$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBDD8CBC8F5711EEBEA97C2DC4F9AE02.roa File: BBDD8CBC8F5711EEBEA97C2DC4F9AE02.roa (raw, json) Hash identifier: 7RWDIFEYs/3+IpF2Pc7/W3wqZIp73CBqK7+R5kdTWtE= Subject key identifier: 6A:77:5A:74:92:66:E1:FB:9D:37:21:E7:8B:36:C4:79:DE:CF:38:B7 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D48 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBDD8CBC8F5711EEBEA97C2DC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:54:25 +0000 ROA not before: Thu 28 Aug 2025 14:54:25 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149068 IP address blocks: 103.72.96.0/22 maxlen: 24 2001:df0:1b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19784 (0x4d48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:25 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06da1-ce32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c9:65:7b:5d:b5:81:79:98:f7:aa:10:a5:33: 38:ba:f6:60:2e:cf:1f:b6:76:fd:39:c2:19:7e:aa: 9d:9a:3e:e8:19:44:f6:73:dd:3b:9f:72:18:80:e4: 88:d0:d9:0a:72:b3:78:4a:12:37:a0:76:14:6f:3b: ca:95:7d:61:87:3f:d6:47:37:c5:a8:eb:2f:ae:5a: fc:25:03:54:a4:41:b9:4f:a0:b3:e7:5e:25:ea:9c: d1:ca:f1:dd:0c:01:2c:f1:b6:61:44:71:ec:77:cc: 40:27:5c:f6:93:f9:e1:00:dc:03:ec:b6:18:ca:fc: 61:4e:28:06:f4:e9:06:69:88:3d:34:6a:0b:c7:77: ea:8a:99:e2:c8:37:c9:9c:3f:a8:ef:b4:76:cb:60: 3f:6f:c8:d4:95:ce:01:04:95:34:55:d3:cc:c2:3d: d3:3d:fb:0c:2c:42:31:05:e2:d1:b1:be:fe:ae:10: a1:10:1b:59:07:d4:ca:bf:06:8d:88:e2:b1:2e:a3: 97:f1:72:88:75:97:71:17:01:d8:c6:54:37:70:f0: 76:6a:aa:f9:d7:e9:6f:fd:16:b2:41:64:cd:e9:a7: b7:cb:a9:77:11:53:93:49:d2:c7:c1:cb:6b:b8:ef: a9:c0:e1:d7:aa:2c:3b:61:29:03:d2:8a:66:40:f3: 89:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:77:5A:74:92:66:E1:FB:9D:37:21:E7:8B:36:C4:79:DE:CF:38:B7 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BBDD8CBC8F5711EEBEA97C2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.96.0/22 IPv6: 2001:df0:1b::/48 Signature Algorithm: sha256WithRSAEncryption 44:c4:ea:26:7b:16:84:b5:96:2b:cb:9c:c1:e0:81:37:af:43: 99:56:d7:fc:54:60:ab:f3:a7:6e:fd:5b:37:33:90:7b:a8:7e: 37:90:90:fd:a0:d4:96:79:62:a5:56:d4:8b:a6:f6:13:65:9a: 82:c9:2b:c8:77:7b:f0:14:b7:06:23:32:82:ba:1b:09:f8:ef: 61:e1:23:f0:1c:93:fb:35:f3:0a:2f:32:cc:0b:69:3a:d8:c9: ea:a5:6c:a3:ba:ec:2d:66:31:2d:c7:98:ba:09:0f:9f:66:0d: b2:ea:6f:c8:ed:8b:c7:bd:d5:6f:12:d2:d3:a9:73:79:0e:a0: 64:d0:f8:9f:b0:e3:06:6c:3e:bd:b3:5b:26:8b:05:2e:49:99: 6e:28:93:a7:78:a8:3b:5d:be:af:16:a7:af:ff:48:6c:be:9c: 08:c1:c4:ac:3b:c6:74:2f:d1:50:64:bb:dd:20:2c:f1:b7:39: c9:1a:59:ba:8a:97:55:b8:55:01:82:2d:34:4d:f5:92:a3:d6: 47:e9:0f:44:53:00:bc:e1:91:5c:59:aa:d6:cc:71:de:61:07: ca:00:7a:8d:c8:79:ba:15:98:59:09:c3:79:99:45:c9:9b:01: 65:87:30:24:b1:d4:d9:59:0a:44:bb:57:c9:99:79:5d:73:d5: 84:87:c5:13 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDI1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRhMS1jZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvslle121gXmY96oQpTM4uvZgLs8ftnb9OcIZfqqdmj7oGUT2c907n3IYgOSI 0NkKcrN4ShI3oHYUbzvKlX1hhz/WRzfFqOsvrlr8JQNUpEG5T6Cz514l6pzRyvHd DAEs8bZhRHHsd8xAJ1z2k/nhANwD7LYYyvxhTigG9OkGaYg9NGoLx3fqipniyDfJ nD+o77R2y2A/b8jUlc4BBJU0VdPMwj3TPfsMLEIxBeLRsb7+rhChEBtZB9TKvwaN iOKxLqOX8XKIdZdxFwHYxlQ3cPB2aqr51+lv/RayQWTN6ae3y6l3EVOTSdLHwctr uO+pwOHXqiw7YSkD0opmQPOJWQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGp3WnSS ZuH7nTch54s2xHnezzi3MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkJERDhDQkM4 RjU3MTFFRUJFQTk3QzJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnSGAwDwQCAAIwCQMHACABDfAAGzANBgkqhkiG9w0BAQsF AAOCAQEARMTqJnsWhLWWK8ucweCBN69DmVbX/FRgq/Onbv1bNzOQe6h+N5CQ/aDU lnlipVbUi6b2E2WagskryHd78BS3BiMygrobCfjvYeEj8ByT+zXzCi8yzAtpOtjJ 6qVso7rsLWYxLceYugkPn2YNsupvyO2Lx73VbxLS06lzeQ6gZND4n7DjBmw+vbNb JosFLkmZbiiTp3ioO12+rxanr/9IbL6cCMHErDvGdC/RUGS73SAs8bc5yRpZuoqX VbhVAYItNE31kqPWR+kPRFMAvOGRXFmq1sxx3mEHygB6jch5uhWYWQnDeZlFyZsB ZYcwJLHU2VkKRLtXyZl5XXPVhIfFEw== -----END CERTIFICATE-----Generated at Mon Sep 8 05:35:19 2025 by rpki-client