$ rpki-client -vvf rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/C8900982059611ECB2896C55C4F9AE02.roa File: C8900982059611ECB2896C55C4F9AE02.roa (raw, json) Hash identifier: B4anHJEaRTiTfVVaAnye8CZy9d3Hle7lj/K1p4d+P2s= Subject key identifier: 3D:3C:CB:48:BC:6D:EF:0D:FE:B9:78:52:02:50:55:E0:D3:D9:F9:0E Certificate issuer: /CN=A91193C1/serialNumber=14548E70949E505F8BA8A5391E466E1E99D3B727 Certificate serial: 0568 Authority key identifier: 14:54:8E:70:94:9E:50:5F:8B:A8:A5:39:1E:46:6E:1E:99:D3:B7:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFSOcJSeUF-LqKU5HkZuHpnTtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/C8900982059611ECB2896C55C4F9AE02.roa Signing time: Sun 28 Sep 2025 23:56:54 +0000 ROA not before: Sun 28 Sep 2025 23:56:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146953 IP address blocks: 103.172.38.0/24 maxlen: 24 2407:cac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.crl rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFSOcJSeUF-LqKU5HkZuHpnTtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1384 (0x568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91193C1, serialNumber=14548E70949E505F8BA8A5391E466E1E99D3B727 Validity Not Before: Sep 28 23:56:54 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d9cb46-2af7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:7c:01:ec:66:62:21:aa:13:d3:d9:2f:24: dc:8d:3a:27:56:3c:f0:a6:57:7c:1f:96:05:d1:c3: a2:db:54:17:81:be:a1:b2:3d:f2:07:4c:90:ff:6f: 6e:02:af:fb:92:2e:e1:f5:e7:7f:72:31:87:ff:49: 15:13:a2:2b:b0:96:13:1a:0e:75:0a:9e:14:df:de: ff:df:36:97:55:17:1a:22:6b:7c:ff:06:d4:db:de: f0:30:71:32:d7:26:d0:66:08:e5:25:be:c5:20:ad: 91:9e:6b:fe:e5:7b:a1:3e:65:b7:71:f9:51:29:59: fa:84:15:55:63:8e:4d:0c:db:38:15:8b:fc:94:00: 96:d0:f3:be:cd:b1:2d:06:ab:b8:c7:d2:cc:f2:f0: 2b:d7:12:0f:3d:53:61:d5:b0:c1:73:00:58:7b:3f: 0e:89:fe:3c:d8:a6:04:bc:b7:fb:cd:6d:c7:b6:ca: 6b:19:55:6f:07:2f:b2:68:fb:29:15:3a:a8:c6:f7: 3e:2d:5b:d2:9a:d9:9e:bf:e3:83:9b:51:01:d7:3b: 96:50:53:13:bb:4f:0c:fc:35:80:3b:5f:1d:b8:78: ee:9f:b4:af:0d:67:06:1f:25:02:40:b2:da:17:53: 91:fb:be:98:61:9d:7d:14:0f:97:ad:81:31:12:fb: e3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:3C:CB:48:BC:6D:EF:0D:FE:B9:78:52:02:50:55:E0:D3:D9:F9:0E X509v3 Authority Key Identifier: keyid:14:54:8E:70:94:9E:50:5F:8B:A8:A5:39:1E:46:6E:1E:99:D3:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFSOcJSeUF-LqKU5HkZuHpnTtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/C8900982059611ECB2896C55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.38.0/24 IPv6: 2407:cac0::/32 Signature Algorithm: sha256WithRSAEncryption 31:ab:3f:b0:3e:3f:94:65:64:57:af:1d:a5:e1:f2:e2:e9:c2: 44:9e:e5:77:d6:ba:17:55:0c:46:46:ab:ab:86:3b:9d:73:a7: 91:83:09:6b:e7:b6:b1:78:c7:bc:1e:cf:f9:bd:db:18:05:d6: 49:9f:9c:2e:c8:6a:81:b5:83:90:e1:92:4b:4c:15:72:f8:83: 2d:a4:b3:8c:6d:a5:0c:57:d8:cb:7d:0f:1a:05:5f:38:37:e3: 37:d6:df:b9:d5:d0:a4:ce:5b:54:d4:2e:d2:87:53:f6:41:3c: ed:83:e7:a8:26:97:da:3f:a5:2a:e5:87:77:09:d5:76:85:c1: 07:de:47:a7:ec:f9:8c:e2:73:8e:e3:7c:17:08:4e:42:7a:73: 4c:30:61:ca:df:cc:45:aa:e2:14:c5:16:45:98:92:9f:64:ee: 2b:4b:07:43:0c:fd:b1:10:53:cd:55:c8:3b:41:94:64:4d:a3: da:ab:d1:be:3e:72:0a:a0:1a:7d:8b:d9:12:f6:fd:bd:76:37: b1:15:e7:0e:87:a6:4e:ce:04:db:ee:ef:3c:ab:3f:1e:95:bc: 2d:d3:36:17:dc:0e:14:2b:a8:74:12:3f:04:bf:2b:08:4b:49: ef:3d:bb:e5:6a:f7:02:26:8f:a0:d4:0c:2f:98:52:8a:f7:0c: 41:bc:d8:6b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzQzExMTAvBgNVBAUTKDE0NTQ4RTcwOTQ5RTUwNUY4QkE4QTUzOTFFNDY2RTFF OTlEM0I3MjcwHhcNMjUwOTI4MjM1NjU0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ5Y2I0Ni0yYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBN8AexmYiGqE9PZLyTcjTonVjzwpld8H5YF0cOi21QXgb6hsj3yB0yQ/29u Aq/7ki7h9ed/cjGH/0kVE6IrsJYTGg51Cp4U397/3zaXVRcaImt8/wbU297wMHEy 1ybQZgjlJb7FIK2Rnmv+5XuhPmW3cflRKVn6hBVVY45NDNs4FYv8lACW0PO+zbEt Bqu4x9LM8vAr1xIPPVNh1bDBcwBYez8Oif482KYEvLf7zW3HtsprGVVvBy+yaPsp FTqoxvc+LVvSmtmev+ODm1EB1zuWUFMTu08M/DWAO18duHjun7SvDWcGHyUCQLLa F1OR+76YYZ19FA+XrYExEvvjmQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD08y0i8 be8N/rl4UgJQVeDT2fkOMB8GA1UdIwQYMBaAFBRUjnCUnlBfi6ilOR5Gbh6Z07cn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTNDMS83MzZFM0I0ODA1 OTMxMUVDODkyMUVEODVDNEY5QUUwMi9GRlNPY0pTZVVGLUxxS1U1SGtadUhwblR0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGU09jSlNlVUYtTHFLVTVIa1p1SHBuVHR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkzQzEvNzM2RTNCNDgwNTkzMTFFQzg5MjFFRDg1QzRGOUFFMDIvQzg5MDA5ODIw NTk2MTFFQ0IyODk2QzU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnrCYwDQQCAAIwBwMFACQHysAwDQYJKoZIhvcNAQELBQAD ggEBADGrP7A+P5RlZFevHaXh8uLpwkSe5XfWuhdVDEZGq6uGO51zp5GDCWvntrF4 x7wez/m92xgF1kmfnC7IaoG1g5DhkktMFXL4gy2ks4xtpQxX2Mt9DxoFXzg34zfW 37nV0KTOW1TULtKHU/ZBPO2D56gml9o/pSrlh3cJ1XaFwQfeR6fs+Yzic47jfBcI TkJ6c0wwYcrfzEWq4hTFFkWYkp9k7itLB0MM/bEQU81VyDtBlGRNo9qr0b4+cgqg Gn2L2RL2/b12N7EV5w6Hpk7OBNvu7zyrPx6VvC3TNhfcDhQrqHQSPwS/KwhLSe89 u+Vq9wImj6DUDC+YUor3DEG82Gs= -----END CERTIFICATE-----Generated at Wed Nov 5 21:27:50 2025 by rpki-client