$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BED3A706C47B11ECB544A26DC4F9AE02.roa File: BED3A706C47B11ECB544A26DC4F9AE02.roa (raw, json) Hash identifier: C/sKEKS1FStsf4poEMGh5n8C7aCJMppW4Fbl5iwULbE= Subject key identifier: 7C:60:71:D3:5E:08:4D:21:0A:70:02:2B:C0:50:5A:89:6E:07:EC:7C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CCA Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BED3A706C47B11ECB544A26DC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:39 +0000 ROA not before: Thu 28 Aug 2025 14:52:39 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131396 IP address blocks: 103.144.84.0/23 maxlen: 24 103.253.88.0/23 maxlen: 24 103.253.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19658 (0x4cca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:39 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d36-158b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:27:0d:77:5c:cf:f8:46:e1:51:5c:92:c3:7f: 7b:fc:4a:a0:d8:64:bc:07:70:b1:87:45:a9:d1:d3: 1b:28:f5:58:5b:e9:c5:58:9f:42:2f:ff:42:54:4d: c0:9a:e2:43:dd:d4:69:93:91:33:99:6a:03:79:81: ff:ad:ad:1c:5f:4d:14:59:ac:d4:a1:8e:e5:10:8a: c1:04:9a:22:2d:ae:17:90:c2:aa:ac:03:98:43:19: 1b:57:ab:fd:54:fb:37:0f:ad:d9:28:17:42:56:ef: 8f:2f:51:a9:2b:fb:ce:b7:54:7f:e6:ce:75:53:1b: 4d:e1:c9:93:f6:0d:67:30:eb:cf:d5:4b:62:7d:e5: 4e:3d:2f:1d:19:7f:20:12:1b:38:9c:f0:d8:96:54: 0c:c6:7b:93:8d:c4:c9:e7:77:f7:b7:b7:0b:ec:75: 41:ec:1a:b6:21:b2:8c:d4:a4:9c:ec:6b:ad:55:46: ce:c7:85:00:83:32:88:ba:18:03:86:91:69:0b:15: 59:41:05:0e:d2:db:8c:8d:f3:3c:c3:c4:6b:c1:4d: be:e6:e5:2a:c6:8a:54:42:a6:60:d2:69:89:14:54: b5:6a:ab:21:37:b8:2a:5b:98:f3:db:3a:65:22:b7: 9e:34:17:f9:47:e2:c2:b2:63:ca:26:5a:8f:ef:a5: 7f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:60:71:D3:5E:08:4D:21:0A:70:02:2B:C0:50:5A:89:6E:07:EC:7C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BED3A706C47B11ECB544A26DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.84.0/23 103.253.88.0/22 Signature Algorithm: sha256WithRSAEncryption 33:d0:74:a0:0f:ac:d3:20:48:d0:06:ea:8a:03:c9:d7:6c:a6: 34:9e:bf:9b:52:7c:31:1b:4b:ab:6a:50:ec:a0:a9:4a:fc:9a: d6:5a:48:80:9d:b7:3a:d8:59:68:79:d1:d4:f7:80:ab:ed:c8: e4:7c:dd:5e:af:ee:a4:65:01:4b:fe:25:bf:63:29:61:c6:72: 9e:31:60:ef:67:f0:94:01:47:e6:2d:8a:fc:b3:d5:7e:2c:09: 17:04:5a:06:1b:ca:f6:55:8e:bc:81:4f:74:14:66:b0:fa:81: fd:8d:c0:98:6b:03:34:18:da:c0:94:e0:be:50:4a:27:2f:0d: 75:5d:20:6f:1b:6e:9f:43:40:18:25:ef:8e:64:45:3f:fd:74: 14:0d:df:0b:18:6a:c3:21:e8:f1:d7:85:06:a3:3f:bc:ba:b1: 36:8f:b5:75:47:f9:36:4d:ef:25:db:2e:90:df:4d:6b:06:f8: ae:5e:34:d1:e2:86:40:be:96:c4:db:a1:5f:15:17:1a:60:d0: 24:8d:14:a6:cc:0f:de:d8:2d:b8:09:0d:21:d4:a0:ce:3c:00: f7:1e:58:32:9b:3b:92:e3:f6:79:b2:42:59:2f:f2:bc:17:3e: ff:17:76:fa:b4:09:3c:cd:77:23:09:d9:bd:ea:f6:ed:ac:ec: 4a:e1:3e:40 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICTMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjM5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQzNi0xNThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApicNd1zP+EbhUVySw397/Eqg2GS8B3Cxh0Wp0dMbKPVYW+nFWJ9CL/9CVE3A muJD3dRpk5EzmWoDeYH/ra0cX00UWazUoY7lEIrBBJoiLa4XkMKqrAOYQxkbV6v9 VPs3D63ZKBdCVu+PL1GpK/vOt1R/5s51UxtN4cmT9g1nMOvP1UtifeVOPS8dGX8g Ehs4nPDYllQMxnuTjcTJ53f3t7cL7HVB7Bq2IbKM1KSc7GutVUbOx4UAgzKIuhgD hpFpCxVZQQUO0tuMjfM8w8RrwU2+5uUqxopUQqZg0mmJFFS1aqshN7gqW5jz2zpl IreeNBf5R+LCsmPKJlqP76V/4QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHxgcdNe CE0hCnACK8BQWoluB+x8MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkVEM0E3MDZD NDdCMTFFQ0I1NDRBMjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnkFQDBAJn/VgwDQYJKoZIhvcNAQELBQADggEBADPQdKAP rNMgSNAG6ooDyddspjSev5tSfDEbS6tqUOygqUr8mtZaSICdtzrYWWh50dT3gKvt yOR83V6v7qRlAUv+Jb9jKWHGcp4xYO9n8JQBR+Ytivyz1X4sCRcEWgYbyvZVjryB T3QUZrD6gf2NwJhrAzQY2sCU4L5QSicvDXVdIG8bbp9DQBgl745kRT/9dBQN3wsY asMh6PHXhQajP7y6sTaPtXVH+TZN7yXbLpDfTWsG+K5eNNHihkC+lsTboV8VFxpg 0CSNFKbMD97YLbgJDSHUoM48APceWDKbO5Lj9nmyQlkv8rwXPv8Xdvq0CTzNdyMJ 2b3q9u2s7ErhPkA= -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:34 2025 by rpki-client