$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BA8B530463E311EC8B936683C4F9AE02.roa File: BA8B530463E311EC8B936683C4F9AE02.roa (raw, json) Hash identifier: KPf6ve9sykNHkfDngVV5jKPCiSF1rQSZtzjaDnM6iVc= Subject key identifier: 4C:3D:AC:E6:39:3A:49:47:C2:6B:4D:F8:64:FE:0D:CC:A3:68:CF:E5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CA7 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BA8B530463E311EC8B936683C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:10 +0000 ROA not before: Thu 28 Aug 2025 14:52:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131123 IP address blocks: 117.122.3.0/24 maxlen: 24 2001:dc8:2003::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19623 (0x4ca7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d19-7fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2d:74:77:dd:c4:65:c1:85:d7:21:b5:94:92: c7:77:a2:c6:56:16:d4:78:10:91:72:b7:fb:22:9d: a0:4d:56:8a:de:df:65:98:af:0b:9a:3c:d6:28:19: 2a:d7:be:85:7c:10:98:8c:72:a1:98:36:d1:9a:9c: 27:55:22:bd:b3:25:3d:4a:ba:01:39:66:51:e7:a4: 7b:ab:28:97:b0:9a:c0:ce:62:34:47:b4:d6:a1:bd: ed:ed:9c:be:77:cc:3e:5b:0f:ba:ef:84:a7:2b:a9: b9:e8:ca:0b:44:c7:27:25:68:21:5f:10:c6:a3:db: d1:25:d0:af:23:4c:0a:28:20:af:50:d1:ec:e5:78: 89:72:9a:01:23:b8:8d:e7:22:ec:40:2e:f8:0c:e4: 15:2b:6f:3a:62:b4:2f:7e:76:b8:47:10:04:b5:14: 7f:36:3a:f1:f3:a5:48:ac:79:ea:03:13:ad:69:c5: d0:e6:9e:89:31:d5:26:6f:00:e4:74:34:bd:e0:b0: 08:6f:cb:a0:b5:01:ed:d1:86:71:6d:cd:b9:3e:1a: c3:47:55:e4:f3:1d:27:d4:61:70:71:6a:eb:ff:f4: e7:b4:5f:c4:cc:71:c2:e2:83:cf:2b:cd:13:78:8e: 47:3a:31:df:f7:02:28:32:7f:31:53:94:94:30:e8: 81:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3D:AC:E6:39:3A:49:47:C2:6B:4D:F8:64:FE:0D:CC:A3:68:CF:E5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BA8B530463E311EC8B936683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.122.3.0/24 IPv6: 2001:dc8:2003::/48 Signature Algorithm: sha256WithRSAEncryption 19:54:ec:08:31:88:1b:a8:26:e8:bf:dc:77:c5:91:93:42:d6: 91:80:1c:02:3c:3e:9a:8f:8e:be:9a:00:25:f7:a4:8a:7c:ff: 97:a4:92:fa:46:11:a2:3c:14:2e:9c:18:4a:59:46:71:bb:11: aa:34:9b:9a:78:61:9f:e5:40:54:00:e5:e2:71:ec:df:6d:d4: f7:d2:50:ab:48:86:d3:b4:de:8d:54:01:a4:fc:9f:30:0c:76: 7e:0e:66:5d:67:83:b5:b7:23:db:95:87:23:21:7a:f4:88:da: a5:ca:c3:8b:ce:87:18:b4:19:2a:31:74:6e:0e:e8:a8:55:7e: 01:a0:de:45:17:2c:32:13:10:ba:98:68:f8:25:6e:d0:ee:2b: eb:29:89:e0:87:f6:31:5a:a0:6c:d9:8b:eb:17:14:e8:0a:4f: d1:f4:ec:15:0d:3e:68:71:95:55:d7:92:c1:30:fa:b6:83:49: ff:e4:0f:d3:af:7a:9e:c0:ae:b4:dd:a3:00:d2:b5:42:72:c5: a1:d6:4b:d5:59:8e:f8:fa:a1:b9:0c:a2:be:09:79:f4:ee:eb: cf:62:a2:90:e4:c7:60:4f:f9:89:e7:83:15:3e:41:27:78:d5: 32:ca:d8:ab:2c:8d:12:9f:cd:28:75:d2:a1:ad:1f:62:00:90: f9:83:f2:1c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQxOS03ZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2S10d93EZcGF1yG1lJLHd6LGVhbUeBCRcrf7Ip2gTVaK3t9lmK8LmjzWKBkq 176FfBCYjHKhmDbRmpwnVSK9syU9SroBOWZR56R7qyiXsJrAzmI0R7TWob3t7Zy+ d8w+Ww+674SnK6m56MoLRMcnJWghXxDGo9vRJdCvI0wKKCCvUNHs5XiJcpoBI7iN 5yLsQC74DOQVK286YrQvfna4RxAEtRR/Njrx86VIrHnqAxOtacXQ5p6JMdUmbwDk dDS94LAIb8ugtQHt0YZxbc25PhrDR1Xk8x0n1GFwcWrr//TntF/EzHHC4oPPK80T eI5HOjHf9wIoMn8xU5SUMOiBIwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEw9rOY5 OklHwmtN+GT+DcyjaM/lMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkE4QjUzMDQ2 M0UzMTFFQzhCOTM2NjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAB1egMwDwQCAAIwCQMHACABDcggAzANBgkqhkiG9w0BAQsF AAOCAQEAGVTsCDGIG6gm6L/cd8WRk0LWkYAcAjw+mo+OvpoAJfekinz/l6SS+kYR ojwULpwYSllGcbsRqjSbmnhhn+VAVADl4nHs323U99JQq0iG07TejVQBpPyfMAx2 fg5mXWeDtbcj25WHIyF69IjapcrDi86HGLQZKjF0bg7oqFV+AaDeRRcsMhMQupho +CVu0O4r6ymJ4If2MVqgbNmL6xcU6ApP0fTsFQ0+aHGVVdeSwTD6toNJ/+QP0696 nsCutN2jANK1QnLFodZL1VmO+PqhuQyivgl59O7rz2KikOTHYE/5ieeDFT5BJ3jV MsrYqyyNEp/NKHXSoa0fYgCQ+YPyHA== -----END CERTIFICATE-----Generated at Mon Sep 8 05:44:50 2025 by rpki-client