$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/17ABE41ACAF611EE894A2D50C4F9AE02.roa File: 17ABE41ACAF611EE894A2D50C4F9AE02.roa (raw, json) Hash identifier: AhLlGMUsYbOkOCNOVYTJ9rkCcumTaBTxAyd6gwUn/6c= Subject key identifier: F6:3B:67:EA:75:F7:F7:46:21:68:B2:DD:D9:B5:82:88:C4:E9:F4:31 Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Certificate serial: 048A Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/17ABE41ACAF611EE894A2D50C4F9AE02.roa Signing time: Sun 31 Aug 2025 01:18:02 +0000 ROA not before: Sun 31 Aug 2025 01:18:02 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147182 IP address blocks: 103.96.26.0/24 maxlen: 24 123.253.193.0/24 maxlen: 24 123.253.194.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2A1F, serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Validity Not Before: Aug 31 01:18:02 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b3a2ca-4e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:39:a0:52:6e:77:fa:60:0e:a0:f4:e9:7b:c2: 80:26:93:e3:0e:cc:46:0e:81:b2:ae:e2:0e:84:35: 46:a1:6e:b1:86:46:ec:9e:4c:47:39:5e:33:56:2a: 98:6e:04:de:6d:a4:38:bc:35:3b:26:3d:63:22:cc: 17:66:fc:6a:1f:53:cc:d7:bf:ad:9e:8f:f9:b2:4c: 9c:24:8f:df:c6:2a:ca:c2:3a:d1:c3:a1:13:a6:17: a4:fe:6e:c1:67:f6:ea:44:15:2d:21:6f:ea:f0:e1: 69:db:ea:3a:13:1a:ff:d0:f1:19:f7:78:4e:55:35: 66:27:b9:f6:40:42:f0:a4:73:05:99:74:40:ac:f4: b3:ae:eb:9c:ca:12:a1:4a:41:d1:c7:09:9a:5c:05: da:82:77:7d:6e:25:af:79:37:41:ff:c4:14:ff:5c: c0:33:e8:c6:de:9d:59:c9:33:c4:ad:42:15:39:ec: 04:7f:47:62:c4:b5:f5:07:32:c1:84:df:3e:dd:a9: a8:f8:11:d5:d8:80:c2:6d:af:63:57:0a:44:f9:06: 3e:3e:2c:27:c7:f9:af:17:53:da:6d:f6:a2:59:8d: f4:31:6b:b2:26:24:77:a2:ff:62:df:de:75:8d:15: e4:db:d5:55:b0:f9:82:00:a6:5c:56:b5:36:6f:9c: 34:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:3B:67:EA:75:F7:F7:46:21:68:B2:DD:D9:B5:82:88:C4:E9:F4:31 X509v3 Authority Key Identifier: keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/17ABE41ACAF611EE894A2D50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.26.0/24 123.253.193.0-123.253.195.255 Signature Algorithm: sha256WithRSAEncryption 60:0e:a6:bd:96:ed:30:08:3b:35:fb:92:1b:99:71:e5:3d:d1: b9:63:17:b0:5d:1b:c0:c0:e2:4c:a1:bc:f5:58:9d:87:26:e2: 0b:d0:e7:5e:d0:70:8f:a7:1c:28:b3:82:4e:a7:c1:52:de:9e: 2a:a1:10:c3:89:ea:e4:8a:c9:d7:16:d2:b2:f5:9e:03:8d:be: ab:ab:7c:70:14:51:d1:cd:14:2d:e7:1c:62:93:51:c2:e5:c9: 06:b7:88:4f:be:7f:35:d3:f1:52:56:b5:02:a2:6e:2b:79:8c: 95:3b:4a:77:00:30:76:9a:7f:f7:ad:80:5b:b5:1f:71:62:35: 1b:b2:44:1b:35:69:16:9d:28:4a:86:e0:fd:5f:47:9b:75:aa: 64:a9:1f:d6:0e:1a:98:8e:f3:8e:9c:f3:0d:b6:29:f2:8a:c6: 46:85:86:4c:f5:89:a1:75:a4:f0:75:95:37:98:8d:cd:bd:83: da:ca:94:cb:72:df:32:6c:01:20:28:ad:da:de:73:39:26:96: f1:3b:0a:ed:39:ac:70:da:eb:15:14:90:3c:e6:c8:30:32:f0: 31:6d:ef:87:b8:c2:c3:bb:22:73:7a:1e:6c:dd:07:21:0f:92: d0:7d:80:88:f9:11:87:50:d7:25:78:9d:61:19:56:de:5b:52: 0c:e4:6c:1f -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJBMUYxMTAvBgNVBAUTKDY5MzlGQzA0MERBNUMzMEI3NjZEQzc5NEY5Q0E0QzJG NDFBQ0FFRUEwHhcNMjUwODMxMDExODAyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzYTJjYS00ZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujmgUm53+mAOoPTpe8KAJpPjDsxGDoGyruIOhDVGoW6xhkbsnkxHOV4zViqY bgTebaQ4vDU7Jj1jIswXZvxqH1PM17+tno/5skycJI/fxirKwjrRw6ETphek/m7B Z/bqRBUtIW/q8OFp2+o6Exr/0PEZ93hOVTVmJ7n2QELwpHMFmXRArPSzruucyhKh SkHRxwmaXAXagnd9biWveTdB/8QU/1zAM+jG3p1ZyTPErUIVOewEf0dixLX1BzLB hN8+3amo+BHV2IDCba9jVwpE+QY+Piwnx/mvF1PabfaiWY30MWuyJiR3ov9i3951 jRXk29VVsPmCAKZcVrU2b5w0KQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFPY7Z+p1 9/dGIWiy3dm1gojE6fQxMB8GA1UdIwQYMBaAFGk5/AQNpcMLdm3HlPnKTC9BrK7q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkExRi8xRUNGRkM0QzYy MTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3dDJiY2VVLWNwTUwwR3Ny dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUbjhCQTJsd3d0MmJjZVUtY3BNTDBHc3J1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJBMUYvMUVDRkZDNEM2MjE5MTFFQzk5QTU1RjNFQzRGOUFFMDIvMTdBQkU0MUFD QUY2MTFFRTg5NEEyRDUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnYBowDAMEAHv9wQMEAnv9wDANBgkqhkiG9w0BAQsFAAOC AQEAYA6mvZbtMAg7NfuSG5lx5T3RuWMXsF0bwMDiTKG89VidhybiC9DnXtBwj6cc KLOCTqfBUt6eKqEQw4nq5IrJ1xbSsvWeA42+q6t8cBRR0c0ULeccYpNRwuXJBreI T75/NdPxUla1AqJuK3mMlTtKdwAwdpp/962AW7UfcWI1G7JEGzVpFp0oSobg/V9H m3WqZKkf1g4amI7zjpzzDbYp8orGRoWGTPWJoXWk8HWVN5iNzb2D2sqUy3LfMmwB ICit2t5zOSaW8TsK7TmscNrrFRSQPObIMDLwMW3vh7jCw7sic3oebN0HIQ+S0H2A iPkRh1DXJXidYRlW3ltSDORsHw== -----END CERTIFICATE-----Generated at Fri Sep 19 05:16:36 2025 by rpki-client