$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/3996C94896D211EF924C486FC4F9AE02.roa File: 3996C94896D211EF924C486FC4F9AE02.roa (raw, json) Hash identifier: kqOdm4mIQ5rtE9W5sQYT9M1D8hmXdIyf47H8prMLi/w= Subject key identifier: E6:59:7F:70:22:3D:82:7B:09:40:28:0B:D0:50:A5:40:68:53:76:E4 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: D2 Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/3996C94896D211EF924C486FC4F9AE02.roa Signing time: Mon 03 Nov 2025 06:21:40 +0000 ROA not before: Mon 03 Nov 2025 06:21:40 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63851 IP address blocks: 103.42.152.0/22 maxlen: 22 103.42.152.0/23 maxlen: 23 103.42.152.0/24 maxlen: 24 103.42.153.0/24 maxlen: 24 103.42.154.0/23 maxlen: 23 103.42.154.0/24 maxlen: 24 103.42.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Nov 3 06:21:40 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=690849f4-2af5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9f:85:ca:bd:22:74:94:f4:7a:44:8d:7a:25: 65:44:6c:78:c7:c1:c5:49:04:0b:67:0c:02:64:55: 1e:1e:e3:26:1c:80:55:37:da:95:7e:c1:6f:12:53: 95:8e:41:b4:85:97:35:6d:0c:51:94:2e:5a:3f:7c: e5:a5:22:2a:3b:cd:08:79:8e:31:1c:cb:c2:d6:ba: e7:56:bf:72:ea:9c:52:46:1f:02:31:e3:ab:8e:a9: 78:df:9a:90:db:b4:e5:20:af:ab:fe:23:8c:7f:7d: b4:98:5e:84:3c:f3:8e:07:6b:1c:57:14:51:73:a9: dc:4c:44:a6:b4:d2:4c:2d:c8:ab:98:e5:7b:c7:58: 23:70:c1:5c:aa:88:e5:07:2d:a8:c9:d7:f8:84:68: 0e:ca:ec:64:3e:c6:92:da:74:5e:08:f8:7b:af:56: 72:da:9a:58:64:d6:3d:e8:96:5d:f6:f9:0f:49:5b: e1:f9:2f:1c:46:9f:93:65:90:92:c3:13:54:61:dc: 90:ff:22:4e:87:d6:dc:01:3b:64:04:5a:12:dc:2b: 24:65:5c:3d:7e:b7:ba:ce:16:64:6a:60:92:db:70: ef:8a:48:c5:dd:f2:de:3e:b4:9e:41:25:ff:84:98: b4:40:5d:a4:7d:38:d6:f2:af:ea:4a:99:6b:0f:03: ec:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:59:7F:70:22:3D:82:7B:09:40:28:0B:D0:50:A5:40:68:53:76:E4 X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/3996C94896D211EF924C486FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.152.0/22 Signature Algorithm: sha256WithRSAEncryption 13:0b:4e:b3:6b:e4:91:53:80:be:15:19:16:48:b0:8d:42:7b: 53:0a:9c:c4:ae:65:ad:34:54:55:a4:25:7f:d3:53:f7:2e:45: e7:96:5d:c9:04:ab:ac:9b:7a:3c:c6:ea:ae:c7:72:e1:90:64: dc:1c:4b:2a:df:f0:d5:7b:e7:f3:a3:dd:5d:b9:db:4a:ee:14: 21:7a:3c:91:3c:cf:a2:28:a8:68:69:03:7c:0f:34:ee:77:b5: 02:d3:55:b3:a1:19:b7:b0:42:c1:5e:0c:0c:de:28:c7:28:a1: a5:d9:21:28:90:bd:41:60:db:c6:23:52:d1:06:e5:a2:8f:a3: 6a:48:ea:b0:0c:2b:dd:1f:31:7b:67:61:57:99:59:bc:aa:59: cd:58:16:6c:68:1f:e9:36:af:37:5b:4c:15:2b:86:f1:e5:39: 58:0c:c5:31:c0:9f:e0:86:fa:36:37:14:e5:7f:c3:1f:13:1a: 94:c3:1f:dc:b7:38:cf:92:ae:68:f6:e0:65:ea:e5:4e:a8:2d: ff:ce:44:b6:45:a8:cb:e9:0a:e4:53:13:61:25:86:9c:d4:e0: ab:42:dc:71:c3:27:67:23:02:ee:5b:e8:b7:1e:72:7a:7c:bb: 57:f4:a0:7c:30:f6:c4:aa:75:6b:6d:02:73:19:ff:00:4e:bf: eb:ec:c7:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBFOUQxMTAvBgNVBAUTKEQyMUIwRDVBQzVBRjkxOTAwRjUwQUQ5NjAwMzMxM0U1 MUVENjBBMTAwHhcNMjUxMTAzMDYyMTQwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4NDlmNC0yYWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZ+Fyr0idJT0ekSNeiVlRGx4x8HFSQQLZwwCZFUeHuMmHIBVN9qVfsFvElOV jkG0hZc1bQxRlC5aP3zlpSIqO80IeY4xHMvC1rrnVr9y6pxSRh8CMeOrjql435qQ 27TlIK+r/iOMf320mF6EPPOOB2scVxRRc6ncTESmtNJMLcirmOV7x1gjcMFcqojl By2oydf4hGgOyuxkPsaS2nReCPh7r1Zy2ppYZNY96JZd9vkPSVvh+S8cRp+TZZCS wxNUYdyQ/yJOh9bcATtkBFoS3CskZVw9fre6zhZkamCS23DvikjF3fLePrSeQSX/ hJi0QF2kfTjW8q/qSplrDwPstQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOZZf3Ai PYJ7CUAoC9BQpUBoU3bkMB8GA1UdIwQYMBaAFNIbDVrFr5GQD1CtlgAzE+Ue1goQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEU5RC85NTY5QURCNDk1 REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmtaQVBVSzJXQURNVDVSN1dD aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0NoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBFOUQvOTU2OUFEQjQ5NURCMTFFRkE0RTJGQjQ1QzRGOUFFMDIvMzk5NkM5NDg5 NkQyMTFFRjkyNEM0ODZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKpgwDQYJKoZIhvcNAQELBQADggEBABMLTrNr5JFTgL4V GRZIsI1Ce1MKnMSuZa00VFWkJX/TU/cuReeWXckEq6ybejzG6q7HcuGQZNwcSyrf 8NV75/Oj3V2520ruFCF6PJE8z6IoqGhpA3wPNO53tQLTVbOhGbewQsFeDAzeKMco oaXZISiQvUFg28YjUtEG5aKPo2pI6rAMK90fMXtnYVeZWbyqWc1YFmxoH+k2rzdb TBUrhvHlOVgMxTHAn+CG+jY3FOV/wx8TGpTDH9y3OM+Srmj24GXq5U6oLf/ORLZF qMvpCuRTE2ElhpzU4KtC3HHDJ2cjAu5b6Lcecnp8u1f0oHww9sSqdWttAnMZ/wBO v+vsx7U= -----END CERTIFICATE-----Generated at Wed Nov 5 21:28:17 2025 by rpki-client