$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/B4A58FE60E0F11ED89E89675C4F9AE02.roa File: B4A58FE60E0F11ED89E89675C4F9AE02.roa (raw, json) Hash identifier: FBxr1bp/bDFsO8jlJkOCsgnIk2eezT2CPgOBlkwcWnc= Subject key identifier: 64:F9:0F:8C:16:44:9E:ED:47:DC:62:E4:CE:51:22:8B:E4:87:C2:0A Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 02AF Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/B4A58FE60E0F11ED89E89675C4F9AE02.roa Signing time: Fri 05 Sep 2025 02:07:57 +0000 ROA not before: Fri 05 Sep 2025 02:07:57 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.23.68.0/23 maxlen: 23 2400:9920::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 01:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Sep 5 02:07:57 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ba45fd-6a7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b6:a4:e2:78:3e:f8:bf:78:74:77:aa:2d:c6: 88:26:50:c4:15:8a:61:95:ac:7c:40:70:24:06:0a: a6:9c:8e:dc:de:a7:36:35:2b:49:bd:76:13:91:db: dd:85:7e:36:e1:0d:b1:91:c9:66:7b:dc:11:42:1e: 87:c5:45:48:24:48:03:a1:2e:db:45:bd:e2:0c:38: 4e:ef:6b:a5:d0:31:b9:22:5b:99:cd:bb:04:04:fb: 6a:52:82:96:b2:18:56:50:81:d1:d4:f2:53:d4:a7: 24:69:62:a5:f9:0b:8e:c5:f8:10:6d:6f:67:f3:27: 28:9d:f5:1f:0c:c2:af:30:0f:e5:9c:d0:ec:fa:41: ae:36:9a:a8:cd:d3:62:fa:f8:19:2d:47:ab:df:77: e9:ec:da:96:5b:25:a7:1f:34:77:8b:53:08:90:bf: 0c:8e:20:ea:63:ee:cd:2d:08:4d:8e:c7:41:d9:cd: f7:41:f8:aa:44:d6:38:26:e5:b0:43:f7:18:9f:9d: d4:02:e3:7f:48:22:96:2d:02:71:83:e1:14:41:ba: bb:d7:4b:3b:42:32:f4:a3:7b:10:0f:33:27:22:8c: cd:72:cc:a8:15:a9:b7:3b:54:87:cc:c4:b9:6a:01: db:34:ad:a5:42:0c:d8:87:66:4e:f9:ce:cd:74:36: 27:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F9:0F:8C:16:44:9E:ED:47:DC:62:E4:CE:51:22:8B:E4:87:C2:0A X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/B4A58FE60E0F11ED89E89675C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.68.0/23 IPv6: 2400:9920::/32 Signature Algorithm: sha256WithRSAEncryption 98:d2:20:42:a3:9c:15:b0:5e:84:16:19:8a:bb:04:50:22:d6: d2:33:15:ce:58:1c:e1:5b:8d:e8:4a:17:26:6a:ae:cf:31:5a: b9:d1:dd:ad:eb:92:84:e6:aa:51:8f:8d:c7:6c:c2:f3:c3:6d: 10:c2:6c:47:78:23:c8:f7:5d:e1:bf:ce:11:c4:c1:97:08:e9: cb:5a:89:b2:c6:f1:3a:ab:3a:42:6f:c9:8c:a4:5c:c2:df:91: 2b:fa:b1:93:a2:68:4f:24:ba:3f:19:12:26:dc:6d:6a:ad:19: 71:aa:f3:34:04:62:58:1d:9e:7e:f2:61:b3:11:c3:01:d7:1e: df:80:00:2b:c6:21:f8:c3:64:a4:38:45:36:be:e0:7d:2e:63: 31:2f:d9:14:94:55:28:1c:84:fd:4e:7a:6c:71:bc:de:a4:68: 05:bc:05:fc:5d:ae:4c:9a:a9:b9:72:45:f1:37:56:13:86:e1: f6:61:65:bf:1f:ac:e2:c7:27:27:02:8c:a6:47:78:e5:7a:42: 1f:13:3e:e0:15:52:11:49:90:9a:af:6f:f3:78:c3:df:12:8d: 59:ca:b5:35:72:96:cd:eb:27:1b:89:72:41:cb:51:c4:77:db: 34:9c:e0:51:19:ee:0a:e6:39:f3:a8:9d:d5:6b:13:75:91:dc: c6:23:36:1a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUwOTA1MDIwNzU3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhNDVmZC02YTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bak4ng++L94dHeqLcaIJlDEFYphlax8QHAkBgqmnI7c3qc2NStJvXYTkdvd hX424Q2xkclme9wRQh6HxUVIJEgDoS7bRb3iDDhO72ul0DG5IluZzbsEBPtqUoKW shhWUIHR1PJT1KckaWKl+QuOxfgQbW9n8yconfUfDMKvMA/lnNDs+kGuNpqozdNi +vgZLUer33fp7NqWWyWnHzR3i1MIkL8MjiDqY+7NLQhNjsdB2c33QfiqRNY4JuWw Q/cYn53UAuN/SCKWLQJxg+EUQbq710s7QjL0o3sQDzMnIozNcsyoFam3O1SHzMS5 agHbNK2lQgzYh2ZO+c7NdDYnsQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGT5D4wW RJ7tR9xi5M5RIovkh8IKMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCMUIvNEIzODY0RDgwRTBCMTFFREE4RDEyRTU4QzRGOUFFMDIvQjRBNThGRTYw RTBGMTFFRDg5RTg5Njc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnF0QwDQQCAAIwBwMFACQAmSAwDQYJKoZIhvcNAQELBQAD ggEBAJjSIEKjnBWwXoQWGYq7BFAi1tIzFc5YHOFbjehKFyZqrs8xWrnR3a3rkoTm qlGPjcdswvPDbRDCbEd4I8j3XeG/zhHEwZcI6ctaibLG8TqrOkJvyYykXMLfkSv6 sZOiaE8kuj8ZEibcbWqtGXGq8zQEYlgdnn7yYbMRwwHXHt+AACvGIfjDZKQ4RTa+ 4H0uYzEv2RSUVSgchP1OemxxvN6kaAW8BfxdrkyaqblyRfE3VhOG4fZhZb8frOLH JycCjKZHeOV6Qh8TPuAVUhFJkJqvb/N4w98SjVnKtTVyls3rJxuJckHLUcR32zSc 4FEZ7grmOfOondVrE3WR3MYjNho= -----END CERTIFICATE-----Generated at Thu Oct 9 01:59:09 2025 by rpki-client