$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/16A4DFE893C711EDB3D8A867C4F9AE02.roa File: 16A4DFE893C711EDB3D8A867C4F9AE02.roa (raw, json) Hash identifier: vWRcSTu3hKVKTzFiY2NVAPZ7PA6+HMwNwvKyVpnCyx8= Subject key identifier: 89:D3:19:07:7A:92:9A:96:58:E7:0E:C0:E1:5D:9F:CE:1C:51:78:A7 Certificate issuer: /CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Certificate serial: 05DB Authority key identifier: A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/16A4DFE893C711EDB3D8A867C4F9AE02.roa Signing time: Thu 10 Jul 2025 23:35:25 +0000 ROA not before: Thu 10 Jul 2025 23:35:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 20473 IP address blocks: 103.168.42.0/24 maxlen: 24 103.168.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1499 (0x5db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF8, serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Validity Not Before: Jul 10 23:35:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68704e3c-354f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:21:a8:2c:3c:86:49:c4:98:c0:22:43:f1:65: e0:30:53:e2:e0:aa:99:db:75:5c:a5:3e:62:4f:7e: 66:65:7c:0f:95:7d:1b:4d:71:2c:aa:03:a3:e7:77: b0:ab:0e:4e:7b:98:a4:36:bd:9f:f8:fd:f8:92:cf: 38:8b:ec:ba:87:ca:36:87:8c:96:15:55:2f:11:72: 78:42:1d:42:68:b9:33:88:58:ab:24:6a:09:e0:d0: 3e:a8:ca:cf:1e:4e:0c:44:56:15:b7:b6:32:5e:44: 57:76:a1:f2:ad:41:17:fb:96:af:48:38:5d:1d:66: 39:4d:3c:d0:8b:7c:7a:d3:36:be:f4:42:c0:63:15: f6:63:cc:92:31:f1:9a:57:92:8d:35:b2:b4:6b:ef: f9:99:c0:da:22:bf:e5:3d:8e:8a:31:32:7e:04:3b: e4:a4:40:e6:c3:45:7a:ce:7f:0f:64:ee:98:f9:a3: a7:34:91:d5:78:fa:cd:32:ee:df:1c:e5:ef:87:78: fd:86:eb:51:d8:99:f8:1f:9e:4b:a8:b5:c5:e5:ee: 08:b6:86:bf:f3:a9:a5:ee:fd:d0:90:da:80:09:2d: a1:58:34:f5:7d:65:d6:e7:ec:da:de:60:7e:5d:90: f9:7e:94:dc:96:02:24:45:ed:5f:6a:14:65:2e:67: 5a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D3:19:07:7A:92:9A:96:58:E7:0E:C0:E1:5D:9F:CE:1C:51:78:A7 X509v3 Authority Key Identifier: keyid:A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/16A4DFE893C711EDB3D8A867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.42.0/23 Signature Algorithm: sha256WithRSAEncryption 41:a2:7b:fb:b3:3e:18:69:4e:54:0c:59:02:d3:e6:d8:78:78: 5f:ca:f8:14:e4:73:06:4d:23:d8:10:db:c6:22:61:2a:f1:7a: 02:fa:d7:24:a5:6e:3a:cc:48:6d:d8:88:6b:95:06:da:9d:5d: 23:a8:29:25:03:d1:86:34:00:f0:a2:81:7b:8f:4e:28:db:cb: 2b:56:8c:5c:9f:5b:72:82:d8:5f:b6:e4:01:e0:94:31:dc:b2: a7:1f:fb:88:1c:69:e5:ec:0b:33:bc:85:c4:7e:81:16:42:39: 58:58:0a:81:80:e6:ae:43:87:e9:16:45:f7:a5:a4:0f:78:b3: eb:24:38:5f:30:a4:12:ad:92:64:ea:b1:6b:03:2d:3c:84:aa: 0b:16:f4:53:ca:e2:94:0a:e9:6c:d6:90:93:ee:e3:3c:8d:35: a5:18:a8:97:2a:72:90:10:36:ca:b2:84:81:b9:4d:06:d8:8e: 95:1b:4f:fc:6c:90:c4:70:2a:ea:0f:69:5f:7f:b8:a5:50:d2: c9:d5:b1:34:b1:1d:c1:ec:f8:3d:11:c9:f0:34:a7:e0:17:d9: a7:6e:d2:cf:14:54:90:5f:23:04:3a:fe:d2:f4:3c:97:55:d5: 00:27:87:49:4a:fe:da:24:ae:4c:ad:1b:58:af:77:ca:a8:72: fe:3c:ae:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjgxMTAvBgNVBAUTKEEwNEU3NDNBRDMxRjRGODNGMDlEQzVEMkY3RUY0RkFC RTFFRjY4N0IwHhcNMjUwNzEwMjMzNTI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwNGUzYy0zNTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyGoLDyGScSYwCJD8WXgMFPi4KqZ23VcpT5iT35mZXwPlX0bTXEsqgOj53ew qw5Oe5ikNr2f+P34ks84i+y6h8o2h4yWFVUvEXJ4Qh1CaLkziFirJGoJ4NA+qMrP Hk4MRFYVt7YyXkRXdqHyrUEX+5avSDhdHWY5TTzQi3x60za+9ELAYxX2Y8ySMfGa V5KNNbK0a+/5mcDaIr/lPY6KMTJ+BDvkpEDmw0V6zn8PZO6Y+aOnNJHVePrNMu7f HOXvh3j9hutR2Jn4H55LqLXF5e4Itoa/86ml7v3QkNqACS2hWDT1fWXW5+za3mB+ XZD5fpTclgIkRe1fahRlLmdafwIDAQABo4IClTCCApEwHQYDVR0OBBYEFInTGQd6 kpqWWOcOwOFdn84cUXinMB8GA1UdIwQYMBaAFKBOdDrTH0+D8J3F0vfvT6vh72h7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGOC9DOTM4RDEwNkNC NTQxMUVCQTNEMzZDNUJDNEY5QUUwMi9vRTUwT3RNZlQ0UHduY1hTOS05UHEtSHZh SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29FNTBPdE1mVDRQd25jWFM5LTlQcS1IdmFIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjgvQzkzOEQxMDZDQjU0MTFFQkEzRDM2QzVCQzRGOUFFMDIvMTZBNERGRTg5 M0M3MTFFREIzRDhBODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqCowDQYJKoZIhvcNAQELBQADggEBAEGie/uzPhhpTlQM WQLT5th4eF/K+BTkcwZNI9gQ28YiYSrxegL61ySlbjrMSG3YiGuVBtqdXSOoKSUD 0YY0APCigXuPTijbyytWjFyfW3KC2F+25AHglDHcsqcf+4gcaeXsCzO8hcR+gRZC OVhYCoGA5q5Dh+kWRfelpA94s+skOF8wpBKtkmTqsWsDLTyEqgsW9FPK4pQK6WzW kJPu4zyNNaUYqJcqcpAQNsqyhIG5TQbYjpUbT/xskMRwKuoPaV9/uKVQ0snVsTSx HcHs+D0RyfA0p+AX2adu0s8UVJBfIwQ6/tL0PJdV1QAnh0lK/tokrkytG1ivd8qo cv48riU= -----END CERTIFICATE-----Generated at Sun Aug 10 18:14:43 2025 by rpki-client