$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/456D4CD41E0111ED858FE624C4F9AE02.roa File: 456D4CD41E0111ED858FE624C4F9AE02.roa (raw, json) Hash identifier: ZhGsasJTmPU6ySXUD1gvu3bnOSQaCTmmPAVbyc9rUMg= Subject key identifier: FF:15:DE:A7:72:89:80:07:0D:23:15:9C:AD:9E:2E:F8:8A:D4:44:47 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CF0 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/456D4CD41E0111ED858FE624C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:53:11 +0000 ROA not before: Thu 28 Aug 2025 14:53:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135916 IP address blocks: 103.94.16.0/24 maxlen: 24 103.94.17.0/24 maxlen: 24 103.94.18.0/24 maxlen: 24 103.94.19.0/24 maxlen: 24 202.47.87.0/24 maxlen: 24 202.56.57.0/24 maxlen: 24 202.94.82.0/24 maxlen: 24 203.8.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19696 (0x4cf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d57-4ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6a:00:2d:23:97:75:fc:95:55:a3:77:b2:b7: a8:a2:22:50:a8:dd:ba:11:1a:ba:6b:a1:a6:92:7c: 11:e3:33:5e:11:df:6f:0f:c9:78:4e:c8:57:17:6a: 6e:78:b1:82:47:fc:b5:05:34:7a:f4:1f:96:ce:3b: 0d:d8:75:1c:0d:41:a1:11:ab:99:c3:cd:ca:e3:85: a9:ed:55:11:1e:00:cc:99:8f:f0:19:1f:f8:73:5a: b8:77:7a:fa:0b:6d:14:9d:71:5c:8d:10:de:a3:0b: 1f:e0:35:cd:e0:80:b5:67:12:d5:7e:22:67:41:02: ec:57:27:9f:2a:66:47:a2:93:91:8a:16:42:3a:c6: f9:89:4a:04:f1:c9:91:08:d6:10:e6:58:08:ab:ef: 2d:3d:94:eb:f5:b8:8e:66:52:6e:af:1d:30:32:a0: 06:ac:4b:2a:75:53:cc:71:69:da:26:1f:3d:a1:1a: 26:d2:79:9a:0f:40:bd:ea:6c:16:23:c2:06:fc:1c: e4:28:0a:c5:eb:1b:dc:d2:4f:e5:b2:b0:ed:7a:a1: e6:6f:1b:13:39:33:31:2b:eb:61:e2:5b:96:6e:b1: 99:1f:51:71:c4:88:94:15:e7:8c:82:31:ff:d1:3d: c5:63:d9:a5:e3:15:d9:8e:3f:7f:bf:07:e2:0d:9a: 1e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:15:DE:A7:72:89:80:07:0D:23:15:9C:AD:9E:2E:F8:8A:D4:44:47 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/456D4CD41E0111ED858FE624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.16.0/22 202.47.87.0/24 202.56.57.0/24 202.94.82.0/24 203.8.172.0/24 Signature Algorithm: sha256WithRSAEncryption 59:a2:00:13:1d:92:fd:d2:8b:2c:d4:ce:d9:84:b1:30:bd:7f: b3:83:c5:f3:c4:19:70:1e:57:f0:1b:cd:e9:bd:3a:42:c8:c2: fd:74:d1:76:b9:09:38:e3:d1:ea:77:3c:94:7d:93:19:c2:9b: 2c:43:0b:15:13:b0:2c:7d:83:c6:54:00:88:db:ab:3e:d9:cb: 88:4a:1e:c9:0b:e4:3e:34:98:7f:54:b1:67:91:aa:b2:c3:ed: f5:8e:89:62:19:58:2e:24:3f:87:0c:96:89:ea:8d:73:ec:33: a9:54:99:6c:4a:72:50:11:17:ed:3c:ab:96:cc:68:0c:6c:5d: f8:71:d1:c4:a5:96:1a:77:e4:26:13:11:b3:17:90:6f:8d:7b: 07:e9:5b:dc:79:d5:ad:88:56:14:d3:5e:65:15:92:b6:dc:67: 65:7d:b8:c2:54:82:ab:0a:cf:6e:9a:98:51:6a:8d:ea:1c:e4: 08:54:1b:7f:57:e9:67:f1:3f:e9:56:65:cd:6d:17:44:e0:41: 8e:cd:9b:e1:bc:d2:71:a5:ff:a1:a0:d0:ac:fd:6e:a1:c0:e0: 17:3e:8c:d9:fd:e2:44:d5:6c:13:3d:0c:ce:0d:1f:d0:36:1b: 11:5c:15:b9:fe:c7:d8:08:8b:62:30:e6:43:92:a8:3d:08:96: e1:58:56:a9 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICTPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ1Ny00ZWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02oALSOXdfyVVaN3sreooiJQqN26ERq6a6GmknwR4zNeEd9vD8l4TshXF2pu eLGCR/y1BTR69B+WzjsN2HUcDUGhEauZw83K44Wp7VURHgDMmY/wGR/4c1q4d3r6 C20UnXFcjRDeowsf4DXN4IC1ZxLVfiJnQQLsVyefKmZHopORihZCOsb5iUoE8cmR CNYQ5lgIq+8tPZTr9biOZlJurx0wMqAGrEsqdVPMcWnaJh89oRom0nmaD0C96mwW I8IG/BzkKArF6xvc0k/lsrDteqHmbxsTOTMxK+th4luWbrGZH1FxxIiUFeeMgjH/ 0T3FY9ml4xXZjj9/vwfiDZoeQQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFP8V3qdy iYAHDSMVnK2eLviK1ERHMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNDU2RDRDRDQx RTAxMTFFRDg1OEZFNjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAJnXhADBADKL1cDBADKODkDBADKXlIDBADLCKwwDQYJKoZI hvcNAQELBQADggEBAFmiABMdkv3SiyzUztmEsTC9f7ODxfPEGXAeV/Abzem9OkLI wv100Xa5CTjj0ep3PJR9kxnCmyxDCxUTsCx9g8ZUAIjbqz7Zy4hKHskL5D40mH9U sWeRqrLD7fWOiWIZWC4kP4cMlonqjXPsM6lUmWxKclARF+08q5bMaAxsXfhx0cSl lhp35CYTEbMXkG+NewfpW9x51a2IVhTTXmUVkrbcZ2V9uMJUgqsKz26amFFqjeoc 5AhUG39X6WfxP+lWZc1tF0TgQY7Nm+G80nGl/6Gg0Kz9bqHA4Bc+jNn94kTVbBM9 DM4NH9A2GxFcFbn+x9gIi2Iw5kOSqD0IluFYVqk= -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:05 2025 by rpki-client