$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/171130AE15F011EC805A0A2FC4F9AE02.roa File: 171130AE15F011EC805A0A2FC4F9AE02.roa (raw, json) Hash identifier: 41BdfwHnGG7Imzeq7lbaqU4+u/YDHu3w/vuTNhAYy2M= Subject key identifier: AC:53:45:75:A3:A5:EE:DF:96:75:05:FF:89:6F:72:25:A7:8D:2E:21 Certificate issuer: /CN=A91F8119/serialNumber=5F38F419516162BD886E40BDA927F55DC6FF3E62 Certificate serial: 25D9 Authority key identifier: 5F:38:F4:19:51:61:62:BD:88:6E:40:BD:A9:27:F5:5D:C6:FF:3E:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/171130AE15F011EC805A0A2FC4F9AE02.roa Signing time: Sat 30 Aug 2025 16:07:32 +0000 ROA not before: Sat 30 Aug 2025 16:07:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56099 IP address blocks: 103.89.236.0/22 maxlen: 24 223.25.0.0/22 maxlen: 24 223.25.4.0/22 maxlen: 24 223.25.8.0/22 maxlen: 24 223.25.12.0/22 maxlen: 24 223.25.16.0/22 maxlen: 24 223.25.20.0/22 maxlen: 24 223.25.24.0/22 maxlen: 24 223.25.28.0/22 maxlen: 24 223.25.32.0/22 maxlen: 24 223.25.36.0/22 maxlen: 24 223.25.40.0/22 maxlen: 24 223.25.44.0/22 maxlen: 24 223.25.48.0/22 maxlen: 24 223.25.52.0/22 maxlen: 24 223.25.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9689 (0x25d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=5F38F419516162BD886E40BDA927F55DC6FF3E62 Validity Not Before: Aug 30 16:07:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b321c3-1712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:56:39:06:02:e5:fc:24:9e:9f:b1:c0:4b:d8: ad:b2:ab:7a:7d:4c:6a:9e:32:ff:9f:5e:1c:ba:93: 26:13:10:86:24:70:a2:64:35:5d:7e:2d:69:3d:84: 51:5b:c0:a9:bd:68:35:69:b2:b5:d3:4d:8c:c1:8f: fd:d8:c3:9f:4d:ee:72:62:a3:cd:39:65:d4:7d:db: f0:ab:5e:90:3f:d5:5d:e4:bf:b5:8a:c9:cf:b0:a0: f3:5c:ab:e1:7b:bd:4c:85:21:99:14:51:6c:6a:b0: 21:55:9e:23:2b:65:69:3a:9f:bc:bb:18:6e:0a:ba: 63:63:56:72:0b:3d:c8:2b:81:91:c6:ba:bb:5c:72: 4e:ac:3b:2f:67:bc:eb:79:87:4c:aa:ca:af:86:0d: 29:d6:61:3f:1e:33:56:9b:b4:db:d3:aa:09:2c:54: 7e:a0:f8:35:c9:d0:45:76:8c:52:7f:0f:45:4d:44: 5e:77:c5:5e:45:2d:11:15:fa:89:fd:82:6a:af:60: 09:a3:2f:ee:65:7a:ff:57:2a:1d:66:fa:79:3c:ac: 83:08:27:7e:cf:6e:9e:29:15:88:42:a9:d8:64:1a: d0:7e:d2:77:54:59:0f:cd:f3:1c:0b:e5:40:b7:68: 50:91:bb:7d:e7:84:88:dc:ef:50:a4:6b:d2:50:e8: d1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:53:45:75:A3:A5:EE:DF:96:75:05:FF:89:6F:72:25:A7:8D:2E:21 X509v3 Authority Key Identifier: keyid:5F:38:F4:19:51:61:62:BD:88:6E:40:BD:A9:27:F5:5D:C6:FF:3E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/171130AE15F011EC805A0A2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.236.0/22 223.25.0.0-223.25.59.255 Signature Algorithm: sha256WithRSAEncryption 3a:d3:ee:4f:43:92:56:bd:d3:71:90:c9:8c:1f:15:bd:21:ea: 28:7f:72:5c:82:fc:f7:f9:db:dc:c8:11:af:02:9b:23:87:00: 0e:6f:90:63:64:98:81:e7:5d:a3:88:d9:1a:1e:38:2c:52:b9: 2d:a7:3e:50:af:3c:e5:1f:ad:db:6c:ea:db:54:7e:b9:ce:53: 3a:9b:83:75:91:f0:1d:b1:36:9d:e0:42:ea:29:01:11:2e:62: 79:89:ec:3a:9c:56:52:ba:42:76:ae:4e:45:c2:28:ba:31:da: e5:8d:d2:49:da:7f:3c:d3:0e:a8:57:79:9b:48:c7:1b:a9:29: 99:d1:b0:bf:39:a5:f8:0a:f5:a0:da:dd:1d:33:ed:72:53:9d: 9f:ff:e9:17:4f:2d:8c:24:fa:31:d7:17:34:a3:13:51:88:04: a6:e8:5f:0b:a5:dd:e8:57:13:f7:e2:bd:f2:b9:63:1a:e1:c4: 38:55:7b:7d:2e:81:19:64:fc:34:81:c2:40:07:3b:0b:d9:e1: 7e:d4:72:e1:d0:91:d8:28:f7:dd:27:bb:e6:55:36:3a:89:8b: 1f:98:fa:57:5a:ac:99:13:e6:31:3b:9f:90:54:3e:b6:f4:6b: 83:cd:bb:8f:ed:af:a2:16:f9:46:10:b1:6f:77:79:3a:e8:20: 66:24:35:69 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICJdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDVGMzhGNDE5NTE2MTYyQkQ4ODZFNDBCREE5MjdGNTVE QzZGRjNFNjIwHhcNMjUwODMwMTYwNzMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjFjMy0xNzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFY5BgLl/CSen7HAS9itsqt6fUxqnjL/n14cupMmExCGJHCiZDVdfi1pPYRR W8CpvWg1abK1002MwY/92MOfTe5yYqPNOWXUfdvwq16QP9Vd5L+1isnPsKDzXKvh e71MhSGZFFFsarAhVZ4jK2VpOp+8uxhuCrpjY1ZyCz3IK4GRxrq7XHJOrDsvZ7zr eYdMqsqvhg0p1mE/HjNWm7Tb06oJLFR+oPg1ydBFdoxSfw9FTURed8VeRS0RFfqJ /YJqr2AJoy/uZXr/VyodZvp5PKyDCCd+z26eKRWIQqnYZBrQftJ3VFkPzfMcC+VA t2hQkbt954SI3O9QpGvSUOjRYQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKxTRXWj pe7flnUF/4lvciWnjS4hMB8GA1UdIwQYMBaAFF849BlRYWK9iG5Avakn9V3G/z5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS9BN0VDNTk2QzEz MzMxMUU1QjgzRDBGN0JDNEY5QUUwMi9YemowR1ZGaFlyMklia0M5cVNmMVhjYl9Q bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6ajBHVkZoWXIySWJrQzlxU2YxWGNiX1BtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgxMTkvQTdFQzU5NkMxMzMzMTFFNUI4M0QwRjdCQzRGOUFFMDIvMTcxMTMwQUUx NUYwMTFFQzgwNUEwQTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgABMBMDBAJnWewwCwMDAN8ZAwQC3xk4MA0GCSqGSIb3DQEBCwUAA4IB AQA60+5PQ5JWvdNxkMmMHxW9Ieoof3Jcgvz3+dvcyBGvApsjhwAOb5BjZJiB512j iNkaHjgsUrktpz5QrzzlH63bbOrbVH65zlM6m4N1kfAdsTad4ELqKQERLmJ5iew6 nFZSukJ2rk5Fwii6MdrljdJJ2n880w6oV3mbSMcbqSmZ0bC/OaX4CvWg2t0dM+1y U52f/+kXTy2MJPox1xc0oxNRiASm6F8Lpd3oVxP34r3yuWMa4cQ4VXt9LoEZZPw0 gcJABzsL2eF+1HLh0JHYKPfdJ7vmVTY6iYsfmPpXWqyZE+YxO5+QVD629GuDzbuP 7a+iFvlGELFvd3k66CBmJDVp -----END CERTIFICATE-----Generated at Mon Oct 20 13:57:39 2025 by rpki-client