$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/4A9F953EE29611EF8E06890AC4F9AE02.roa File: 4A9F953EE29611EF8E06890AC4F9AE02.roa (raw, json) Hash identifier: fNPLKF71ZTVQ5uNDC/DjhFOj01PgekvHafBfAP7X73I= Subject key identifier: 6B:D8:ED:43:B3:F5:61:F3:2C:05:68:3B:28:2E:F4:BF:AD:BC:E1:71 Certificate issuer: /CN=A91E2176/serialNumber=C09D12C7CA2EB4D35CA50A939D3D9CBE817E39AD Certificate serial: 087F Authority key identifier: C0:9D:12:C7:CA:2E:B4:D3:5C:A5:0A:93:9D:3D:9C:BE:81:7E:39:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/4A9F953EE29611EF8E06890AC4F9AE02.roa Signing time: Mon 28 Jul 2025 06:08:09 +0000 ROA not before: Mon 28 Jul 2025 06:08:09 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140999 IP address blocks: 103.153.18.0/23 maxlen: 23 103.207.29.0/24 maxlen: 24 2001:df4:2980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.crl rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2175 (0x87f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2176, serialNumber=C09D12C7CA2EB4D35CA50A939D3D9CBE817E39AD Validity Not Before: Jul 28 06:08:09 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=688713c9-1e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b2:b6:19:43:4d:2d:67:aa:cc:70:49:5e:35: 81:5d:2d:3a:29:ce:40:c6:f7:64:96:49:ec:a5:52: 93:b4:86:cf:31:f4:75:ca:a2:d4:e3:34:35:ec:d3: c4:f4:7b:54:e0:5c:ab:e7:cb:7f:44:7f:f2:f3:fb: ca:56:57:4d:2c:80:b0:6d:23:42:4f:a0:08:d9:d0: d6:31:51:f4:0a:82:a7:2a:64:ab:e7:ca:6e:e7:d7: 88:ae:bc:5c:68:0b:75:dc:74:14:9d:4f:11:2c:d4: 6f:15:80:00:d8:10:01:f2:48:dc:55:a0:15:e5:4e: 9b:bf:95:9b:1c:e8:31:39:ce:08:05:60:db:2c:32: 91:2d:a3:1d:af:bf:38:21:cf:d3:e0:bb:36:93:4d: 8a:e8:3e:dd:e1:06:7d:b3:da:13:67:b0:6e:04:75: db:19:f2:e2:1b:1c:5f:45:e4:fd:a5:7f:62:e7:42: 32:51:3c:b7:df:eb:8c:e8:66:90:2d:b0:62:76:8b: ea:c1:d3:f5:3a:9e:d2:e6:1d:97:55:22:ab:9a:41: 18:59:19:f1:53:c0:75:73:22:2e:ae:c9:bf:9c:e1: 64:40:cd:76:ad:ba:7d:20:48:e0:86:90:0e:12:a6: 8e:e9:7c:f7:52:26:a9:97:49:09:5d:bc:74:ab:45: 2a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D8:ED:43:B3:F5:61:F3:2C:05:68:3B:28:2E:F4:BF:AD:BC:E1:71 X509v3 Authority Key Identifier: keyid:C0:9D:12:C7:CA:2E:B4:D3:5C:A5:0A:93:9D:3D:9C:BE:81:7E:39:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/4A9F953EE29611EF8E06890AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.18.0/23 103.207.29.0/24 IPv6: 2001:df4:2980::/48 Signature Algorithm: sha256WithRSAEncryption 18:ed:e7:f7:2b:54:ae:6f:c7:36:21:ca:be:fb:38:09:ed:4a: 04:f3:39:29:ee:1a:a5:40:4d:42:41:f0:55:52:8d:92:2a:2c: 35:59:1e:d6:7a:05:9c:54:55:ff:14:bf:72:65:5f:64:12:fc: 4f:c3:c9:58:07:d0:11:57:5f:b0:d4:6b:b9:bf:a8:2a:e1:c0: 9e:45:72:44:b2:24:19:39:70:3e:c1:bc:0b:27:79:1d:a4:4b: a7:02:00:5f:0f:5c:93:92:e6:98:e7:41:f7:17:f3:fd:bf:2f: 84:01:fe:4f:0b:8c:fe:24:c3:79:30:d4:f5:2d:c8:4f:40:23: 69:72:2a:76:64:af:2d:90:52:48:a3:d7:88:93:74:f5:76:39: 50:6c:91:09:a9:a7:27:f1:7a:36:47:9f:77:2d:ac:c7:9a:98: c9:0b:92:11:8c:12:09:d0:ed:61:28:70:50:4a:5e:88:05:f3: 9d:78:e4:30:7f:db:b2:2e:9c:ba:1b:c6:0b:20:9c:b8:b3:9c: 5a:37:bd:f4:9d:8d:7b:63:10:09:b9:81:ef:06:ef:da:1c:07: c2:5c:54:c8:33:63:9e:4a:ab:87:8b:69:2b:48:75:b8:bd:dc: 9e:43:cc:c1:38:cf:46:15:f0:35:5a:78:bc:06:31:4d:f0:60: 63:de:ff:e6 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIxNzYxMTAvBgNVBAUTKEMwOUQxMkM3Q0EyRUI0RDM1Q0E1MEE5MzlEM0Q5Q0JF ODE3RTM5QUQwHhcNMjUwNzI4MDYwODA5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg3MTNjOS0xZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7K2GUNNLWeqzHBJXjWBXS06Kc5AxvdklknspVKTtIbPMfR1yqLU4zQ17NPE 9HtU4Fyr58t/RH/y8/vKVldNLICwbSNCT6AI2dDWMVH0CoKnKmSr58pu59eIrrxc aAt13HQUnU8RLNRvFYAA2BAB8kjcVaAV5U6bv5WbHOgxOc4IBWDbLDKRLaMdr784 Ic/T4Ls2k02K6D7d4QZ9s9oTZ7BuBHXbGfLiGxxfReT9pX9i50IyUTy33+uM6GaQ LbBidovqwdP1Op7S5h2XVSKrmkEYWRnxU8B1cyIursm/nOFkQM12rbp9IEjghpAO EqaO6Xz3Uiapl0kJXbx0q0UqJQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFGvY7UOz 9WHzLAVoOygu9L+tvOFxMB8GA1UdIwQYMBaAFMCdEsfKLrTTXKUKk509nL6Bfjmt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjE3Ni84OEFCOEU5NEM2 RkYxMUVBODI1MkUxMDlDNEY5QUUwMi93SjBTeDhvdXROTmNwUXFUblQyY3ZvRi1P YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dKMFN4OG91dE5OY3BRcVRuVDJjdm9GLU9hMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIxNzYvODhBQjhFOTRDNkZGMTFFQTgyNTJFMTA5QzRGOUFFMDIvNEE5Rjk1M0VF Mjk2MTFFRjhFMDY4OTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnmRIDBABnzx0wDwQCAAIwCQMHACABDfQpgDANBgkqhkiG 9w0BAQsFAAOCAQEAGO3n9ytUrm/HNiHKvvs4Ce1KBPM5Ke4apUBNQkHwVVKNkios NVke1noFnFRV/xS/cmVfZBL8T8PJWAfQEVdfsNRrub+oKuHAnkVyRLIkGTlwPsG8 Cyd5HaRLpwIAXw9ck5LmmOdB9xfz/b8vhAH+TwuM/iTDeTDU9S3IT0AjaXIqdmSv LZBSSKPXiJN09XY5UGyRCamnJ/F6Nkefdy2sx5qYyQuSEYwSCdDtYShwUEpeiAXz nXjkMH/bsi6cuhvGCyCcuLOcWje99J2Ne2MQCbmB7wbv2hwHwlxUyDNjnkqrh4tp K0h1uL3cnkPMwTjPRhXwNVp4vAYxTfBgY97/5g== -----END CERTIFICATE-----Generated at Wed Aug 13 05:59:24 2025 by rpki-client