$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7E2C4774F5C911ECAE15AE0BC4F9AE02.roa File: 7E2C4774F5C911ECAE15AE0BC4F9AE02.roa (raw, json) Hash identifier: Dc/kTOL3G/o4RI0WZBRlZoMinoHXp95Qkyd+HIGPIoQ= Subject key identifier: 5E:0F:78:2D:09:4D:B3:78:46:80:24:4F:0B:25:81:74:E1:33:10:1D Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CE6 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7E2C4774F5C911ECAE15AE0BC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:53:02 +0000 ROA not before: Thu 28 Aug 2025 14:53:02 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135901 IP address blocks: 103.68.68.0/24 maxlen: 24 103.68.69.0/24 maxlen: 24 103.68.70.0/24 maxlen: 24 103.68.71.0/24 maxlen: 24 103.172.78.0/24 maxlen: 24 103.172.79.0/24 maxlen: 24 103.173.228.0/24 maxlen: 24 103.173.229.0/24 maxlen: 24 103.188.244.0/24 maxlen: 24 103.188.245.0/24 maxlen: 24 113.192.16.0/24 maxlen: 24 113.192.17.0/24 maxlen: 24 2401:57e0::/48 maxlen: 48 2406:cbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19686 (0x4ce6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:53:02 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d4d-e869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:84:1e:e4:d7:3b:f6:96:70:2a:33:05:aa:f0: 1e:53:cb:b2:a7:cc:23:69:c4:54:8f:ae:4b:f5:75: 23:c1:aa:77:d8:7c:8a:20:76:ce:3f:04:0d:77:69: 4a:d8:10:9f:b1:73:96:09:96:2e:12:a6:fe:b3:d7: b0:32:ad:24:a2:2e:97:e2:31:0c:dd:3a:eb:0a:27: 6c:fb:8a:25:8f:a6:5e:46:fa:04:1d:a3:44:f4:91: dc:cc:fc:ce:77:35:ed:c8:21:2d:17:81:f5:97:76: 5e:b3:a1:da:b4:00:54:bf:13:e1:3c:1d:68:eb:b9: f3:d4:1b:1f:10:8d:72:65:0f:f9:13:f2:36:29:39: d4:b5:c1:86:49:5c:52:f1:24:43:ff:1b:2c:f3:ad: 8b:26:2d:fc:5d:e3:6f:35:5d:85:6a:de:c6:17:1b: 5f:7e:1a:5e:07:de:46:1e:cf:e2:59:c9:77:46:c1: a0:09:de:a5:53:57:fb:b8:e2:1c:4e:9c:d8:9f:c4: 6f:21:f4:d1:e4:49:5c:07:13:57:9b:fd:7b:d8:2c: 67:ef:e9:53:42:09:af:7c:31:68:29:45:10:8c:6f: 59:86:52:60:25:b3:c3:b2:fb:f5:12:25:ec:2a:44: a6:57:4f:58:1f:77:2a:b0:59:eb:c9:98:25:54:c1: d2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:0F:78:2D:09:4D:B3:78:46:80:24:4F:0B:25:81:74:E1:33:10:1D X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7E2C4774F5C911ECAE15AE0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.68.0/22 103.172.78.0/23 103.173.228.0/23 103.188.244.0/23 113.192.16.0/23 IPv6: 2401:57e0::/48 2406:cbc0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:fe:e4:d5:1b:7f:17:a2:e0:d7:6b:ce:17:15:d4:08:90:eb: fe:25:cd:9f:ce:9b:80:64:2f:12:b7:15:f2:e7:d7:f6:5c:2e: a9:ad:3d:62:51:28:c1:68:a4:83:ce:bf:4a:b5:72:a2:6e:62: fc:48:5c:e3:89:73:0a:58:f8:b5:4e:01:0a:9c:e7:d4:79:1e: 78:f5:48:57:c0:fd:e9:aa:f5:4e:c6:17:09:9e:a4:f0:38:06: c6:66:61:1d:2c:aa:9d:3d:69:7a:7b:3d:b1:a5:88:84:bb:c7: d4:56:27:d7:9f:47:66:00:b3:4f:0f:eb:bb:3f:c4:3b:7a:16: 53:5d:6c:05:4f:13:b9:78:90:4e:35:45:9c:9f:c7:ca:94:a4: 15:28:48:07:59:4f:5d:a1:b4:6e:7b:cc:23:d1:55:6a:00:33: c8:5a:34:83:71:d8:d8:93:aa:1f:d5:29:24:a4:8b:b9:6a:9a: 53:15:e9:c3:93:fb:62:7b:b5:6a:25:a6:ae:0f:ff:cc:c9:c0: c9:70:44:0a:2e:1e:b1:5c:89:67:c9:3e:9e:79:19:cd:f5:18: 82:e6:55:6d:2f:e7:30:ac:8f:58:0b:2d:10:fb:5a:bb:5b:16: d4:47:2a:08:7d:cb:81:a9:8a:ec:ee:f5:ed:19:df:6b:bb:29: 19:c2:aa:35 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICTOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MzAyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ0ZC1lODY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYQe5Nc79pZwKjMFqvAeU8uyp8wjacRUj65L9XUjwap32HyKIHbOPwQNd2lK 2BCfsXOWCZYuEqb+s9ewMq0koi6X4jEM3TrrCids+4olj6ZeRvoEHaNE9JHczPzO dzXtyCEtF4H1l3Zes6HatABUvxPhPB1o67nz1BsfEI1yZQ/5E/I2KTnUtcGGSVxS 8SRD/xss862LJi38XeNvNV2Fat7GFxtffhpeB95GHs/iWcl3RsGgCd6lU1f7uOIc TpzYn8RvIfTR5ElcBxNXm/172Cxn7+lTQgmvfDFoKUUQjG9ZhlJgJbPDsvv1EiXs KkSmV09YH3cqsFnryZglVMHSZwIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFF4PeC0J TbN4RoAkTwslgXThMxAdMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvN0UyQzQ3NzRG NUM5MTFFQ0FFMTVBRTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMCQEAgABMB4DBAJnREQDBAFnrE4DBAFnreQDBAFnvPQDBAFxwBAwGAQCAAIw EgMHACQBV+AAAAMHACQGy8AAADANBgkqhkiG9w0BAQsFAAOCAQEAP/7k1Rt/F6Lg 12vOFxXUCJDr/iXNn86bgGQvErcV8ufX9lwuqa09YlEowWikg86/SrVyom5i/Ehc 44lzClj4tU4BCpzn1HkeePVIV8D96ar1TsYXCZ6k8DgGxmZhHSyqnT1pens9saWI hLvH1FYn159HZgCzTw/ruz/EO3oWU11sBU8TuXiQTjVFnJ/HypSkFShIB1lPXaG0 bnvMI9FVagAzyFo0g3HY2JOqH9UpJKSLuWqaUxXpw5P7Ynu1aiWmrg//zMnAyXBE Ci4esVyJZ8k+nnkZzfUYguZVbS/nMKyPWAstEPtau1sW1EcqCH3LgamK7O717Rnf a7spGcKqNQ== -----END CERTIFICATE-----Generated at Mon Oct 20 19:49:05 2025 by rpki-client