$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/DD0A5C28242B11EDB3156081C4F9AE02.roa File: DD0A5C28242B11EDB3156081C4F9AE02.roa (raw, json) Hash identifier: rCJhNBSW6sHYndwUpxPskC5lF6J+/bQz6HV1EUZTWxI= Subject key identifier: 75:42:0C:79:64:BA:7A:9A:EB:C6:59:1E:E4:66:5D:AC:95:97:63:73 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D60 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/DD0A5C28242B11EDB3156081C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:54:45 +0000 ROA not before: Thu 28 Aug 2025 14:54:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 149124 IP address blocks: 103.149.28.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19808 (0x4d60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:54:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06db4-0876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9f:c9:06:bf:02:2e:ca:4f:69:cf:f0:bb:e2: ab:f4:35:95:4c:83:df:74:11:d5:81:1f:20:5e:48: 8f:fc:1f:f6:f5:3b:f6:d7:0b:1f:4c:57:b6:51:56: 92:c3:c8:52:82:42:bf:f0:58:2b:16:c1:f3:30:ff: c5:ff:a1:29:8e:6e:b1:1c:27:84:53:3b:0f:c4:58: f8:67:dc:56:10:c1:57:14:f1:cc:d0:66:46:c8:93: 71:34:b0:05:99:34:dd:13:6e:e9:a1:a7:c5:a7:da: b9:4f:82:ca:4b:b0:60:8a:30:52:f8:6d:c6:2b:5b: 79:c1:08:68:f3:6a:52:62:3b:0c:de:c2:b1:ee:69: ea:8a:7a:72:41:d3:85:8c:0d:d3:22:8d:db:22:46: 72:a7:c4:99:9b:29:ff:ce:62:fe:f9:cc:9e:42:98: 3b:1c:29:87:f6:71:79:08:ee:9d:30:81:a0:9d:6c: 6d:af:c5:d0:47:13:e1:e7:32:41:49:1a:62:54:73: 53:b3:29:69:4e:ff:ac:a9:11:05:6b:dc:de:3c:24: 11:95:bd:93:6d:13:66:b5:e2:8c:92:90:25:18:42: b3:aa:7f:62:78:50:a3:d5:08:cd:f1:cf:6c:6d:16: 78:d5:0e:99:f9:27:b6:a5:70:3c:b5:a7:ac:98:2d: f3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:42:0C:79:64:BA:7A:9A:EB:C6:59:1E:E4:66:5D:AC:95:97:63:73 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/DD0A5C28242B11EDB3156081C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.28.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:20:de:67:68:a0:6d:1c:76:ff:1b:e1:56:9b:ee:98:f2:5b: cb:9d:73:8e:f5:c1:13:3f:de:61:bb:08:a6:f9:0b:d9:e1:57: 68:a9:8c:fe:88:34:0f:c2:eb:04:7d:19:42:4d:19:6e:78:2d: 0b:37:47:92:bb:f8:66:ad:a1:32:84:54:9a:1d:a3:e0:78:29: 00:0f:25:95:c7:f4:58:f4:d3:78:1b:de:50:3e:4b:c6:7c:67: 69:5a:93:fa:b7:8c:a3:56:0d:64:4b:89:33:db:bd:e8:29:33: bc:53:a1:ab:8b:07:da:7e:9d:5c:41:d6:7b:0c:ca:f7:da:90: 31:de:cc:84:7e:0c:18:e0:a9:c9:09:ea:c5:95:ba:fe:30:39: 98:69:be:c6:2f:fd:13:82:5b:dd:21:b4:10:4c:73:55:88:0f: a5:bf:72:9c:0c:04:b8:fa:45:28:1a:7f:d7:00:0b:d7:b7:02: 42:02:b9:38:17:01:e6:02:cc:43:03:97:a7:09:ce:f0:b5:1b: 85:03:2b:47:6b:53:d5:96:90:e0:03:d6:2a:b5:13:0c:5c:c3: 23:9e:9d:4b:0d:51:73:f5:2d:df:eb:f4:6c:26:71:da:10:5a: 35:ee:bf:7d:ff:1c:6e:01:2c:ba:45:f4:80:08:d1:b1:0e:ab: 2c:58:68:1d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NDQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRiNC0wODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvp/JBr8CLspPac/wu+Kr9DWVTIPfdBHVgR8gXkiP/B/29Tv21wsfTFe2UVaS w8hSgkK/8FgrFsHzMP/F/6Epjm6xHCeEUzsPxFj4Z9xWEMFXFPHM0GZGyJNxNLAF mTTdE27poafFp9q5T4LKS7BgijBS+G3GK1t5wQho82pSYjsM3sKx7mnqinpyQdOF jA3TIo3bIkZyp8SZmyn/zmL++cyeQpg7HCmH9nF5CO6dMIGgnWxtr8XQRxPh5zJB SRpiVHNTsylpTv+sqREFa9zePCQRlb2TbRNmteKMkpAlGEKzqn9ieFCj1QjN8c9s bRZ41Q6Z+Se2pXA8taesmC3zKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHVCDHlk unqa68ZZHuRmXayVl2NzMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvREQwQTVDMjgy NDJCMTFFREIzMTU2MDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlRwwDQYJKoZIhvcNAQELBQADggEBAIwg3mdooG0cdv8b 4Vab7pjyW8udc471wRM/3mG7CKb5C9nhV2ipjP6INA/C6wR9GUJNGW54LQs3R5K7 +GatoTKEVJodo+B4KQAPJZXH9Fj003gb3lA+S8Z8Z2lak/q3jKNWDWRLiTPbvegp M7xToauLB9p+nVxB1nsMyvfakDHezIR+DBjgqckJ6sWVuv4wOZhpvsYv/ROCW90h tBBMc1WID6W/cpwMBLj6RSgaf9cAC9e3AkICuTgXAeYCzEMDl6cJzvC1G4UDK0dr U9WWkOAD1iq1EwxcwyOenUsNUXP1Ld/r9GwmcdoQWjXuv33/HG4BLLpF9IAI0bEO qyxYaB0= -----END CERTIFICATE-----Generated at Mon Sep 8 05:41:48 2025 by rpki-client