$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/84210E0A9AAB11F0AFE54B2AC4F9AE02.roa File: 84210E0A9AAB11F0AFE54B2AC4F9AE02.roa (raw, json) Hash identifier: +1fBdFMYnCMvceFuuR7PjuuiY3XOXJxU7RALxaZnijA= Subject key identifier: 90:FA:E9:3B:AC:61:3F:79:A6:4A:52:C0:B6:D6:43:07:73:48:A0:07 Certificate issuer: /CN=A91A2359/serialNumber=E991A5A2DD9D1F2A243DF6AA24B9F50E1CB8FEE5 Certificate serial: 0B79 Authority key identifier: E9:91:A5:A2:DD:9D:1F:2A:24:3D:F6:AA:24:B9:F5:0E:1C:B8:FE:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6ZGlot2dHyokPfaqJLn1Dhy4_uU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/84210E0A9AAB11F0AFE54B2AC4F9AE02.roa Signing time: Tue 30 Sep 2025 01:08:32 +0000 ROA not before: Tue 30 Sep 2025 01:08:32 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 23532 IP address blocks: 103.245.234.0/24 maxlen: 24 103.245.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/6ZGlot2dHyokPfaqJLn1Dhy4_uU.crl rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/6ZGlot2dHyokPfaqJLn1Dhy4_uU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6ZGlot2dHyokPfaqJLn1Dhy4_uU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 20:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2359, serialNumber=E991A5A2DD9D1F2A243DF6AA24B9F50E1CB8FEE5 Validity Not Before: Sep 30 01:08:32 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68db2d90-e998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:73:df:31:6b:6c:f6:5f:4b:0e:37:ad:d1:c2: a6:ab:93:00:0e:c2:26:a0:b8:a9:47:2d:43:b4:ec: 58:72:dc:6d:69:e8:a4:ac:3e:55:69:fb:e2:ac:60: a2:f1:1c:b7:61:a0:a8:3a:e7:d6:d5:30:03:46:04: 72:98:ca:5c:bc:0a:04:a7:1c:2a:d4:fa:5e:ec:3d: 02:3a:6c:db:a2:e8:97:1e:16:47:98:ae:48:81:fa: 3e:f3:85:6b:8a:9f:46:68:64:3b:09:49:89:db:8f: c8:9c:c0:89:cd:87:d3:ba:19:7a:3c:1e:1a:b6:83: 61:a5:26:43:1d:3e:ed:47:24:14:bf:ab:41:28:c1: e9:8e:b6:15:56:b7:47:47:71:bf:00:5d:1e:3d:35: e5:36:a2:90:ce:21:08:c6:91:a9:78:60:98:75:35: 20:84:d7:e5:25:bb:5d:52:9e:a9:62:99:2f:8c:99: 1c:dc:ad:a6:8c:7b:90:4a:78:7c:ee:9b:ec:33:94: f8:17:ae:7e:a5:4b:0f:13:5b:01:97:7f:da:8f:36: d2:d4:ee:e2:22:fa:8b:f7:b3:b2:7c:ac:98:db:f5: b9:b4:01:19:6e:f8:d5:13:02:46:4d:54:1f:f9:83: 56:7f:f4:69:68:05:71:0d:4b:45:3d:ce:f1:17:1e: 9d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FA:E9:3B:AC:61:3F:79:A6:4A:52:C0:B6:D6:43:07:73:48:A0:07 X509v3 Authority Key Identifier: keyid:E9:91:A5:A2:DD:9D:1F:2A:24:3D:F6:AA:24:B9:F5:0E:1C:B8:FE:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/6ZGlot2dHyokPfaqJLn1Dhy4_uU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6ZGlot2dHyokPfaqJLn1Dhy4_uU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2359/FC298DEA417011EA98DE656AC4F9AE02/84210E0A9AAB11F0AFE54B2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.245.234.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:5c:19:8b:7b:81:94:15:1b:83:16:8d:8a:25:53:67:ee:9e: 4f:51:90:d7:3c:78:52:c8:3c:2b:f7:93:00:9a:9a:25:8a:82: ea:19:2d:18:21:eb:5e:c0:ce:05:4c:6b:58:01:23:51:53:38: 4e:66:3e:84:4a:09:c6:c2:dc:a3:11:4f:b4:da:ed:ea:64:bb: 44:80:95:cb:49:47:0c:36:11:42:6e:57:f4:06:dc:d4:84:90: 59:18:5a:9a:97:b1:83:ec:46:f6:73:5b:d0:e9:50:cb:da:9a: 5f:12:0b:3b:49:f7:ea:c4:44:2d:88:e5:b0:58:85:98:37:5b: f6:8d:bc:cb:29:16:00:67:15:72:12:a4:f7:c5:bf:a4:cb:99: 34:40:6b:8f:05:10:1e:7b:5b:bf:1d:64:b9:84:f2:90:78:56: 8f:27:cf:1e:1e:6f:ed:c2:51:20:e7:81:69:ac:6a:79:b1:94: cb:e9:ac:d0:9b:89:bf:7f:53:4f:68:17:e2:6a:32:03:83:e5: 88:3f:fa:8a:a1:32:44:12:63:c9:66:7e:99:77:6b:b2:b9:5d: f7:80:40:49:14:97:73:db:73:85:b2:6f:0f:e1:fd:9f:e5:55: be:e2:83:55:2f:2f:7e:ef:20:2c:4e:9b:cb:66:47:5d:d5:94: 63:e5:a6:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIzNTkxMTAvBgNVBAUTKEU5OTFBNUEyREQ5RDFGMkEyNDNERjZBQTI0QjlGNTBF MUNCOEZFRTUwHhcNMjUwOTMwMDEwODMyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiMmQ5MC1lOTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoHPfMWts9l9LDjet0cKmq5MADsImoLipRy1DtOxYctxtaeikrD5VafvirGCi 8Ry3YaCoOufW1TADRgRymMpcvAoEpxwq1Ppe7D0COmzbouiXHhZHmK5Igfo+84Vr ip9GaGQ7CUmJ24/InMCJzYfTuhl6PB4atoNhpSZDHT7tRyQUv6tBKMHpjrYVVrdH R3G/AF0ePTXlNqKQziEIxpGpeGCYdTUghNflJbtdUp6pYpkvjJkc3K2mjHuQSnh8 7pvsM5T4F65+pUsPE1sBl3/ajzbS1O7iIvqL97OyfKyY2/W5tAEZbvjVEwJGTVQf +YNWf/RpaAVxDUtFPc7xFx6dmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJD66Tus YT95pkpSwLbWQwdzSKAHMB8GA1UdIwQYMBaAFOmRpaLdnR8qJD32qiS59Q4cuP7l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjM1OS9GQzI5OERFQTQx NzAxMUVBOThERTY1NkFDNEY5QUUwMi82Wkdsb3QyZEh5b2tQZmFxSkxuMURoeTRf dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZaR2xvdDJkSHlva1BmYXFKTG4xRGh5NF91VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTIzNTkvRkMyOThERUE0MTcwMTFFQTk4REU2NTZBQzRGOUFFMDIvODQyMTBFMEE5 QUFCMTFGMEFGRTU0QjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn9eowDQYJKoZIhvcNAQELBQADggEBAF5cGYt7gZQVG4MW jYolU2funk9RkNc8eFLIPCv3kwCamiWKguoZLRgh617AzgVMa1gBI1FTOE5mPoRK CcbC3KMRT7Ta7epku0SAlctJRww2EUJuV/QG3NSEkFkYWpqXsYPsRvZzW9DpUMva ml8SCztJ9+rERC2I5bBYhZg3W/aNvMspFgBnFXISpPfFv6TLmTRAa48FEB57W78d ZLmE8pB4Vo8nzx4eb+3CUSDngWmsanmxlMvprNCbib9/U09oF+JqMgOD5Yg/+oqh MkQSY8lmfpl3a7K5XfeAQEkUl3Pbc4Wybw/h/Z/lVb7ig1UvL37vICxOm8tmR13V lGPlpsQ= -----END CERTIFICATE-----Generated at Tue Oct 14 17:18:42 2025 by rpki-client