$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E87976C65BA511EFBB8C405EC4F9AE02.roa File: E87976C65BA511EFBB8C405EC4F9AE02.roa (raw, json) Hash identifier: nEnGIWNGpJOWm9GznDKXTDbYlb80rafubWADNPRLMFc= Subject key identifier: FC:83:37:D4:49:07:04:71:3C:29:8E:6D:A5:8E:0F:87:A9:32:43:5F Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D14 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E87976C65BA511EFBB8C405EC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:53:42 +0000 ROA not before: Thu 28 Aug 2025 14:53:42 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135978 IP address blocks: 103.140.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19732 (0x4d14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:42 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d76-8ae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a7:2f:3b:63:f0:47:54:ee:1d:44:e7:18:5b: f3:e4:dc:0b:bd:e6:31:9c:90:9b:97:53:81:e0:30: 33:f9:3f:0e:c9:47:98:33:64:a8:0b:1d:ee:13:9d: 86:aa:32:e9:69:63:bc:1a:dc:01:d2:66:6a:d2:0d: 70:df:21:a8:9b:6f:4d:51:cd:15:64:cc:d3:cd:7e: fc:24:78:33:8f:3a:13:0f:15:8a:f7:71:33:43:46: 68:f9:0a:3e:94:14:70:c2:e1:73:4e:d8:9b:cb:e4: ab:a2:eb:f2:5e:40:2f:a0:67:0c:43:d8:8f:79:0a: ac:6b:cc:c1:28:10:36:89:92:fa:fa:aa:a1:e5:1f: 68:1d:bf:ae:b8:0b:5a:20:04:5e:a4:38:03:93:4c: 94:2f:02:5c:29:9c:40:03:d6:f7:43:65:67:58:0e: ff:ba:f7:3e:be:08:77:a0:1a:2a:a0:6a:46:ba:64: fa:b0:44:e2:2c:42:fb:91:46:ed:bb:9b:b4:00:4c: c2:8e:fa:36:22:31:26:2a:d1:1f:e5:94:32:18:05: 72:9f:ca:bd:cd:b1:16:b5:1d:cb:e1:b6:13:27:6b: 38:29:b3:44:e6:35:04:04:af:59:1c:6f:dd:70:eb: 13:56:c7:7d:9d:77:b9:9e:b9:b7:3d:d7:34:62:dd: 25:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:83:37:D4:49:07:04:71:3C:29:8E:6D:A5:8E:0F:87:A9:32:43:5F X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/E87976C65BA511EFBB8C405EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.38.0/23 Signature Algorithm: sha256WithRSAEncryption b1:17:7f:61:9d:d8:fb:fa:e3:fe:61:13:ce:39:37:16:71:df: dc:82:69:6f:62:cb:19:12:89:0d:ba:cd:ef:54:60:87:7b:a3: 99:66:12:f7:35:39:2d:f4:08:58:08:9c:e7:e6:ee:41:5c:e9: d7:c1:4b:c4:bc:16:e8:38:09:76:2d:97:26:46:98:da:83:d3: 80:ce:b1:7d:7f:c3:c5:2c:71:71:09:86:8e:ea:7b:a9:32:41: 67:58:6a:9f:35:d5:f2:44:07:c2:dc:cb:d8:b8:3f:2d:8d:df: 26:0e:31:6b:ec:56:03:a6:10:5f:fc:cd:51:91:c0:a3:3e:34: 1f:9a:49:b2:ae:24:9d:34:ff:87:62:31:9b:de:3f:ca:7a:2f: cf:07:23:29:55:f1:93:bc:e8:ad:33:bd:d7:00:30:b9:e8:2d: 8c:27:95:fc:d1:7a:80:91:e8:15:9a:46:ff:2d:d7:e9:b2:61: 74:c3:cb:59:ee:97:b0:ce:e8:70:65:8f:83:95:c7:03:b6:b2: 58:f0:e0:71:3b:50:82:31:0b:20:3b:20:a3:62:c8:3d:92:07: b9:76:90:d9:e6:61:ce:ee:f4:86:3a:15:65:5e:f3:b7:ef:19: 43:1a:9f:45:0d:7f:66:e9:c4:4a:b9:04:ed:88:d8:c4:96:a0: 61:5b:a4:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzQyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ3Ni04YWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyacvO2PwR1TuHUTnGFvz5NwLveYxnJCbl1OB4DAz+T8OyUeYM2SoCx3uE52G qjLpaWO8GtwB0mZq0g1w3yGom29NUc0VZMzTzX78JHgzjzoTDxWK93EzQ0Zo+Qo+ lBRwwuFzTtiby+SrouvyXkAvoGcMQ9iPeQqsa8zBKBA2iZL6+qqh5R9oHb+uuAta IARepDgDk0yULwJcKZxAA9b3Q2VnWA7/uvc+vgh3oBoqoGpGumT6sETiLEL7kUbt u5u0AEzCjvo2IjEmKtEf5ZQyGAVyn8q9zbEWtR3L4bYTJ2s4KbNE5jUEBK9ZHG/d cOsTVsd9nXe5nrm3Pdc0Yt0lsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPyDN9RJ BwRxPCmObaWOD4epMkNfMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRTg3OTc2QzY1 QkE1MTFFRkJCOEM0MDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjCYwDQYJKoZIhvcNAQELBQADggEBALEXf2Gd2Pv64/5h E845NxZx39yCaW9iyxkSiQ26ze9UYId7o5lmEvc1OS30CFgInOfm7kFc6dfBS8S8 Fug4CXYtlyZGmNqD04DOsX1/w8UscXEJho7qe6kyQWdYap811fJEB8Lcy9i4Py2N 3yYOMWvsVgOmEF/8zVGRwKM+NB+aSbKuJJ00/4diMZveP8p6L88HIylV8ZO86K0z vdcAMLnoLYwnlfzReoCR6BWaRv8t1+myYXTDy1nul7DO6HBlj4OVxwO2sljw4HE7 UIIxCyA7IKNiyD2SB7l2kNnmYc7u9IY6FWVe87fvGUMan0UNf2bpxEq5BO2I2MSW oGFbpNQ= -----END CERTIFICATE-----Generated at Mon Sep 8 05:35:24 2025 by rpki-client