$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/72E97B3A1BDB11F0B77B1344C4F9AE02.roa File: 72E97B3A1BDB11F0B77B1344C4F9AE02.roa (raw, json) Hash identifier: dLZr6fxQD9+vNX/nMzjBW+2uiS4zZgIOchhbHeELI7w= Subject key identifier: F5:08:44:6C:E8:7C:69:D0:D9:54:99:5D:38:D3:73:4F:3F:85:CE:F0 Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 0142 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/72E97B3A1BDB11F0B77B1344C4F9AE02.roa Signing time: Thu 31 Jul 2025 22:31:31 +0000 ROA not before: Thu 31 Jul 2025 22:31:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 396982 IP address blocks: 167.103.171.0/24 maxlen: 24 167.103.172.0/24 maxlen: 24 167.103.173.0/24 maxlen: 24 167.103.174.0/24 maxlen: 24 167.103.175.0/24 maxlen: 24 167.103.176.0/24 maxlen: 24 167.103.177.0/24 maxlen: 24 167.103.178.0/24 maxlen: 24 167.103.179.0/24 maxlen: 24 167.103.180.0/24 maxlen: 24 167.103.181.0/24 maxlen: 24 167.103.182.0/24 maxlen: 24 167.103.183.0/24 maxlen: 24 167.103.184.0/24 maxlen: 24 167.103.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Jul 31 22:31:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688beec3-0e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1b:ee:f4:e7:7a:30:95:3a:32:cf:a3:bb:88: a5:4f:34:99:85:52:5b:3b:8a:92:33:55:e7:4a:d6: de:74:66:89:df:86:ba:49:59:9b:6e:0f:07:71:5f: f7:e5:7f:7f:9c:1a:29:e4:0b:4e:c1:a6:2d:50:1b: b0:24:79:74:36:a0:65:35:cd:3b:b3:35:4e:d1:60: 51:ae:70:53:f3:6c:8a:7c:45:e5:af:b3:70:a8:5a: 39:ea:83:7b:8b:95:99:c8:36:8f:16:f7:09:c8:24: ef:b8:9c:e0:ef:a0:ad:56:09:5e:0f:48:cd:c6:4b: c9:23:64:30:db:48:32:26:3d:b3:0c:1a:73:b9:53: 4d:0c:06:6f:06:41:50:98:c5:71:57:c6:ab:68:50: 38:58:cf:ba:59:12:7e:39:4f:6e:b1:bd:bd:65:5e: 57:0d:8f:e2:12:29:14:45:7c:28:43:62:83:bf:91: 54:62:bb:f1:01:3e:90:e4:53:d4:b7:06:03:b3:49: 2f:4a:40:ad:ef:f8:7e:46:82:10:d3:29:04:e7:cb: 45:51:82:8d:46:76:a0:42:ca:ec:9b:29:32:af:00: 03:af:61:95:77:4e:7f:b5:2a:09:ed:96:eb:e3:34: 63:9d:1d:3a:5f:7d:69:64:57:a5:27:c2:f9:e0:8a: cc:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:08:44:6C:E8:7C:69:D0:D9:54:99:5D:38:D3:73:4F:3F:85:CE:F0 X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/72E97B3A1BDB11F0B77B1344C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.171.0-167.103.184.255 167.103.236.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:05:8e:64:db:41:40:d4:bc:76:5d:7c:7f:2a:ea:03:57:74: c5:47:80:f2:0b:0c:cb:06:a7:d3:f5:22:8b:53:eb:80:1c:8c: 0e:b1:89:27:1e:b0:ba:d3:b4:f0:f4:a3:be:cb:9f:0c:a7:8d: 48:a1:3b:47:a4:15:33:dd:b4:97:1e:43:5a:b2:aa:c6:5d:f1: a9:43:78:4a:39:46:5d:a4:bc:e0:e8:03:13:95:45:a5:99:c6: 4f:bc:2b:c1:79:09:ea:4d:ab:df:4f:b6:64:73:96:39:24:60: 55:ea:ee:16:68:72:b5:b1:94:46:cd:93:82:06:f0:f7:81:03: 72:0c:67:a4:fa:53:c7:97:eb:db:04:d0:eb:71:db:78:b2:3a: f7:44:34:39:43:b7:e8:79:38:42:8e:71:2a:1f:b5:89:5f:7f: 34:f1:1e:11:37:c8:74:3d:7f:08:59:91:a3:95:8f:41:21:ca: fe:b6:d9:22:4f:d3:51:8c:db:ad:c1:76:ad:a7:d9:b6:46:0c: 4f:f9:8d:03:bf:32:c3:48:a2:78:9f:03:a2:a7:8a:74:34:e2: f3:be:8d:b0:fe:bf:e8:f2:cc:37:9a:23:a4:57:c3:d3:b1:46: 0e:f5:98:16:62:9b:2a:dd:a2:b5:07:23:7b:21:cf:66:85:48: 26:59:7f:af -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUwNzMxMjIzMTMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiZWVjMy0wZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hvu9Od6MJU6Ms+ju4ilTzSZhVJbO4qSM1XnStbedGaJ34a6SVmbbg8HcV/3 5X9/nBop5AtOwaYtUBuwJHl0NqBlNc07szVO0WBRrnBT82yKfEXlr7NwqFo56oN7 i5WZyDaPFvcJyCTvuJzg76CtVgleD0jNxkvJI2Qw20gyJj2zDBpzuVNNDAZvBkFQ mMVxV8araFA4WM+6WRJ+OU9usb29ZV5XDY/iEikURXwoQ2KDv5FUYrvxAT6Q5FPU twYDs0kvSkCt7/h+RoIQ0ykE58tFUYKNRnagQsrsmykyrwADr2GVd05/tSoJ7Zbr 4zRjnR06X31pZFelJ8L54IrMsQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFPUIRGzo fGnQ2VSZXTjTc08/hc7wMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNjIzM0REM0VFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvNzJFOTdCM0Ex QkRCMTFGMEI3N0IxMzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAKdnqwMEAKdnuAMEAKdn7DANBgkqhkiG9w0BAQsFAAOC AQEALQWOZNtBQNS8dl18fyrqA1d0xUeA8gsMywan0/Uii1PrgByMDrGJJx6wutO0 8PSjvsufDKeNSKE7R6QVM920lx5DWrKqxl3xqUN4SjlGXaS84OgDE5VFpZnGT7wr wXkJ6k2r30+2ZHOWOSRgVeruFmhytbGURs2Tggbw94EDcgxnpPpTx5fr2wTQ63Hb eLI690Q0OUO36Hk4Qo5xKh+1iV9/NPEeETfIdD1/CFmRo5WPQSHK/rbZIk/TUYzb rcF2rafZtkYMT/mNA78yw0iieJ8DoqeKdDTi876NsP6/6PLMN5ojpFfD07FGDvWY FmKbKt2itQcjeyHPZoVIJll/rw== -----END CERTIFICATE-----Generated at Sun Aug 10 04:51:32 2025 by rpki-client