$ rpki-client -vvf rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/90AB89E4547511EEB44F391AC4F9AE02.roa File: 90AB89E4547511EEB44F391AC4F9AE02.roa (raw, json) Hash identifier: 9PQho0kFLoK528MTXKQJuaitZOSaZ/91m7DaZwI2M3w= Subject key identifier: 78:DF:C2:A1:40:EB:EC:9A:25:42:5E:28:09:51:F2:D5:CE:78:15:06 Certificate issuer: /CN=A91444E5/serialNumber=1608BF4624A7E1B723228B4661DD661E70AEF3F4 Certificate serial: 0518 Authority key identifier: 16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/90AB89E4547511EEB44F391AC4F9AE02.roa Signing time: Fri 29 Aug 2025 00:16:43 +0000 ROA not before: Fri 29 Aug 2025 00:16:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150389 IP address blocks: 103.170.208.0/23 maxlen: 23 103.170.208.0/24 maxlen: 24 103.170.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.crl rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1304 (0x518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91444E5, serialNumber=1608BF4624A7E1B723228B4661DD661E70AEF3F4 Validity Not Before: Aug 29 00:16:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b0f16b-405d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d8:ea:d6:fa:19:c6:79:5f:99:e0:23:28:d7: b8:b8:be:b2:e3:b3:9d:60:27:1a:9b:a8:82:e8:ed: 45:30:67:dd:58:6d:5d:04:7a:98:c1:34:b8:29:42: 27:d7:5e:45:0f:d7:6c:00:8e:bd:9b:e2:95:ca:06: 35:63:f6:ef:6b:2d:92:4f:67:ea:cf:6c:ce:37:b4: 27:ee:19:ca:b1:04:b7:7e:c6:bb:36:15:7a:ad:a4: fb:4d:f5:f8:e8:cc:4c:40:ae:72:ce:12:d3:5b:fd: 1d:d6:5c:53:b7:f1:3e:e9:27:f1:fa:93:e1:57:af: 83:c0:b4:c4:3b:da:d9:95:b5:80:44:b8:fd:6f:72: 22:a4:8b:2b:7e:99:c0:6b:65:f9:70:d2:05:71:56: ee:d3:de:fe:24:fa:24:a1:13:52:15:82:31:42:e3: 8e:b4:f1:c8:1b:0f:ca:07:47:69:f3:19:28:c4:bf: e9:dd:24:fe:32:82:53:3e:06:c8:15:d4:92:17:bb: f6:31:2c:b8:05:87:8c:b4:93:b3:2f:33:d4:46:ef: 50:38:98:57:8c:1f:9b:50:a4:2c:85:6c:e5:e5:d0: d3:96:99:7a:48:76:87:0d:a8:af:f8:d0:8c:7a:69: 26:78:d2:e8:01:d7:e0:a2:d5:72:79:e5:fc:bf:8d: 91:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:DF:C2:A1:40:EB:EC:9A:25:42:5E:28:09:51:F2:D5:CE:78:15:06 X509v3 Authority Key Identifier: keyid:16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/90AB89E4547511EEB44F391AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.208.0/23 Signature Algorithm: sha256WithRSAEncryption 55:04:16:52:1f:e5:52:ed:10:8a:12:df:44:63:7e:b2:99:87: cc:e9:13:fd:1e:99:18:e3:2a:ee:cd:17:1a:6d:5d:de:0a:6a: 18:4e:57:df:24:c4:9e:6c:92:3f:c5:7b:3d:6d:5d:84:88:d7: 8f:1d:99:a3:35:45:f1:f2:5f:b0:90:5f:c3:30:1d:04:13:73: 4d:ba:d8:46:aa:3c:6b:33:f3:5a:4c:89:41:69:ae:5e:26:5e: e1:2a:f5:b0:ee:7a:24:d3:71:42:3f:3b:ef:3e:17:ac:18:b8: db:5d:98:0a:74:97:8f:43:30:6d:04:fc:6a:74:ad:65:c9:12: a0:0a:a5:e1:ba:26:9e:54:5d:83:87:9c:cc:08:59:1a:ff:55: ef:f9:81:12:88:9e:fc:69:a9:ac:42:b9:ab:77:c1:42:de:ff: 68:cd:fd:91:46:f0:e4:15:7e:8d:d4:e9:ed:8c:f2:6a:d0:5d: 93:9b:a5:83:bb:4b:17:0c:e9:f4:08:8c:a2:51:b0:27:61:e0: 68:a7:a9:29:13:b7:ee:ea:de:c6:2d:d8:8e:b2:24:35:24:32: 44:37:99:a0:fd:08:bb:7d:a9:12:60:b6:83:ac:4b:d4:63:bb: b2:e8:2d:58:a4:c0:68:9a:fd:3e:1b:8f:67:fe:c8:2b:82:7f: e8:8b:c0:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ0RTUxMTAvBgNVBAUTKDE2MDhCRjQ2MjRBN0UxQjcyMzIyOEI0NjYxREQ2NjFF NzBBRUYzRjQwHhcNMjUwODI5MDAxNjQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwZjE2Yi00MDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9jq1voZxnlfmeAjKNe4uL6y47OdYCcam6iC6O1FMGfdWG1dBHqYwTS4KUIn 115FD9dsAI69m+KVygY1Y/bvay2ST2fqz2zON7Qn7hnKsQS3fsa7NhV6raT7TfX4 6MxMQK5yzhLTW/0d1lxTt/E+6Sfx+pPhV6+DwLTEO9rZlbWARLj9b3IipIsrfpnA a2X5cNIFcVbu097+JPokoRNSFYIxQuOOtPHIGw/KB0dp8xkoxL/p3ST+MoJTPgbI FdSSF7v2MSy4BYeMtJOzLzPURu9QOJhXjB+bUKQshWzl5dDTlpl6SHaHDaiv+NCM emkmeNLoAdfgotVyeeX8v42RiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHjfwqFA 6+yaJUJeKAlR8tXOeBUGMB8GA1UdIwQYMBaAFBYIv0Ykp+G3IyKLRmHdZh5wrvP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDRFNS8yRTgyMkRBQTFC OTExMUVDOUU3QTMxMTRDNEY5QUUwMi9GZ2lfUmlTbjRiY2pJb3RHWWQxbUhuQ3U4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnaV9SaVNuNGJjaklvdEdZZDFtSG5DdThfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ0RTUvMkU4MjJEQUExQjkxMTFFQzlFN0EzMTE0QzRGOUFFMDIvOTBBQjg5RTQ1 NDc1MTFFRUI0NEYzOTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqtAwDQYJKoZIhvcNAQELBQADggEBAFUEFlIf5VLtEIoS 30RjfrKZh8zpE/0emRjjKu7NFxptXd4KahhOV98kxJ5skj/Fez1tXYSI148dmaM1 RfHyX7CQX8MwHQQTc0262EaqPGsz81pMiUFprl4mXuEq9bDueiTTcUI/O+8+F6wY uNtdmAp0l49DMG0E/Gp0rWXJEqAKpeG6Jp5UXYOHnMwIWRr/Ve/5gRKInvxpqaxC uat3wULe/2jN/ZFG8OQVfo3U6e2M8mrQXZObpYO7SxcM6fQIjKJRsCdh4GinqSkT t+7q3sYt2I6yJDUkMkQ3maD9CLt9qRJgtoOsS9Rju7LoLVikwGia/T4bj2f+yCuC f+iLwL4= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:28 2025 by rpki-client