$ rpki-client -vvf rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/216EE802F87A11EDAAE56C0DC4F9AE02.roa File: 216EE802F87A11EDAAE56C0DC4F9AE02.roa (raw, json) Hash identifier: le7JEqoYvZIMl+uq0wwq/akdNhi0QtrKh8LNnkVREXQ= Subject key identifier: 4F:6A:57:A9:42:D5:05:3A:2E:FC:53:DC:3A:34:EF:D5:ED:22:6B:18 Certificate issuer: /CN=A91472E2/serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Certificate serial: 02BF Authority key identifier: C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/216EE802F87A11EDAAE56C0DC4F9AE02.roa Signing time: Wed 27 Aug 2025 02:07:02 +0000 ROA not before: Wed 27 Aug 2025 02:07:02 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150137 IP address blocks: 103.90.12.0/24 maxlen: 24 103.90.13.0/24 maxlen: 24 103.191.181.0/24 maxlen: 24 2001:df1:940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91472E2, serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Validity Not Before: Aug 27 02:07:02 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ae6845-d1d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:2f:92:f4:cf:72:43:f7:2f:75:72:10:fd:81: f9:8a:0f:15:64:e3:24:19:cd:fd:b7:86:1f:a5:f9: d1:64:16:d9:ec:b6:6e:a7:a3:c6:6a:4b:6c:63:f9: 35:7f:b1:35:d2:ac:b1:4c:a2:7a:5b:3b:80:9c:42: 5c:9e:7b:51:38:64:08:56:63:fe:82:dc:db:cc:9d: 38:a6:95:88:8d:1b:c9:2a:bd:f8:d8:59:a8:81:38: ed:46:44:c1:c6:51:33:c4:d2:e4:6e:f4:07:bd:39: 18:1c:99:54:3f:0b:78:ed:76:d1:c0:90:ce:f1:d3: ce:0e:a6:90:44:c5:3b:fe:64:7e:53:c8:62:d9:72: f5:2a:ec:a6:e7:b0:e8:65:8a:20:e0:3d:28:cd:fa: 15:6c:b0:39:8d:82:fe:d6:0a:59:50:ee:88:d1:df: 8e:52:30:7e:86:7d:b5:69:e5:94:ba:a1:cf:bc:44: c2:ed:31:ff:b7:8c:7a:e8:9b:43:58:f6:ca:dc:05: c3:58:68:6b:d0:d1:ed:21:ef:f6:ae:2f:be:71:6f: 0f:e3:2c:a4:54:e5:66:7c:59:6d:df:72:e7:16:48: 9b:35:2b:90:93:1c:4f:ce:2a:56:d8:4c:d8:e3:b8: 68:33:23:96:c1:f9:1e:71:40:b2:94:61:44:07:94: fe:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6A:57:A9:42:D5:05:3A:2E:FC:53:DC:3A:34:EF:D5:ED:22:6B:18 X509v3 Authority Key Identifier: keyid:C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/216EE802F87A11EDAAE56C0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.12.0/23 103.191.181.0/24 IPv6: 2001:df1:940::/48 Signature Algorithm: sha256WithRSAEncryption 4c:99:f0:02:22:43:fe:98:38:b2:13:d9:3c:bd:a3:f6:ac:e3: 14:11:54:92:31:b7:89:e9:47:38:35:2d:75:c6:a7:2a:21:5c: 35:ff:fe:47:02:f1:a3:d8:dd:fc:c6:f0:28:fc:5b:e8:d5:b6: a2:01:89:df:31:ad:ca:6e:03:ed:b7:54:f9:0b:8d:6b:d1:8e: 3d:34:2f:79:64:29:ae:6a:5e:bd:1d:6e:ae:3f:5e:a6:ae:a0: 48:5e:8b:ef:96:6e:ce:4d:08:b8:5d:d5:9c:ed:29:23:f9:ad: 7f:bb:87:19:92:0e:41:57:50:f4:b6:93:0c:53:ca:4f:c4:1a: 76:c7:f6:83:ba:16:d8:9e:5e:df:1e:62:75:d9:83:db:32:01: bc:ff:b3:d6:ea:d6:98:b8:d1:f3:74:25:8d:d3:50:e2:1f:b9: 2f:9d:50:17:06:a6:78:1d:b8:5b:dd:4e:74:01:b1:5e:52:46: 4c:19:bb:65:be:da:99:f6:05:44:4d:8c:e5:13:74:19:ff:ab: 49:4d:61:39:c8:9b:b5:d6:ef:58:64:79:be:87:8a:7f:bd:b5: 50:13:93:54:29:63:60:81:70:78:1f:ae:58:c0:81:40:60:a9: 34:b3:79:1c:74:90:28:7e:af:a1:7c:90:b2:d7:64:54:f6:5f: 80:29:34:bb -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyRTIxMTAvBgNVBAUTKEM2NUZGQ0ZCMkNGQ0Q5QkNENjhEQUVCMDY5N0QzMTZD RjM1QjIzRjAwHhcNMjUwODI3MDIwNzAyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNjg0NS1kMWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9S+S9M9yQ/cvdXIQ/YH5ig8VZOMkGc39t4YfpfnRZBbZ7LZup6PGaktsY/k1 f7E10qyxTKJ6WzuAnEJcnntROGQIVmP+gtzbzJ04ppWIjRvJKr342FmogTjtRkTB xlEzxNLkbvQHvTkYHJlUPwt47XbRwJDO8dPODqaQRMU7/mR+U8hi2XL1Kuym57Do ZYog4D0ozfoVbLA5jYL+1gpZUO6I0d+OUjB+hn21aeWUuqHPvETC7TH/t4x66JtD WPbK3AXDWGhr0NHtIe/2ri++cW8P4yykVOVmfFlt33LnFkibNSuQkxxPzipW2EzY 47hoMyOWwfkecUCylGFEB5T+aQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFE9qV6lC 1QU6LvxT3Do079XtImsYMB8GA1UdIwQYMBaAFMZf/Pss/Nm81o2usGl9MWzzWyPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzJFMi8yRjE5NTM1QzBD QjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJieldqYTZ3YVgweGJQTmJJ X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hsXzgteXo4MmJ6V2phNndhWDB4YlBOYklfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDcyRTIvMkYxOTUzNUMwQ0IyMTFFRDk1Q0VDOTVDQzRGOUFFMDIvMjE2RUU4MDJG ODdBMTFFREFBRTU2QzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnWgwDBABnv7UwDwQCAAIwCQMHACABDfEJQDANBgkqhkiG 9w0BAQsFAAOCAQEATJnwAiJD/pg4shPZPL2j9qzjFBFUkjG3ielHODUtdcanKiFc Nf/+RwLxo9jd/MbwKPxb6NW2ogGJ3zGtym4D7bdU+QuNa9GOPTQveWQprmpevR1u rj9epq6gSF6L75Zuzk0IuF3VnO0pI/mtf7uHGZIOQVdQ9LaTDFPKT8Qadsf2g7oW 2J5e3x5iddmD2zIBvP+z1urWmLjR83QljdNQ4h+5L51QFwameB24W91OdAGxXlJG TBm7Zb7amfYFRE2M5RN0Gf+rSU1hOcibtdbvWGR5voeKf721UBOTVCljYIFweB+u WMCBQGCpNLN5HHSQKH6voXyQstdkVPZfgCk0uw== -----END CERTIFICATE-----Generated at Thu Sep 18 23:45:42 2025 by rpki-client