$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/754A150C7F1411EEBF459226C4F9AE02.roa File: 754A150C7F1411EEBF459226C4F9AE02.roa (raw, json) Hash identifier: OHokouK1znxyBx4zyU9poDI0RBu5qkDucJ8cVwnCjTU= Subject key identifier: 75:6E:2D:84:D1:7E:DA:6C:85:77:39:47:99:12:58:A8:36:31:C2:97 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4CB4 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/754A150C7F1411EEBF459226C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:52:20 +0000 ROA not before: Thu 28 Aug 2025 14:52:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131353 IP address blocks: 45.117.80.0/22 maxlen: 24 45.117.176.0/24 maxlen: 24 45.117.177.0/24 maxlen: 24 45.117.178.0/24 maxlen: 24 45.117.179.0/24 maxlen: 24 103.28.36.0/22 maxlen: 22 103.57.208.0/24 maxlen: 24 103.57.209.0/24 maxlen: 24 103.57.210.0/24 maxlen: 24 103.57.211.0/24 maxlen: 24 103.101.160.0/24 maxlen: 24 103.101.161.0/24 maxlen: 24 103.101.162.0/24 maxlen: 24 103.101.163.0/24 maxlen: 24 103.124.92.0/22 maxlen: 24 103.159.50.0/23 maxlen: 24 103.170.122.0/23 maxlen: 24 103.176.178.0/23 maxlen: 24 103.179.190.0/23 maxlen: 24 2001:df1:3200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19636 (0x4cb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:52:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06d23-8867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:da:69:a9:f0:26:ba:02:4b:a5:85:2c:29:f9: 21:fd:0f:fb:9b:4e:19:26:ca:ad:76:8e:7b:61:e3: 0e:45:82:e5:cb:3e:92:d0:db:18:1c:d9:75:7a:fc: 3c:25:45:59:bd:5a:b7:3a:35:01:b8:14:4f:82:69: 48:8a:ab:f4:35:61:f1:b9:ba:e9:9b:73:08:da:e5: 1f:a5:22:92:14:d7:ec:dd:73:66:21:ac:d1:92:14: cd:56:f0:72:47:8c:9b:9d:e1:20:11:51:a7:21:6b: be:26:5f:ee:16:99:6c:39:2d:65:03:ff:8b:52:fc: 1f:b0:d5:7e:74:fe:71:b6:d1:e1:3c:5c:da:76:35: e7:39:3e:5e:0e:b9:a6:e7:30:d3:93:ca:2d:67:c4: 40:15:c0:44:4c:5a:4f:b1:8e:64:8d:6c:82:39:e2: 54:5d:29:20:4d:bc:60:e2:97:c3:da:1c:23:f5:e0: 20:93:f2:29:2f:d4:e6:8f:5e:e0:50:5b:31:80:18: f1:28:21:d2:44:35:27:db:f7:25:2a:6a:06:d2:16: 09:86:a8:74:8c:c6:3a:15:1d:6d:8e:e4:09:21:60: 49:a3:11:9e:1d:6d:01:11:1b:01:c0:a1:cd:47:32: db:50:c1:f7:a1:37:fb:a0:50:01:ee:52:87:d0:42: 99:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6E:2D:84:D1:7E:DA:6C:85:77:39:47:99:12:58:A8:36:31:C2:97 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/754A150C7F1411EEBF459226C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.80.0/22 45.117.176.0/22 103.28.36.0/22 103.57.208.0/22 103.101.160.0/22 103.124.92.0/22 103.159.50.0/23 103.170.122.0/23 103.176.178.0/23 103.179.190.0/23 IPv6: 2001:df1:3200::/48 Signature Algorithm: sha256WithRSAEncryption 08:6e:e0:95:37:d2:79:d9:2a:53:08:ec:02:67:46:b1:77:b0: 61:58:91:27:fe:ba:c2:36:57:75:f5:3a:1a:b6:a2:34:05:cf: 77:fc:62:35:bc:af:be:c3:a6:cc:aa:3e:14:ab:10:b9:0a:59: 38:fc:fe:ec:08:c4:40:d6:6d:a8:ef:95:7d:a8:86:b3:5b:77: b5:ba:bc:24:76:3c:22:5b:4a:e9:9e:87:9e:a3:14:56:a5:f3: a1:a2:4d:20:16:c3:e3:87:ec:69:8d:0a:52:9e:39:02:6c:5d: a4:e3:f9:c2:9a:7c:70:27:20:79:3d:62:95:5c:6c:ae:1c:8e: e5:c5:c0:2c:5e:be:8c:50:54:92:d8:dc:17:38:7c:1a:04:3f: e7:70:bd:37:cc:e5:80:22:0f:cf:8f:a4:43:98:55:7d:fd:51: c3:5b:24:b7:8f:15:7e:c8:7d:10:2b:04:0e:41:5d:bf:78:00: 6a:36:3f:60:d7:d3:e6:9d:54:64:2c:32:16:85:40:02:ac:c8: 20:34:0d:e4:8d:e9:38:9d:a6:0a:11:e5:e6:ec:da:59:e6:52: 1b:8b:c3:6e:26:89:71:74:4f:e9:4f:00:ea:48:e2:87:61:85: 2c:d7:c4:51:53:ea:e6:32:b5:c6:4b:c3:e0:27:c5:53:a4:98: 43:55:9c:33 -----BEGIN CERTIFICATE----- MIIFuDCCBKCgAwIBAgICTLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1MjIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmQyMy04ODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztppqfAmugJLpYUsKfkh/Q/7m04ZJsqtdo57YeMORYLlyz6S0NsYHNl1evw8 JUVZvVq3OjUBuBRPgmlIiqv0NWHxubrpm3MI2uUfpSKSFNfs3XNmIazRkhTNVvBy R4ybneEgEVGnIWu+Jl/uFplsOS1lA/+LUvwfsNV+dP5xttHhPFzadjXnOT5eDrmm 5zDTk8otZ8RAFcBETFpPsY5kjWyCOeJUXSkgTbxg4pfD2hwj9eAgk/IpL9Tmj17g UFsxgBjxKCHSRDUn2/clKmoG0hYJhqh0jMY6FR1tjuQJIWBJoxGeHW0BERsBwKHN RzLbUMH3oTf7oFAB7lKH0EKZ+wIDAQABo4IC3DCCAtgwHQYDVR0OBBYEFHVuLYTR ftpshXc5R5kSWKg2McKXMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNzU0QTE1MEM3 RjE0MTFFRUJGNDU5MjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZgYIKwYBBQUHAQcBAf8E VzBVMEIEAgABMDwDBAItdVADBAItdbADBAJnHCQDBAJnOdADBAJnZaADBAJnfFwD BAFnnzIDBAFnqnoDBAFnsLIDBAFns74wDwQCAAIwCQMHACABDfEyADANBgkqhkiG 9w0BAQsFAAOCAQEACG7glTfSedkqUwjsAmdGsXewYViRJ/66wjZXdfU6GraiNAXP d/xiNbyvvsOmzKo+FKsQuQpZOPz+7AjEQNZtqO+VfaiGs1t3tbq8JHY8IltK6Z6H nqMUVqXzoaJNIBbD44fsaY0KUp45AmxdpOP5wpp8cCcgeT1ilVxsrhyO5cXALF6+ jFBUktjcFzh8GgQ/53C9N8zlgCIPz4+kQ5hVff1Rw1skt48Vfsh9ECsEDkFdv3gA ajY/YNfT5p1UZCwyFoVAAqzIIDQN5I3pOJ2mChHl5uzaWeZSG4vDbiaJcXRP6U8A 6kjih2GFLNfEUVPq5jK1xkvD4CfFU6SYQ1WcMw== -----END CERTIFICATE-----Generated at Tue Nov 4 19:01:02 2025 by rpki-client