$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D243E2105F9411EDA8B4CE5CC4F9AE02.roa File: D243E2105F9411EDA8B4CE5CC4F9AE02.roa (raw, json) Hash identifier: QAG3Qo1U1996+0uW7dY5P7Tp1niiH36K9w7TmvRJqVU= Subject key identifier: 60:D1:0B:D2:CE:63:06:76:FC:9A:05:29:5F:A7:71:BD:52:1C:9A:BE Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D65 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D243E2105F9411EDA8B4CE5CC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:54:49 +0000 ROA not before: Thu 28 Aug 2025 14:54:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149131 IP address blocks: 103.234.160.0/24 maxlen: 24 103.234.161.0/24 maxlen: 24 2400:a920::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19813 (0x4d65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06db8-07f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a3:20:c4:b9:d3:0d:81:5b:6d:b6:8e:21:a7: 17:a5:02:df:ae:c7:25:7f:d2:57:d9:24:00:ea:fa: bf:fa:3b:0a:03:37:42:b5:dd:2a:28:0a:6b:f5:ca: 52:23:b8:70:ff:b9:c7:9d:87:54:d3:1a:67:38:bc: 59:d5:93:b2:cb:84:03:37:4d:70:7b:89:e2:fb:d1: 1a:d5:14:dd:92:ac:47:a1:ff:e2:78:12:c1:a3:b9: 2b:32:19:f9:1c:71:28:ea:1f:f2:40:1f:39:df:36: e3:e2:18:5f:cb:43:ce:21:c1:0e:6d:cf:46:67:60: 24:e3:f0:a7:4b:bc:0e:9a:be:51:12:20:ae:76:93: 16:7b:79:e5:6f:71:fc:48:91:67:9e:71:e5:55:ad: e0:1b:da:5e:40:c9:17:8a:d2:1f:65:b5:0d:7d:5f: ba:eb:29:9f:29:3b:b5:91:79:e9:e6:04:4e:42:42: 7d:9b:76:10:d5:64:78:8f:e8:ce:8b:74:14:29:88: 24:bf:dc:c7:d8:60:3b:44:87:70:67:0f:6a:43:d3: 1f:5c:96:55:d5:28:82:44:72:47:45:52:38:ef:7f: bb:21:16:e1:58:1e:a6:19:01:20:27:25:c3:67:75: 82:e8:29:e4:66:d9:13:9c:1b:b8:8f:87:b7:66:ca: a8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D1:0B:D2:CE:63:06:76:FC:9A:05:29:5F:A7:71:BD:52:1C:9A:BE X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D243E2105F9411EDA8B4CE5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.160.0/23 IPv6: 2400:a920::/48 Signature Algorithm: sha256WithRSAEncryption 1a:a4:99:ab:c5:fc:7a:94:b4:1f:9d:8e:39:ce:cf:4e:a5:1f: 3c:65:ef:af:79:b6:fa:bc:35:eb:b2:b5:f8:84:1f:3b:94:d4: 53:aa:8f:16:6a:4f:1a:cc:d0:54:20:b7:02:d8:30:8d:a8:54: 9a:8b:1e:38:21:04:42:6d:c2:aa:ed:ff:1d:2d:5f:9d:6d:75: 69:7e:a4:ee:dc:60:61:fe:74:be:68:5d:40:8a:ee:47:b2:81: 2e:b8:39:b8:d8:10:8e:4a:4a:0a:db:6e:e2:66:6d:3c:16:0b: 2c:f7:e0:1e:b6:cc:6f:55:97:ca:49:e9:9a:1b:e1:85:ca:7c: 50:2c:6a:f2:f3:9f:a5:b3:6e:d8:70:16:3e:1e:ed:1f:2b:69: 05:48:75:8d:e7:17:11:47:0d:ca:16:45:e4:4c:de:31:a1:52: 01:25:9a:0c:8f:00:a5:fb:08:68:8c:79:56:38:6b:f0:af:70: b6:8c:2e:14:c4:64:53:81:37:f8:e9:c5:a0:cd:31:61:92:42: a2:41:6b:71:5b:66:84:68:f8:0e:43:1b:b6:e4:0e:44:74:80: db:05:71:5a:e1:06:ad:42:d6:a3:cd:2d:4a:0d:1f:e8:cb:a3: 14:a0:99:60:88:b2:31:99:b6:b3:79:0b:e8:fe:2e:77:ab:f0: 79:e8:53:d7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRiOC0wN2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaMgxLnTDYFbbbaOIacXpQLfrsclf9JX2SQA6vq/+jsKAzdCtd0qKApr9cpS I7hw/7nHnYdU0xpnOLxZ1ZOyy4QDN01we4ni+9Ea1RTdkqxHof/ieBLBo7krMhn5 HHEo6h/yQB853zbj4hhfy0POIcEObc9GZ2Ak4/CnS7wOmr5REiCudpMWe3nlb3H8 SJFnnnHlVa3gG9peQMkXitIfZbUNfV+66ymfKTu1kXnp5gROQkJ9m3YQ1WR4j+jO i3QUKYgkv9zH2GA7RIdwZw9qQ9MfXJZV1SiCRHJHRVI473+7IRbhWB6mGQEgJyXD Z3WC6CnkZtkTnBu4j4e3ZsqobQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGDRC9LO YwZ2/JoFKV+ncb1SHJq+MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRDI0M0UyMTA1 Rjk0MTFFREE4QjRDRTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn6qAwDwQCAAIwCQMHACQAqSAAADANBgkqhkiG9w0BAQsF AAOCAQEAGqSZq8X8epS0H52OOc7PTqUfPGXvr3m2+rw167K1+IQfO5TUU6qPFmpP GszQVCC3AtgwjahUmoseOCEEQm3Cqu3/HS1fnW11aX6k7txgYf50vmhdQIruR7KB Lrg5uNgQjkpKCttu4mZtPBYLLPfgHrbMb1WXyknpmhvhhcp8UCxq8vOfpbNu2HAW Ph7tHytpBUh1jecXEUcNyhZF5EzeMaFSASWaDI8ApfsIaIx5Vjhr8K9wtowuFMRk U4E3+OnFoM0xYZJCokFrcVtmhGj4DkMbtuQORHSA2wVxWuEGrULWo80tSg0f6Muj FKCZYIiyMZm2s3kL6P4ud6vweehT1w== -----END CERTIFICATE-----Generated at Mon Sep 8 05:35:25 2025 by rpki-client