$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3D937A30EBB211EEA93D9B14C4F9AE02.roa File: 3D937A30EBB211EEA93D9B14C4F9AE02.roa (raw, json) Hash identifier: govSB7bwBcjLhKLkQmAfX8Kv8Fg3iLmAfWNtXCpGOvc= Subject key identifier: BA:9A:2B:49:BB:1C:8C:E5:1F:46:95:6F:8A:2A:6F:BB:08:A3:44:CF Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 0179 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3D937A30EBB211EEA93D9B14C4F9AE02.roa Signing time: Thu 14 Aug 2025 23:52:04 +0000 ROA not before: Thu 14 Aug 2025 23:52:04 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 167.103.90.0/24 maxlen: 24 167.103.91.0/24 maxlen: 24 167.103.92.0/24 maxlen: 24 167.103.93.0/24 maxlen: 24 167.103.94.0/24 maxlen: 24 167.103.95.0/24 maxlen: 24 167.103.170.0/24 maxlen: 24 167.103.237.0/24 maxlen: 24 167.103.238.0/24 maxlen: 24 167.103.239.0/24 maxlen: 24 167.103.240.0/24 maxlen: 24 167.103.241.0/24 maxlen: 24 167.103.242.0/24 maxlen: 24 167.103.243.0/24 maxlen: 24 167.103.244.0/24 maxlen: 24 167.103.245.0/24 maxlen: 24 167.103.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Aug 14 23:52:04 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689e76a4-0a49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e5:51:c0:9c:98:76:31:65:48:b9:ce:ea:c7: 29:6c:55:f8:fa:66:89:3c:ba:ba:ee:77:a0:21:8d: f5:3b:2c:ef:58:74:2f:b2:13:a8:54:f4:78:9a:21: e4:d6:ae:7a:6e:77:37:ce:ec:3d:3a:96:cf:42:51: 69:13:40:44:e2:23:9e:62:9b:3e:56:bc:d7:b0:36: 6c:5a:b5:47:6d:b6:6c:56:65:29:99:5e:7a:84:2a: 82:eb:a2:61:b9:59:6e:47:7a:e4:33:0c:f2:35:5c: d9:90:a0:b4:be:71:f3:68:48:54:42:92:11:b5:54: fc:52:3a:d9:18:b8:d7:cf:8f:10:be:b1:83:c2:e7: 30:14:fd:72:f1:a6:47:b7:57:f1:16:96:22:55:c9: bc:05:84:79:cc:76:b5:39:66:a1:71:9e:2d:20:80: 1f:83:fa:bd:c4:99:34:c6:82:e9:4f:c8:9f:a4:ce: b4:a8:c2:54:d9:11:1b:c0:32:60:5a:0d:79:e3:66: 7e:1b:6d:da:4e:24:5f:29:02:f4:ba:91:56:fe:d9: 80:bc:52:f7:93:2a:0b:ef:ea:8b:a6:4c:94:e1:73: 82:1d:46:bf:84:7a:ef:55:37:01:c1:20:52:fc:26: a5:46:85:da:de:a6:c1:cc:d4:57:5d:95:9f:e3:68: fc:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:9A:2B:49:BB:1C:8C:E5:1F:46:95:6F:8A:2A:6F:BB:08:A3:44:CF X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3D937A30EBB211EEA93D9B14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.90.0-167.103.95.255 167.103.170.0/24 167.103.237.0-167.103.246.255 Signature Algorithm: sha256WithRSAEncryption 2e:50:2f:52:00:2e:96:66:f1:53:f5:34:74:20:34:12:91:5a: 8b:91:c5:b9:28:b9:91:f1:68:47:b0:83:95:71:a6:56:51:fd: ee:b6:1c:be:6f:f0:83:0c:49:ad:f7:06:31:20:3c:a5:64:5e: 47:99:3a:a1:5d:c2:5e:5d:99:d0:c8:47:40:d7:e8:ed:3e:93: 73:64:c3:00:68:c6:5f:fe:25:51:96:e5:ac:52:d5:9a:b5:44: 51:c7:ff:ae:52:63:90:d6:42:d1:34:72:c3:65:f4:24:d3:6d: 7a:37:00:fb:ea:c7:85:6a:d3:d9:d9:f8:d8:a9:e9:b4:5a:0a: 6a:8e:3d:db:7d:44:95:8b:d8:e0:39:73:a0:c4:5d:37:32:f5: 95:cd:c5:38:0c:83:5c:e3:ea:eb:74:17:95:ee:ff:ac:4f:e8: 46:07:cf:28:05:59:41:ee:c9:91:35:13:32:7a:8a:17:bd:8e: 25:51:4f:b4:0a:4e:53:22:0a:ff:3d:f6:11:78:3a:13:6b:cc: 68:93:c9:c0:23:59:17:97:93:8f:38:41:06:85:d6:fd:48:02: ae:19:ca:87:2d:4f:5b:63:da:0b:e2:49:f3:ad:3c:67:1a:36: 75:9e:6b:be:27:e7:03:2f:1c:80:9f:48:57:6b:f5:2b:a7:75: 14:f4:8e:f5 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwODE0MjM1MjA0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllNzZhNC0wYTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOVRwJyYdjFlSLnO6scpbFX4+maJPLq67negIY31OyzvWHQvshOoVPR4miHk 1q56bnc3zuw9OpbPQlFpE0BE4iOeYps+VrzXsDZsWrVHbbZsVmUpmV56hCqC66Jh uVluR3rkMwzyNVzZkKC0vnHzaEhUQpIRtVT8UjrZGLjXz48QvrGDwucwFP1y8aZH t1fxFpYiVcm8BYR5zHa1OWahcZ4tIIAfg/q9xJk0xoLpT8ifpM60qMJU2REbwDJg Wg1542Z+G23aTiRfKQL0upFW/tmAvFL3kyoL7+qLpkyU4XOCHUa/hHrvVTcBwSBS /CalRoXa3qbBzNRXXZWf42j8TwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFLqaK0m7 HIzlH0aVb4oqb7sIo0TPMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvM0Q5MzdBMzBF QkIyMTFFRUE5M0Q5QjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAadnWgMEBadnQAMEAKdnqjAMAwQAp2ftAwQAp2f2MA0G CSqGSIb3DQEBCwUAA4IBAQAuUC9SAC6WZvFT9TR0IDQSkVqLkcW5KLmR8WhHsIOV caZWUf3uthy+b/CDDEmt9wYxIDylZF5HmTqhXcJeXZnQyEdA1+jtPpNzZMMAaMZf /iVRluWsUtWatURRx/+uUmOQ1kLRNHLDZfQk0216NwD76seFatPZ2fjYqem0Wgpq jj3bfUSVi9jgOXOgxF03MvWVzcU4DINc4+rrdBeV7v+sT+hGB88oBVlB7smRNRMy eooXvY4lUU+0Ck5TIgr/PfYReDoTa8xok8nAI1kXl5OPOEEGhdb9SAKuGcqHLU9b Y9oL4knzrTxnGjZ1nmu+J+cDLxyAn0hXa/Urp3UU9I71 -----END CERTIFICATE-----Generated at Sat Aug 23 07:04:14 2025 by rpki-client