:70:26:cb:f0:95:f5:46:cf:93:ed:b3:47:f0: 12:72:90:d7:4f:26:0d:06:19:8c:2c:30:6e:d7:b0: d4:81:35:61:08:6c:f6:e3:5e:da:ae:24:99:0d:3e: 13:01:04:2e:f3:51:22:c9:53:fd:fa:84:a8:cc:f0: 0a:4e:24:2f:22:c3:83:88:e4:cd:b7:8d:76:0c:eb: 20:6b:f0:04:1d:0f:cf:5f:31:82:f4:e6:74:af:f7: 33:29:46:ed:d5:2c:2a:b5:a4:54:b5:60:82:2b:04: c7:e9:49:fd:f5:5d:e1:9b:8c:e7:f4:d7:7b:2d:46: 5b:94:ec:cc:5f:b3:f3:f9:6e:76:ef:85:8b:79:87: d1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:56:D5:D2:BE:5D:E4:8B:D8:07:18:8F:52:48:08:F9:8A:09:37:49 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/921900E0F38011EE9DA42620C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.206.0/23 103.171.92.0/23 IPv6: 2405:5b40::/48 Signature Algorithm: sha256WithRSAEncryption ac:e1:8c:3a:76:03:e1:75:af:71:8e:80:98:bc:ae:c2:20:f1: 54:f9:6a:52:d7:4b:da:4a:98:27:28:e6:b9:8c:9f:5b:de:07: b4:f1:70:d6:94:94:43:42:81:3d:75:0b:85:fc:a1:74:63:bb: b2:05:e2:38:70:a4:64:aa:b2:5c:43:87:83:9d:7d:c5:3c:54: cb:e7:90:82:15:b7:ff:5d:d8:e4:3e:f2:2b:15:56:56:86:37: 9d:fb:90:ad:ec:99:11:23:e2:84:69:d1:6f:3c:7f:e3:06:a9: 75:e2:b0:9b:91:0c:e8:a3:3b:aa:74:85:25:50:13:34:25:da: df:9d:18:ce:f9:66:4a:a5:4e:5e:bc:6a:49:56:27:ff:d9:d2: 79:68:95:76:df:83:07:9a:e2:b5:a5:38:c5:35:d7:3e:71:b4: a3:96:4e:ff:b4:e9:cb:2a:8b:06:f7:33:7d:e3:02:ad:3a:3d: 25:cc:04:f5:9a:66:df:82:70:bb:93:8e:8e:fb:5d:ee:cc:d6: 34:92:3a:01:2b:a4:a5:48:f0:8e:8d:10:c9:8d:57:80:14:4a: 19:8e:d0:83:fb:8e:4b:38:94:9c:7f:4a:f2:30:5f:30:62:14: 61:12:6e:2c:ae:8d:46:ff:ad:96:dd:dc:75:cc:b0:73:e4:37: 18:1b:96:fe -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICS8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwNzE4MDkzMzE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdhMTRkYS04NDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuO1b1Z2OliFu82t+Q9buLLp8B7mojmJoq1uJvUHAcO+lkWGRO+u2zHeWL1V8 rmkhlN5cBbpmOUyJKATpDjbH8hsTOrPuLm2sQPeUDL4E9ZpgwTUaeX1I1vSRtIZ4 u73xfFGoLvIxCoCqY/7XKds5BVHZcsDMcCoETHAmy/CV9UbPk+2zR/AScpDXTyYN BhmMLDBu17DUgTVhCGz2417ariSZDT4TAQQu81EiyVP9+oSozPAKTiQvIsODiOTN t412DOsga/AEHQ/PXzGC9OZ0r/czKUbt1SwqtaRUtWCCKwTH6Un99V3hm4zn9Nd7 LUZblOzMX7Pz+W5274WLeYfRXwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFGNW1dK+ XeSL2AcYj1JICPmKCTdJMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTIxOTAwRTBG MzgwMTFFRTlEQTQyNjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnj84DBAFnq1wwDwQCAAIwCQMHACQFW0AAADANBgkqhkiG 9w0BAQsFAAOCAQEArOGMOnYD4XWvcY6AmLyuwiDxVPlqUtdL2kqYJyjmuYyfW94H tPFw1pSUQ0KBPXULhfyhdGO7sgXiOHCkZKqyXEOHg519xTxUy+eQghW3/13Y5D7y KxVWVoY3nfuQreyZESPihGnRbzx/4wapdeKwm5EM6KM7qnSFJVATNCXa350Yzvlm SqVOXrxqSVYn/9nSeWiVdt+DB5ritaU4xTXXPnG0o5ZO/7TpyyqLBvczfeMCrTo9 JcwE9Zpm34Jwu5OOjvtd7szWNJI6ASukpUjwjo0QyY1XgBRKGY7Qg/uOSziUnH9K 8jBfMGIUYRJuLK6NRv+tlt3cdcywc+Q3GBuW/g== -----END CERTIFICATE-----Generated at Wed Jul 23 02:23:50 2025 by rpki-client