$ rpki-client -vvf rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/AFB22EC892C211F0A3854712C4F9AE02.roa File: AFB22EC892C211F0A3854712C4F9AE02.roa (raw, json) Hash identifier: 8XhJkYfZtUkquYR5u12lUnek3pRnxzxHWIehQP2S0wo= Subject key identifier: 83:FF:7C:82:F3:96:DA:52:6B:9A:94:1E:B2:4F:AB:03:FD:BA:9D:2F Certificate issuer: /CN=A91649F9/serialNumber=BDB12948F2E0789B15F02D5139BA06B2306A28E7 Certificate serial: 052F Authority key identifier: BD:B1:29:48:F2:E0:78:9B:15:F0:2D:51:39:BA:06:B2:30:6A:28:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbEpSPLgeJsV8C1ROboGsjBqKOc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/AFB22EC892C211F0A3854712C4F9AE02.roa Signing time: Tue 16 Sep 2025 06:02:12 +0000 ROA not before: Tue 16 Sep 2025 06:02:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135293 IP address blocks: 103.139.199.0/24 maxlen: 24 137.83.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.crl rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbEpSPLgeJsV8C1ROboGsjBqKOc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 23:54:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1327 (0x52f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91649F9, serialNumber=BDB12948F2E0789B15F02D5139BA06B2306A28E7 Validity Not Before: Sep 16 06:02:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c8fd64-589e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:67:3c:f0:f8:a5:60:62:4f:03:7d:2b:d0:55: 77:57:7b:a8:d8:c7:b5:81:9c:19:29:49:89:be:ee: 96:10:9b:66:8c:1b:04:ba:c4:80:4d:97:9f:bd:c3: dd:97:e4:5b:ec:92:09:ca:4a:e4:b8:45:5a:06:d3: b6:41:3f:9b:ad:23:36:d6:60:96:b9:1a:e9:cc:77: 91:4a:f2:80:95:d5:57:6e:fa:44:0c:6b:15:f8:ff: 64:c7:a6:d8:b6:e9:8a:63:79:02:70:90:c7:c4:8d: c7:5a:70:9d:fe:74:ec:54:ab:56:9e:69:94:07:b3: 97:15:2d:57:68:f6:b1:e2:4d:18:d9:35:88:52:0e: b2:0d:fd:f3:b9:3f:3e:54:8f:1a:b5:81:40:b1:8c: c9:14:67:34:ce:ab:17:8b:be:0b:97:0a:2a:53:af: 59:d1:1e:0e:53:bc:2a:60:eb:23:f6:6b:8d:7d:0e: 2a:7a:e1:7e:81:02:bd:3f:c7:3d:dd:28:b4:91:e9: 91:26:8f:c9:4b:1b:80:57:d8:9f:89:02:01:49:80: 90:25:57:22:c8:c4:1f:2f:c1:d4:79:85:bb:a8:30: 74:ab:78:c6:9f:1a:04:64:3c:cf:d0:79:cb:5d:d6: 78:46:ff:3f:f9:f1:e6:db:a4:cf:98:de:1d:b0:4a: 25:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:FF:7C:82:F3:96:DA:52:6B:9A:94:1E:B2:4F:AB:03:FD:BA:9D:2F X509v3 Authority Key Identifier: keyid:BD:B1:29:48:F2:E0:78:9B:15:F0:2D:51:39:BA:06:B2:30:6A:28:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbEpSPLgeJsV8C1ROboGsjBqKOc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/AFB22EC892C211F0A3854712C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.199.0/24 137.83.0.0/24 Signature Algorithm: sha256WithRSAEncryption b5:63:b7:a5:eb:5c:73:58:20:45:a0:68:e3:03:e3:eb:27:27: 5d:8e:92:84:69:2e:3a:d5:8a:1a:50:82:68:62:1c:22:fa:cb: 7e:bc:59:42:4b:56:5f:a0:04:9f:29:c9:c8:a8:3e:15:15:ac: 3a:ba:75:32:8d:6a:b4:1e:49:f6:52:ce:64:b2:c1:39:4b:4f: 58:c2:c4:38:d0:f6:0a:d7:7a:45:0c:55:e0:90:e4:27:b3:87: 28:8a:fb:0f:4c:9c:45:0f:fb:58:8e:71:e9:a9:62:7e:cc:b8: 82:e8:8a:78:4f:69:a5:aa:a9:4f:76:0f:c9:a0:01:fe:5b:6d: 2a:c6:29:88:f5:b5:0d:1e:00:42:2b:51:03:31:39:bb:e7:8c: be:eb:56:8c:84:dd:93:33:b4:85:19:8b:be:4e:95:a8:e1:f8: e8:ad:3f:89:21:7f:8f:aa:ce:d5:c1:2f:64:30:46:f8:10:42: 8f:59:ac:83:c9:75:77:38:41:f3:4a:a9:31:62:2c:9a:79:f8: 50:87:4c:71:e2:ce:78:f9:e7:eb:70:ea:fa:f5:ea:76:56:3b: 28:d7:03:ce:5a:ca:83:c4:b5:b2:20:50:c0:3d:e5:4d:c0:3e: 59:87:24:8b:73:4e:8b:f2:94:d6:22:5b:95:88:14:b1:21:a6: 48:b5:23:87 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ5RjkxMTAvBgNVBAUTKEJEQjEyOTQ4RjJFMDc4OUIxNUYwMkQ1MTM5QkEwNkIy MzA2QTI4RTcwHhcNMjUwOTE2MDYwMjEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM4ZmQ2NC01ODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Wc88PilYGJPA30r0FV3V3uo2Me1gZwZKUmJvu6WEJtmjBsEusSATZefvcPd l+Rb7JIJykrkuEVaBtO2QT+brSM21mCWuRrpzHeRSvKAldVXbvpEDGsV+P9kx6bY tumKY3kCcJDHxI3HWnCd/nTsVKtWnmmUB7OXFS1XaPax4k0Y2TWIUg6yDf3zuT8+ VI8atYFAsYzJFGc0zqsXi74LlwoqU69Z0R4OU7wqYOsj9muNfQ4qeuF+gQK9P8c9 3Si0kemRJo/JSxuAV9ifiQIBSYCQJVciyMQfL8HUeYW7qDB0q3jGnxoEZDzP0HnL XdZ4Rv8/+fHm26TPmN4dsEoleQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIP/fILz ltpSa5qUHrJPqwP9up0vMB8GA1UdIwQYMBaAFL2xKUjy4HibFfAtUTm6BrIwaijn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDlGOS82QzY5MkFGNDE0 RjkxMUVDODk0MzU1MTRDNEY5QUUwMi92YkVwU1BMZ2VKc1Y4QzFST2JvR3NqQnFL T2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZiRXBTUExnZUpzVjhDMVJPYm9Hc2pCcUtPYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQ5RjkvNkM2OTJBRjQxNEY5MTFFQzg5NDM1NTE0QzRGOUFFMDIvQUZCMjJFQzg5 MkMyMTFGMEEzODU0NzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABni8cDBACJUwAwDQYJKoZIhvcNAQELBQADggEBALVjt6Xr XHNYIEWgaOMD4+snJ12OkoRpLjrVihpQgmhiHCL6y368WUJLVl+gBJ8pycioPhUV rDq6dTKNarQeSfZSzmSywTlLT1jCxDjQ9grXekUMVeCQ5CezhyiK+w9MnEUP+1iO cempYn7MuILoinhPaaWqqU92D8mgAf5bbSrGKYj1tQ0eAEIrUQMxObvnjL7rVoyE 3ZMztIUZi75Olajh+OitP4khf4+qztXBL2QwRvgQQo9ZrIPJdXc4QfNKqTFiLJp5 +FCHTHHiznj55+tw6vr16nZWOyjXA85ayoPEtbIgUMA95U3APlmHJItzTovylNYi W5WIFLEhpki1I4c= -----END CERTIFICATE-----Generated at Thu Sep 18 21:59:19 2025 by rpki-client