$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/DDD049F4890D11EEB62DEE56C4F9AE02.roa File: DDD049F4890D11EEB62DEE56C4F9AE02.roa (raw, json) Hash identifier: qXNATmCxwxD95mzdahGWXOOvnRKADw31eNlSpqgV1po= Subject key identifier: 37:50:B8:2B:22:42:B9:D0:A6:C6:65:C2:F5:69:45:76:88:B0:69:1F Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DAE Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/DDD049F4890D11EEB62DEE56C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:48 +0000 ROA not before: Thu 28 Aug 2025 14:55:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151870 IP address blocks: 203.175.106.0/23 maxlen: 24 2001:df3:2140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19886 (0x4dae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06df4-1128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:58:0c:39:01:3c:ce:79:a4:ac:53:5f:a6:8e: ab:1b:55:6f:3d:55:e7:95:7c:75:bf:4c:06:41:59: ec:0b:c3:c9:5f:e9:b0:19:bc:52:cd:cc:3b:24:ba: 85:6c:01:7b:54:4a:38:8d:95:a0:ab:c7:97:4d:1f: 34:86:67:ab:72:5c:b2:fc:2b:74:7e:ec:cd:a2:23: 5b:a3:5d:43:f4:e6:19:c6:b9:55:1f:43:a6:4b:cb: 94:0a:9c:80:22:90:58:eb:ef:a5:ad:16:2c:d7:bc: 50:2c:e7:b6:6b:4d:eb:d5:b9:02:b7:c5:0a:fe:4b: 32:e5:82:2c:6e:a0:f2:41:9f:b5:ae:14:0a:d9:f1: a6:0a:06:63:23:80:5a:9d:9b:49:26:2c:96:26:13: 3d:88:9f:d9:bc:35:f5:07:11:ec:01:62:5b:98:6f: 47:31:fe:95:05:56:93:b8:d5:ba:16:c6:ae:24:a8: 33:e2:0e:55:9e:be:fa:c4:e2:9c:f1:a9:08:e3:67: 82:60:95:bd:50:f5:0a:ce:eb:db:7a:ef:8e:4d:a5: 87:79:d0:ef:89:12:97:46:1c:d1:33:cd:e2:7b:9c: 81:6c:4d:2f:fc:85:e5:90:67:6a:8b:57:58:ca:15: 84:2c:7e:f5:7e:cf:06:68:8a:5b:93:92:fb:56:e3: 33:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:50:B8:2B:22:42:B9:D0:A6:C6:65:C2:F5:69:45:76:88:B0:69:1F X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/DDD049F4890D11EEB62DEE56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.175.106.0/23 IPv6: 2001:df3:2140::/48 Signature Algorithm: sha256WithRSAEncryption 28:48:a0:e8:24:3c:d7:dd:80:2a:04:e3:48:35:eb:cc:46:47: b7:09:51:82:ff:d6:e4:f8:1b:5d:bb:46:35:cb:81:fd:39:97: e2:96:c0:57:43:90:66:26:e2:3e:47:ff:22:ee:33:94:d0:99: 67:57:c1:fc:60:67:33:5e:2f:d8:fa:4a:43:65:1e:b5:b7:4c: 8d:f9:95:86:e3:15:d2:d4:ba:50:9b:46:dd:29:f5:9c:f9:a8: 02:a2:7c:9d:24:72:b0:d9:a9:f2:0c:fd:f7:29:40:44:a4:a9: 4e:22:35:d5:fe:3c:bc:a3:22:03:5c:64:4a:94:6b:80:00:e6: b6:ec:d6:95:9a:dd:3e:d5:6a:aa:9f:8a:22:77:b1:84:ef:9b: 25:5e:6b:bf:70:89:6d:f7:23:3b:1b:87:cd:24:0c:f8:4f:30: 05:b0:cc:12:cc:e2:a8:5f:87:73:b8:5d:8a:77:6f:9f:06:eb: 75:ca:6d:e4:ef:37:c2:9e:6d:85:8e:4f:8b:ab:88:f2:3f:28: 8a:ff:6e:e9:7e:22:6d:3f:15:a9:22:67:b5:4e:e5:95:04:3b: cf:a2:5a:24:34:c8:38:b1:35:d7:be:ef:b7:d5:50:34:b3:95: f6:a8:16:61:ef:f7:e4:9d:0e:d3:ec:48:0b:35:1e:3c:61:07: c3:21:c3:a0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRmNC0xMTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVgMOQE8znmkrFNfpo6rG1VvPVXnlXx1v0wGQVnsC8PJX+mwGbxSzcw7JLqF bAF7VEo4jZWgq8eXTR80hmerclyy/Ct0fuzNoiNbo11D9OYZxrlVH0OmS8uUCpyA IpBY6++lrRYs17xQLOe2a03r1bkCt8UK/ksy5YIsbqDyQZ+1rhQK2fGmCgZjI4Ba nZtJJiyWJhM9iJ/ZvDX1BxHsAWJbmG9HMf6VBVaTuNW6FsauJKgz4g5Vnr76xOKc 8akI42eCYJW9UPUKzuvbeu+OTaWHedDviRKXRhzRM83ie5yBbE0v/IXlkGdqi1dY yhWELH71fs8GaIpbk5L7VuMzgwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDdQuCsi QrnQpsZlwvVpRXaIsGkfMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvREREMDQ5RjQ4 OTBEMTFFRUI2MkRFRTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHLr2owDwQCAAIwCQMHACABDfMhQDANBgkqhkiG9w0BAQsF AAOCAQEAKEig6CQ8192AKgTjSDXrzEZHtwlRgv/W5PgbXbtGNcuB/TmX4pbAV0OQ ZibiPkf/Iu4zlNCZZ1fB/GBnM14v2PpKQ2UetbdMjfmVhuMV0tS6UJtG3Sn1nPmo AqJ8nSRysNmp8gz99ylARKSpTiI11f48vKMiA1xkSpRrgADmtuzWlZrdPtVqqp+K InexhO+bJV5rv3CJbfcjOxuHzSQM+E8wBbDMEsziqF+Hc7hdindvnwbrdcpt5O83 wp5thY5Pi6uI8j8oiv9u6X4ibT8VqSJntU7llQQ7z6JaJDTIOLE1177vt9VQNLOV 9qgWYe/35J0O0+xICzUePGEHwyHDoA== -----END CERTIFICATE-----Generated at Mon Sep 8 05:35:22 2025 by rpki-client