$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/ACBB52981C8D11ED9C7E1024C4F9AE02.roa File: ACBB52981C8D11ED9C7E1024C4F9AE02.roa (raw, json) Hash identifier: glqOvLqVE9APnodWZaoJaoMWHQ85IPSSeIJv5fmlWJ4= Subject key identifier: A6:47:AB:7B:4E:A5:0E:13:0E:0E:DF:A4:A7:DE:61:33:3D:1F:06:72 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D34 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/ACBB52981C8D11ED9C7E1024C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:54:09 +0000 ROA not before: Thu 28 Aug 2025 14:54:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140801 IP address blocks: 103.154.102.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19764 (0x4d34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d91-ea45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9d:14:b8:d6:8f:d1:80:65:c9:e4:c3:d6:46: 6d:e4:3a:34:ad:e2:3d:12:6d:03:ec:a3:1b:3e:aa: 59:5d:ee:e9:c7:15:f1:a7:e8:f9:80:86:77:8e:c9: 6a:ff:ee:ed:6c:76:ac:9a:85:ef:d3:1b:17:58:73: 0f:f7:e8:2e:29:2e:99:95:03:12:3e:56:7c:26:7d: a1:ff:0a:8e:76:71:87:d3:b8:f6:bf:0c:ba:cb:29: 1d:4c:d6:8f:0f:5c:15:47:a9:b8:56:94:6a:13:9a: 7e:34:b8:dd:26:fd:c5:5d:ad:03:29:83:5d:ee:5e: 4c:2d:42:08:ba:36:a4:6e:8d:1f:e0:e0:73:91:11: 55:62:9a:86:2c:62:ac:d0:bd:28:d3:a3:eb:62:2d: 4f:29:d8:2b:1e:14:fa:86:0c:e0:11:48:2f:48:1f: 05:bf:31:7e:ee:65:fd:27:dd:5b:48:87:a9:51:e3: 97:5a:e2:d9:71:ba:9e:dd:84:8c:8c:b2:c1:bb:64: 37:97:01:7a:b8:69:8e:fc:6d:88:37:c7:17:d8:d1: 13:e9:5e:97:8e:bd:d0:02:eb:a3:46:8f:86:1a:b5: 09:26:7b:d5:a2:54:d1:38:c0:cc:b3:3f:d3:22:88: 1b:b1:f3:81:f6:0a:63:e2:36:56:7b:09:85:c9:09: 7f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:47:AB:7B:4E:A5:0E:13:0E:0E:DF:A4:A7:DE:61:33:3D:1F:06:72 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/ACBB52981C8D11ED9C7E1024C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.102.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:08:e8:c4:74:2d:fa:89:a5:aa:46:52:61:03:66:a4:88:dd: c9:43:bc:ba:8c:f6:49:28:4c:ad:c2:c1:3b:64:b0:d0:80:4c: cc:12:b8:d6:f9:64:8b:10:5d:63:84:37:62:5a:be:28:24:f1: 3c:0e:78:c3:1c:4c:d4:57:7b:39:d6:30:96:09:4c:f4:43:23: 89:61:fb:5d:72:8a:3d:1b:d6:cb:38:d4:6e:9f:4f:f5:cf:6e: 9d:1f:5c:95:19:9a:31:76:a2:6c:57:cd:7b:d8:c9:99:f2:f2: 0a:01:5d:04:1a:1c:d5:eb:6f:b3:53:20:4f:1e:57:f0:2e:e2: 61:66:f2:be:18:b6:32:68:e0:91:0d:a8:5a:86:5b:b2:32:a6: 23:2d:7d:3b:84:8b:00:33:a2:fa:55:7a:68:bb:4f:99:34:19: 5b:16:c5:7f:cd:55:12:57:cf:ee:b8:04:b0:ef:6f:df:b8:6e: a8:30:59:25:e4:51:24:9c:a7:b9:28:9d:4d:96:1d:43:69:a2: aa:1e:1b:27:eb:7c:9d:7e:44:82:c0:bf:0c:17:48:03:6d:f1: 00:95:3a:a4:8e:5f:49:5d:e9:b7:5c:67:21:27:54:21:1d:7a: 89:7e:e2:66:fb:8f:7f:af:65:22:74:66:c0:d7:09:1e:ba:9f: 55:da:8f:a6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ5MS1lYTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv50UuNaP0YBlyeTD1kZt5Do0reI9Em0D7KMbPqpZXe7pxxXxp+j5gIZ3jslq /+7tbHasmoXv0xsXWHMP9+guKS6ZlQMSPlZ8Jn2h/wqOdnGH07j2vwy6yykdTNaP D1wVR6m4VpRqE5p+NLjdJv3FXa0DKYNd7l5MLUIIujakbo0f4OBzkRFVYpqGLGKs 0L0o06PrYi1PKdgrHhT6hgzgEUgvSB8FvzF+7mX9J91bSIepUeOXWuLZcbqe3YSM jLLBu2Q3lwF6uGmO/G2IN8cX2NET6V6Xjr3QAuujRo+GGrUJJnvVolTROMDMsz/T IogbsfOB9gpj4jZWewmFyQl/SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKZHq3tO pQ4TDg7fpKfeYTM9HwZyMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQUNCQjUyOTgx QzhEMTFFRDlDN0UxMDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmmYwDQYJKoZIhvcNAQELBQADggEBAEoI6MR0LfqJpapG UmEDZqSI3clDvLqM9kkoTK3CwTtksNCATMwSuNb5ZIsQXWOEN2Javigk8TwOeMMc TNRXeznWMJYJTPRDI4lh+11yij0b1ss41G6fT/XPbp0fXJUZmjF2omxXzXvYyZny 8goBXQQaHNXrb7NTIE8eV/Au4mFm8r4YtjJo4JENqFqGW7IypiMtfTuEiwAzovpV emi7T5k0GVsWxX/NVRJXz+64BLDvb9+4bqgwWSXkUSScp7konU2WHUNpoqoeGyfr fJ1+RILAvwwXSANt8QCVOqSOX0ld6bdcZyEnVCEdeol+4mb7j3+vZSJ0ZsDXCR66 n1Xaj6Y= -----END CERTIFICATE-----Generated at Mon Sep 8 05:35:23 2025 by rpki-client