$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/460AA4AE03CF11ECA480B07CC4F9AE02.roa File: 460AA4AE03CF11ECA480B07CC4F9AE02.roa (raw, json) Hash identifier: RyN8TdZ33FgQoqBN1enP2qHNRdbXtugooz5NQ7OTf7g= Subject key identifier: 35:29:C7:D4:35:4E:A0:34:F5:F6:11:77:2D:1B:E2:C8:14:DC:8A:82 Certificate issuer: /CN=A91AB85A/serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Certificate serial: 054F Authority key identifier: 9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/460AA4AE03CF11ECA480B07CC4F9AE02.roa Signing time: Fri 29 Aug 2025 00:16:26 +0000 ROA not before: Fri 29 Aug 2025 00:16:26 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137967 IP address blocks: 103.172.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1359 (0x54f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB85A, serialNumber=9D9C008A12A2F7A60FEFF962266B0502A1CA0BA2 Validity Not Before: Aug 29 00:16:26 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b0f15a-ed59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:86:7c:72:2b:20:49:85:5b:b4:a4:e2:e8:88: b9:19:a3:50:84:4c:18:a7:b8:f2:b1:9e:a1:88:9b: 2f:71:7f:b1:f1:87:c7:15:83:16:9a:9a:a3:36:05: fb:29:aa:8d:2b:61:d6:a7:b1:06:0a:5f:30:7c:73: 4b:55:55:5b:3b:3f:2f:42:53:df:b3:a5:37:38:e4: 09:4b:30:fe:a9:f7:13:e1:de:a8:3c:65:9d:6f:a8: 52:a6:5c:95:8d:64:5e:81:f6:75:74:ac:1a:b0:17: b3:6e:33:14:7e:58:3e:70:20:62:09:d6:12:6a:d5: 22:4d:23:41:49:1e:91:fd:25:f9:e7:e6:be:27:24: c6:51:d1:2a:93:61:c0:be:d1:13:5d:50:bf:fd:2a: 62:f8:d1:b7:b1:52:6c:8c:d7:b8:13:c4:ce:11:87: e4:36:bb:9a:07:4e:8c:23:fe:6d:d6:d4:06:80:83: bf:af:a0:c4:2a:93:cf:cf:f4:18:4c:5c:47:c4:e5: 22:02:28:2a:96:c5:3c:ac:d3:c2:a0:94:0f:65:ed: 45:20:b5:29:57:7f:7e:19:4e:d2:93:5c:43:46:94: 51:9b:1a:c8:d1:15:13:55:c1:a9:f7:b6:c5:a9:1e: c2:29:1a:85:43:0a:3e:2f:09:94:92:a4:3b:2e:26: 3c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:29:C7:D4:35:4E:A0:34:F5:F6:11:77:2D:1B:E2:C8:14:DC:8A:82 X509v3 Authority Key Identifier: keyid:9D:9C:00:8A:12:A2:F7:A6:0F:EF:F9:62:26:6B:05:02:A1:CA:0B:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/nZwAihKi96YP7_liJmsFAqHKC6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nZwAihKi96YP7_liJmsFAqHKC6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB85A/185C39B603CD11ECABCE697BC4F9AE02/460AA4AE03CF11ECA480B07CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.29.0/24 Signature Algorithm: sha256WithRSAEncryption 34:bc:8d:3a:f3:0b:5a:d4:56:6d:5a:1e:f7:ef:e0:fb:ae:b2: 5b:e2:db:a0:be:a3:60:c2:61:88:92:40:31:9d:ca:c5:5f:bd: 92:bc:ee:15:ae:cf:64:53:26:3f:05:bd:7e:77:cd:9d:0e:a5: eb:7a:50:fe:ea:b1:82:fb:08:6a:c3:b2:ec:4b:72:ec:c1:74: 72:a4:d2:76:8a:29:63:48:c3:8c:79:46:19:03:30:69:be:64: d4:59:fa:46:e9:98:7f:3c:fe:fb:5c:90:ab:da:88:47:d6:8c: 11:06:50:ca:c5:23:65:be:33:e9:0e:b7:a6:bd:f5:b4:09:9c: 1e:c2:a3:6a:91:f3:4f:da:eb:1c:e5:9c:8f:e2:84:e2:b4:ec: e3:b0:66:b0:f4:cc:71:6b:f0:17:db:d5:eb:46:7f:ea:b3:35: fa:d7:0b:fc:70:3c:0f:d1:cc:4e:a6:a9:61:98:ec:84:28:d7: 70:32:69:2f:de:9a:5b:2a:67:ac:6a:3e:56:b9:45:37:01:7c: 28:21:82:b0:bd:e5:06:8d:85:67:34:dd:e5:79:8b:91:5b:29: 82:9b:4c:0e:27:6f:a9:5e:48:95:5d:38:87:5a:a3:a9:9b:08: af:fa:0e:9d:ca:bd:8b:00:bd:e9:89:dd:9b:25:b7:06:c3:4c: ac:63:ee:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4NUExMTAvBgNVBAUTKDlEOUMwMDhBMTJBMkY3QTYwRkVGRjk2MjI2NkIwNTAy QTFDQTBCQTIwHhcNMjUwODI5MDAxNjI2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwZjE1YS1lZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24Z8cisgSYVbtKTi6Ii5GaNQhEwYp7jysZ6hiJsvcX+x8YfHFYMWmpqjNgX7 KaqNK2HWp7EGCl8wfHNLVVVbOz8vQlPfs6U3OOQJSzD+qfcT4d6oPGWdb6hSplyV jWRegfZ1dKwasBezbjMUflg+cCBiCdYSatUiTSNBSR6R/SX55+a+JyTGUdEqk2HA vtETXVC//Spi+NG3sVJsjNe4E8TOEYfkNruaB06MI/5t1tQGgIO/r6DEKpPPz/QY TFxHxOUiAigqlsU8rNPCoJQPZe1FILUpV39+GU7Sk1xDRpRRmxrI0RUTVcGp97bF qR7CKRqFQwo+LwmUkqQ7LiY8kQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDUpx9Q1 TqA09fYRdy0b4sgU3IqCMB8GA1UdIwQYMBaAFJ2cAIoSovemD+/5YiZrBQKhygui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjg1QS8xODVDMzlCNjAz Q0QxMUVDQUJDRTY5N0JDNEY5QUUwMi9uWndBaWhLaTk2WVA3X2xpSm1zRkFxSEtD NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25ad0FpaEtpOTZZUDdfbGlKbXNGQXFIS0M2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI4NUEvMTg1QzM5QjYwM0NEMTFFQ0FCQ0U2OTdCQzRGOUFFMDIvNDYwQUE0QUUw M0NGMTFFQ0E0ODBCMDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrB0wDQYJKoZIhvcNAQELBQADggEBADS8jTrzC1rUVm1a Hvfv4Puuslvi26C+o2DCYYiSQDGdysVfvZK87hWuz2RTJj8FvX53zZ0Opet6UP7q sYL7CGrDsuxLcuzBdHKk0naKKWNIw4x5RhkDMGm+ZNRZ+kbpmH88/vtckKvaiEfW jBEGUMrFI2W+M+kOt6a99bQJnB7Co2qR80/a6xzlnI/ihOK07OOwZrD0zHFr8Bfb 1etGf+qzNfrXC/xwPA/RzE6mqWGY7IQo13AyaS/emlsqZ6xqPla5RTcBfCghgrC9 5QaNhWc03eV5i5FbKYKbTA4nb6leSJVdOIdao6mbCK/6Dp3KvYsAvemJ3ZsltwbD TKxj7hc= -----END CERTIFICATE-----Generated at Mon Sep 8 00:31:27 2025 by rpki-client