$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/83B1E1429AAB11F0AFE54B2AC4F9AE02.roa File: 83B1E1429AAB11F0AFE54B2AC4F9AE02.roa (raw, json) Hash identifier: EULTaWn9A6XpyaasKLs+lwRXB4hNMDSkDnUr6yUeV1o= Subject key identifier: 4F:F2:DA:4A:35:40:F1:CB:CA:83:03:E1:E5:8A:58:64:F6:FE:22:E6 Certificate issuer: /CN=A91A2359/serialNumber=E991A5A2DD9D1F2A243DF6AA24B9F50E1CB8FEE5 Certificate serial: 0B78 Authority key identifier: E9:91:A5:A2:DD:9D:1F:2A:24:3D:F6:AA:24:B9:F5:0E:1C:B8:FE:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6ZGlot2dHyokPfaqJLn1Dhy4_uU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/83B1E1429AAB11F0AFE54B2AC4F9AE02.roa Signing time: Tue 30 Sep 2025 01:08:31 +0000 ROA not before: Tue 30 Sep 2025 01:08:31 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 202736 IP address blocks: 103.245.234.0/24 maxlen: 24 103.245.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/6ZGlot2dHyokPfaqJLn1Dhy4_uU.crl rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/6ZGlot2dHyokPfaqJLn1Dhy4_uU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6ZGlot2dHyokPfaqJLn1Dhy4_uU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Oct 2025 20:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2936 (0xb78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2359, serialNumber=E991A5A2DD9D1F2A243DF6AA24B9F50E1CB8FEE5 Validity Not Before: Sep 30 01:08:31 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68db2d8f-3d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:de:f4:ad:fe:3d:59:bb:46:3a:d3:b0:04:19: 0e:8f:0b:c6:09:4e:f9:6a:8c:ea:ff:cb:b9:ac:e7: 68:63:2c:d3:cb:9d:5f:9f:b3:81:88:12:8a:fb:df: be:79:08:19:6c:03:fd:a6:7a:ce:2c:a8:81:d6:f2: ec:4f:ef:ae:50:92:19:b0:de:5e:6c:b3:a0:6c:89: 8d:06:9b:3e:f9:54:db:66:d5:1e:cf:c1:90:1f:b5: a5:41:08:b7:07:90:e3:fb:3a:21:c7:ea:b8:61:cb: fe:3f:f2:25:ea:86:89:1f:0b:40:a5:4b:cd:25:43: 44:6d:ce:f3:44:ca:b0:b5:8c:86:b2:38:52:a8:61: a8:17:ae:37:0f:f4:53:0f:4e:54:40:7f:f7:bb:70: 40:c5:39:20:ff:9f:3c:c5:cb:0f:13:33:a7:e4:59: c3:a7:ba:2c:81:4d:81:c6:cc:73:20:ab:b7:c9:6c: eb:37:03:7c:b6:bc:f0:7e:82:1a:d8:e5:78:cb:5e: 4d:21:ba:34:34:c4:ba:fe:57:91:85:c0:96:d8:60: d7:71:ce:4b:fa:cf:8f:22:41:cd:b3:e9:8a:98:69: f8:9c:f2:8b:e7:e8:30:ea:7d:b5:40:44:f2:46:dc: af:82:5d:9d:36:e4:68:5b:9c:74:f3:3c:f7:e0:2d: 61:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F2:DA:4A:35:40:F1:CB:CA:83:03:E1:E5:8A:58:64:F6:FE:22:E6 X509v3 Authority Key Identifier: keyid:E9:91:A5:A2:DD:9D:1F:2A:24:3D:F6:AA:24:B9:F5:0E:1C:B8:FE:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/6ZGlot2dHyokPfaqJLn1Dhy4_uU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6ZGlot2dHyokPfaqJLn1Dhy4_uU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/83B1E1429AAB11F0AFE54B2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.245.234.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:53:27:fe:ac:6a:17:a3:c4:13:a0:cc:9a:7c:a1:f6:69:24: 7f:0d:e1:e4:4d:db:60:28:00:01:44:0e:62:91:d1:0f:3c:08: 85:90:3f:8c:cd:08:68:53:ee:b8:82:82:0c:83:61:ed:f1:09: fc:05:5d:70:51:6b:fe:8e:a8:01:61:bb:cb:83:10:14:df:62: ce:f3:ee:9b:3e:be:4f:91:ee:59:4f:b2:e9:e4:5d:cf:47:91: 4f:6c:8e:de:7f:b3:6e:8a:15:36:6c:7f:fa:ed:de:50:2b:ea: 36:32:8d:b7:b8:f4:7f:3a:de:bf:5e:14:82:89:b1:32:fa:6d: 2e:c2:bb:35:91:dd:cb:d8:44:23:4b:db:3a:cf:06:f8:85:c7: 4d:17:3f:aa:b4:69:49:e9:48:7b:59:f0:fc:7f:9d:f8:85:b4: 1e:dc:f9:6d:37:40:51:9f:54:ac:77:ef:fa:a4:c8:b3:7b:b3: 52:3c:2b:6a:80:e5:45:37:cc:bc:d8:8d:c1:95:99:8a:ea:c2: 84:4d:21:d4:ec:73:0a:42:f1:9e:24:d0:4e:fa:b2:5c:bf:6a: 11:98:54:cd:6a:30:f5:6e:80:6a:31:09:1b:cd:5b:93:77:f5: 0c:98:96:b8:ee:fa:e0:48:86:40:ed:4c:f9:01:52:69:f4:0d: bb:d5:5e:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIzNTkxMTAvBgNVBAUTKEU5OTFBNUEyREQ5RDFGMkEyNDNERjZBQTI0QjlGNTBF MUNCOEZFRTUwHhcNMjUwOTMwMDEwODMxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiMmQ4Zi0zZDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3N70rf49WbtGOtOwBBkOjwvGCU75aozq/8u5rOdoYyzTy51fn7OBiBKK+9++ eQgZbAP9pnrOLKiB1vLsT++uUJIZsN5ebLOgbImNBps++VTbZtUez8GQH7WlQQi3 B5Dj+zohx+q4Ycv+P/Il6oaJHwtApUvNJUNEbc7zRMqwtYyGsjhSqGGoF643D/RT D05UQH/3u3BAxTkg/588xcsPEzOn5FnDp7osgU2BxsxzIKu3yWzrNwN8trzwfoIa 2OV4y15NIbo0NMS6/leRhcCW2GDXcc5L+s+PIkHNs+mKmGn4nPKL5+gw6n21QETy Rtyvgl2dNuRoW5x08zz34C1hKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE/y2ko1 QPHLyoMD4eWKWGT2/iLmMB8GA1UdIwQYMBaAFOmRpaLdnR8qJD32qiS59Q4cuP7l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjM1OS9GQzI5OERFQTQx NzAxMUVBOThERTY1NkFDNEY5QUUwMi82Wkdsb3QyZEh5b2tQZmFxSkxuMURoeTRf dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZaR2xvdDJkSHlva1BmYXFKTG4xRGh5NF91VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTIzNTkvRkMyOThERUE0MTcwMTFFQTk4REU2NTZBQzRGOUFFMDIvODNCMUUxNDI5 QUFCMTFGMEFGRTU0QjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn9eowDQYJKoZIhvcNAQELBQADggEBADxTJ/6sahejxBOg zJp8ofZpJH8N4eRN22AoAAFEDmKR0Q88CIWQP4zNCGhT7riCggyDYe3xCfwFXXBR a/6OqAFhu8uDEBTfYs7z7ps+vk+R7llPsunkXc9HkU9sjt5/s26KFTZsf/rt3lAr 6jYyjbe49H863r9eFIKJsTL6bS7CuzWR3cvYRCNL2zrPBviFx00XP6q0aUnpSHtZ 8Px/nfiFtB7c+W03QFGfVKx37/qkyLN7s1I8K2qA5UU3zLzYjcGVmYrqwoRNIdTs cwpC8Z4k0E76sly/ahGYVM1qMPVugGoxCRvNW5N39QyYlrju+uBIhkDtTPkBUmn0 DbvVXoo= -----END CERTIFICATE-----Generated at Sat Oct 11 17:32:37 2025 by rpki-client