$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8FDF050AAE0511EF8576005AC4F9AE02.roa File: 8FDF050AAE0511EF8576005AC4F9AE02.roa (raw, json) Hash identifier: 8zGeya6InJahSuFYfvdWAOeHcqkMzfCASpSTm8fhTaY= Subject key identifier: C5:89:76:CC:C8:ED:5A:0A:43:32:93:42:DA:35:AD:89:09:20:F6:FF Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D88 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8FDF050AAE0511EF8576005AC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:19 +0000 ROA not before: Thu 28 Aug 2025 14:55:19 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150854 IP address blocks: 103.112.208.0/23 maxlen: 24 2401:10a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19848 (0x4d88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:19 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06dd6-2840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:de:23:32:50:9b:1c:53:e6:d5:e1:f9:00:5e: cd:db:0a:2a:a0:4c:75:7b:34:9a:2f:72:c0:dc:e2: 0e:13:b8:13:f7:fc:e7:7e:ea:6e:e7:10:b2:17:63: 5f:c0:21:c4:b6:69:da:41:8e:19:8b:df:e7:c5:9c: 3c:ed:d9:9c:9e:39:4d:56:76:dc:53:f8:96:ea:12: 6c:04:bc:35:ef:e6:63:4a:3d:db:4d:13:80:6f:a6: 73:e1:02:fa:e2:3b:20:3f:5b:5c:f4:e1:8b:29:a2: 01:9a:2c:f3:c3:ac:e2:f8:1d:b2:97:4a:7e:40:8a: 55:25:03:98:50:7a:a2:54:c4:7f:c0:aa:34:1d:c4: 85:a9:bd:e8:70:52:49:a6:5c:cb:f7:67:d0:ab:07: 8c:0c:78:fe:1e:22:5d:10:1b:c8:89:6f:ac:7c:f2: 8b:0d:58:7f:a1:2e:af:14:a1:8f:04:2f:9d:2a:0e: 8e:b9:9c:ff:1f:3b:81:49:44:d1:4a:a8:97:d2:ec: e8:18:02:bb:01:26:7b:25:27:f3:7a:b7:d8:6a:58: 09:23:f9:71:29:d9:1c:1e:a3:c7:64:d9:b6:27:be: 49:53:4b:13:c8:16:f8:ac:76:07:e4:42:28:07:1f: 3e:6b:8e:f8:ce:93:af:d2:4c:ac:fa:44:84:51:fe: 0c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:89:76:CC:C8:ED:5A:0A:43:32:93:42:DA:35:AD:89:09:20:F6:FF X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8FDF050AAE0511EF8576005AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.208.0/23 IPv6: 2401:10a0::/48 Signature Algorithm: sha256WithRSAEncryption 12:75:d6:81:88:73:b7:21:70:67:e6:7d:f2:ea:c3:ed:4e:6f: f1:fa:cb:ba:eb:eb:8d:fc:44:05:fa:ba:1f:87:49:0a:4e:09: fa:af:35:b2:13:11:8c:23:a5:45:61:95:36:88:66:d1:a3:08: cb:2e:27:64:59:d0:f3:90:3a:0a:2d:25:9d:10:09:da:90:ff: 06:12:cf:4c:dd:2f:5e:89:47:aa:7a:35:b9:a6:f3:e4:95:d1: 57:10:3b:88:10:23:9e:7c:74:8f:9c:48:84:e3:34:42:af:02: 92:50:51:2d:78:f7:bc:fc:60:23:55:84:9b:18:74:ae:77:be: 7c:86:c3:79:99:f6:bd:52:f0:25:a3:a0:ec:bc:49:9b:18:bf: ad:55:79:d6:a2:65:d0:83:bf:c0:0a:b2:70:53:c5:7f:04:3e: dd:6c:f2:06:4c:75:9b:0a:8f:2c:42:0a:d7:5e:cd:16:20:a1: 05:91:2f:0d:4f:ce:9f:46:65:7e:96:cc:8e:96:d6:f5:a0:dc: 58:59:de:5d:8c:84:55:56:77:e7:0a:0d:8e:32:35:de:d0:cb: c1:3b:10:fa:2a:7c:70:39:ef:8c:9e:a2:83:46:c9:5a:d8:2a: a4:e9:dc:97:48:e6:3d:dd:e1:8a:ea:ad:f4:60:c9:18:62:ac: 22:1c:bd:77 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTE5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRkNi0yODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz94jMlCbHFPm1eH5AF7N2woqoEx1ezSaL3LA3OIOE7gT9/znfupu5xCyF2Nf wCHEtmnaQY4Zi9/nxZw87dmcnjlNVnbcU/iW6hJsBLw17+ZjSj3bTROAb6Zz4QL6 4jsgP1tc9OGLKaIBmizzw6zi+B2yl0p+QIpVJQOYUHqiVMR/wKo0HcSFqb3ocFJJ plzL92fQqweMDHj+HiJdEBvIiW+sfPKLDVh/oS6vFKGPBC+dKg6OuZz/HzuBSUTR SqiX0uzoGAK7ASZ7JSfzerfYalgJI/lxKdkcHqPHZNm2J75JU0sTyBb4rHYH5EIo Bx8+a474zpOv0kys+kSEUf4MaQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMWJdszI 7VoKQzKTQto1rYkJIPb/MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEZERjA1MEFB RTA1MTFFRjg1NzYwMDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFncNAwDwQCAAIwCQMHACQBEKAAADANBgkqhkiG9w0BAQsF AAOCAQEAEnXWgYhztyFwZ+Z98urD7U5v8frLuuvrjfxEBfq6H4dJCk4J+q81shMR jCOlRWGVNohm0aMIyy4nZFnQ85A6Ci0lnRAJ2pD/BhLPTN0vXolHqno1uabz5JXR VxA7iBAjnnx0j5xIhOM0Qq8CklBRLXj3vPxgI1WEmxh0rne+fIbDeZn2vVLwJaOg 7LxJmxi/rVV51qJl0IO/wAqycFPFfwQ+3WzyBkx1mwqPLEIK117NFiChBZEvDU/O n0ZlfpbMjpbW9aDcWFneXYyEVVZ35woNjjI13tDLwTsQ+ip8cDnvjJ6ig0bJWtgq pOncl0jmPd3hiuqt9GDJGGKsIhy9dw== -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:06 2025 by rpki-client