$ rpki-client -vvf rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/1AC872EC2C9611EF84447F23C4F9AE02.roa File: 1AC872EC2C9611EF84447F23C4F9AE02.roa (raw, json) Hash identifier: 8vP78yz7Gdq/cMm0DibfnzyJKPtLE3SNx9Zurp6T4Tw= Subject key identifier: 8A:EA:5A:2F:39:2D:02:32:B5:01:10:7A:D0:19:11:51:68:9B:0D:01 Certificate issuer: /CN=A91392AE/serialNumber=4DAA776F8792800F42B89780F32D9E73276155D4 Certificate serial: 1A0E Authority key identifier: 4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/1AC872EC2C9611EF84447F23C4F9AE02.roa Signing time: Wed 20 Aug 2025 16:54:34 +0000 ROA not before: Wed 20 Aug 2025 16:54:34 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136786 IP address blocks: 103.115.4.0/23 maxlen: 24 103.115.6.0/24 maxlen: 24 2001:df1:c700::/48 maxlen: 48 2001:df1:c701::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.crl rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 16:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6670 (0x1a0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91392AE, serialNumber=4DAA776F8792800F42B89780F32D9E73276155D4 Validity Not Before: Aug 20 16:54:34 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a5fdca-0c3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:32:c4:7d:2c:b6:4a:ab:46:15:b2:16:8c:12: 7b:b4:e7:0b:34:84:83:79:25:4d:7c:dd:88:e4:e2: e1:56:02:20:2b:0f:6b:02:61:56:a8:2d:0f:53:fb: db:73:7b:26:32:9e:27:52:cd:93:ae:14:16:df:dd: 40:13:4e:ee:e8:29:f7:d7:44:fa:36:29:5c:86:a3: fb:2a:a1:4e:e3:b9:17:38:bb:a6:85:e1:e6:62:58: c2:1d:3d:1b:f6:31:28:71:e6:8e:2a:49:01:36:ef: da:75:84:c1:f3:3d:c3:c3:46:5d:da:b2:81:3a:8f: a1:61:d4:ae:28:bc:c5:41:05:39:89:88:74:4f:49: 59:3a:f9:ed:68:32:59:0c:53:98:de:e7:3f:ed:cf: 55:3f:76:4e:c0:0b:02:87:c2:d0:6c:1b:a8:ea:82: 64:ee:50:93:b2:c4:7b:78:de:43:83:87:6c:34:82: 21:cb:fb:0a:71:87:6e:02:c1:b2:c5:7e:df:e4:a5: db:df:d3:3d:8d:2c:99:9d:3f:9b:e6:72:d0:64:f7: 91:c4:64:32:71:f0:e4:28:56:9d:4a:bd:89:b9:5e: a6:a5:bd:4a:b3:ee:63:df:f3:54:9a:59:e5:0d:6f: 22:0f:c4:ee:36:d2:30:16:eb:32:ea:6b:8e:8b:b4: 5d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:EA:5A:2F:39:2D:02:32:B5:01:10:7A:D0:19:11:51:68:9B:0D:01 X509v3 Authority Key Identifier: keyid:4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/1AC872EC2C9611EF84447F23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.4.0-103.115.6.255 IPv6: 2001:df1:c700::/47 Signature Algorithm: sha256WithRSAEncryption 47:0b:38:dd:d0:06:74:13:45:38:4f:81:27:a5:20:ad:7a:c7: 84:10:97:5c:a3:3e:4a:cc:6c:07:3f:69:4b:7b:25:19:60:19: 81:47:c4:6c:90:72:ae:ac:c5:1d:91:a9:d3:36:09:93:f6:ff: af:8e:26:2d:a6:23:f1:00:04:19:92:72:46:ef:f1:d5:0e:da: 28:c7:96:63:a2:51:55:8f:e2:88:a8:0b:d3:2a:1e:02:84:dc: f3:e7:c4:76:0d:db:a4:6e:55:84:7e:24:98:bf:34:cb:1f:cb: af:2b:22:11:6d:b3:3b:3e:73:fb:77:f5:60:6f:9f:bf:e4:67: 30:47:8b:5a:9c:02:52:1e:3c:fa:e0:cd:0a:47:9e:20:50:bc: b7:ad:57:ca:e4:e0:62:3d:4e:0a:39:25:b2:dc:f6:b0:fe:49: 51:ae:8a:b6:c8:18:0e:c8:88:38:6a:f0:97:df:bd:b6:5e:6e: 98:6a:3e:c9:00:5d:ea:75:6b:c5:39:95:f3:3b:12:70:8e:df: 1a:9a:73:61:8e:fb:be:22:ab:f5:d1:09:3b:5c:e2:a9:fb:e3: 47:50:9d:cc:a7:c1:11:51:4c:9c:d3:88:ee:3b:1e:62:13:4c: 35:9f:56:98:a7:4b:97:ea:ce:de:77:27:a2:82:e7:df:61:0c: f2:1a:dc:57 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICGg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyQUUxMTAvBgNVBAUTKDREQUE3NzZGODc5MjgwMEY0MkI4OTc4MEYzMkQ5RTcz Mjc2MTU1RDQwHhcNMjUwODIwMTY1NDM0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE1ZmRjYS0wYzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTLEfSy2SqtGFbIWjBJ7tOcLNISDeSVNfN2I5OLhVgIgKw9rAmFWqC0PU/vb c3smMp4nUs2TrhQW391AE07u6Cn310T6NilchqP7KqFO47kXOLumheHmYljCHT0b 9jEoceaOKkkBNu/adYTB8z3Dw0Zd2rKBOo+hYdSuKLzFQQU5iYh0T0lZOvntaDJZ DFOY3uc/7c9VP3ZOwAsCh8LQbBuo6oJk7lCTssR7eN5Dg4dsNIIhy/sKcYduAsGy xX7f5KXb39M9jSyZnT+b5nLQZPeRxGQycfDkKFadSr2JuV6mpb1Ks+5j3/NUmlnl DW8iD8TuNtIwFusy6muOi7Rd8QIDAQABo4ICrjCCAqowHQYDVR0OBBYEFIrqWi85 LQIytQEQetAZEVFomw0BMB8GA1UdIwQYMBaAFE2qd2+HkoAPQriXgPMtnnMnYVXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTJBRS8zMzZFRjY3NjYw RTgxMUU3QUMxNzUyNTlDNEY5QUUwMi9UYXAzYjRlU2dBOUN1SmVBOHkyZWN5ZGhW ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RhcDNiNGVTZ0E5Q3VKZUE4eTJlY3lkaFZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkyQUUvMzM2RUY2NzY2MEU4MTFFN0FDMTc1MjU5QzRGOUFFMDIvMUFDODcyRUMy Qzk2MTFFRjg0NDQ3RjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEAmdzBAMEAGdzBjAPBAIAAjAJAwcBIAEN8ccAMA0GCSqG SIb3DQEBCwUAA4IBAQBHCzjd0AZ0E0U4T4EnpSCteseEEJdcoz5KzGwHP2lLeyUZ YBmBR8RskHKurMUdkanTNgmT9v+vjiYtpiPxAAQZknJG7/HVDtoox5ZjolFVj+KI qAvTKh4ChNzz58R2DdukblWEfiSYvzTLH8uvKyIRbbM7PnP7d/Vgb5+/5GcwR4ta nAJSHjz64M0KR54gULy3rVfK5OBiPU4KOSWy3Paw/klRroq2yBgOyIg4avCX3722 Xm6Yaj7JAF3qdWvFOZXzOxJwjt8amnNhjvu+Iqv10Qk7XOKp++NHUJ3Mp8ERUUyc 04juOx5iE0w1n1aYp0uX6s7edyeiguffYQzyGtxX -----END CERTIFICATE-----Generated at Tue Oct 28 05:24:56 2025 by rpki-client