$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B7B9A7D65E0711EF938D0E83C4F9AE02.roa File: B7B9A7D65E0711EF938D0E83C4F9AE02.roa (raw, json) Hash identifier: ECxVp1ywry2Lnjk/FcgMrYa4D6Mxr3EGtr2EPEHKHvk= Subject key identifier: 3F:88:D3:3D:9F:92:7E:AB:44:6D:08:A4:81:F3:43:A6:56:FC:34:C5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D81 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B7B9A7D65E0711EF938D0E83C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:13 +0000 ROA not before: Thu 28 Aug 2025 14:55:13 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150838 IP address blocks: 103.122.220.0/23 maxlen: 23 2400:f120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19841 (0x4d81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:13 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06dd1-82d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ee:47:f0:4a:7e:a2:b3:b1:a4:ce:86:07:9a: f3:08:8a:55:2d:b9:bb:28:41:25:9e:8b:4a:a9:04: c8:5d:6a:34:e4:a3:be:b2:72:38:af:40:e6:19:c7: 5c:a1:19:71:1e:53:a7:2b:0a:e0:3c:be:53:ad:e2: 3f:04:57:b5:80:c1:04:bb:3d:f4:57:65:f5:45:22: cd:e2:7b:ac:bd:33:eb:b3:84:57:28:06:ba:e5:a1: 23:7f:c2:e3:bf:f8:e6:47:fd:e5:d2:0a:8d:48:58: e3:b5:54:a4:79:31:d4:28:d3:51:3b:9c:8e:ee:fd: 60:03:04:0b:aa:2a:d0:a2:e1:0e:87:89:86:ec:6a: 65:2b:ec:f0:f7:bb:7e:51:db:2f:2c:f6:2c:1a:cd: ba:7e:6d:0d:77:b9:88:39:e2:85:50:5f:a1:2a:92: 29:94:62:d6:16:88:eb:e6:01:53:b5:b6:a5:f0:d2: fd:91:a1:da:a5:00:b2:aa:24:4b:1c:9b:d1:dc:17: e8:a3:31:18:33:9b:34:c0:ab:4c:75:c2:af:ee:85: a6:55:6c:29:20:98:ee:b4:b8:50:31:48:4e:9a:43: 43:f0:bb:eb:d8:45:72:89:ca:14:fd:8d:53:9a:3d: 78:62:15:1c:09:45:ff:20:45:bc:b5:93:b5:15:62: 2f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:88:D3:3D:9F:92:7E:AB:44:6D:08:A4:81:F3:43:A6:56:FC:34:C5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/B7B9A7D65E0711EF938D0E83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.220.0/23 IPv6: 2400:f120::/48 Signature Algorithm: sha256WithRSAEncryption 31:de:94:f1:3e:88:da:ad:e1:a8:91:72:91:ff:23:59:3b:2c: 27:5d:1e:ec:dd:e0:7c:4f:35:bd:93:a4:a7:90:f3:03:0a:42: bf:28:09:31:ff:e7:cd:f7:26:48:18:34:84:10:9d:bb:57:75: 06:5e:26:3f:29:2a:4e:57:cb:d6:57:6e:cf:6b:22:01:d6:6a: df:80:da:67:bb:2c:9b:90:cc:ee:7f:a5:63:c5:f8:bf:be:1e: 93:92:d8:39:99:2a:a9:7b:6b:d9:4a:7d:48:9a:e1:96:36:76: 99:b3:f3:e9:0f:8e:aa:21:b2:77:60:57:24:fc:f1:d6:89:42: 16:cd:61:4c:ee:76:ec:33:05:0a:b4:f7:60:e1:06:0d:71:df: e7:ca:11:1c:8b:c0:e8:a5:41:a7:17:4f:17:98:2c:6a:7b:41: 63:c5:30:fe:63:11:21:ab:af:76:fe:d9:72:c1:e5:9e:d4:9d: db:46:6b:f9:42:67:ae:b9:e5:64:28:b3:1e:6d:b6:1f:fc:9c: b9:a5:17:91:49:17:57:39:46:46:40:e2:7e:9c:f9:e1:94:9f: 26:4c:ca:0a:9e:80:a4:1f:23:de:a4:0c:86:a8:d0:3b:11:a1: e7:85:27:80:73:bf:33:2b:cd:97:8b:2e:b0:db:c6:51:e1:b7: a5:87:36:18 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTEzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRkMS04MmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvu5H8Ep+orOxpM6GB5rzCIpVLbm7KEElnotKqQTIXWo05KO+snI4r0DmGcdc oRlxHlOnKwrgPL5TreI/BFe1gMEEuz30V2X1RSLN4nusvTPrs4RXKAa65aEjf8Lj v/jmR/3l0gqNSFjjtVSkeTHUKNNRO5yO7v1gAwQLqirQouEOh4mG7GplK+zw97t+ UdsvLPYsGs26fm0Nd7mIOeKFUF+hKpIplGLWFojr5gFTtbal8NL9kaHapQCyqiRL HJvR3BfoozEYM5s0wKtMdcKv7oWmVWwpIJjutLhQMUhOmkND8Lvr2EVyicoU/Y1T mj14YhUcCUX/IEW8tZO1FWIvlQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFD+I0z2f kn6rRG0IpIHzQ6ZW/DTFMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQjdCOUE3RDY1 RTA3MTFFRjkzOEQwRTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnetwwDwQCAAIwCQMHACQA8SAAADANBgkqhkiG9w0BAQsF AAOCAQEAMd6U8T6I2q3hqJFykf8jWTssJ10e7N3gfE81vZOkp5DzAwpCvygJMf/n zfcmSBg0hBCdu1d1Bl4mPykqTlfL1lduz2siAdZq34DaZ7ssm5DM7n+lY8X4v74e k5LYOZkqqXtr2Up9SJrhljZ2mbPz6Q+OqiGyd2BXJPzx1olCFs1hTO527DMFCrT3 YOEGDXHf58oRHIvA6KVBpxdPF5gsantBY8Uw/mMRIauvdv7ZcsHlntSd20Zr+UJn rrnlZCizHm22H/ycuaUXkUkXVzlGRkDifpz54ZSfJkzKCp6ApB8j3qQMhqjQOxGh 54UngHO/MyvNl4susNvGUeG3pYc2GA== -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:02 2025 by rpki-client