$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/FAA525207A4411EB804B7430C4F9AE02.roa File: FAA525207A4411EB804B7430C4F9AE02.roa (raw, json) Hash identifier: BhSHDdRG8/0Zm5EF7nED+w+EERbxSAwCaFSs3AEh7LU= Subject key identifier: DC:C2:72:4E:35:BF:03:2C:B4:BA:9B:13:87:C6:AB:2D:D7:00:99:8A Certificate issuer: /CN=A91BB94D/serialNumber=747C86C3CC14A77973805315408CDCA10A2147B2 Certificate serial: 07A1 Authority key identifier: 74:7C:86:C3:CC:14:A7:79:73:80:53:15:40:8C:DC:A1:0A:21:47:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHyGw8wUp3lzgFMVQIzcoQohR7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/FAA525207A4411EB804B7430C4F9AE02.roa Signing time: Sat 30 Aug 2025 22:13:48 +0000 ROA not before: Sat 30 Aug 2025 22:13:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132825 IP address blocks: 103.153.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/dHyGw8wUp3lzgFMVQIzcoQohR7I.crl rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/dHyGw8wUp3lzgFMVQIzcoQohR7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHyGw8wUp3lzgFMVQIzcoQohR7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:44:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB94D, serialNumber=747C86C3CC14A77973805315408CDCA10A2147B2 Validity Not Before: Aug 30 22:13:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b3779c-019b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f0:99:64:0b:eb:5b:83:04:7a:11:82:ca:bb: 85:71:91:a1:ca:e3:5d:6c:0b:75:5e:0a:8d:2c:ec: 11:9c:98:f6:f3:1f:24:85:26:0a:2e:31:3f:02:64: f6:e9:65:a1:c5:ca:f7:61:09:ff:f6:fa:48:12:1c: 1c:db:20:cb:b8:72:2c:29:e6:e3:b4:9f:a2:db:1d: 8c:94:dd:0f:39:ef:12:98:ad:c1:18:e0:4d:26:6b: c8:15:2b:35:da:74:64:b7:c3:9d:b1:bf:ab:ae:74: ee:09:55:db:4c:90:6c:62:6f:6b:68:7e:83:72:02: 0c:bb:94:60:db:85:35:5a:7f:bd:11:00:a5:e2:24: 07:ec:fa:64:ee:76:a4:b1:5a:e0:56:4c:c5:61:e7: c0:ca:65:89:fb:a2:d6:cc:e1:45:71:96:bf:03:cc: b4:8d:66:b3:43:3f:ca:a2:89:42:02:d7:1f:75:b7: cc:a7:9d:97:42:e0:41:6d:fe:79:42:a6:bd:48:99: 39:5e:ed:8a:98:b5:ac:e7:83:7e:93:b6:7c:3b:35: 1a:e1:ba:32:bb:bc:2f:7c:40:cd:f3:58:b6:08:cb: 99:05:94:1b:28:3e:62:d8:d0:9b:67:bc:89:e5:b7: 62:63:2a:d0:30:13:dc:32:fd:47:c6:07:be:bf:83: ef:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:C2:72:4E:35:BF:03:2C:B4:BA:9B:13:87:C6:AB:2D:D7:00:99:8A X509v3 Authority Key Identifier: keyid:74:7C:86:C3:CC:14:A7:79:73:80:53:15:40:8C:DC:A1:0A:21:47:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/dHyGw8wUp3lzgFMVQIzcoQohR7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHyGw8wUp3lzgFMVQIzcoQohR7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB94D/2C7162CC232811EB9FF6E91AC4F9AE02/FAA525207A4411EB804B7430C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.100.0/23 Signature Algorithm: sha256WithRSAEncryption 51:92:63:2f:0f:3a:1c:09:65:8a:4c:52:f6:8f:dd:c2:19:89: 16:f9:bc:89:57:48:16:5d:8d:99:3f:b6:22:3b:53:d8:29:21: 2d:92:64:01:15:53:cf:e0:83:8e:72:ac:79:a9:4b:d4:37:03: 00:e1:76:43:32:fc:ed:19:c5:89:42:ff:d7:0f:ac:f2:b3:a3: 33:9d:56:35:91:db:6b:3b:24:92:6d:36:9c:28:fa:c5:63:8f: 8b:1a:27:72:2d:c9:e4:e1:03:57:8a:8d:2c:59:7d:ad:3d:0f: 39:76:41:af:00:e2:c6:9c:04:4e:83:92:89:b5:5a:a6:e4:ae: 64:cf:49:97:ff:b6:8f:c4:8b:73:68:88:01:6f:d4:04:87:0a: b9:86:16:e3:cf:82:98:55:f8:ab:e7:10:b3:27:d6:c2:b1:ec: cf:59:7a:56:a9:b7:9a:7a:89:c4:c9:e0:bb:5c:80:7e:ba:9a: 61:c6:82:09:ee:a8:dd:84:4f:46:f8:85:60:09:31:f1:b5:4e: 22:88:76:ad:05:a9:0e:e3:ef:6e:91:48:96:2f:b8:91:b4:2a: 3d:46:4b:39:72:a9:03:06:e6:d7:83:4f:ea:27:4e:8a:04:71: 97:40:f8:a3:53:ec:1c:5d:a5:86:33:2d:b0:aa:ed:ef:04:0e: 2f:39:68:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5NEQxMTAvBgNVBAUTKDc0N0M4NkMzQ0MxNEE3Nzk3MzgwNTMxNTQwOENEQ0Ex MEEyMTQ3QjIwHhcNMjUwODMwMjIxMzQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzNzc5Yy0wMTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fCZZAvrW4MEehGCyruFcZGhyuNdbAt1XgqNLOwRnJj28x8khSYKLjE/AmT2 6WWhxcr3YQn/9vpIEhwc2yDLuHIsKebjtJ+i2x2MlN0POe8SmK3BGOBNJmvIFSs1 2nRkt8Odsb+rrnTuCVXbTJBsYm9raH6DcgIMu5Rg24U1Wn+9EQCl4iQH7Ppk7nak sVrgVkzFYefAymWJ+6LWzOFFcZa/A8y0jWazQz/KoolCAtcfdbfMp52XQuBBbf55 Qqa9SJk5Xu2KmLWs54N+k7Z8OzUa4boyu7wvfEDN81i2CMuZBZQbKD5i2NCbZ7yJ 5bdiYyrQMBPcMv1Hxge+v4PvTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNzCck41 vwMstLqbE4fGqy3XAJmKMB8GA1UdIwQYMBaAFHR8hsPMFKd5c4BTFUCM3KEKIUey MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjk0RC8yQzcxNjJDQzIz MjgxMUVCOUZGNkU5MUFDNEY5QUUwMi9kSHlHdzh3VXAzbHpnRk1WUUl6Y29Rb2hS N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RIeUd3OHdVcDNsemdGTVZRSXpjb1FvaFI3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI5NEQvMkM3MTYyQ0MyMzI4MTFFQjlGRjZFOTFBQzRGOUFFMDIvRkFBNTI1MjA3 QTQ0MTFFQjgwNEI3NDMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmWQwDQYJKoZIhvcNAQELBQADggEBAFGSYy8POhwJZYpM UvaP3cIZiRb5vIlXSBZdjZk/tiI7U9gpIS2SZAEVU8/gg45yrHmpS9Q3AwDhdkMy /O0ZxYlC/9cPrPKzozOdVjWR22s7JJJtNpwo+sVjj4saJ3ItyeThA1eKjSxZfa09 Dzl2Qa8A4sacBE6Dkom1WqbkrmTPSZf/to/Ei3NoiAFv1ASHCrmGFuPPgphV+Kvn ELMn1sKx7M9Zelapt5p6icTJ4LtcgH66mmHGggnuqN2ET0b4hWAJMfG1TiKIdq0F qQ7j726RSJYvuJG0Kj1GSzlyqQMG5teDT+onTooEcZdA+KNT7BxdpYYzLbCq7e8E Di85aJg= -----END CERTIFICATE-----Generated at Sun Sep 7 12:41:36 2025 by rpki-client