$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF6CD/333BC608816D11F0A9066D25C4F9AE02/3E1ABB8C816E11F0A5992F28C4F9AE02.roa File: 3E1ABB8C816E11F0A5992F28C4F9AE02.roa (raw, json) Hash identifier: 4bcnfZJKTPDDeyNdHgj7RafzwnOWjUaA8+FGoC8oOtU= Subject key identifier: FE:77:8C:21:6A:84:5E:2A:63:9E:D5:11:15:05:65:B6:ED:F9:B0:E6 Certificate issuer: /CN=A91BF6CD/serialNumber=B4FBE34AB76612A9D20AE52B0ADB41FCF80A12FF Certificate serial: 02 Authority key identifier: B4:FB:E3:4A:B7:66:12:A9:D2:0A:E5:2B:0A:DB:41:FC:F8:0A:12:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tPvjSrdmEqnSCuUrCttB_PgKEv8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF6CD/333BC608816D11F0A9066D25C4F9AE02/3E1ABB8C816E11F0A5992F28C4F9AE02.roa Signing time: Mon 25 Aug 2025 04:44:54 +0000 ROA not before: Mon 25 Aug 2025 04:44:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149014 IP address blocks: 103.160.44.0/23 maxlen: 23 103.160.44.0/24 maxlen: 24 103.160.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF6CD/333BC608816D11F0A9066D25C4F9AE02/tPvjSrdmEqnSCuUrCttB_PgKEv8.crl rsync://rpki.apnic.net/member_repository/A91BF6CD/333BC608816D11F0A9066D25C4F9AE02/tPvjSrdmEqnSCuUrCttB_PgKEv8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tPvjSrdmEqnSCuUrCttB_PgKEv8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 08:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF6CD, serialNumber=B4FBE34AB76612A9D20AE52B0ADB41FCF80A12FF Validity Not Before: Aug 25 04:44:54 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68abea45-1fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5d:6f:42:cc:dd:4d:42:89:1c:d4:d9:8d:9a: 7d:c7:1a:34:60:09:78:95:8f:a7:e3:0b:91:33:b6: e1:7c:94:cc:9f:50:78:b8:8f:5f:31:7a:2e:d6:23: 14:81:b5:e7:03:2b:bb:9f:db:ca:da:b2:29:93:fd: ba:64:62:48:3c:49:35:fd:e0:ee:fe:66:62:9c:c2: 95:c4:f2:cb:3c:5e:12:4a:cb:4b:e6:87:0d:c0:a4: cf:78:8f:ac:85:e8:9a:9a:0d:0a:d7:50:c3:7f:f4: f2:c0:93:f9:e5:cf:14:b7:74:73:8b:55:cd:d2:39: e9:20:dd:ce:83:c2:69:f5:29:b6:02:e1:24:85:de: b5:ff:e2:5c:f8:87:6a:70:60:32:5a:f7:f3:cd:45: 76:e1:7b:78:5b:22:8e:b6:52:52:98:ae:b4:3b:a6: 15:c5:41:a7:f7:90:d9:07:c0:d8:74:82:98:0a:0b: 10:be:f5:81:9a:23:c2:ec:fe:54:f9:44:1f:fb:d9: 3a:56:d5:1e:b5:c5:bb:ef:b6:8c:25:c3:9a:e9:f5: 25:9c:dd:ae:2b:35:eb:48:52:61:b6:81:12:b5:2e: 90:31:83:8d:7e:3e:09:ee:f1:d9:cd:f1:49:97:3f: a6:a6:2d:8f:93:bb:9e:2a:87:40:8e:10:fc:31:c7: 73:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:77:8C:21:6A:84:5E:2A:63:9E:D5:11:15:05:65:B6:ED:F9:B0:E6 X509v3 Authority Key Identifier: keyid:B4:FB:E3:4A:B7:66:12:A9:D2:0A:E5:2B:0A:DB:41:FC:F8:0A:12:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF6CD/333BC608816D11F0A9066D25C4F9AE02/tPvjSrdmEqnSCuUrCttB_PgKEv8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tPvjSrdmEqnSCuUrCttB_PgKEv8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF6CD/333BC608816D11F0A9066D25C4F9AE02/3E1ABB8C816E11F0A5992F28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.44.0/23 Signature Algorithm: sha256WithRSAEncryption 24:ad:41:17:e6:08:e0:9d:04:fe:55:37:10:4a:ab:af:26:fe: 4a:76:a9:ee:e8:99:ad:e3:51:2f:f4:96:f7:45:e9:4c:87:3b: a9:cc:ec:e0:25:76:28:0c:70:bc:14:27:c9:be:5e:16:52:fe: d1:39:f9:bf:90:2f:70:ea:72:2a:50:53:19:70:1f:6a:fa:10: 98:d5:92:f9:a7:0b:9d:45:9a:8b:04:c8:a5:78:e6:aa:da:75: 52:94:0f:f1:fa:28:42:a8:aa:a3:70:ad:0a:95:87:6e:5e:9f: b0:fe:93:23:7d:f7:53:df:ef:f9:e7:31:f1:b9:40:61:5a:35: 4d:39:d9:30:e2:e2:24:25:69:57:f8:96:72:e3:b5:f4:b0:d5: 27:ad:72:c1:13:c1:9b:4b:b0:50:b8:44:9b:5c:91:54:69:46: 56:f0:ec:87:88:d6:78:5d:a8:3d:58:05:4f:57:59:b0:46:df: 99:c0:42:b1:ee:8d:ce:a1:3a:c0:6c:66:f4:47:02:4b:e4:47: 24:df:31:4f:1b:50:c8:23:7e:63:1e:eb:5f:97:0e:a5:ba:93: b3:74:49:98:b6:c3:ea:e7:d9:67:6c:84:52:75:eb:da:b6:e5: ae:df:50:b1:ae:a5:d3:96:23:9a:ba:02:44:27:8f:2f:52:8d: 41:84:c6:5c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjZDRDExMC8GA1UEBRMoQjRGQkUzNEFCNzY2MTJBOUQyMEFFNTJCMEFEQjQxRkNG ODBBMTJGRjAeFw0yNTA4MjUwNDQ0NTRaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YWJlYTQ1LTFmZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQXW9CzN1NQokc1NmNmn3HGjRgCXiVj6fjC5EztuF8lMyfUHi4j18xei7WIxSB tecDK7uf28rasimT/bpkYkg8STX94O7+ZmKcwpXE8ss8XhJKy0vmhw3ApM94j6yF 6JqaDQrXUMN/9PLAk/nlzxS3dHOLVc3SOekg3c6Dwmn1KbYC4SSF3rX/4lz4h2pw YDJa9/PNRXbhe3hbIo62UlKYrrQ7phXFQaf3kNkHwNh0gpgKCxC+9YGaI8Ls/lT5 RB/72TpW1R61xbvvtowlw5rp9SWc3a4rNetIUmG2gRK1LpAxg41+Pgnu8dnN8UmX P6amLY+Tu54qh0COEPwxx3MpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/neMIWqE XipjntURFQVltu35sOYwHwYDVR0jBBgwFoAUtPvjSrdmEqnSCuUrCttB/PgKEv8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGNkNELzMzM0JDNjA4ODE2 RDExRjBBOTA2NkQyNUM0RjlBRTAyL3RQdmpTcmRtRXFuU0N1VXJDdHRCX1BnS0V2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFB2alNyZG1FcW5TQ3VVckN0dEJfUGdLRXY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjZDRC8zMzNCQzYwODgxNkQxMUYwQTkwNjZEMjVDNEY5QUUwMi8zRTFBQkI4Qzgx NkUxMUYwQTU5OTJGMjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWegLDANBgkqhkiG9w0BAQsFAAOCAQEAJK1BF+YI4J0E/lU3 EEqrryb+Snap7uiZreNRL/SW90XpTIc7qczs4CV2KAxwvBQnyb5eFlL+0Tn5v5Av cOpyKlBTGXAfavoQmNWS+acLnUWaiwTIpXjmqtp1UpQP8fooQqiqo3CtCpWHbl6f sP6TI333U9/v+ecx8blAYVo1TTnZMOLiJCVpV/iWcuO19LDVJ61ywRPBm0uwULhE m1yRVGlGVvDsh4jWeF2oPVgFT1dZsEbfmcBCse6NzqE6wGxm9EcCS+RHJN8xTxtQ yCN+Yx7rX5cOpbqTs3RJmLbD6ufZZ2yEUnXr2rblrt9Qsa6l05YjmroCRCePL1KN QYTGXA== -----END CERTIFICATE-----Generated at Sun Sep 7 12:28:28 2025 by rpki-client