$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3E0BA21CEBB211EEA93D9B14C4F9AE02.roa File: 3E0BA21CEBB211EEA93D9B14C4F9AE02.roa (raw, json) Hash identifier: N/ID+SY0JAy45rWeP36Bw1B7q4m3VaCJNW1Sv52Yw6c= Subject key identifier: FF:20:E5:52:A8:AE:5A:FD:C9:E1:01:10:15:EA:7E:CB:FC:A3:50:9B Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 0177 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3E0BA21CEBB211EEA93D9B14C4F9AE02.roa Signing time: Thu 14 Aug 2025 23:51:35 +0000 ROA not before: Thu 14 Aug 2025 23:51:35 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 167.103.90.0/24 maxlen: 24 167.103.91.0/24 maxlen: 24 167.103.92.0/24 maxlen: 24 167.103.93.0/24 maxlen: 24 167.103.94.0/24 maxlen: 24 167.103.95.0/24 maxlen: 24 167.103.170.0/24 maxlen: 24 167.103.237.0/24 maxlen: 24 167.103.238.0/24 maxlen: 24 167.103.239.0/24 maxlen: 24 167.103.240.0/24 maxlen: 24 167.103.241.0/24 maxlen: 24 167.103.242.0/24 maxlen: 24 167.103.243.0/24 maxlen: 24 167.103.244.0/24 maxlen: 24 167.103.245.0/24 maxlen: 24 167.103.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 05:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Aug 14 23:51:35 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689e7687-8148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4a:82:e7:5f:8a:0c:d7:cb:7b:88:04:a3:e5: d2:62:93:fb:e8:fe:2f:c6:15:c0:c5:7b:1c:11:d7: 63:39:12:8f:ca:99:cf:97:5f:14:c2:e5:2d:80:45: 33:6d:e0:6a:01:84:69:43:2f:73:8f:41:c4:2e:e3: dd:8f:7e:0e:f0:23:0b:52:3d:16:31:58:a4:ee:71: 63:ff:e6:9c:4d:f3:09:03:dd:5a:2b:c6:4c:a6:1c: dc:d1:d0:e6:95:3f:3c:8a:01:ea:c7:f4:be:38:47: f0:13:a3:cd:bc:3a:c2:9a:03:55:0f:43:75:27:ce: 9e:62:4b:58:12:40:7d:c6:f5:53:6e:0b:9b:63:98: fc:ec:96:c9:97:a3:bf:17:ca:bd:93:fd:c0:dd:88: de:1b:d8:09:6b:26:dd:89:9c:6d:6f:57:3a:3d:78: 8e:8e:51:83:3a:cb:62:e9:5d:02:65:31:8c:8a:c0: 61:31:8e:c3:38:27:fd:73:19:8e:97:a3:1e:40:c1: ea:e9:26:1d:2e:15:3d:59:04:78:e5:61:00:43:1e: 43:a3:eb:db:ae:46:21:da:1a:a8:49:c1:7a:a6:5a: ba:e2:54:d0:ed:20:b9:55:1b:7c:b1:25:d6:d3:01: 09:bd:fb:12:f5:c9:a4:bd:20:4e:a0:e1:07:69:6c: 14:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:20:E5:52:A8:AE:5A:FD:C9:E1:01:10:15:EA:7E:CB:FC:A3:50:9B X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3E0BA21CEBB211EEA93D9B14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.90.0-167.103.95.255 167.103.170.0/24 167.103.237.0-167.103.246.255 Signature Algorithm: sha256WithRSAEncryption 42:4e:20:c7:02:90:a4:c4:07:57:d2:61:bd:b5:2d:98:fa:16: 8b:e0:a3:2f:36:c7:f4:5e:5d:a6:b9:15:e2:b1:88:06:97:e5: 26:ff:9b:14:b7:be:ed:69:76:95:20:b9:75:33:97:21:ea:b2: 81:ed:ff:d1:9e:fa:c7:df:3f:d4:26:19:35:ef:e0:73:79:53: ba:d1:c3:1d:21:46:a4:d8:9e:a7:b3:b6:f8:36:e6:cb:02:a8: a7:3f:7f:30:3d:69:2d:cc:43:5b:0a:bc:e9:76:e2:83:1f:e7: a6:72:81:64:29:6a:0f:8b:3f:25:db:c8:ee:68:2a:b0:b1:46: 95:dd:71:c8:e7:73:87:8f:16:ef:0c:0f:0f:c2:7f:d0:8f:c7: 9a:26:60:4f:69:c6:82:b5:91:2d:05:b4:65:15:43:d0:7e:16: f7:79:c5:1b:a8:4e:c4:b6:d8:46:9c:67:91:17:c8:75:a1:24: c4:ba:ea:46:db:d5:eb:5e:a0:b4:9d:78:1f:ce:85:24:4e:c9: 41:39:e4:e1:63:0b:08:91:fe:d0:24:e1:f7:65:75:77:1b:c4: c2:46:0c:d1:c5:52:6f:79:d7:cc:96:74:fa:10:28:fd:58:71: 09:ff:4f:2b:0b:f9:d4:48:a0:53:72:0c:c5:98:c5:76:88:a1: 17:e9:e0:7e -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwODE0MjM1MTM1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllNzY4Ny04MTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kqC51+KDNfLe4gEo+XSYpP76P4vxhXAxXscEddjORKPypnPl18UwuUtgEUz beBqAYRpQy9zj0HELuPdj34O8CMLUj0WMVik7nFj/+acTfMJA91aK8ZMphzc0dDm lT88igHqx/S+OEfwE6PNvDrCmgNVD0N1J86eYktYEkB9xvVTbgubY5j87JbJl6O/ F8q9k/3A3YjeG9gJaybdiZxtb1c6PXiOjlGDOsti6V0CZTGMisBhMY7DOCf9cxmO l6MeQMHq6SYdLhU9WQR45WEAQx5Do+vbrkYh2hqoScF6plq64lTQ7SC5VRt8sSXW 0wEJvfsS9cmkvSBOoOEHaWwUAwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFP8g5VKo rlr9yeEBEBXqfsv8o1CbMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvM0UwQkEyMUNF QkIyMTFFRUE5M0Q5QjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAadnWgMEBadnQAMEAKdnqjAMAwQAp2ftAwQAp2f2MA0G CSqGSIb3DQEBCwUAA4IBAQBCTiDHApCkxAdX0mG9tS2Y+haL4KMvNsf0Xl2muRXi sYgGl+Um/5sUt77taXaVILl1M5ch6rKB7f/RnvrH3z/UJhk17+BzeVO60cMdIUak 2J6ns7b4NubLAqinP38wPWktzENbCrzpduKDH+emcoFkKWoPiz8l28juaCqwsUaV 3XHI53OHjxbvDA8Pwn/Qj8eaJmBPacaCtZEtBbRlFUPQfhb3ecUbqE7EtthGnGeR F8h1oSTEuupG29XrXqC0nXgfzoUkTslBOeThYwsIkf7QJOH3ZXV3G8TCRgzRxVJv edfMlnT6ECj9WHEJ/08rC/nUSKBTcgzFmMV2iKEX6eB+ -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:15 2025 by rpki-client