$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa File: C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa (raw, json) Hash identifier: cpaxrmPd46ZVR0ZtqoMCEPjSD24uAoizr5Y7/miHxQY= Subject key identifier: FC:ED:37:33:4D:47:F4:96:2B:81:8F:F7:C9:74:B8:FC:B8:2A:AD:86 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CC9 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:38 +0000 ROA not before: Thu 28 Aug 2025 14:52:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131392 IP address blocks: 103.18.4.0/22 maxlen: 24 118.27.192.0/19 maxlen: 24 137.59.104.0/22 maxlen: 24 150.95.16.0/22 maxlen: 24 150.95.104.0/21 maxlen: 24 150.95.112.0/21 maxlen: 24 150.95.120.0/21 maxlen: 24 163.44.192.0/22 maxlen: 24 163.44.200.0/24 maxlen: 24 163.44.205.0/24 maxlen: 24 163.44.206.0/23 maxlen: 24 2404:f080::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19657 (0x4cc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d35-303a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:3b:b0:30:b5:44:6e:d5:81:81:45:75:fc:a2: 3f:cc:7b:eb:db:b0:2f:5e:21:55:1b:c5:8e:df:1e: df:78:56:71:2b:d4:58:fc:4c:a8:4d:d4:03:06:52: 2a:8c:6f:1b:eb:88:67:05:d1:c3:90:00:83:55:a7: ba:26:c8:f2:7e:6a:d4:cd:c3:7c:c9:46:6b:3d:fc: ac:28:7a:bc:e2:81:bb:e0:fa:d3:79:8f:a5:81:2b: 9b:9e:b3:72:b3:77:02:38:c7:70:ec:00:f1:25:81: 98:4f:6f:02:31:67:fe:c8:e5:5b:d9:b0:ab:cd:63: 20:74:e6:40:1a:c6:eb:04:6f:74:1e:ed:9d:05:50: fc:3c:89:43:79:1a:9d:75:0d:83:1e:69:68:c4:2b: d0:b5:49:57:ba:7a:26:53:60:66:d2:d8:2b:9f:63: 72:2a:fb:80:ed:df:2e:c3:ce:df:c7:75:2d:55:7f: c7:93:40:ae:7f:26:46:69:f4:01:74:15:77:17:a2: e5:90:47:45:2b:01:cb:fe:ae:b5:06:c9:b0:b6:8b: 70:e8:8a:17:20:f3:d4:4f:56:5c:c6:9e:f3:87:00: d6:5b:95:2f:7d:57:5c:ee:67:b8:b3:18:f6:3b:5b: 4a:1a:00:e3:61:31:19:4a:8b:69:c1:bb:f3:43:da: 63:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:ED:37:33:4D:47:F4:96:2B:81:8F:F7:C9:74:B8:FC:B8:2A:AD:86 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C37D2CF6EB4C11EE9CC1C80DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.4.0/22 118.27.192.0/19 137.59.104.0/22 150.95.16.0/22 150.95.104.0-150.95.127.255 163.44.192.0/22 163.44.200.0/24 163.44.205.0-163.44.207.255 IPv6: 2404:f080::/32 Signature Algorithm: sha256WithRSAEncryption 9a:23:bd:71:ea:b7:fc:a9:d7:df:df:71:ac:09:e0:72:54:cb: 88:82:43:84:b6:15:d3:da:9e:f2:02:fe:1c:52:1a:50:d6:51: fa:15:0f:37:2d:96:6c:8b:69:c8:95:ba:d8:4c:2b:f0:b0:66: cb:b2:8d:0c:2c:39:2e:9b:01:ff:95:c5:d5:ab:0c:69:d9:f6: f2:29:54:dc:8f:34:0d:1b:ca:d0:8d:6d:d6:a2:a3:cf:91:8f: 69:c2:49:aa:72:7c:25:ce:44:44:f9:f2:5c:9b:3d:c6:b1:7b: e0:d0:99:56:93:fe:dc:76:7e:a5:03:30:20:a9:29:9d:e7:8c: 98:34:2d:45:a7:a8:7d:5b:b3:e9:34:e3:32:b4:fd:c7:db:4d: 2a:75:cc:6c:57:fd:bd:be:9c:84:3b:a5:5a:f2:5e:77:8b:c0: b5:dc:82:33:b0:4f:83:6f:de:9d:db:6a:20:93:b2:0d:a6:5c: 32:92:f2:7e:7e:7a:bd:de:58:14:51:71:7b:f7:58:dc:d9:9f: 8d:4f:25:1b:7d:bd:70:b7:d9:7f:c7:fa:89:8a:e7:11:df:d1: 67:34:1d:78:3c:ff:a1:1d:68:76:ae:bc:ce:0e:95:5b:a5:0f: be:8a:24:9c:b6:21:9b:e2:6b:17:e3:e8:95:01:f4:bf:35:c6: 8b:10:0d:fa -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgICTMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQzNS0zMDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6TuwMLVEbtWBgUV1/KI/zHvr27AvXiFVG8WO3x7feFZxK9RY/EyoTdQDBlIq jG8b64hnBdHDkACDVae6JsjyfmrUzcN8yUZrPfysKHq84oG74PrTeY+lgSubnrNy s3cCOMdw7ADxJYGYT28CMWf+yOVb2bCrzWMgdOZAGsbrBG90Hu2dBVD8PIlDeRqd dQ2DHmloxCvQtUlXunomU2Bm0tgrn2NyKvuA7d8uw87fx3UtVX/Hk0CufyZGafQB dBV3F6LlkEdFKwHL/q61Bsmwtotw6IoXIPPUT1Zcxp7zhwDWW5UvfVdc7me4sxj2 O1tKGgDjYTEZSotpwbvzQ9pjiwIDAQABo4IC3jCCAtowHQYDVR0OBBYEFPztNzNN R/SWK4GP98l0uPy4Kq2GMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzM3RDJDRjZF QjRDMTFFRTlDQzFDODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaAYIKwYBBQUHAQcBAf8E WTBXMEYEAgABMEADBAJnEgQDBAV2G8ADBAKJO2gDBAKWXxAwDAMEA5ZfaAMEB5Zf AAMEAqMswAMEAKMsyDAMAwQAoyzNAwQEoyzAMA0EAgACMAcDBQAkBPCAMA0GCSqG SIb3DQEBCwUAA4IBAQCaI71x6rf8qdff33GsCeByVMuIgkOEthXT2p7yAv4cUhpQ 1lH6FQ83LZZsi2nIlbrYTCvwsGbLso0MLDkumwH/lcXVqwxp2fbyKVTcjzQNG8rQ jW3WoqPPkY9pwkmqcnwlzkRE+fJcmz3GsXvg0JlWk/7cdn6lAzAgqSmd54yYNC1F p6h9W7PpNOMytP3H200qdcxsV/29vpyEO6Va8l53i8C13IIzsE+Db96d22ogk7IN plwykvJ+fnq93lgUUXF791jc2Z+NTyUbfb1wt9l/x/qJiucR39FnNB14PP+hHWh2 rrzODpVbpQ++iiSctiGb4msX4+iVAfS/NcaLEA36 -----END CERTIFICATE-----Generated at Mon Sep 8 05:35:22 2025 by rpki-client