$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/36F3B6A86E5411EEAA31F87AC4F9AE02.roa File: 36F3B6A86E5411EEAA31F87AC4F9AE02.roa (raw, json) Hash identifier: sGfgOeU/fHIH2HrB1IOWJi3rlZbzHtByfN0MLcFepBI= Subject key identifier: 19:6B:B9:51:DD:E5:05:0E:D6:6F:FB:DA:59:2C:29:C1:A1:96:86:D9 Certificate issuer: /CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Certificate serial: 0181 Authority key identifier: 6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/36F3B6A86E5411EEAA31F87AC4F9AE02.roa Signing time: Thu 23 Oct 2025 05:51:54 +0000 ROA not before: Thu 23 Oct 2025 05:51:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151969 IP address blocks: 103.67.64.0/23 maxlen: 23 103.67.64.0/24 maxlen: 24 103.67.65.0/24 maxlen: 24 2001:df3:d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E98, serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Validity Not Before: Oct 23 05:51:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68f9c27a-64cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:60:b0:83:63:49:ed:de:98:be:a4:a8:a7:94: e2:1f:80:38:51:c2:c7:82:59:87:e2:ad:38:c9:0e: 5d:a4:7e:ce:27:f4:ac:c3:b8:d4:35:c3:63:9c:9d: 3d:5a:24:fe:72:02:5b:da:d4:5a:04:3c:4f:e1:1f: 55:36:8b:5d:2b:36:a9:4e:b9:ec:16:a0:08:1e:05: 9b:0f:ed:64:7c:31:27:61:bc:8a:a3:d1:ea:a8:89: 03:f7:bd:fa:1a:2d:6a:7b:5a:97:cb:6b:6a:f6:5e: 06:65:0b:6a:74:df:06:aa:48:2a:b7:37:3c:48:a8: 11:8e:fa:b5:73:d6:a8:12:d9:d6:b5:79:bf:62:21: 3c:b7:33:35:2e:7d:37:7e:a5:60:ec:ec:89:54:15: a0:49:13:1c:71:fb:93:3d:d0:8d:f0:42:d8:33:e5: 1d:1c:ed:df:f4:6d:65:f8:43:67:be:15:de:46:af: 0e:c8:a2:0b:a7:11:77:47:a6:a5:f5:8c:f4:dc:f4: 2d:ac:aa:5c:95:1a:a1:87:5b:82:dc:53:f2:8a:59: f3:c6:6e:9d:c9:35:70:e7:90:53:33:70:70:04:fe: cf:54:9f:82:1f:37:77:a8:53:5e:8f:4e:e9:2f:f4: 5c:0c:9f:3f:8c:9a:a1:79:8c:a6:7e:b3:be:60:56: 42:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:6B:B9:51:DD:E5:05:0E:D6:6F:FB:DA:59:2C:29:C1:A1:96:86:D9 X509v3 Authority Key Identifier: keyid:6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/36F3B6A86E5411EEAA31F87AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.64.0/23 IPv6: 2001:df3:d40::/48 Signature Algorithm: sha256WithRSAEncryption 75:9b:79:71:e6:72:c2:a9:15:52:ff:20:9e:5c:4d:74:44:c5: 9f:14:35:0e:b9:c5:4c:65:69:cf:b1:c7:4d:67:03:21:f0:7f: 73:f5:07:ac:f9:27:d4:15:33:ff:61:e3:47:17:5c:c0:a4:ee: a8:15:4d:f4:46:cd:29:8c:f9:3e:4b:10:6b:b0:26:09:02:4a: 3d:b4:6c:0f:bf:b8:69:83:46:a4:6c:6f:0d:4e:3e:d9:81:8b: b0:6e:d4:13:50:a2:83:e7:bc:c4:c1:90:87:d5:e1:2a:97:eb: 41:ab:ff:c4:25:11:d8:6d:a1:aa:b2:eb:e6:52:91:9c:c1:fc: 57:9d:18:25:f2:bb:31:93:0d:30:00:85:02:a2:01:18:e4:2c: 92:97:c5:cb:ae:73:c7:47:45:01:c4:1e:81:d9:be:98:cc:6b: 9e:1b:6f:34:07:65:a9:b6:ac:76:7c:4e:96:13:51:e0:e3:c0: 6f:c4:f5:ac:26:32:16:f8:da:55:fb:ab:ba:0e:d3:07:c1:31: a8:fa:dc:4d:ba:5e:70:fa:15:cd:13:39:66:74:aa:a1:51:f6: 7e:d0:5b:e2:5a:6f:3a:64:2c:8a:1f:69:83:69:76:1c:86:07: 51:01:a5:ba:bd:89:45:23:be:98:9f:57:c8:87:a7:08:37:47: f9:57:35:83 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFOTgxMTAvBgNVBAUTKDZDRTJEN0QwRDk1OTgwRDc0M0NBRDQ4NDg2OTg0OERC QTEyNUMyOUIwHhcNMjUxMDIzMDU1MTU0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5YzI3YS02NGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2Cwg2NJ7d6YvqSop5TiH4A4UcLHglmH4q04yQ5dpH7OJ/Ssw7jUNcNjnJ09 WiT+cgJb2tRaBDxP4R9VNotdKzapTrnsFqAIHgWbD+1kfDEnYbyKo9HqqIkD9736 Gi1qe1qXy2tq9l4GZQtqdN8Gqkgqtzc8SKgRjvq1c9aoEtnWtXm/YiE8tzM1Ln03 fqVg7OyJVBWgSRMccfuTPdCN8ELYM+UdHO3f9G1l+ENnvhXeRq8OyKILpxF3R6al 9Yz03PQtrKpclRqhh1uC3FPyilnzxm6dyTVw55BTM3BwBP7PVJ+CHzd3qFNej07p L/RcDJ8/jJqheYymfrO+YFZCtQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBlruVHd 5QUO1m/72lksKcGhlobZMB8GA1UdIwQYMBaAFGzi19DZWYDXQ8rUhIaYSNuhJcKb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEU5OC83NEZENUU4MjZF NTMxMUVFOUI5MTdFNzlDNEY5QUUwMi9iT0xYME5sWmdOZER5dFNFaHBoSTI2RWx3 cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPTFgwTmxaZ05kRHl0U0VocGhJMjZFbHdwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBFOTgvNzRGRDVFODI2RTUzMTFFRTlCOTE3RTc5QzRGOUFFMDIvMzZGM0I2QTg2 RTU0MTFFRUFBMzFGODdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnQ0AwDwQCAAIwCQMHACABDfMNQDANBgkqhkiG9w0BAQsF AAOCAQEAdZt5ceZywqkVUv8gnlxNdETFnxQ1DrnFTGVpz7HHTWcDIfB/c/UHrPkn 1BUz/2HjRxdcwKTuqBVN9EbNKYz5PksQa7AmCQJKPbRsD7+4aYNGpGxvDU4+2YGL sG7UE1Cig+e8xMGQh9XhKpfrQav/xCUR2G2hqrLr5lKRnMH8V50YJfK7MZMNMACF AqIBGOQskpfFy65zx0dFAcQegdm+mMxrnhtvNAdlqbasdnxOlhNR4OPAb8T1rCYy FvjaVfurug7TB8ExqPrcTbpecPoVzRM5ZnSqoVH2ftBb4lpvOmQsih9pg2l2HIYH UQGlur2JRSO+mJ9XyIenCDdH+Vc1gw== -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:35 2025 by rpki-client