$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/FA870AFA94E011EDB701A974C4F9AE02.roa File: FA870AFA94E011EDB701A974C4F9AE02.roa (raw, json) Hash identifier: y//kTgBCu8ds1cgaGUUv5fTwfVuBn5T3llDXWqV3GRs= Subject key identifier: 88:4F:FF:23:30:3D:A1:41:11:4B:BB:3C:5C:4F:1F:3A:A5:04:13:0D Certificate issuer: /CN=A91F1C8C/serialNumber=13BDA64C6F1B5A2C33394736354E9E8E6BCAE256 Certificate serial: 0832 Authority key identifier: 13:BD:A6:4C:6F:1B:5A:2C:33:39:47:36:35:4E:9E:8E:6B:CA:E2:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E72mTG8bWiwzOUc2NU6ejmvK4lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/FA870AFA94E011EDB701A974C4F9AE02.roa Signing time: Tue 12 Aug 2025 21:31:37 +0000 ROA not before: Tue 12 Aug 2025 21:31:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140992 IP address blocks: 103.154.160.0/24 maxlen: 24 2001:df4:9080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/E72mTG8bWiwzOUc2NU6ejmvK4lY.crl rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/E72mTG8bWiwzOUc2NU6ejmvK4lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E72mTG8bWiwzOUc2NU6ejmvK4lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1C8C, serialNumber=13BDA64C6F1B5A2C33394736354E9E8E6BCAE256 Validity Not Before: Aug 12 21:31:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689bb2b9-0e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b6:d3:c1:ab:ba:39:5c:59:5f:4e:d9:e8:30: 23:bb:41:ce:8c:ff:57:0c:50:7b:b8:fb:7c:46:1b: cc:b2:ad:3e:b2:b4:15:21:d2:e3:e9:99:2c:30:b5: ab:0e:2b:25:e9:15:8f:00:1e:00:2d:38:2b:0f:48: 11:12:84:71:49:91:20:5f:72:bc:51:28:ef:dc:f3: d1:f4:da:b7:bb:7f:6f:b4:c5:ab:57:6f:a9:5c:f4: 77:22:51:4f:61:39:34:c1:d3:90:58:fb:bc:e9:23: f6:5a:af:c9:1a:3a:02:37:e6:b2:72:8f:de:fb:9e: 01:a5:40:e6:1d:72:12:14:e6:ff:68:dc:d4:24:f0: ee:a6:d3:6d:cb:fb:6c:07:7a:91:2c:0c:aa:24:5f: bc:29:79:7f:cf:fd:02:1f:9b:a7:4f:02:0d:d8:0a: 33:11:04:ee:73:7c:91:d1:df:ff:02:a7:1c:99:44: 46:fe:89:09:c5:45:09:5a:10:95:36:40:cc:9e:27: d1:a4:78:c9:d5:b6:9b:63:b3:51:5c:a0:31:93:e3: 97:a8:ca:fa:1b:e6:9d:5b:3e:b3:20:ab:c5:bd:fe: 0a:90:b9:ef:07:46:98:9f:9e:66:50:14:25:22:15: b1:7d:1b:f2:88:6a:1c:19:53:06:d9:5b:34:14:da: 86:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4F:FF:23:30:3D:A1:41:11:4B:BB:3C:5C:4F:1F:3A:A5:04:13:0D X509v3 Authority Key Identifier: keyid:13:BD:A6:4C:6F:1B:5A:2C:33:39:47:36:35:4E:9E:8E:6B:CA:E2:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/E72mTG8bWiwzOUc2NU6ejmvK4lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E72mTG8bWiwzOUc2NU6ejmvK4lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1C8C/23E5D5DEDF9911EA9F85D982C4F9AE02/FA870AFA94E011EDB701A974C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.160.0/24 IPv6: 2001:df4:9080::/48 Signature Algorithm: sha256WithRSAEncryption 05:f7:12:57:23:bb:1d:28:3e:d1:97:94:27:a9:32:65:9c:27: 31:fe:c8:88:73:31:f9:7e:5c:79:43:bb:ac:e9:05:99:ef:00: f7:f6:21:51:ce:a5:45:07:6a:3f:93:8d:5f:f4:5b:43:e5:c9: 26:61:6e:64:2d:ba:45:a3:1c:02:ce:52:52:2c:e8:2d:86:da: 71:3f:0d:df:10:38:61:07:1d:e2:36:b8:0b:12:73:33:78:97: cc:e5:20:13:da:ee:dd:ae:7f:5e:6e:2c:69:0f:c2:fa:4e:82: 60:e4:bf:eb:15:e3:dc:f3:1c:eb:93:02:fb:c0:37:15:fc:90: e1:f4:ff:b0:ce:c3:62:37:24:fe:95:9d:e6:d3:70:9e:d6:d5: ef:95:6a:38:50:7c:f2:c0:4e:d0:7b:3e:8e:bb:ce:aa:f6:dc: 9a:0a:bf:c0:49:fa:f4:02:71:91:c4:c5:fd:cd:67:e3:56:95: a8:26:91:be:36:a3:e5:87:0c:f3:76:d4:43:74:7b:57:50:07: 1a:99:c6:7c:6f:39:cc:f6:27:c6:cb:a0:9f:65:ab:60:fe:ca: fd:24:7f:99:f1:9d:0c:4d:cc:ff:7f:b2:c4:1a:f3:6f:55:12: d4:13:77:de:26:13:55:7d:12:14:57:f3:5f:02:a6:c1:84:1b: f5:a6:e5:94 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFDOEMxMTAvBgNVBAUTKDEzQkRBNjRDNkYxQjVBMkMzMzM5NDczNjM1NEU5RThF NkJDQUUyNTYwHhcNMjUwODEyMjEzMTM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliYjJiOS0wZTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LbTwau6OVxZX07Z6DAju0HOjP9XDFB7uPt8RhvMsq0+srQVIdLj6ZksMLWr Disl6RWPAB4ALTgrD0gREoRxSZEgX3K8USjv3PPR9Nq3u39vtMWrV2+pXPR3IlFP YTk0wdOQWPu86SP2Wq/JGjoCN+ayco/e+54BpUDmHXISFOb/aNzUJPDuptNty/ts B3qRLAyqJF+8KXl/z/0CH5unTwIN2AozEQTuc3yR0d//AqccmURG/okJxUUJWhCV NkDMnifRpHjJ1babY7NRXKAxk+OXqMr6G+adWz6zIKvFvf4KkLnvB0aYn55mUBQl IhWxfRvyiGocGVMG2Vs0FNqGswIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIhP/yMw PaFBEUu7PFxPHzqlBBMNMB8GA1UdIwQYMBaAFBO9pkxvG1osMzlHNjVOno5ryuJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUM4Qy8yM0U1RDVERURG OTkxMUVBOUY4NUQ5ODJDNEY5QUUwMi9FNzJtVEc4Yldpd3pPVWMyTlU2ZWptdks0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U3Mm1URzhiV2l3ek9VYzJOVTZlam12SzRsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFDOEMvMjNFNUQ1REVERjk5MTFFQTlGODVEOTgyQzRGOUFFMDIvRkE4NzBBRkE5 NEUwMTFFREI3MDFBOTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnmqAwDwQCAAIwCQMHACABDfSQgDANBgkqhkiG9w0BAQsF AAOCAQEABfcSVyO7HSg+0ZeUJ6kyZZwnMf7IiHMx+X5ceUO7rOkFme8A9/YhUc6l RQdqP5ONX/RbQ+XJJmFuZC26RaMcAs5SUizoLYbacT8N3xA4YQcd4ja4CxJzM3iX zOUgE9ru3a5/Xm4saQ/C+k6CYOS/6xXj3PMc65MC+8A3FfyQ4fT/sM7DYjck/pWd 5tNwntbV75VqOFB88sBO0Hs+jrvOqvbcmgq/wEn69AJxkcTF/c1n41aVqCaRvjaj 5YcM83bUQ3R7V1AHGpnGfG85zPYnxsugn2WrYP7K/SR/mfGdDE3M/3+yxBrzb1US 1BN33iYTVX0SFFfzXwKmwYQb9abllA== -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:45 2025 by rpki-client