$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4FC8108A295B11EF8A0CF149C4F9AE02.roa File: 4FC8108A295B11EF8A0CF149C4F9AE02.roa (raw, json) Hash identifier: 4nJWyB4SY80BsIQzHnWiQnOh9nWkwmMWRMDXsHQt3CA= Subject key identifier: B7:CC:28:2B:AC:33:24:21:4C:5C:A8:C1:53:57:EE:66:10:57:D9:66 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D0A Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4FC8108A295B11EF8A0CF149C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:53:34 +0000 ROA not before: Thu 28 Aug 2025 14:53:34 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135956 IP address blocks: 103.124.60.0/22 maxlen: 24 2001:df7:1700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19722 (0x4d0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:34 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d6e-c168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:50:8b:50:a9:7b:ce:9b:a7:86:de:5e:28:4a: c1:fb:e3:cc:db:6b:25:26:69:2d:64:ea:42:9e:dd: 37:40:89:b5:07:1d:8c:9e:76:8b:7e:89:c0:cf:23: d1:8e:40:ca:65:1d:33:7f:da:c9:40:f8:1e:aa:18: 3b:05:5e:59:ad:cb:ff:92:6d:bc:2e:3d:cd:0f:3f: 96:cc:65:ea:53:8e:0e:fb:d0:a1:64:0a:ee:25:39: e4:60:b5:67:55:1c:cf:db:c8:91:fd:3a:3d:c0:37: 24:2d:fb:54:49:5e:f7:0b:47:f9:8c:a6:9d:7b:70: 7c:d0:53:3c:83:6a:c6:b2:3e:72:2c:ad:25:c9:05: ed:98:1a:0a:dd:fd:f4:d5:63:73:d6:75:0e:65:44: 71:44:99:4e:3e:1a:2a:79:84:0f:28:a4:ac:f1:75: 97:5a:cd:c1:ec:4e:99:22:e3:6f:c0:d1:b4:38:b8: 9d:5f:b6:51:25:e3:9a:98:5d:bb:88:f5:40:3a:63: 9d:69:13:f3:6b:6d:1c:96:10:58:c2:ab:82:55:47: 82:20:ff:d7:5b:1f:4f:a2:32:88:db:bb:44:51:23: 94:ec:87:26:26:81:c0:c6:ef:8d:97:0d:79:74:e4: 78:cf:29:65:33:70:ec:fb:18:c5:65:96:df:e4:db: af:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CC:28:2B:AC:33:24:21:4C:5C:A8:C1:53:57:EE:66:10:57:D9:66 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4FC8108A295B11EF8A0CF149C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.60.0/22 IPv6: 2001:df7:1700::/48 Signature Algorithm: sha256WithRSAEncryption 35:3c:5e:e7:89:9d:3b:57:02:00:ea:6d:43:74:7d:28:b9:8f: ca:6a:7e:1d:48:4b:0e:86:84:88:f9:df:a9:14:dc:a1:95:96: 05:f5:74:55:14:10:85:05:44:5c:25:8f:eb:7c:ed:0e:2f:28: 8b:bc:5b:5a:51:63:87:8b:c9:26:59:b0:9d:63:22:e8:19:2a: 27:03:15:7f:0b:77:21:79:1f:32:36:74:3b:a9:8c:ff:55:59: 33:56:14:29:75:1a:93:57:b6:c9:bf:e8:3e:8c:5e:74:1f:25: 4a:62:1f:44:13:ef:04:00:6d:b3:74:06:27:37:fc:ae:a6:74: 82:85:cb:3f:0e:38:86:c6:0d:b4:11:a2:b3:b6:d0:6a:b2:cc: f0:64:97:b3:6a:9f:d5:68:26:b5:1b:ba:be:53:1d:53:4e:80: 01:dc:35:4b:28:33:59:75:85:9c:de:66:70:2f:b0:d7:90:11: 95:09:4a:5a:89:9e:1d:06:cf:fd:ac:34:92:06:dd:05:11:89: 26:83:80:13:90:cb:02:49:f4:cc:3a:08:ad:37:18:27:e7:fb: 33:62:ce:37:6b:b8:f9:90:10:7e:c0:6d:00:92:e7:3b:23:33: b8:5d:60:73:2b:d3:89:e5:6e:71:8f:8d:b0:b8:14:57:39:b9: d4:5d:81:2c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzM0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ2ZS1jMTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1CLUKl7zpunht5eKErB++PM22slJmktZOpCnt03QIm1Bx2MnnaLfonAzyPR jkDKZR0zf9rJQPgeqhg7BV5Zrcv/km28Lj3NDz+WzGXqU44O+9ChZAruJTnkYLVn VRzP28iR/To9wDckLftUSV73C0f5jKade3B80FM8g2rGsj5yLK0lyQXtmBoK3f30 1WNz1nUOZURxRJlOPhoqeYQPKKSs8XWXWs3B7E6ZIuNvwNG0OLidX7ZRJeOamF27 iPVAOmOdaRPza20clhBYwquCVUeCIP/XWx9PojKI27tEUSOU7IcmJoHAxu+Nlw15 dOR4zyllM3Ds+xjFZZbf5Nuv6QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLfMKCus MyQhTFyowVNX7mYQV9lmMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNEZDODEwOEEy OTVCMTFFRjhBMENGMTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnfDwwDwQCAAIwCQMHACABDfcXADANBgkqhkiG9w0BAQsF AAOCAQEANTxe54mdO1cCAOptQ3R9KLmPymp+HUhLDoaEiPnfqRTcoZWWBfV0VRQQ hQVEXCWP63ztDi8oi7xbWlFjh4vJJlmwnWMi6BkqJwMVfwt3IXkfMjZ0O6mM/1VZ M1YUKXUak1e2yb/oPoxedB8lSmIfRBPvBABts3QGJzf8rqZ0goXLPw44hsYNtBGi s7bQarLM8GSXs2qf1WgmtRu6vlMdU06AAdw1SygzWXWFnN5mcC+w15ARlQlKWome HQbP/aw0kgbdBRGJJoOAE5DLAkn0zDoIrTcYJ+f7M2LON2u4+ZAQfsBtAJLnOyMz uF1gcyvTieVucY+NsLgUVzm51F2BLA== -----END CERTIFICATE-----Generated at Mon Oct 20 19:49:04 2025 by rpki-client