$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3B8DEBA06FD511F0BF33C829C4F9AE02.roa File: 3B8DEBA06FD511F0BF33C829C4F9AE02.roa (raw, json) Hash identifier: TD3x6cqMZ5LdB5sZi2QZSzPZxBxaRneEmC2qFVxnzxU= Subject key identifier: E9:29:BD:BF:35:7D:97:15:A3:FA:0D:E6:16:0B:13:F6:1C:CD:47:1F Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 0147 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3B8DEBA06FD511F0BF33C829C4F9AE02.roa Signing time: Sat 02 Aug 2025 19:16:47 +0000 ROA not before: Sat 02 Aug 2025 19:16:47 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 22616 IP address blocks: 167.103.148.0/24 maxlen: 24 167.103.149.0/24 maxlen: 24 167.103.150.0/24 maxlen: 24 167.103.151.0/24 maxlen: 24 167.103.152.0/24 maxlen: 24 167.103.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Aug 2 19:16:47 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688e641e-73fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:42:b3:d3:77:ed:a5:4e:22:ca:64:ff:02:1b: 72:21:03:9c:ea:08:ef:f4:75:df:93:78:2a:b4:2e: 7c:2f:38:c8:e4:d7:69:76:dd:a7:62:50:84:b7:21: 2e:24:06:68:b5:ba:4b:b2:8d:01:98:0b:ed:8d:37: b3:60:07:26:da:45:e0:a9:de:97:fe:9f:d5:c5:b9: 7d:34:a6:13:c8:d6:ae:4d:a5:44:fe:e1:39:1e:83: 30:f3:41:9e:d0:de:a1:49:35:ac:0c:ee:f4:dc:01: 80:67:1a:c0:88:89:36:c6:9c:04:76:ba:01:c9:28: 73:12:bd:7c:ce:78:b8:48:9b:82:31:0d:1a:a3:41: 64:e0:4d:a5:25:23:e8:c3:22:c9:d0:0d:7c:43:45: 38:0e:90:45:db:48:7b:2f:72:6a:53:b7:dd:5d:25: f5:cb:f1:17:45:e7:b4:8f:44:5e:5f:47:16:42:46: 0a:5e:b3:09:14:37:da:93:f7:2c:70:1b:61:c6:a5: ee:d7:92:28:24:dd:36:82:de:32:d5:b7:a1:e1:3e: 77:ac:e6:96:3a:f5:d5:8e:24:83:54:73:32:77:54: 20:2c:63:f8:cc:08:59:f6:54:9e:82:a4:b1:d2:a9: 4e:94:d8:e9:01:34:90:a4:75:44:c4:30:22:09:06: ef:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:29:BD:BF:35:7D:97:15:A3:FA:0D:E6:16:0B:13:F6:1C:CD:47:1F X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3B8DEBA06FD511F0BF33C829C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.148.0-167.103.153.255 Signature Algorithm: sha256WithRSAEncryption 76:9c:38:d8:be:27:e4:4a:53:da:ec:81:07:5d:da:f8:b7:6f: bb:af:32:97:77:0b:ba:47:57:ae:57:b8:9e:ff:f4:93:f1:5c: 56:11:16:76:a1:3d:0e:72:67:18:17:bd:6f:22:5e:a7:66:53: d2:ad:04:58:44:f9:4b:55:cd:4d:af:3f:26:95:16:16:ed:c0: 1c:a7:23:58:25:4c:3e:5c:8d:36:c3:17:6a:a7:ee:60:22:d3: 13:82:2c:49:f2:82:27:14:ed:c6:be:02:60:a9:14:2f:67:f1: f3:ca:5e:2d:59:af:96:9a:35:4d:1f:41:c3:1a:34:e3:be:a0: ee:5c:67:cd:57:e1:3b:9d:9a:72:84:35:2c:c1:45:eb:5e:52: ed:9c:93:57:db:ed:e1:7e:c2:5f:85:bb:4c:9e:ea:61:b1:c0: 10:88:af:96:f3:90:4e:ce:e4:53:40:12:99:bd:d9:8a:36:71: d5:67:a8:7a:d7:80:2b:57:fd:95:95:5b:26:59:33:a7:81:72: 85:07:0b:fd:f9:bb:2e:1a:a0:17:81:c1:0b:dc:5b:26:23:ee: ef:c3:9d:f9:7e:0b:a3:33:3e:e1:9a:a4:2f:e3:a8:01:bd:49: 76:0a:5b:fc:98:64:6c:4d:0c:b3:78:ab:4f:e8:d3:45:02:e3: 69:9b:d1:57 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwODAyMTkxNjQ3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlNjQxZS03M2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEKz03ftpU4iymT/AhtyIQOc6gjv9HXfk3gqtC58LzjI5Ndpdt2nYlCEtyEu JAZotbpLso0BmAvtjTezYAcm2kXgqd6X/p/Vxbl9NKYTyNauTaVE/uE5HoMw80Ge 0N6hSTWsDO703AGAZxrAiIk2xpwEdroByShzEr18zni4SJuCMQ0ao0Fk4E2lJSPo wyLJ0A18Q0U4DpBF20h7L3JqU7fdXSX1y/EXRee0j0ReX0cWQkYKXrMJFDfak/cs cBthxqXu15IoJN02gt4y1beh4T53rOaWOvXVjiSDVHMyd1QgLGP4zAhZ9lSegqSx 0qlOlNjpATSQpHVExDAiCQbvrwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFOkpvb81 fZcVo/oN5hYLE/YczUcfMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvM0I4REVCQTA2 RkQ1MTFGMEJGMzNDODI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAqdnlAMEAadnmDANBgkqhkiG9w0BAQsFAAOCAQEAdpw4 2L4n5EpT2uyBB13a+Ldvu68yl3cLukdXrle4nv/0k/FcVhEWdqE9DnJnGBe9byJe p2ZT0q0EWET5S1XNTa8/JpUWFu3AHKcjWCVMPlyNNsMXaqfuYCLTE4IsSfKCJxTt xr4CYKkUL2fx88peLVmvlpo1TR9Bwxo0476g7lxnzVfhO52acoQ1LMFF615S7ZyT V9vt4X7CX4W7TJ7qYbHAEIivlvOQTs7kU0ASmb3ZijZx1WeoeteAK1f9lZVbJlkz p4FyhQcL/fm7LhqgF4HBC9xbJiPu78Od+X4LozM+4ZqkL+OoAb1Jdgpb/JhkbE0M s3irT+jTRQLjaZvRVw== -----END CERTIFICATE-----Generated at Sat Aug 9 23:22:17 2025 by rpki-client