$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/967D5ED65E0811EFBBB08B84C4F9AE02.roa File: 967D5ED65E0811EFBBB08B84C4F9AE02.roa (raw, json) Hash identifier: qJSZpEgs51i+kAgJi01O0GoxoCZ1oFtgBriu8oozJTI= Subject key identifier: 7F:A7:8A:D1:90:4B:A5:F0:EB:21:83:4F:E6:EB:0E:8C:57:27:C0:6B Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CB8 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/967D5ED65E0811EFBBB08B84C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:23 +0000 ROA not before: Thu 28 Aug 2025 14:52:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131363 IP address blocks: 103.9.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19640 (0x4cb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d27-2b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f8:58:18:99:16:28:38:ee:4d:f4:0b:e4:b5: 62:89:f4:92:17:70:91:38:e7:43:2e:b5:6c:4f:37: ad:39:bb:f5:81:d1:b1:9f:03:ff:c5:22:b2:a9:ee: 34:fc:67:8a:fd:26:a7:cd:79:8f:0e:44:39:0b:d9: a1:6d:cf:6f:79:40:83:96:3c:c0:c0:b2:1f:88:b2: 4b:23:af:27:27:25:9a:32:02:be:0d:31:38:5f:4d: 88:85:72:b5:83:66:40:c1:cb:93:aa:6f:b0:e8:01: 1d:59:c7:b4:5f:c0:c3:72:bf:04:4d:80:3a:5d:59: 1e:ab:88:e8:f9:f4:fa:7f:e2:19:34:46:e1:80:bb: 47:c3:18:d1:18:c1:7a:f7:ed:24:08:c0:0b:8b:db: b8:cb:71:0a:5d:4a:92:23:3e:5d:b4:9f:bc:38:44: 26:18:7a:b7:2e:64:f1:c3:57:a4:02:e5:23:07:de: 23:05:01:62:0c:9c:99:cb:79:19:d8:99:ed:5f:0c: bb:42:dc:a8:cf:3d:12:4f:8d:55:c8:d6:ab:ec:2e: 02:bd:04:9f:4d:5d:06:4d:d1:1a:52:1e:ba:b6:43: 93:dc:56:55:e2:0c:9c:cb:85:0c:91:32:d2:b8:22: 34:61:ef:67:4c:29:27:6e:3a:83:40:01:f1:1e:0d: 4c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A7:8A:D1:90:4B:A5:F0:EB:21:83:4F:E6:EB:0E:8C:57:27:C0:6B X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/967D5ED65E0811EFBBB08B84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.200.0/22 Signature Algorithm: sha256WithRSAEncryption a2:89:ea:91:64:33:d7:b2:02:46:68:16:af:18:76:b8:b0:5e: 2c:8b:f4:1e:b5:e0:73:96:39:e9:db:b1:35:80:ae:64:7d:9e: 62:cc:ee:ae:ea:58:d3:4e:3a:1f:5b:36:55:8e:bf:67:b4:1b: 33:e4:bb:2b:6a:05:2e:8a:c0:21:a6:2f:e1:3b:99:f8:df:c0: 13:08:1f:a1:f5:31:38:10:7a:62:0b:7c:fb:b9:c3:5f:e8:12: 10:9d:23:bd:ad:93:07:8d:88:b6:3a:95:bf:91:a0:73:24:6e: 9d:b4:e7:cc:52:31:a8:d8:f9:8e:a1:a9:00:24:af:ad:4a:7c: b6:72:8a:5a:c7:e7:58:f1:b9:8f:01:98:df:df:f7:11:12:45: 8a:c8:ef:1d:5a:2e:5a:50:d9:7b:7e:49:53:70:98:2d:ca:c2: 2d:d7:43:f2:19:7b:5b:2a:6c:f1:b3:52:5d:ea:28:85:96:f2: ca:4e:20:b7:df:38:1f:61:b7:da:4c:7c:21:d7:4d:e2:7b:4b: bd:6b:56:07:1a:c6:b6:fc:29:97:98:52:b8:d3:e3:89:92:6c: 81:00:4d:d1:3f:34:93:13:ea:64:5f:9b:77:b9:5f:92:f2:9c: 0e:05:ca:3c:7e:0e:6f:96:b2:ef:d4:c8:98:06:76:f7:74:26: 38:fd:2d:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQyNy0yYjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvhYGJkWKDjuTfQL5LViifSSF3CROOdDLrVsTzetObv1gdGxnwP/xSKyqe40 /GeK/SanzXmPDkQ5C9mhbc9veUCDljzAwLIfiLJLI68nJyWaMgK+DTE4X02IhXK1 g2ZAwcuTqm+w6AEdWce0X8DDcr8ETYA6XVkeq4jo+fT6f+IZNEbhgLtHwxjRGMF6 9+0kCMALi9u4y3EKXUqSIz5dtJ+8OEQmGHq3LmTxw1ekAuUjB94jBQFiDJyZy3kZ 2JntXwy7Qtyozz0ST41VyNar7C4CvQSfTV0GTdEaUh66tkOT3FZV4gycy4UMkTLS uCI0Ye9nTCknbjqDQAHxHg1MJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH+nitGQ S6Xw6yGDT+brDoxXJ8BrMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTY3RDVFRDY1 RTA4MTFFRkJCQjA4Qjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnCcgwDQYJKoZIhvcNAQELBQADggEBAKKJ6pFkM9eyAkZo Fq8YdriwXiyL9B614HOWOenbsTWArmR9nmLM7q7qWNNOOh9bNlWOv2e0GzPkuytq BS6KwCGmL+E7mfjfwBMIH6H1MTgQemILfPu5w1/oEhCdI72tkweNiLY6lb+RoHMk bp2058xSMajY+Y6hqQAkr61KfLZyilrH51jxuY8BmN/f9xESRYrI7x1aLlpQ2Xt+ SVNwmC3Kwi3XQ/IZe1sqbPGzUl3qKIWW8spOILffOB9ht9pMfCHXTeJ7S71rVgca xrb8KZeYUrjT44mSbIEATdE/NJMT6mRfm3e5X5LynA4Fyjx+Dm+Wsu/UyJgGdvd0 Jjj9LTQ= -----END CERTIFICATE-----Generated at Mon Sep 8 05:39:23 2025 by rpki-client