$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/F4260C1C68DC11EE842D825BC4F9AE02.roa File: F4260C1C68DC11EE842D825BC4F9AE02.roa (raw, json) Hash identifier: Bs60NAJODIvyPbTdOei+RIwraizPMP8YmkDLpLSSqzI= Subject key identifier: 80:C6:54:40:FF:BD:11:84:94:5D:C5:B7:28:2F:FF:8F:69:7F:B2:A0 Certificate issuer: /CN=A91A9197/serialNumber=B7FE6A424DB565261B473A71231D59E218DC4504 Certificate serial: 01A3 Authority key identifier: B7:FE:6A:42:4D:B5:65:26:1B:47:3A:71:23:1D:59:E2:18:DC:45:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/F4260C1C68DC11EE842D825BC4F9AE02.roa Signing time: Tue 19 Aug 2025 04:10:56 +0000 ROA not before: Tue 19 Aug 2025 04:10:56 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140942 IP address blocks: 103.153.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.crl rsync://rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9197, serialNumber=B7FE6A424DB565261B473A71231D59E218DC4504 Validity Not Before: Aug 19 04:10:56 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a3f950-ac83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:69:c0:d3:31:c3:22:16:c9:40:d4:5d:66:67: 0c:c1:72:83:cf:fa:3d:ba:20:dc:f0:89:2b:05:48: 30:80:36:9f:fc:8c:2b:53:4a:3d:a6:8c:e2:47:10: 05:54:18:6b:21:24:a5:39:9b:6d:08:f7:38:9c:04: f2:a3:f6:3e:53:cd:a7:f2:09:ce:13:b4:ba:2e:d8: ed:20:45:c6:82:d6:2b:9d:40:e7:6f:f6:63:97:d6: ed:6f:40:d2:0c:f5:b7:2d:50:a8:a6:91:4e:4a:20: a6:92:95:84:3d:4a:b3:cf:6f:75:02:7c:0e:33:95: 97:d3:10:10:d3:35:1f:df:4f:c4:f7:ae:1b:ad:0b: 5c:42:ac:0c:6c:bd:ae:0d:32:ad:18:cc:3f:ab:4c: 52:ec:51:1b:2c:5d:f3:60:7d:e4:13:06:73:b5:5a: 6f:f1:35:ee:6a:54:22:58:e7:47:a4:c1:39:25:e6: bd:c3:38:07:71:91:86:a9:6d:d0:7a:97:07:34:9c: 48:47:fa:ac:31:a3:82:ca:4d:e8:70:46:d4:37:7b: 60:38:d8:69:f5:5d:3e:84:b4:75:16:b1:1e:ad:9e: 69:e0:e7:1c:3a:2f:08:34:c3:a0:c1:17:ce:84:58: 8a:07:10:ed:30:5d:9f:b8:91:a6:c3:35:ca:d4:1a: c7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C6:54:40:FF:BD:11:84:94:5D:C5:B7:28:2F:FF:8F:69:7F:B2:A0 X509v3 Authority Key Identifier: keyid:B7:FE:6A:42:4D:B5:65:26:1B:47:3A:71:23:1D:59:E2:18:DC:45:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t_5qQk21ZSYbRzpxIx1Z4hjcRQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9197/4F3C798A069D11EEB8798D14C4F9AE02/F4260C1C68DC11EE842D825BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.172.0/23 Signature Algorithm: sha256WithRSAEncryption 41:e2:77:9b:d8:df:0b:d6:16:03:8f:7d:f2:0f:65:55:38:0d: 07:d3:a7:95:44:17:b7:0a:82:b8:d0:ed:7e:6d:e0:9a:d9:e8: 4a:d8:f6:0f:f4:7e:f0:4b:b9:1b:34:d3:dc:d8:33:38:9b:44: 20:d0:20:2f:3c:45:f5:3f:c5:3f:20:34:75:f6:23:97:2a:aa: 5c:64:a9:cb:53:7e:45:69:57:7c:f9:e7:4e:0b:7f:d3:7c:5e: 19:e3:25:e4:7f:06:d7:f1:10:9a:cd:1a:e4:a8:f7:a0:82:c6: 70:80:4c:de:3b:5e:c8:32:bb:6e:de:e9:d5:b4:d0:55:87:02: cd:12:e3:33:54:e3:ba:0b:dd:06:8c:39:35:d0:a1:24:43:2e: f3:55:1f:6c:e5:38:03:07:00:98:8d:17:94:6a:e8:d7:11:90: 21:3c:ce:55:f3:19:6c:1d:3a:92:cf:4e:e6:e2:69:bd:ec:ae: ff:b5:fc:48:43:a6:e2:ef:64:49:81:40:38:2c:34:22:d3:bc: 11:69:77:85:e6:74:4c:ef:8d:db:6a:26:31:d2:b9:7c:67:65: 38:09:bc:22:93:54:d6:92:c2:40:e2:c8:2d:9b:83:51:c8:d1: bd:39:6c:ce:02:68:f3:17:ce:f2:87:29:43:6c:fb:8d:db:ca: ea:fc:39:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxOTcxMTAvBgNVBAUTKEI3RkU2QTQyNERCNTY1MjYxQjQ3M0E3MTIzMUQ1OUUy MThEQzQ1MDQwHhcNMjUwODE5MDQxMDU2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzZjk1MC1hYzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2nA0zHDIhbJQNRdZmcMwXKDz/o9uiDc8IkrBUgwgDaf/IwrU0o9poziRxAF VBhrISSlOZttCPc4nATyo/Y+U82n8gnOE7S6LtjtIEXGgtYrnUDnb/Zjl9btb0DS DPW3LVCoppFOSiCmkpWEPUqzz291AnwOM5WX0xAQ0zUf30/E964brQtcQqwMbL2u DTKtGMw/q0xS7FEbLF3zYH3kEwZztVpv8TXualQiWOdHpME5Jea9wzgHcZGGqW3Q epcHNJxIR/qsMaOCyk3ocEbUN3tgONhp9V0+hLR1FrEerZ5p4OccOi8INMOgwRfO hFiKBxDtMF2fuJGmwzXK1BrHLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIDGVED/ vRGElF3Ftygv/49pf7KgMB8GA1UdIwQYMBaAFLf+akJNtWUmG0c6cSMdWeIY3EUE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTE5Ny80RjNDNzk4QTA2 OUQxMUVFQjg3OThEMTRDNEY5QUUwMi90XzVxUWsyMVpTWWJSenB4SXgxWjRoamNS UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RfNXFRazIxWlNZYlJ6cHhJeDFaNGhqY1JRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkxOTcvNEYzQzc5OEEwNjlEMTFFRUI4Nzk4RDE0QzRGOUFFMDIvRjQyNjBDMUM2 OERDMTFFRTg0MkQ4MjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmawwDQYJKoZIhvcNAQELBQADggEBAEHid5vY3wvWFgOP ffIPZVU4DQfTp5VEF7cKgrjQ7X5t4JrZ6ErY9g/0fvBLuRs009zYMzibRCDQIC88 RfU/xT8gNHX2I5cqqlxkqctTfkVpV3z5504Lf9N8XhnjJeR/BtfxEJrNGuSo96CC xnCATN47Xsgyu27e6dW00FWHAs0S4zNU47oL3QaMOTXQoSRDLvNVH2zlOAMHAJiN F5Rq6NcRkCE8zlXzGWwdOpLPTubiab3srv+1/EhDpuLvZEmBQDgsNCLTvBFpd4Xm dEzvjdtqJjHSuXxnZTgJvCKTVNaSwkDiyC2bg1HI0b05bM4CaPMXzvKHKUNs+43b yur8OQg= -----END CERTIFICATE-----Generated at Fri Aug 22 19:02:34 2025 by rpki-client