$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/01CAF0FC87A011EF965F816DC4F9AE02.roa File: 01CAF0FC87A011EF965F816DC4F9AE02.roa (raw, json) Hash identifier: /rEo1DMtLoSXAFfgpjZTNWdXw9Gcyb2VylhULc5F3zg= Subject key identifier: 17:E2:43:E1:51:78:88:DB:AF:AC:F8:21:90:9F:A7:77:50:BD:69:38 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D1A Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/01CAF0FC87A011EF965F816DC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:53:47 +0000 ROA not before: Thu 28 Aug 2025 14:53:47 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135989 IP address blocks: 103.143.202.0/23 maxlen: 23 2001:df1:9680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19738 (0x4d1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:47 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d7a-4187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e0:8f:b2:39:5d:ab:d7:15:41:af:06:b9:00: 53:5c:89:4a:77:08:84:80:da:56:96:e7:d6:99:de: 19:00:5c:c7:fd:7d:3f:3f:01:19:af:74:89:5a:15: d1:ef:54:75:9c:19:27:1c:cd:3a:e2:84:d9:1f:d4: b7:e7:8b:71:25:e4:ec:f6:68:9e:81:e6:57:b7:34: 44:9a:e6:dd:00:7e:22:f5:97:62:df:87:eb:26:cc: 5e:8f:16:16:e7:31:01:be:8a:73:43:af:c4:4f:c2: 46:67:bb:43:20:a5:54:5c:23:ab:91:1c:98:91:4f: 6c:1b:49:6d:c9:37:45:d3:28:87:a2:13:de:13:9d: 86:34:e7:ac:f1:25:41:24:59:53:7b:77:9c:93:41: d0:16:90:b3:9a:f8:34:ae:1d:16:6c:73:ce:d9:4b: 0d:94:00:97:65:c0:65:21:46:33:ed:d1:87:cf:00: 29:b9:27:23:33:33:fb:5f:6e:cf:21:06:5f:8e:cf: 9e:d4:81:96:66:c2:4b:22:ad:9f:e0:2d:f2:ae:35: f6:db:5a:60:be:c9:41:33:63:97:82:3f:1c:2c:55: 83:34:a2:c2:2d:9f:a2:c0:d7:69:2a:73:1c:de:b4: 0e:96:a5:71:ba:72:44:92:f4:77:36:97:46:24:6f: dd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:E2:43:E1:51:78:88:DB:AF:AC:F8:21:90:9F:A7:77:50:BD:69:38 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/01CAF0FC87A011EF965F816DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.202.0/23 IPv6: 2001:df1:9680::/48 Signature Algorithm: sha256WithRSAEncryption 97:1a:c7:4a:48:a2:18:b0:ba:93:db:97:73:c2:28:58:ba:54: 03:51:5d:b7:7d:2a:03:e1:1e:10:c0:da:48:18:30:15:56:f6: 9e:36:2c:a2:40:f0:e0:63:4d:40:ba:43:c2:fd:89:59:3d:5e: 17:69:f2:34:3e:65:88:9f:c4:55:3a:ea:c0:02:1d:14:29:00: 0d:c5:6a:59:d0:b4:aa:0e:17:66:c8:0f:c1:e8:a2:d4:44:73: 12:b1:19:2e:a1:e4:9a:5c:9d:25:ba:6e:66:6e:b3:88:32:1d: 7f:96:e9:e7:0e:1e:af:f1:0c:f1:4e:d8:76:dc:32:5f:59:0a: 5e:fd:6c:6c:28:86:d5:c0:34:22:0e:5c:8a:6f:df:09:c7:29: d3:b3:0e:42:dd:64:e8:2b:10:55:06:5f:a7:35:23:db:52:f3: 93:3b:c5:04:18:64:71:ec:1e:32:c5:92:75:e8:ed:2c:2e:b9: 13:ef:5b:90:79:36:96:16:92:60:69:72:76:1a:87:96:a6:4e: dd:45:9c:db:b2:3d:c1:1b:22:fb:9c:db:29:05:f7:22:2d:17: 3d:20:19:fa:e5:3a:dd:ee:66:93:dd:da:71:b5:6e:ae:13:56: b8:92:cb:ca:09:b3:f5:20:2a:54:71:02:54:e7:87:e6:ab:55: 17:f7:f8:76 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzQ3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ3YS00MTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOCPsjldq9cVQa8GuQBTXIlKdwiEgNpWlufWmd4ZAFzH/X0/PwEZr3SJWhXR 71R1nBknHM064oTZH9S354txJeTs9miegeZXtzREmubdAH4i9Zdi34frJsxejxYW 5zEBvopzQ6/ET8JGZ7tDIKVUXCOrkRyYkU9sG0ltyTdF0yiHohPeE52GNOes8SVB JFlTe3eck0HQFpCzmvg0rh0WbHPO2UsNlACXZcBlIUYz7dGHzwApuScjMzP7X27P IQZfjs+e1IGWZsJLIq2f4C3yrjX221pgvslBM2OXgj8cLFWDNKLCLZ+iwNdpKnMc 3rQOlqVxunJEkvR3NpdGJG/dWQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBfiQ+FR eIjbr6z4IZCfp3dQvWk4MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMDFDQUYwRkM4 N0EwMTFFRjk2NUY4MTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnj8owDwQCAAIwCQMHACABDfGWgDANBgkqhkiG9w0BAQsF AAOCAQEAlxrHSkiiGLC6k9uXc8IoWLpUA1Fdt30qA+EeEMDaSBgwFVb2njYsokDw 4GNNQLpDwv2JWT1eF2nyND5liJ/EVTrqwAIdFCkADcVqWdC0qg4XZsgPweii1ERz ErEZLqHkmlydJbpuZm6ziDIdf5bp5w4er/EM8U7YdtwyX1kKXv1sbCiG1cA0Ig5c im/fCccp07MOQt1k6CsQVQZfpzUj21LzkzvFBBhkceweMsWSdejtLC65E+9bkHk2 lhaSYGlydhqHlqZO3UWc27I9wRsi+5zbKQX3Ii0XPSAZ+uU63e5mk93acbVurhNW uJLLygmz9SAqVHECVOeH5qtVF/f4dg== -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:05 2025 by rpki-client