$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C3B463CEAB6E11EE84C1C409C4F9AE02.roa File: C3B463CEAB6E11EE84C1C409C4F9AE02.roa (raw, json) Hash identifier: q06eyGoZ64Y3SJPCbCutb4l0+HO59PZtYnG4jrv5sB8= Subject key identifier: DA:CD:1D:5C:5B:3A:E9:46:69:EA:B0:AE:56:A8:CB:47:23:79:BD:1D Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DFF Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C3B463CEAB6E11EE84C1C409C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:56 +0000 ROA not before: Thu 28 Aug 2025 14:56:56 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24175 IP address blocks: 110.35.64.0/21 maxlen: 24 119.18.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19967 (0x4dff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:56 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e37-a83b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:57:ae:29:22:b1:ad:36:1c:ee:ba:1b:0d:61: bd:26:3c:e3:36:d0:5c:a9:ea:75:cd:74:c9:c7:fd: 2b:57:c0:6f:85:26:c6:7f:05:49:86:6c:db:84:78: 51:ef:ef:7a:5d:52:63:15:13:b9:4a:ec:ba:13:b2: 72:84:58:9f:ae:95:02:c5:39:86:3f:28:28:fc:a7: 75:a1:60:9b:3b:8c:85:af:34:08:ed:40:34:08:98: 5f:be:0a:58:85:fb:54:65:1e:dc:7a:44:fb:63:8f: 73:45:94:92:22:ab:5b:65:8a:da:64:63:19:1a:85: ce:74:1b:66:dd:dc:54:1f:a2:d8:c9:75:ad:5e:36: d3:b5:a5:8c:16:f8:df:18:ef:8e:03:78:45:77:1c: ba:f3:55:61:ae:ff:81:bd:ab:0e:09:28:c3:1b:cf: 32:29:d0:fd:c6:d2:da:f5:2a:b6:14:6e:94:d8:13: bd:30:08:8d:25:be:2a:df:44:3c:42:24:76:8e:7f: 79:52:59:4f:e8:50:4b:eb:9a:ea:62:6b:66:f5:59: 56:d5:2d:87:56:a0:fe:fe:26:31:21:c8:b3:98:c1: d1:ba:f3:d6:ab:df:92:ea:44:8b:fd:b8:5f:8d:e2: 90:d5:6e:65:bf:fd:03:c9:75:8e:9f:76:3b:e0:ad: d3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:CD:1D:5C:5B:3A:E9:46:69:EA:B0:AE:56:A8:CB:47:23:79:BD:1D X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C3B463CEAB6E11EE84C1C409C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.35.64.0/21 119.18.128.0/20 Signature Algorithm: sha256WithRSAEncryption 13:90:ec:0e:3b:bf:50:29:47:32:64:be:fd:59:20:f4:a6:2e: f3:0e:ad:9e:95:da:b8:4b:2d:e3:8d:bd:53:ac:f9:0e:b5:db: 09:ba:84:83:e0:01:ca:a8:63:36:6d:7f:9a:85:95:20:02:be: 22:7e:01:01:03:78:3e:ee:1a:72:70:c7:b0:7d:17:0e:17:4e: 61:2f:32:43:c0:91:66:58:c9:cc:56:4f:4c:55:49:74:2e:4e: 9d:70:11:94:37:3e:16:07:7b:71:b6:01:bb:fe:df:0d:39:fd: 94:7d:2a:99:37:47:07:e3:91:e8:23:a0:ec:a1:25:9b:9f:fb: f6:23:93:74:67:ba:a5:e9:56:a6:4d:83:93:eb:0a:e0:18:b8: 28:d4:b9:fb:d5:33:32:4a:c1:33:c4:75:d0:cb:64:a0:c5:34: 94:8e:fd:b4:8e:e7:26:98:61:81:8e:ec:72:1c:5c:c7:90:49: 34:19:ce:28:19:6f:ee:b2:62:c0:29:10:7f:c0:0d:49:c0:3a: 71:a4:a8:ca:01:ac:ef:74:90:69:b3:b2:5d:44:d2:51:87:a5: 4e:d2:02:de:78:3d:07:7e:db:fe:4b:b3:eb:fb:2f:7a:e4:6f: b5:6e:f2:64:8b:cf:0f:8e:a1:e8:4a:f5:28:d4:a4:56:94:86: 4e:e5:c6:6d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICTf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjU2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUzNy1hODNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4VeuKSKxrTYc7robDWG9JjzjNtBcqep1zXTJx/0rV8BvhSbGfwVJhmzbhHhR 7+96XVJjFRO5Suy6E7JyhFifrpUCxTmGPygo/Kd1oWCbO4yFrzQI7UA0CJhfvgpY hftUZR7cekT7Y49zRZSSIqtbZYraZGMZGoXOdBtm3dxUH6LYyXWtXjbTtaWMFvjf GO+OA3hFdxy681Vhrv+BvasOCSjDG88yKdD9xtLa9Sq2FG6U2BO9MAiNJb4q30Q8 QiR2jn95UllP6FBL65rqYmtm9VlW1S2HVqD+/iYxIcizmMHRuvPWq9+S6kSL/bhf jeKQ1W5lv/0DyXWOn3Y74K3TswIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNrNHVxb OulGaeqwrlaoy0cjeb0dMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzNCNDYzQ0VB QjZFMTFFRTg0QzFDNDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANuI0ADBAR3EoAwDQYJKoZIhvcNAQELBQADggEBABOQ7A47 v1ApRzJkvv1ZIPSmLvMOrZ6V2rhLLeONvVOs+Q612wm6hIPgAcqoYzZtf5qFlSAC viJ+AQEDeD7uGnJwx7B9Fw4XTmEvMkPAkWZYycxWT0xVSXQuTp1wEZQ3PhYHe3G2 Abv+3w05/ZR9Kpk3RwfjkegjoOyhJZuf+/Yjk3RnuqXpVqZNg5PrCuAYuCjUufvV MzJKwTPEddDLZKDFNJSO/bSO5yaYYYGO7HIcXMeQSTQZzigZb+6yYsApEH/ADUnA OnGkqMoBrO90kGmzsl1E0lGHpU7SAt54PQd+2/5Ls+v7L3rkb7Vu8mSLzw+OoehK 9SjUpFaUhk7lxm0= -----END CERTIFICATE-----Generated at Mon Sep 8 05:44:51 2025 by rpki-client