$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FDEF8F3E9EE711EEB412E35FC4F9AE02.roa File: FDEF8F3E9EE711EEB412E35FC4F9AE02.roa (raw, json) Hash identifier: VMOjRlE+6ZAHAEcZz3GMNnzSbwRz+lW+cglBqNICo1s= Subject key identifier: AE:A0:D5:69:A9:CF:2C:57:01:87:56:2E:23:72:F1:68:F5:E3:84:6D Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D99 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FDEF8F3E9EE711EEB412E35FC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:32 +0000 ROA not before: Thu 28 Aug 2025 14:55:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150883 IP address blocks: 103.69.82.0/23 maxlen: 24 2401:3120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19865 (0x4d99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06de4-0912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4b:10:ae:0c:01:41:26:1b:fc:eb:36:69:1b: 88:34:79:2f:dd:e4:c0:32:23:52:c5:7d:e7:68:2f: 71:6c:f4:3e:01:4e:ae:f5:c9:d3:28:ad:f7:2f:87: 39:ad:42:84:c6:6a:23:40:c8:03:d2:7d:52:92:cc: dc:d5:3f:ab:60:b8:d8:f7:fe:f3:02:87:9f:75:3a: 5f:12:23:3e:6b:0d:99:b5:e9:1d:20:fe:b0:85:61: ab:9f:89:9a:3d:f4:9f:d3:b1:33:f3:a4:56:fa:67: 3e:db:1a:5f:d3:f6:63:33:10:b2:91:2c:cd:db:60: 8b:8a:c1:c3:bc:2f:48:77:4a:1d:b2:26:17:5f:0c: 82:90:29:f2:1e:bf:81:da:06:5c:8c:44:69:4e:fd: 39:7a:14:b2:46:3a:32:ed:9c:04:08:aa:48:d4:ee: 5f:b8:df:f1:86:dc:09:1c:68:ac:fa:c5:22:12:f1: 69:9b:59:2e:98:e9:cd:03:56:b5:38:b1:d6:71:9d: 49:b6:e5:96:df:08:3a:53:ee:a8:21:e7:68:02:ec: 56:27:25:c8:c6:64:0b:7d:f5:91:01:3d:23:5d:cf: 56:63:05:4b:ce:5f:59:b8:14:dc:11:19:f5:b6:ff: 58:19:7b:a7:be:94:48:96:5d:a7:1e:c5:34:cf:dc: a0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A0:D5:69:A9:CF:2C:57:01:87:56:2E:23:72:F1:68:F5:E3:84:6D X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FDEF8F3E9EE711EEB412E35FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.82.0/23 IPv6: 2401:3120::/48 Signature Algorithm: sha256WithRSAEncryption 45:86:4e:7e:56:f5:b6:f7:52:6b:8d:2d:22:c0:d0:37:d6:fc: b7:4e:43:2d:56:ee:54:50:d4:10:82:e7:46:3d:88:dd:d4:68: ae:88:d3:07:cb:1f:6e:59:0d:af:1b:ea:cd:44:d1:ff:55:28: aa:dd:2a:63:ef:44:c9:32:05:16:30:68:eb:12:1a:55:fc:f9: 28:48:99:e4:22:9e:a3:52:50:93:19:7c:a2:c6:5c:1b:ec:67: 68:1b:b0:fe:1f:c2:4b:97:b3:d5:6c:69:28:78:c7:95:ae:7e: e2:65:3b:02:37:3e:3a:7f:81:71:3f:16:3d:55:c7:0b:9d:a1: e3:e2:f5:e6:96:1b:bf:f2:97:03:5b:15:39:f7:4f:50:55:55: 58:5c:76:4e:85:9c:9e:8d:29:b8:4c:50:69:69:4a:1c:f5:ab: 97:ef:04:d2:cc:26:10:6b:cc:41:24:cc:ee:5f:ac:fd:c7:0c: c8:52:3b:a5:8d:f5:72:b7:05:b1:65:2c:c0:65:b4:15:91:27: 0a:da:ae:05:7f:14:d1:ff:ad:d3:b7:b0:78:cb:a9:6f:11:1d: ba:57:8a:f9:46:c0:e1:84:cf:a6:d4:9a:52:d5:b1:ce:7c:79: c0:35:83:f1:c5:b5:88:3f:fd:39:69:36:86:2e:46:e7:de:80: 8e:7d:01:dc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRlNC0wOTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EsQrgwBQSYb/Os2aRuINHkv3eTAMiNSxX3naC9xbPQ+AU6u9cnTKK33L4c5 rUKExmojQMgD0n1Skszc1T+rYLjY9/7zAoefdTpfEiM+aw2ZtekdIP6whWGrn4ma PfSf07Ez86RW+mc+2xpf0/ZjMxCykSzN22CLisHDvC9Id0odsiYXXwyCkCnyHr+B 2gZcjERpTv05ehSyRjoy7ZwECKpI1O5fuN/xhtwJHGis+sUiEvFpm1kumOnNA1a1 OLHWcZ1JtuWW3wg6U+6oIedoAuxWJyXIxmQLffWRAT0jXc9WYwVLzl9ZuBTcERn1 tv9YGXunvpRIll2nHsU0z9ygiQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK6g1Wmp zyxXAYdWLiNy8Wj144RtMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRkRFRjhGM0U5 RUU3MTFFRUI0MTJFMzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnRVIwDwQCAAIwCQMHACQBMSAAADANBgkqhkiG9w0BAQsF AAOCAQEARYZOflb1tvdSa40tIsDQN9b8t05DLVbuVFDUEILnRj2I3dRorojTB8sf blkNrxvqzUTR/1Uoqt0qY+9EyTIFFjBo6xIaVfz5KEiZ5CKeo1JQkxl8osZcG+xn aBuw/h/CS5ez1WxpKHjHla5+4mU7Ajc+On+BcT8WPVXHC52h4+L15pYbv/KXA1sV OfdPUFVVWFx2ToWcno0puExQaWlKHPWrl+8E0swmEGvMQSTM7l+s/ccMyFI7pY31 crcFsWUswGW0FZEnCtquBX8U0f+t07eweMupbxEduleK+UbA4YTPptSaUtWxznx5 wDWD8cW1iD/9OWk2hi5G596Ajn0B3A== -----END CERTIFICATE-----Generated at Mon Sep 8 05:35:25 2025 by rpki-client