$ rpki-client -vvf rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa File: 4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa (raw, json) Hash identifier: 75EuXED/Rvqy0Mw85Z/q36XD2zcpbxDlIxOgsx3A+Yc= Subject key identifier: 25:89:EC:7A:AD:7C:52:E9:3F:DA:3E:EA:66:C8:AD:14:84:86:85:A7 Certificate issuer: /CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Certificate serial: 0162 Authority key identifier: 90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa Signing time: Wed 03 Sep 2025 04:52:23 +0000 ROA not before: Wed 03 Sep 2025 04:52:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141167 IP address blocks: 103.255.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91248C9, serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Validity Not Before: Sep 3 04:52:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7c987-f368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e6:1f:90:b2:d7:7f:f5:79:fd:63:48:03:ab: a8:08:c0:79:91:a9:7b:92:59:68:0a:66:87:74:e4: db:e4:90:c2:c2:01:35:c1:c6:0e:55:e2:96:1f:e0: 08:dd:6b:ae:af:26:b2:c9:5f:a0:69:61:8c:89:ca: 7a:db:66:be:ed:fb:5d:3c:4d:1f:3e:92:d3:5c:b1: 45:49:a8:c9:ea:6f:6e:f5:5e:40:6b:d4:52:6c:95: 7a:f5:60:2a:bf:8a:5a:77:99:85:04:c7:b0:b8:b7: b0:34:90:8e:c4:2a:bc:72:59:da:d0:f2:d7:88:ea: 97:ae:67:6b:1f:59:58:d3:ee:32:f0:fc:24:df:cb: 7b:e9:98:b2:4f:34:fc:6d:22:88:8c:e8:eb:5c:66: 34:14:b3:ea:65:bd:ac:4d:86:99:3f:8b:8f:1e:f3: 5b:5e:df:69:5e:ad:17:c7:5b:70:74:ee:38:7a:1e: 97:bb:80:8d:3a:df:b5:21:59:31:6e:da:df:4c:71: 63:a5:99:cb:29:0a:a7:77:47:c9:f1:10:89:bb:79: 12:ed:c0:3a:d9:93:c2:5f:a9:15:26:d9:da:38:b7: 17:17:55:f8:30:88:d3:11:fa:34:67:65:10:2c:e3: 0e:77:87:50:c6:52:47:99:7e:06:7d:ba:96:a9:f9: cb:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:89:EC:7A:AD:7C:52:E9:3F:DA:3E:EA:66:C8:AD:14:84:86:85:A7 X509v3 Authority Key Identifier: keyid:90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.0.0/23 Signature Algorithm: sha256WithRSAEncryption 27:67:28:4f:f8:cc:d4:8c:ee:ed:96:81:57:dc:f0:41:41:0f: 16:7b:84:22:f4:80:06:cf:da:ea:2a:f0:ba:1b:67:f4:e5:25: cc:f5:1e:d5:bc:f7:25:f0:2d:9e:75:3c:a7:ed:c6:50:00:5b: 02:9d:f9:bc:48:63:ce:21:71:00:6f:e2:b7:05:fd:87:27:c6: e8:e4:7a:cc:3d:9e:aa:de:6c:7e:9c:f2:b1:d9:13:40:ce:b4: 0d:e7:82:89:9f:22:37:d7:d4:5d:31:18:a3:77:48:6f:83:21: 84:c9:c7:e3:62:0f:67:3e:73:e4:22:66:a9:f2:4c:86:6b:b1: 5f:2f:a5:43:19:4b:8d:ff:a2:37:10:fd:c5:f5:fe:1e:7f:5b: 58:a2:ae:a2:99:fa:ba:dc:26:0c:ec:e9:17:74:01:30:db:0f: 15:c2:0f:18:10:cc:4e:9d:a1:41:8c:08:f3:f8:96:f8:64:e7: 10:f5:16:30:e7:b0:fe:b4:dd:17:0c:99:24:a5:61:7d:c3:5b: 5e:b5:aa:b7:65:f0:b7:21:10:31:c4:0a:7c:25:3e:cb:49:ee: 04:af:e7:2d:0e:4d:63:56:8e:fc:bd:d5:cc:0d:c1:15:f9:7d: a4:ca:df:73:b4:ba:45:29:ae:fd:00:b6:a0:7b:b6:83:38:6c: d2:ba:73:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4QzkxMTAvBgNVBAUTKDkwRjY4MEZDQTdDOTMwRkQxRkRDNTMzNjc1Mzg1QUU5 MEZCNDE2NzIwHhcNMjUwOTAzMDQ1MjIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Yzk4Ny1mMzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqeYfkLLXf/V5/WNIA6uoCMB5kal7klloCmaHdOTb5JDCwgE1wcYOVeKWH+AI 3WuuryayyV+gaWGMicp622a+7ftdPE0fPpLTXLFFSajJ6m9u9V5Aa9RSbJV69WAq v4pad5mFBMewuLewNJCOxCq8clna0PLXiOqXrmdrH1lY0+4y8Pwk38t76ZiyTzT8 bSKIjOjrXGY0FLPqZb2sTYaZP4uPHvNbXt9pXq0Xx1twdO44eh6Xu4CNOt+1IVkx btrfTHFjpZnLKQqnd0fJ8RCJu3kS7cA62ZPCX6kVJtnaOLcXF1X4MIjTEfo0Z2UQ LOMOd4dQxlJHmX4GfbqWqfnLaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCWJ7Hqt fFLpP9o+6mbIrRSEhoWnMB8GA1UdIwQYMBaAFJD2gPynyTD9H9xTNnU4WukPtBZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDhDOS9BMDU1QjVCMjZF RUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1QMGYzRk0yZFRoYTZRLTBG bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tQYUFfS2ZKTVAwZjNGTTJkVGhhNlEtMEZuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ4QzkvQTA1NUI1QjI2RUVEMTFFRUJDMUFBQjUzQzRGOUFFMDIvNEIzQzQzRUE2 RUYwMTFFRTg0REM5QjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn/wAwDQYJKoZIhvcNAQELBQADggEBACdnKE/4zNSM7u2W gVfc8EFBDxZ7hCL0gAbP2uoq8LobZ/TlJcz1HtW89yXwLZ51PKftxlAAWwKd+bxI Y84hcQBv4rcF/Ycnxujkesw9nqrebH6c8rHZE0DOtA3ngomfIjfX1F0xGKN3SG+D IYTJx+NiD2c+c+QiZqnyTIZrsV8vpUMZS43/ojcQ/cX1/h5/W1iirqKZ+rrcJgzs 6Rd0ATDbDxXCDxgQzE6doUGMCPP4lvhk5xD1FjDnsP603RcMmSSlYX3DW161qrdl 8LchEDHECnwlPstJ7gSv5y0OTWNWjvy91cwNwRX5faTK33O0ukUprv0AtqB7toM4 bNK6c7A= -----END CERTIFICATE-----Generated at Wed Sep 17 18:53:58 2025 by rpki-client