$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A4B9791A773A11ECA988F037C4F9AE02.roa File: A4B9791A773A11ECA988F037C4F9AE02.roa (raw, json) Hash identifier: coY+KeMH9oLCaI4DuYvnyFTH/natpKdgsXaZ5oxHnUs= Subject key identifier: 65:F4:6A:0C:F0:1F:1B:E5:3F:F5:0C:E5:79:CF:B2:1C:65:B3:12:59 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CCB Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A4B9791A773A11ECA988F037C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:39 +0000 ROA not before: Thu 28 Aug 2025 14:52:39 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131398 IP address blocks: 103.225.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19659 (0x4ccb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:39 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d37-557e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a0:a1:37:95:0e:05:25:09:d0:46:60:60:5c: bc:b4:3b:25:8b:d2:d5:29:b3:c0:3a:de:57:57:a5: ff:15:55:ff:a6:95:17:24:9c:f9:0b:78:2e:c9:4e: b6:4c:3f:ea:8d:22:13:ed:e0:e1:e5:0f:cd:9e:b0: 42:34:74:d9:c3:a9:64:be:28:fa:8d:17:06:9c:3c: bb:ea:48:10:75:6e:71:02:f3:b1:86:3f:0d:4f:98: eb:b7:30:d4:b6:08:9f:f4:92:03:5b:48:38:19:45: a7:91:6a:61:c6:cb:dd:8f:58:5b:0a:b3:5a:a5:aa: 48:90:ca:38:5d:91:7e:46:ca:d3:d7:d8:3f:c3:81: 36:2d:b6:b3:76:64:e0:2b:3c:11:e7:98:6a:9a:66: 2b:8f:55:4d:83:a1:b7:f6:5a:f7:1a:1a:21:2c:06: cb:b5:b0:40:f5:94:1b:df:02:8d:5f:50:1b:d4:01: b4:18:85:81:14:3e:7a:b1:49:09:02:81:cc:84:61: 02:c9:f2:dd:7b:34:13:78:34:0f:51:85:ee:58:0b: fa:29:e1:ce:59:f7:34:a0:ef:c0:91:da:02:4e:6a: 56:1d:0a:6a:93:99:57:7b:26:e6:e7:b0:0a:5b:a7: 92:00:26:dd:97:ce:68:31:2c:cb:82:1a:ff:dd:fa: cb:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F4:6A:0C:F0:1F:1B:E5:3F:F5:0C:E5:79:CF:B2:1C:65:B3:12:59 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A4B9791A773A11ECA988F037C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.236.0/22 Signature Algorithm: sha256WithRSAEncryption b7:cb:6d:89:ec:5b:9b:fb:72:ed:8b:e6:8b:04:89:d6:70:de: 20:a1:1d:8d:06:f2:63:ac:9d:0e:ee:4f:6b:1d:b5:15:9e:0e: da:f0:cf:d3:0c:fe:d4:32:77:b7:46:82:1e:cc:d8:fa:f9:ba: 75:db:0a:02:d7:74:36:49:20:ce:dd:cb:18:b6:b3:b5:ec:b8: b8:40:5d:6d:9d:db:d8:52:3f:de:b3:bf:2c:86:e5:47:f4:49: f8:a8:7f:9b:ce:c6:12:ae:c5:72:77:47:89:a4:ed:9a:10:e8: 19:a7:aa:8c:81:d2:78:19:55:19:d0:9e:0d:24:a8:81:7b:b5: 91:e7:eb:fd:49:a7:fd:32:99:25:d3:d7:23:ca:29:0d:df:86: 60:c9:1a:89:1e:b1:ed:6f:b7:27:bf:74:ed:95:b6:29:2b:bf: 51:67:0b:b1:c3:43:c7:d1:0d:b1:90:d1:6b:a9:e9:ae:03:96: 3b:fb:d4:b2:c6:4c:99:51:d2:11:4d:d4:a7:4e:a5:ad:65:a3: a9:4b:2c:bf:eb:fc:45:a8:a3:74:8e:23:b1:a4:e5:ad:7f:6d: 9b:dd:ce:0a:b2:9e:36:ab:75:13:3a:f1:eb:86:15:45:78:eb: f1:c9:c3:a7:58:68:e4:f5:38:33:1c:ec:16:19:07:98:5c:39: 59:f9:48:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjM5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQzNy01NTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaChN5UOBSUJ0EZgYFy8tDsli9LVKbPAOt5XV6X/FVX/ppUXJJz5C3guyU62 TD/qjSIT7eDh5Q/NnrBCNHTZw6lkvij6jRcGnDy76kgQdW5xAvOxhj8NT5jrtzDU tgif9JIDW0g4GUWnkWphxsvdj1hbCrNapapIkMo4XZF+RsrT19g/w4E2LbazdmTg KzwR55hqmmYrj1VNg6G39lr3GhohLAbLtbBA9ZQb3wKNX1Ab1AG0GIWBFD56sUkJ AoHMhGECyfLdezQTeDQPUYXuWAv6KeHOWfc0oO/AkdoCTmpWHQpqk5lXeybm57AK W6eSACbdl85oMSzLghr/3frLjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGX0agzw HxvlP/UM5XnPshxlsxJZMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQTRCOTc5MUE3 NzNBMTFFQ0E5ODhGMDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4ewwDQYJKoZIhvcNAQELBQADggEBALfLbYnsW5v7cu2L 5osEidZw3iChHY0G8mOsnQ7uT2sdtRWeDtrwz9MM/tQyd7dGgh7M2Pr5unXbCgLX dDZJIM7dyxi2s7XsuLhAXW2d29hSP96zvyyG5Uf0Sfiof5vOxhKuxXJ3R4mk7ZoQ 6BmnqoyB0ngZVRnQng0kqIF7tZHn6/1Jp/0ymSXT1yPKKQ3fhmDJGokese1vtye/ dO2Vtikrv1FnC7HDQ8fRDbGQ0Wup6a4Dljv71LLGTJlR0hFN1KdOpa1lo6lLLL/r /EWoo3SOI7Gk5a1/bZvdzgqynjardRM68euGFUV46/HJw6dYaOT1ODMc7BYZB5hc OVn5SBo= -----END CERTIFICATE-----Generated at Mon Sep 8 05:43:25 2025 by rpki-client