$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/164B42E2414111F0A098A82DC4F9AE02.roa File: 164B42E2414111F0A098A82DC4F9AE02.roa (raw, json) Hash identifier: tvN8EtS+iS2pn0JRehFrlQmdvXAZ8RTeiP4cegXS6xo= Subject key identifier: AF:D5:44:56:81:F5:66:10:71:C1:00:7A:FF:98:64:1B:51:0A:C3:C9 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0FA7 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/164B42E2414111F0A098A82DC4F9AE02.roa Signing time: Tue 16 Sep 2025 17:56:58 +0000 ROA not before: Tue 16 Sep 2025 17:56:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134562 IP address blocks: 103.120.164.0/22 maxlen: 22 103.120.164.0/24 maxlen: 25 103.120.164.0/25 maxlen: 27 103.120.164.128/26 maxlen: 27 103.120.164.192/27 maxlen: 27 103.120.164.224/27 maxlen: 27 103.120.165.0/24 maxlen: 24 103.120.166.0/24 maxlen: 24 103.120.167.0/24 maxlen: 24 2403:5a40::/32 maxlen: 32 2403:5a40::/41 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4007 (0xfa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Sep 16 17:56:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c9a4ea-f233 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:94:92:23:8a:39:e9:89:42:95:10:77:de:35: d4:ac:14:c5:10:c8:da:a5:aa:a7:24:d7:ce:f4:5e: ef:85:4a:1a:06:16:f6:ba:a0:20:5f:0e:8c:06:6d: f2:e7:3c:39:09:41:e5:12:51:8f:25:04:0f:eb:79: 74:73:57:a0:34:1a:70:ce:01:2b:81:7c:b4:7c:9b: 31:84:8a:7c:1a:e0:ae:cd:ad:54:e3:c0:8e:2c:d0: 67:c1:c7:b4:3a:9f:42:88:04:65:a5:dd:e5:e8:78: c2:1f:8f:44:c3:d5:ea:e8:ab:d4:ea:5d:1b:c6:bc: 84:e1:4c:90:ac:53:22:f1:01:f7:be:44:e7:32:4a: 99:34:e9:c8:f4:7d:43:6f:16:65:b6:69:6c:55:66: 97:de:4c:19:a9:ca:d4:2e:89:62:17:98:21:39:23: ed:cf:c6:dc:77:5e:0e:4e:b1:df:a5:ab:47:9f:0e: ad:4a:20:18:5f:9b:0b:a4:1a:f1:a3:79:55:5f:2a: 9b:03:ab:4f:50:92:e6:21:54:f7:ea:d4:c7:cb:8d: 7d:12:0a:3a:e4:1f:cb:17:06:f4:4a:ef:d5:69:b5: 76:be:cd:66:d2:8c:04:27:65:c7:ca:2c:71:16:5e: d5:dc:9d:b6:eb:6b:2b:49:36:5d:6a:0c:cf:ef:1a: 5b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D5:44:56:81:F5:66:10:71:C1:00:7A:FF:98:64:1B:51:0A:C3:C9 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/164B42E2414111F0A098A82DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.164.0/22 IPv6: 2403:5a40::/32 Signature Algorithm: sha256WithRSAEncryption 73:7e:f7:b9:96:fa:e4:12:9a:fa:93:e1:8d:d5:ea:0a:b5:2b: 5e:10:24:12:18:4c:5b:c5:e8:5a:c3:63:0f:bd:41:f8:8c:5a: 8e:5c:51:2d:03:ee:1a:95:83:2e:a9:1a:ff:0e:0d:79:e6:b5: 96:81:b7:eb:ac:bf:81:54:bd:28:2a:6b:b1:e4:5a:b3:c2:d9: 4c:f0:24:d1:c8:a0:db:ef:74:63:9e:7b:76:12:4e:85:a5:62: 61:d4:7b:36:6c:25:26:67:56:ee:ff:59:66:01:6b:84:dc:27: d6:e5:4b:13:6c:7d:4f:fa:15:02:84:b1:62:53:ab:c8:3d:db: ba:c2:e8:15:d9:ba:68:60:4c:d8:02:54:3d:a7:ad:b1:35:93: 1b:18:b7:19:47:bf:a9:0d:47:cf:a2:93:05:4e:5c:c0:16:d0: a4:15:6a:c9:02:ea:f6:cf:93:47:7f:65:2d:12:06:3d:95:3c: fc:b3:51:8c:97:33:b1:9c:85:b7:fb:f1:86:04:17:6a:ab:6f: ab:0f:67:2f:bd:bc:c1:ad:e3:a3:37:42:83:22:cf:4b:f3:d9: b4:00:b9:ec:67:de:7a:e8:a9:ae:82:e5:e7:b1:de:2e:0a:75: 67:d0:dd:b5:ac:68:b8:af:69:4b:94:f7:5f:ca:13:a9:57:ed: 73:1d:f8:52 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICD6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUwOTE2MTc1NjU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5YTRlYS1mMjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk5SSI4o56YlClRB33jXUrBTFEMjapaqnJNfO9F7vhUoaBhb2uqAgXw6MBm3y 5zw5CUHlElGPJQQP63l0c1egNBpwzgErgXy0fJsxhIp8GuCuza1U48COLNBnwce0 Op9CiARlpd3l6HjCH49Ew9Xq6KvU6l0bxryE4UyQrFMi8QH3vkTnMkqZNOnI9H1D bxZltmlsVWaX3kwZqcrULoliF5ghOSPtz8bcd14OTrHfpatHnw6tSiAYX5sLpBrx o3lVXyqbA6tPUJLmIVT36tTHy419Ego65B/LFwb0Su/VabV2vs1m0owEJ2XHyixx Fl7V3J2262srSTZdagzP7xpbJQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK/VRFaB 9WYQccEAev+YZBtRCsPJMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0JGMUUvREJCMkJGNjY2RTZGMTFFOUFBMDE3QzMzQzRGOUFFMDIvMTY0QjQyRTI0 MTQxMTFGMEEwOThBODJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJneKQwDQQCAAIwBwMFACQDWkAwDQYJKoZIhvcNAQELBQAD ggEBAHN+97mW+uQSmvqT4Y3V6gq1K14QJBIYTFvF6FrDYw+9QfiMWo5cUS0D7hqV gy6pGv8ODXnmtZaBt+usv4FUvSgqa7HkWrPC2UzwJNHIoNvvdGOee3YSToWlYmHU ezZsJSZnVu7/WWYBa4TcJ9blSxNsfU/6FQKEsWJTq8g927rC6BXZumhgTNgCVD2n rbE1kxsYtxlHv6kNR8+ikwVOXMAW0KQVaskC6vbPk0d/ZS0SBj2VPPyzUYyXM7Gc hbf78YYEF2qrb6sPZy+9vMGt46M3QoMiz0vz2bQAuexn3nroqa6C5eex3i4KdWfQ 3bWsaLivaUuU91/KE6lX7XMd+FI= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:02 2025 by rpki-client