$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/9EABFF288CA011F0B1F47C12C4F9AE02.roa File: 9EABFF288CA011F0B1F47C12C4F9AE02.roa (raw, json) Hash identifier: BaDUL34/Gwa3G8jGhtSk9P3jmeq3rCjBk1zIOgJr1cM= Subject key identifier: 71:9E:BD:9B:98:2D:BA:37:2C:E1:27:6D:C4:64:0C:C7:50:26:65:D1 Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 053D Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/9EABFF288CA011F0B1F47C12C4F9AE02.roa Signing time: Sat 04 Oct 2025 23:55:39 +0000 ROA not before: Sat 04 Oct 2025 23:55:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 399870 IP address blocks: 103.73.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 23:21:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4, serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Oct 4 23:55:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1b3fb-bbdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:34:49:65:3d:2d:63:d6:28:58:fd:3e:ab:88: a2:30:d1:3a:05:19:85:c5:f3:d4:6a:4b:e4:72:a0: ea:77:3d:15:bf:e9:48:c1:88:90:d9:f5:37:79:ab: bb:85:c5:c2:5a:7e:28:77:db:0f:f2:b5:0a:5c:a4: 27:e2:f6:5d:e5:7d:be:c6:f0:0c:66:0a:90:13:fe: ae:b0:77:f9:db:0d:55:a8:47:93:ac:b8:c4:6a:4d: 8d:12:6e:8d:6a:f3:3e:eb:67:c4:4b:0f:92:be:b8: 02:ae:de:83:e2:84:ba:4b:a9:cc:bf:d4:3e:44:e9: 10:de:1f:20:a1:fd:55:91:b9:15:47:03:78:a8:fc: ce:67:f2:48:e8:49:52:61:db:a5:93:3b:17:1c:30: f8:47:fc:a4:e4:2b:a4:b6:65:ea:54:53:fe:c9:4e: ad:92:fb:72:00:18:73:0e:a8:ab:bb:eb:da:2e:3a: f6:73:59:d3:b9:39:41:97:1e:13:50:38:b2:db:5a: 2b:07:3d:22:51:52:ed:1d:d9:60:0d:24:28:cd:8c: 20:af:53:75:77:32:63:c4:00:2d:9c:d4:48:6f:19: 57:a5:ff:34:20:f1:5a:e2:21:61:d5:a3:a3:0b:28: e8:d8:79:07:83:8d:4e:e0:ef:eb:d5:65:3e:34:87: 08:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:9E:BD:9B:98:2D:BA:37:2C:E1:27:6D:C4:64:0C:C7:50:26:65:D1 X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/9EABFF288CA011F0B1F47C12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.220.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:25:e7:d8:93:89:87:e9:05:42:01:bb:cc:7e:53:d4:8a:cd: f5:f9:42:7d:ec:08:0f:2f:b1:95:91:41:bd:32:6b:f7:ce:b4: 6e:42:1e:82:78:31:8e:a9:92:da:fa:6c:92:e8:8d:d7:1a:20: 82:ab:d1:9c:f5:f4:e7:2f:97:85:4b:64:a7:61:a2:8a:2c:46: 57:c7:95:7d:3f:32:4f:f0:96:22:5e:96:8f:3f:6c:53:b7:c3: 67:9a:13:83:1f:c7:d1:e0:40:0b:03:02:be:c8:a3:a9:36:ae: cf:05:cc:00:93:45:74:00:b7:2d:6e:be:2a:f6:0a:95:91:d3: 32:c3:17:a2:dc:31:54:e7:5d:02:9a:59:e8:6e:b7:4c:75:01: b9:48:f2:9a:61:7d:08:a6:5d:53:34:20:2e:28:03:57:7d:dc: 19:45:1d:33:ea:a1:6f:ae:a4:f9:1f:84:71:08:59:d3:e3:fd: 4c:12:b9:f6:18:a3:91:c3:42:6e:aa:a5:05:57:e5:ec:95:6b: d9:a0:5f:d6:48:8c:80:cf:0a:e1:28:32:5c:64:54:f6:55:05: 28:e4:c8:ee:a3:fb:4d:53:fb:92:09:3e:e1:08:a7:f1:58:f8: 11:cc:09:6a:8b:c5:62:a6:80:a6:c6:29:cf:bd:5a:7d:03:c3: 26:a8:35:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjUxMDA0MjM1NTM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxYjNmYi1iYmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDRJZT0tY9YoWP0+q4iiMNE6BRmFxfPUakvkcqDqdz0Vv+lIwYiQ2fU3eau7 hcXCWn4od9sP8rUKXKQn4vZd5X2+xvAMZgqQE/6usHf52w1VqEeTrLjEak2NEm6N avM+62fESw+SvrgCrt6D4oS6S6nMv9Q+ROkQ3h8gof1VkbkVRwN4qPzOZ/JI6ElS YdulkzsXHDD4R/yk5CuktmXqVFP+yU6tkvtyABhzDqiru+vaLjr2c1nTuTlBlx4T UDiy21orBz0iUVLtHdlgDSQozYwgr1N1dzJjxAAtnNRIbxlXpf80IPFa4iFh1aOj Cyjo2HkHg41O4O/r1WU+NIcIVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHGevZuY Lbo3LOEnbcRkDMdQJmXRMB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg4RDQvMkY1OEU0NzIyRTUwMTFFQ0EwNEI2QzI1QzRGOUFFMDIvOUVBQkZGMjg4 Q0EwMTFGMEIxRjQ3QzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSdwwDQYJKoZIhvcNAQELBQADggEBAAol59iTiYfpBUIB u8x+U9SKzfX5Qn3sCA8vsZWRQb0ya/fOtG5CHoJ4MY6pktr6bJLojdcaIIKr0Zz1 9Ocvl4VLZKdhooosRlfHlX0/Mk/wliJelo8/bFO3w2eaE4Mfx9HgQAsDAr7Io6k2 rs8FzACTRXQAty1uvir2CpWR0zLDF6LcMVTnXQKaWehut0x1AblI8pphfQimXVM0 IC4oA1d93BlFHTPqoW+upPkfhHEIWdPj/UwSufYYo5HDQm6qpQVX5eyVa9mgX9ZI jIDPCuEoMlxkVPZVBSjkyO6j+01T+5IJPuEIp/FY+BHMCWqLxWKmgKbGKc+9Wn0D wyaoNdY= -----END CERTIFICATE-----Generated at Thu Oct 9 01:01:14 2025 by rpki-client