$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FF720066912211EF9222B024C4F9AE02.roa File: FF720066912211EF9222B024C4F9AE02.roa (raw, json) Hash identifier: /ZXBVAZXNuHZdDY631HaYGpFHmn7OxNm0RsPsuUSF9E= Subject key identifier: C5:7C:11:0D:41:86:B4:11:8B:05:BA:AD:98:2F:88:92:22:74:66:B0 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E34 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FF720066912211EF9222B024C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:43 +0000 ROA not before: Thu 28 Aug 2025 14:57:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56153 IP address blocks: 103.97.124.0/24 maxlen: 24 103.97.125.0/24 maxlen: 24 103.97.126.0/24 maxlen: 24 103.97.127.0/24 maxlen: 24 103.255.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20020 (0x4e34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e67-fc37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:35:ef:a1:0c:49:35:ba:a6:de:f3:70:98:e1: 6e:6c:47:19:ce:43:fb:9e:19:09:7b:de:81:f7:0e: 7c:23:87:15:86:9f:4b:e4:b3:52:f7:31:df:a2:a4: 50:cb:7d:dc:3b:42:aa:90:c4:a0:74:2b:55:52:68: f3:c6:7d:87:46:ad:4e:b7:17:6e:f0:21:e0:46:e0: cb:39:73:38:08:61:7b:2f:54:49:ab:97:90:1b:a0: af:4a:1f:b6:35:27:d1:23:01:f6:06:76:e6:85:83: 69:5a:34:0f:36:a6:74:2f:98:49:86:5b:66:50:8e: 6d:af:28:53:dc:42:cf:9e:94:d4:78:cc:e4:35:68: 5b:a5:61:f7:cd:94:a1:1d:87:d0:94:1f:e2:ed:22: 83:5d:c9:e5:27:c3:bd:e5:df:a4:32:42:64:9c:2c: 09:95:34:ab:e7:86:d6:d4:e3:9b:f3:eb:79:e0:4d: c4:43:1c:b4:e6:c6:c6:73:b3:c7:bb:9a:d7:be:89: b1:7c:35:b4:37:e3:55:96:0e:e5:b0:92:b4:67:00: b5:fb:0a:33:c1:78:02:02:5c:32:98:f1:fe:d8:4b: 73:44:95:93:9e:4c:3b:c3:dd:3c:d4:32:54:13:ce: e5:1d:93:eb:38:0c:5e:7d:b0:33:db:03:c8:8a:b1: 83:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:7C:11:0D:41:86:B4:11:8B:05:BA:AD:98:2F:88:92:22:74:66:B0 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/FF720066912211EF9222B024C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.124.0/22 103.255.238.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:f9:35:b3:7d:e0:ad:83:f3:95:b8:77:45:77:2b:bf:98:8e: b7:c7:69:44:7a:c7:0e:2d:98:08:c1:d6:6a:5f:a0:53:73:e8: 52:53:45:38:08:0b:a1:a9:f4:08:0f:63:b0:c6:86:de:bd:a4: a6:fa:5c:fe:b3:3e:ec:49:23:3e:aa:77:ca:1a:9e:91:32:78: 13:26:20:2c:a7:21:e6:cd:c1:58:e2:66:53:4b:1e:b1:52:fe: 9b:f4:b4:c1:43:4f:13:51:df:08:56:d2:9e:80:92:b4:85:a8: cd:43:64:05:bc:78:d9:d0:0c:b3:13:d3:ad:1f:83:46:d4:e0: 72:de:68:6f:88:3a:ee:fb:4e:6f:21:c7:ab:7a:c9:e0:ef:77: 67:d1:3d:0f:04:33:1a:68:75:bf:6e:fa:a3:17:d0:cc:5f:41: 59:11:5f:14:dc:bb:d0:82:fb:8e:73:69:cf:fb:f0:d0:10:34: 40:7a:e1:1b:2a:dc:fa:02:32:67:62:82:ec:71:66:b0:b6:37: f5:92:d9:d7:db:9d:6c:68:ca:41:bd:4e:d6:82:3c:9e:95:51: 8a:05:38:82:1b:0a:e0:17:e6:f5:0d:da:5b:72:3b:24:ee:26: 13:4e:d3:44:e2:a4:46:aa:68:83:74:71:c4:9b:ef:74:a9:31: 3b:3e:d7:b5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICTjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU2Ny1mYzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzXvoQxJNbqm3vNwmOFubEcZzkP7nhkJe96B9w58I4cVhp9L5LNS9zHfoqRQ y33cO0KqkMSgdCtVUmjzxn2HRq1Otxdu8CHgRuDLOXM4CGF7L1RJq5eQG6CvSh+2 NSfRIwH2BnbmhYNpWjQPNqZ0L5hJhltmUI5tryhT3ELPnpTUeMzkNWhbpWH3zZSh HYfQlB/i7SKDXcnlJ8O95d+kMkJknCwJlTSr54bW1OOb8+t54E3EQxy05sbGc7PH u5rXvomxfDW0N+NVlg7lsJK0ZwC1+wozwXgCAlwymPH+2EtzRJWTnkw7w9081DJU E87lHZPrOAxefbAz2wPIirGDlwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMV8EQ1B hrQRiwW6rZgviJIidGawMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRkY3MjAwNjY5 MTIyMTFFRjkyMjJCMDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnYXwDBABn/+4wDQYJKoZIhvcNAQELBQADggEBAE35NbN9 4K2D85W4d0V3K7+YjrfHaUR6xw4tmAjB1mpfoFNz6FJTRTgIC6Gp9AgPY7DGht69 pKb6XP6zPuxJIz6qd8oanpEyeBMmICynIebNwVjiZlNLHrFS/pv0tMFDTxNR3whW 0p6AkrSFqM1DZAW8eNnQDLMT060fg0bU4HLeaG+IOu77Tm8hx6t6yeDvd2fRPQ8E Mxpodb9u+qMX0MxfQVkRXxTcu9CC+45zac/78NAQNEB64Rsq3PoCMmdiguxxZrC2 N/WS2dfbnWxoykG9TtaCPJ6VUYoFOIIbCuAX5vUN2ltyOyTuJhNO00TipEaqaIN0 ccSb73SpMTs+17U= -----END CERTIFICATE-----Generated at Mon Sep 8 05:39:22 2025 by rpki-client