$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C889D8ACD57B11EE8A138764C4F9AE02.roa File: C889D8ACD57B11EE8A138764C4F9AE02.roa (raw, json) Hash identifier: BxUpc77gLHr85iZhAqnTXPLIzjumkMXa1MeL+/LE024= Subject key identifier: CF:92:E5:C3:53:74:16:CC:89:43:29:A9:FF:21:14:AA:1B:F7:D7:2D Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CDC Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C889D8ACD57B11EE8A138764C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:54 +0000 ROA not before: Thu 28 Aug 2025 14:52:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131422 IP address blocks: 103.61.120.0/23 maxlen: 24 2001:df1:e5c0::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19676 (0x4cdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d45-580b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:34:89:97:f6:2f:83:a5:04:38:b3:14:20:50: 6f:3d:45:08:0a:36:ad:89:9e:d7:2c:78:15:cf:02: d5:a3:fc:0b:45:f6:77:e0:02:03:32:de:33:21:d1: 85:33:22:25:28:18:d9:d2:28:db:b0:31:86:66:b1: b8:18:e0:d5:51:8e:3d:74:d8:33:35:88:20:81:89: 76:1b:3e:64:05:b0:c9:d8:9f:25:7e:83:8e:fa:18: f9:34:c9:b7:ad:74:36:75:e1:70:a6:23:9a:b5:75: 5c:94:18:93:e6:9f:0a:13:a9:5f:3d:03:df:5a:a1: a4:cf:5c:dc:40:3f:1c:ae:50:24:4c:dc:ce:5c:0a: 41:0c:84:fb:66:29:3c:91:73:ba:46:48:cc:1f:b5: f3:75:44:97:0a:01:62:b7:d3:94:ac:a4:77:97:27: 0b:01:d7:60:cc:77:35:7c:39:48:03:91:81:d4:8f: 86:4d:c3:8c:83:12:f5:63:6c:2e:4d:9b:f8:21:67: 6f:19:5c:9e:f8:4e:00:ca:eb:9b:ce:00:4b:41:ce: 15:13:b6:71:9f:5e:f3:0d:e7:4b:e1:48:d5:47:a3: a6:5d:e7:84:b7:98:69:be:d1:f3:ce:e0:e1:60:28: cd:85:7c:89:36:63:f3:7e:01:5a:ef:0f:e4:73:30: b1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:92:E5:C3:53:74:16:CC:89:43:29:A9:FF:21:14:AA:1B:F7:D7:2D X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C889D8ACD57B11EE8A138764C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.61.120.0/23 IPv6: 2001:df1:e5c0::/47 Signature Algorithm: sha256WithRSAEncryption 5d:13:f9:91:d6:6b:c9:99:71:de:c5:9f:b3:b3:57:8a:b0:4a: 3c:80:cb:f5:11:03:34:be:5e:32:0a:25:74:c0:27:a0:ac:51: 28:18:d4:18:36:a9:19:ef:f3:89:76:06:6f:3a:d4:b4:bc:98: bd:72:b8:74:23:7e:25:f6:8c:0e:5a:e5:28:ea:20:66:45:38: 56:b5:2e:76:2d:b9:22:e6:05:9f:1c:81:b2:ca:d0:8b:42:71: fa:8c:15:1a:90:26:37:be:c8:99:8c:0d:be:8c:09:2a:e1:eb: 77:14:a2:bc:44:96:58:f0:79:2f:7e:58:38:50:2e:ed:a6:92: 02:ae:6e:20:b9:55:ca:e3:4d:a8:9b:bf:17:ce:8e:81:75:e7: 24:68:7b:9d:37:a5:6a:0e:2f:a7:61:1d:08:37:2d:2c:40:11: d2:51:01:99:9f:06:bf:08:4d:aa:c8:db:60:e3:11:7e:29:b9: 83:d0:c2:50:7b:49:00:3d:77:7b:d6:76:db:f5:1a:9f:94:48: ed:d1:08:bf:a3:62:4e:9a:69:89:b7:16:af:11:a9:a3:88:10: 05:d0:9c:ab:07:3d:e5:0b:b5:02:22:09:8f:c3:68:18:8e:04: eb:8d:07:88:5f:81:4b:ae:95:0e:3e:18:f9:a0:61:ac:17:34: 99:6c:9a:33 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICTNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQ0NS01ODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jSJl/Yvg6UEOLMUIFBvPUUICjatiZ7XLHgVzwLVo/wLRfZ34AIDMt4zIdGF MyIlKBjZ0ijbsDGGZrG4GODVUY49dNgzNYgggYl2Gz5kBbDJ2J8lfoOO+hj5NMm3 rXQ2deFwpiOatXVclBiT5p8KE6lfPQPfWqGkz1zcQD8crlAkTNzOXApBDIT7Zik8 kXO6RkjMH7XzdUSXCgFit9OUrKR3lycLAddgzHc1fDlIA5GB1I+GTcOMgxL1Y2wu TZv4IWdvGVye+E4AyuubzgBLQc4VE7Zxn17zDedL4UjVR6OmXeeEt5hpvtHzzuDh YCjNhXyJNmPzfgFa7w/kczCx/QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM+S5cNT dBbMiUMpqf8hFKob99ctMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzg4OUQ4QUNE NTdCMTFFRThBMTM4NzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnPXgwDwQCAAIwCQMHASABDfHlwDANBgkqhkiG9w0BAQsF AAOCAQEAXRP5kdZryZlx3sWfs7NXirBKPIDL9REDNL5eMgoldMAnoKxRKBjUGDap Ge/ziXYGbzrUtLyYvXK4dCN+JfaMDlrlKOogZkU4VrUudi25IuYFnxyBssrQi0Jx +owVGpAmN77ImYwNvowJKuHrdxSivESWWPB5L35YOFAu7aaSAq5uILlVyuNNqJu/ F86OgXXnJGh7nTelag4vp2EdCDctLEAR0lEBmZ8GvwhNqsjbYOMRfim5g9DCUHtJ AD13e9Z22/Uan5RI7dEIv6NiTpppibcWrxGpo4gQBdCcqwc95Qu1AiIJj8NoGI4E 640HiF+BS66VDj4Y+aBhrBc0mWyaMw== -----END CERTIFICATE-----Generated at Mon Oct 20 17:00:04 2025 by rpki-client