$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/A433C1262D0311F0A91F647CC4F9AE02.roa File: A433C1262D0311F0A91F647CC4F9AE02.roa (raw, json) Hash identifier: QaPJROb1ml5BR5tq+uacvwao1uGAVeNX18DJckhlVYI= Subject key identifier: 24:37:D9:BB:B6:8E:6A:37:4E:43:6B:02:D5:B7:22:03:BB:61:BE:11 Certificate issuer: /CN=A91BB221/serialNumber=AEE17DDB8C6B3599646187D081E7C8F79883E19D Certificate serial: 4B Authority key identifier: AE:E1:7D:DB:8C:6B:35:99:64:61:87:D0:81:E7:C8:F7:98:83:E1:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ruF924xrNZlkYYfQgefI95iD4Z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/A433C1262D0311F0A91F647CC4F9AE02.roa Signing time: Sun 31 Aug 2025 08:56:09 +0000 ROA not before: Sun 31 Aug 2025 08:56:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45382 IP address blocks: 103.140.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/ruF924xrNZlkYYfQgefI95iD4Z0.crl rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/ruF924xrNZlkYYfQgefI95iD4Z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ruF924xrNZlkYYfQgefI95iD4Z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB221, serialNumber=AEE17DDB8C6B3599646187D081E7C8F79883E19D Validity Not Before: Aug 31 08:56:09 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b40e29-c0a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b4:98:28:b5:0c:4f:4b:19:f2:36:1c:1b:25: 6a:70:bc:d5:b9:a3:3f:43:ef:e3:e3:a2:87:a2:cd: 4a:73:5b:8f:47:65:48:6f:5e:f4:e0:3f:34:28:8d: e4:10:41:30:95:ae:7b:46:bd:6d:9f:9d:2b:8f:52: 2c:98:af:46:25:fd:58:b7:5f:31:ea:ee:2a:7d:86: f2:c2:e9:b6:a8:96:8f:fa:19:47:e1:c3:d3:f9:cc: 32:f3:81:72:ce:a6:e5:d6:8d:15:ab:a5:e7:7b:31: 7e:3e:42:60:4b:4e:e8:68:cb:b1:a2:7c:7f:44:10: 62:f7:2a:e2:23:74:73:f9:fc:af:b9:43:d9:c0:9a: 0b:9e:01:95:42:db:a7:75:08:d8:15:c3:dc:15:9a: b2:f9:91:7b:04:d6:b4:ee:fc:a0:f9:e1:86:78:32: b5:68:9a:32:c5:6e:ab:71:84:c8:4d:33:2f:df:10: 62:48:38:12:13:3d:dc:45:a6:e2:23:4c:b5:48:ec: 7b:ee:eb:78:00:2b:66:34:d6:01:0f:9f:f5:2f:ac: c5:17:57:99:9c:90:11:28:52:d3:3a:b7:8e:fd:71: f6:a0:bc:9a:4e:99:26:5f:cb:6d:d7:94:d1:39:00: 26:f7:3f:d3:22:00:61:44:bd:e7:2b:9a:62:8c:ef: 5e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:37:D9:BB:B6:8E:6A:37:4E:43:6B:02:D5:B7:22:03:BB:61:BE:11 X509v3 Authority Key Identifier: keyid:AE:E1:7D:DB:8C:6B:35:99:64:61:87:D0:81:E7:C8:F7:98:83:E1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/ruF924xrNZlkYYfQgefI95iD4Z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ruF924xrNZlkYYfQgefI95iD4Z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/A433C1262D0311F0A91F647CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.45.0/24 Signature Algorithm: sha256WithRSAEncryption 17:1b:c4:43:a3:a4:7f:15:43:71:9e:4d:04:e2:31:b4:76:6b: 0f:03:a0:33:cd:b5:44:50:e1:0e:3e:82:09:20:7c:03:22:1a: ce:71:65:f1:83:63:fb:46:7e:66:78:6d:d0:ee:08:0a:a8:22: ca:51:33:2b:62:4e:97:f4:8f:74:be:1a:ef:bc:89:2c:3a:a7: 0d:c7:77:2e:f6:5c:a2:44:46:55:13:28:54:31:3e:5f:8c:70: d1:6e:6e:d3:92:6a:2a:dc:3c:25:50:3e:59:f7:4c:d8:c0:04: 1c:2f:1a:15:9f:cb:ff:62:94:24:79:87:ee:1d:c6:54:57:64: e6:4b:1e:51:12:91:e1:b0:3f:7e:8c:74:d3:41:32:0f:66:83: fe:3e:a6:bc:db:e5:0e:1e:23:23:3e:d1:fb:65:9e:ad:f2:22: 7d:f1:b2:da:35:73:3e:df:35:b2:83:31:d5:78:ac:5f:fa:30: ac:67:e0:b9:9c:0b:0e:42:7e:37:6e:a3:a9:68:26:03:79:bb: 94:b8:91:d3:a9:89:e9:c5:5b:b0:4d:da:5c:15:2f:fe:54:ab: 07:9d:d1:20:76:40:06:49:d1:21:21:92:0f:a3:b9:d0:1b:42: a7:3c:f9:72:4e:a1:dc:10:87:7e:95:48:bf:44:8e:a0:3a:a7: 59:d1:e3:12 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjIyMTExMC8GA1UEBRMoQUVFMTdEREI4QzZCMzU5OTY0NjE4N0QwODFFN0M4Rjc5 ODgzRTE5RDAeFw0yNTA4MzEwODU2MDlaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjQwZTI5LWMwYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCftJgotQxPSxnyNhwbJWpwvNW5oz9D7+PjooeizUpzW49HZUhvXvTgPzQojeQQ QTCVrntGvW2fnSuPUiyYr0Yl/Vi3XzHq7ip9hvLC6baolo/6GUfhw9P5zDLzgXLO puXWjRWrped7MX4+QmBLTuhoy7GifH9EEGL3KuIjdHP5/K+5Q9nAmgueAZVC26d1 CNgVw9wVmrL5kXsE1rTu/KD54YZ4MrVomjLFbqtxhMhNMy/fEGJIOBITPdxFpuIj TLVI7Hvu63gAK2Y01gEPn/UvrMUXV5mckBEoUtM6t479cfagvJpOmSZfy23XlNE5 ACb3P9MiAGFEvecrmmKM717vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJDfZu7aO ajdOQ2sC1bciA7thvhEwHwYDVR0jBBgwFoAUruF924xrNZlkYYfQgefI95iD4Z0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCMjIxLzMzRUFBQzY4MkQw MzExRjA4M0VCQjM3QUM0RjlBRTAyL3J1RjkyNHhyTlpsa1lZZlFnZWZJOTVpRDRa MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcnVGOTI0eHJOWmxrWVlmUWdlZkk5NWlENFowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjIyMS8zM0VBQUM2ODJEMDMxMUYwODNFQkIzN0FDNEY5QUUwMi9BNDMzQzEyNjJE MDMxMUYwQTkxRjY0N0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeMLTANBgkqhkiG9w0BAQsFAAOCAQEAFxvEQ6OkfxVDcZ5N BOIxtHZrDwOgM821RFDhDj6CCSB8AyIaznFl8YNj+0Z+Znht0O4ICqgiylEzK2JO l/SPdL4a77yJLDqnDcd3LvZcokRGVRMoVDE+X4xw0W5u05JqKtw8JVA+WfdM2MAE HC8aFZ/L/2KUJHmH7h3GVFdk5kseURKR4bA/fox000EyD2aD/j6mvNvlDh4jIz7R +2WerfIiffGy2jVzPt81soMx1XisX/owrGfguZwLDkJ+N26jqWgmA3m7lLiR06mJ 6cVbsE3aXBUv/lSrB53RIHZABknRISGSD6O50BtCpzz5ck6h3BCHfpVIv0SOoDqn WdHjEg== -----END CERTIFICATE-----Generated at Wed Sep 17 20:41:12 2025 by rpki-client