$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A61E9E4D5311EEAC075D5AC4F9AE02.roa File: 43A61E9E4D5311EEAC075D5AC4F9AE02.roa (raw, json) Hash identifier: 4VCB4T21TZmludS14NlhWIjokN8FuFuCs4ZC+fw2oWo= Subject key identifier: 1A:6C:CA:2A:EE:11:BE:B5:D6:D4:F8:5D:0D:83:71:49:A9:F1:BF:51 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D94 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A61E9E4D5311EEAC075D5AC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:28 +0000 ROA not before: Thu 28 Aug 2025 14:55:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150872 IP address blocks: 103.249.158.0/24 maxlen: 24 2401:2220::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19860 (0x4d94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06de0-1d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d5:aa:e1:d0:43:82:38:23:e6:12:35:37:88: ba:62:d1:bf:88:20:5f:0c:16:3a:35:7e:de:d1:4d: e7:7e:41:35:c9:4e:b0:b5:7e:45:87:07:bd:09:41: 52:e9:ff:fb:13:ea:05:93:53:55:93:a2:0f:2e:7d: 50:60:02:f4:92:d4:27:f7:fd:af:6b:71:22:76:c7: ef:b3:dc:86:35:4b:e9:80:dd:f8:50:01:17:26:30: b1:6a:ef:15:da:fe:d7:75:87:56:0f:ac:c2:54:7b: be:ec:d4:ff:3b:f1:a3:63:0b:b0:32:ea:36:cc:0c: 79:c5:39:da:20:74:c1:04:65:b6:26:e7:ee:20:56: 88:77:8a:49:6e:cd:07:bb:9f:32:ec:54:6c:04:47: 33:98:1d:d5:92:36:5e:f8:8a:9e:ec:aa:37:50:f9: 55:66:ef:9b:b4:67:a5:dc:10:50:3f:3e:60:5b:7b: 35:10:3f:ff:ce:1a:62:08:4c:f0:1f:7d:fa:93:0e: c4:9b:35:8b:60:92:67:7b:e3:67:20:6b:17:e8:91: 99:3b:2e:2b:0f:4f:f7:93:31:80:5c:05:01:8d:5d: ee:9f:7f:4f:8b:07:f8:93:f5:97:bc:99:62:7f:9b: ef:1d:b3:d9:a8:f6:15:ce:91:d1:1f:69:5d:4c:2f: 44:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:6C:CA:2A:EE:11:BE:B5:D6:D4:F8:5D:0D:83:71:49:A9:F1:BF:51 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/43A61E9E4D5311EEAC075D5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.158.0/24 IPv6: 2401:2220::/48 Signature Algorithm: sha256WithRSAEncryption 6f:95:9c:02:d6:fe:bc:93:01:52:90:70:ae:32:b2:7e:1d:d2: 8a:b0:ea:e6:f2:09:5b:65:8a:5e:b8:b1:d4:71:ed:68:00:98: 24:e9:d8:c4:80:c0:a0:51:66:ec:bd:33:29:b5:29:0f:b2:d2: 3f:28:b5:17:87:11:22:ce:09:00:d5:f0:7a:b8:8d:a5:97:cd: 7b:22:88:b9:37:a5:90:22:de:a8:2d:9a:22:0d:ff:a8:7b:2f: a4:a0:22:26:6d:c1:94:fd:80:1f:35:e3:88:4f:4c:82:a0:52: fd:66:59:0d:48:95:70:9a:20:0f:ed:59:3a:57:00:b9:a4:0c: 24:72:28:5d:79:96:40:11:99:84:4e:aa:cf:b3:1c:42:35:b1: 86:6e:70:59:cc:a6:a8:38:b8:d9:cc:6e:30:f5:55:a9:dd:d7: 14:8d:3a:d4:1f:1d:f1:41:51:da:c1:c9:95:3e:b4:cb:db:ce: 10:ce:a0:27:db:8a:b6:76:df:9e:09:fa:f5:3e:77:33:a4:a1: 02:90:73:a7:5c:ae:90:04:31:91:70:51:32:64:25:e5:98:f5: 2f:f4:b1:26:a0:09:44:26:2f:0b:7c:5c:8f:cf:45:50:57:ed: 25:f8:49:8f:c2:62:54:ad:34:c6:ee:e9:85:09:95:b5:6f:57: f2:a6:ff:09 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRlMC0xZDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NWq4dBDgjgj5hI1N4i6YtG/iCBfDBY6NX7e0U3nfkE1yU6wtX5Fhwe9CUFS 6f/7E+oFk1NVk6IPLn1QYAL0ktQn9/2va3Eidsfvs9yGNUvpgN34UAEXJjCxau8V 2v7XdYdWD6zCVHu+7NT/O/GjYwuwMuo2zAx5xTnaIHTBBGW2JufuIFaId4pJbs0H u58y7FRsBEczmB3VkjZe+Iqe7Ko3UPlVZu+btGel3BBQPz5gW3s1ED//zhpiCEzw H336kw7EmzWLYJJne+NnIGsX6JGZOy4rD0/3kzGAXAUBjV3un39Piwf4k/WXvJli f5vvHbPZqPYVzpHRH2ldTC9EwwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBpsyiru Eb611tT4XQ2DcUmp8b9RMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDNBNjFFOUU0 RDUzMTFFRUFDMDc1RDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+Z4wDwQCAAIwCQMHACQBIiAAADANBgkqhkiG9w0BAQsF AAOCAQEAb5WcAtb+vJMBUpBwrjKyfh3SirDq5vIJW2WKXrix1HHtaACYJOnYxIDA oFFm7L0zKbUpD7LSPyi1F4cRIs4JANXweriNpZfNeyKIuTelkCLeqC2aIg3/qHsv pKAiJm3BlP2AHzXjiE9MgqBS/WZZDUiVcJogD+1ZOlcAuaQMJHIoXXmWQBGZhE6q z7McQjWxhm5wWcymqDi42cxuMPVVqd3XFI061B8d8UFR2sHJlT60y9vOEM6gJ9uK tnbfngn69T53M6ShApBzp1yukAQxkXBRMmQl5Zj1L/SxJqAJRCYvC3xcj89FUFft JfhJj8JiVK00xu7phQmVtW9X8qb/CQ== -----END CERTIFICATE-----Generated at Mon Oct 20 14:20:49 2025 by rpki-client