$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A0023244173B11ED8153E75CC4F9AE02.roa File: A0023244173B11ED8153E75CC4F9AE02.roa (raw, json) Hash identifier: s1PuUrcf4YkcyuL22ZZmRyf/lAwQkkO7K1TogcK7KDk= Subject key identifier: EE:46:8D:1F:88:2D:2A:87:1A:F2:34:3C:42:E0:BB:46:68:4E:8F:A5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E52 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A0023244173B11ED8153E75CC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:58:13 +0000 ROA not before: Thu 28 Aug 2025 14:58:13 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 63766 IP address blocks: 103.78.93.0/24 maxlen: 24 103.78.94.0/23 maxlen: 24 103.216.120.0/22 maxlen: 24 157.119.244.0/23 maxlen: 24 2001:df6:1e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20050 (0x4e52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:58:13 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e84-1d6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:35:1c:8b:d7:75:a0:da:23:59:0f:8b:8c:40: 8d:ea:f7:62:fc:af:5e:0b:d4:e2:79:08:05:74:6c: a3:5f:99:21:f8:68:91:44:60:c6:3f:4f:4e:f2:b0: c1:f4:c6:3d:32:39:f5:29:ca:5c:7f:97:6c:94:9a: 68:4e:87:88:a2:0b:50:82:e6:c3:12:14:4e:3d:b9: fe:72:72:7c:80:db:c8:1e:fe:b1:9f:7c:f8:c4:5a: 7f:03:2b:82:af:2a:df:de:0a:fb:43:82:90:4f:0a: da:2a:17:35:34:1e:1e:14:6d:5c:54:00:52:32:d7: f9:bb:b2:6b:a9:d7:2d:9f:51:ce:63:49:7b:fd:53: b7:ce:44:54:4d:95:e8:14:51:cb:a0:30:3a:ff:2f: 2d:98:ea:ec:f1:bc:79:f2:dc:ea:65:f5:1c:3e:c3: 0f:b0:14:28:61:de:6a:82:82:7b:7e:54:1d:46:b4: 59:82:e5:6a:6a:77:21:81:b3:fc:cb:63:29:ab:6e: c4:c8:b8:47:ac:31:1a:32:b0:98:59:e6:fc:9b:e7: 26:13:97:f8:f5:5b:a6:32:29:8a:6e:4f:7e:3c:b2: d1:e3:b1:08:f6:48:79:08:75:ef:8f:ae:b9:2c:b7: 43:f5:a5:30:cd:a1:35:34:8f:13:58:0c:1d:a7:33: 73:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:46:8D:1F:88:2D:2A:87:1A:F2:34:3C:42:E0:BB:46:68:4E:8F:A5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A0023244173B11ED8153E75CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.93.0-103.78.95.255 103.216.120.0/22 157.119.244.0/23 IPv6: 2001:df6:1e00::/48 Signature Algorithm: sha256WithRSAEncryption 5b:9f:53:b2:68:ff:03:e5:61:47:10:e6:79:e7:0a:57:24:e2: 22:00:e1:bf:3e:54:53:06:35:cd:a8:2b:4b:bc:6a:62:24:b8: a1:07:4b:37:4d:66:57:80:c3:19:db:f8:eb:85:3f:0b:0f:8c: af:88:d2:45:ce:f6:89:89:cd:85:a8:69:66:a4:3d:96:bc:f8: ef:8a:97:29:32:d2:e0:51:54:44:68:77:25:07:63:74:37:c0: 92:3d:72:9c:6d:ef:97:e7:23:6c:80:55:19:9a:f2:14:4a:b6: 44:b2:8a:7a:7c:cc:72:9b:2e:90:b3:bb:c1:dc:93:bd:76:a9: 21:cc:e4:2d:d4:b0:6b:dd:5e:d3:b7:76:00:33:d9:9b:d3:a9: b8:d1:a6:20:d4:b8:ed:bc:7c:87:24:4e:24:72:fa:80:e1:e1: dc:fa:d9:e1:78:1d:40:2d:8f:6c:8a:11:c2:89:e5:07:c0:a4: b1:10:a8:e7:4b:5f:86:de:5e:db:c0:61:5a:fc:1a:06:b7:22: 2b:06:6d:77:b3:b1:ae:ce:e7:97:ee:a9:2d:dd:0e:9b:d1:f3: f5:5a:cd:45:2c:d5:2b:e4:15:33:ea:13:ab:d5:ba:78:ff:14: ec:f1:e1:06:2b:99:78:d7:d2:53:0e:85:ec:27:56:05:7b:fe: 25:4a:8a:81 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICTlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1ODEzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU4NC0xZDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jUci9d1oNojWQ+LjECN6vdi/K9eC9TieQgFdGyjX5kh+GiRRGDGP09O8rDB 9MY9Mjn1Kcpcf5dslJpoToeIogtQgubDEhROPbn+cnJ8gNvIHv6xn3z4xFp/AyuC ryrf3gr7Q4KQTwraKhc1NB4eFG1cVABSMtf5u7Jrqdctn1HOY0l7/VO3zkRUTZXo FFHLoDA6/y8tmOrs8bx58tzqZfUcPsMPsBQoYd5qgoJ7flQdRrRZguVqanchgbP8 y2Mpq27EyLhHrDEaMrCYWeb8m+cmE5f49VumMimKbk9+PLLR47EI9kh5CHXvj665 LLdD9aUwzaE1NI8TWAwdpzNzyQIDAQABo4ICujCCArYwHQYDVR0OBBYEFO5GjR+I LSqHGvI0PELgu0ZoTo+lMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQTAwMjMyNDQx NzNCMTFFRDgxNTNFNzVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMCAEAgABMBowDAMEAGdOXQMEBWdOQAMEAmfYeAMEAZ139DAPBAIAAjAJAwcA IAEN9h4AMA0GCSqGSIb3DQEBCwUAA4IBAQBbn1OyaP8D5WFHEOZ55wpXJOIiAOG/ PlRTBjXNqCtLvGpiJLihB0s3TWZXgMMZ2/jrhT8LD4yviNJFzvaJic2FqGlmpD2W vPjvipcpMtLgUVREaHclB2N0N8CSPXKcbe+X5yNsgFUZmvIUSrZEsop6fMxymy6Q s7vB3JO9dqkhzOQt1LBr3V7Tt3YAM9mb06m40aYg1LjtvHyHJE4kcvqA4eHc+tnh eB1ALY9sihHCieUHwKSxEKjnS1+G3l7bwGFa/BoGtyIrBm13s7GuzueX7qkt3Q6b 0fP1Ws1FLNUr5BUz6hOr1bp4/xTs8eEGK5l419JTDoXsJ1YFe/4lSoqB -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:36 2025 by rpki-client