$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C5FADDCA3C3911ED8A8C856DC4F9AE02.roa File: C5FADDCA3C3911ED8A8C856DC4F9AE02.roa (raw, json) Hash identifier: y95P0sl8uqaY/KjhGZJkeGj811ror0CLux9VXfDUpzI= Subject key identifier: 77:EC:07:D2:86:14:22:6F:64:3A:8C:DF:B6:9B:72:E6:4C:F8:00:61 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E55 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C5FADDCA3C3911ED8A8C856DC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:58:15 +0000 ROA not before: Thu 28 Aug 2025 14:58:15 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 7602 IP address blocks: 103.200.60.0/22 maxlen: 24 116.118.0.0/17 maxlen: 24 180.93.0.0/16 maxlen: 24 203.196.24.0/22 maxlen: 24 221.121.0.0/18 maxlen: 24 221.133.0.0/19 maxlen: 24 2402:f800::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20053 (0x4e55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:58:15 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e87-ef4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c6:0a:aa:16:fe:d6:98:b9:23:e5:3e:7e:b5: 0e:01:22:4b:61:76:44:f7:45:20:c8:a5:22:80:e1: 69:9d:b8:aa:19:e7:cb:77:69:6c:70:33:78:16:17: f8:ec:f4:b5:f8:39:a6:e4:9e:99:44:5d:80:f5:17: e0:8d:39:7e:98:33:ec:35:de:ad:b9:f3:87:bb:10: c9:fa:e7:33:80:53:d1:91:66:0d:c4:3c:f4:d7:77: ac:2e:0e:c4:bf:bb:e1:b1:46:c2:1d:f8:06:75:12: 92:94:a9:83:5e:48:f7:66:02:11:9e:2f:e6:98:b9: b1:f1:ba:37:00:fc:b6:ae:76:c3:51:56:6d:2f:b5: 30:7e:8e:d2:2a:e1:30:11:c3:d1:2c:ad:76:c0:79: eb:97:69:c3:5d:94:34:58:2f:41:ba:d8:6d:9a:00: fb:39:df:66:38:15:9d:6d:c9:3a:e8:1c:d3:24:d2: c0:07:19:ee:55:e8:a3:7e:6b:fc:4c:13:43:df:2d: a1:5b:16:cd:8f:80:18:76:cc:6b:7e:f7:f4:22:ec: 88:d6:72:f0:21:34:0f:63:f9:e4:67:1e:2d:fb:73: aa:5f:4b:32:95:41:6c:5f:4b:8f:78:54:0e:16:9d: 5a:3d:8e:64:a9:3f:55:70:b0:c8:4f:f7:ef:07:c4: 9d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:EC:07:D2:86:14:22:6F:64:3A:8C:DF:B6:9B:72:E6:4C:F8:00:61 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C5FADDCA3C3911ED8A8C856DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.200.60.0/22 116.118.0.0/17 180.93.0.0/16 203.196.24.0/22 221.121.0.0/18 221.133.0.0/19 IPv6: 2402:f800::/32 Signature Algorithm: sha256WithRSAEncryption 64:aa:b3:0f:74:57:96:bd:55:ee:a2:fe:12:85:10:1f:d0:67: ad:7d:4c:9a:cc:d0:92:f7:3f:4d:20:ae:28:35:a9:bd:c6:74: 5d:4d:cb:8d:7a:7b:37:b1:2b:e6:00:89:68:fc:3d:d1:7b:2e: 14:e1:21:44:52:2c:64:74:f6:48:4c:ab:c9:cd:81:7a:24:81: 0a:e2:57:63:e0:4c:3d:df:16:e3:61:33:30:1c:cd:34:0a:95: 25:7b:9f:b3:b2:ae:39:59:33:4a:2a:25:93:a0:56:d7:b0:cd: bd:cf:a7:18:bb:2f:f5:c1:4d:3f:46:2c:1c:92:41:03:8e:3c: 4a:88:e5:52:be:7f:6d:a8:1f:06:c7:11:9d:8a:dd:45:8e:d9: 29:6d:19:b0:d9:22:89:a7:31:ec:4e:69:d4:7b:f5:51:40:b9: e5:34:be:06:33:84:f0:a3:e6:3f:5f:7f:58:0b:81:99:be:3d: b9:a7:9c:96:f9:fa:11:bf:f5:8b:21:57:40:76:2b:07:de:58: 20:c1:10:c3:fe:41:d0:c4:8d:5c:a4:e7:c0:29:8d:1a:17:73: 59:fe:81:93:f0:be:4f:3e:a7:41:ce:24:4a:d1:19:9a:a0:69: c8:0d:6a:94:e4:1b:a7:e9:de:c8:31:62:57:04:97:de:62:2d: 9d:b4:30:a0 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICTlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1ODE1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU4Ny1lZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8YKqhb+1pi5I+U+frUOASJLYXZE90UgyKUigOFpnbiqGefLd2lscDN4Fhf4 7PS1+Dmm5J6ZRF2A9RfgjTl+mDPsNd6tufOHuxDJ+uczgFPRkWYNxDz013esLg7E v7vhsUbCHfgGdRKSlKmDXkj3ZgIRni/mmLmx8bo3APy2rnbDUVZtL7Uwfo7SKuEw EcPRLK12wHnrl2nDXZQ0WC9ButhtmgD7Od9mOBWdbck66BzTJNLABxnuVeijfmv8 TBND3y2hWxbNj4AYdsxrfvf0IuyI1nLwITQPY/nkZx4t+3OqX0sylUFsX0uPeFQO Fp1aPY5kqT9VcLDIT/fvB8SdWQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFHfsB9KG FCJvZDqM37abcuZM+ABhMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzVGQUREQ0Ez QzM5MTFFRDhBOEM4NTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MCkEAgABMCMDBAJnyDwDBAd0dgADAwC0XQMEAsvEGAMEBt15AAMEBd2FADAN BAIAAjAHAwUAJAL4ADANBgkqhkiG9w0BAQsFAAOCAQEAZKqzD3RXlr1V7qL+EoUQ H9BnrX1MmszQkvc/TSCuKDWpvcZ0XU3LjXp7N7Er5gCJaPw90XsuFOEhRFIsZHT2 SEyryc2BeiSBCuJXY+BMPd8W42EzMBzNNAqVJXufs7KuOVkzSiolk6BW17DNvc+n GLsv9cFNP0YsHJJBA448SojlUr5/bagfBscRnYrdRY7ZKW0ZsNkiiacx7E5p1Hv1 UUC55TS+BjOE8KPmP19/WAuBmb49uaeclvn6Eb/1iyFXQHYrB95YIMEQw/5B0MSN XKTnwCmNGhdzWf6Bk/C+Tz6nQc4kStEZmqBpyA1qlOQbp+neyDFiVwSX3mItnbQw oA== -----END CERTIFICATE-----Generated at Mon Sep 8 05:33:26 2025 by rpki-client