$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa File: 27E42824621B11ECB96F443FC4F9AE02.roa (raw, json) Hash identifier: Sm62SuE35DgQNzh5GVaogSxOvuwCjlanLDW6px4c/Bw= Subject key identifier: 4B:D3:41:60:6E:1B:A2:F2:10:12:E3:E3:11:FA:27:0F:69:75:45:F4 Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Certificate serial: 0489 Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa Signing time: Sun 31 Aug 2025 01:18:01 +0000 ROA not before: Sun 31 Aug 2025 01:18:01 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136788 IP address blocks: 103.96.24.0/22 maxlen: 22 103.96.24.0/23 maxlen: 23 103.96.26.0/24 maxlen: 24 123.253.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:33:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1161 (0x489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2A1F, serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Validity Not Before: Aug 31 01:18:01 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b3a2c9-c0cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b4:2c:3b:f7:11:d3:bb:a7:e4:12:4e:d9:4a: c8:0e:a5:e2:60:25:45:94:5c:bc:35:89:ec:3b:6b: 3b:40:87:fc:3d:89:0a:d5:19:7d:d6:9b:56:74:c0: e5:2c:55:89:44:35:ca:37:4e:86:3a:02:88:4d:85: 33:8a:25:26:1c:3f:d4:f7:94:be:6e:9b:76:7f:8e: 69:28:81:5c:4b:84:c1:29:0c:6b:6b:53:2c:2f:f8: 0a:e9:ae:1f:e6:32:91:f4:70:a6:2e:06:90:61:3f: cd:7c:dc:4c:b2:fd:fe:11:80:e8:90:5b:1e:c3:36: 27:6d:35:f9:63:54:10:c0:a5:09:86:e4:06:60:85: 05:d5:f3:c9:0f:e2:5d:94:d2:8d:4e:37:29:f8:0a: fe:94:73:33:30:77:30:25:9f:46:1c:74:c6:3c:d2: b4:72:fe:84:cc:42:69:d3:9a:95:ba:5d:3a:45:1d: f5:aa:d2:ce:9b:e1:ef:ce:10:6f:ed:65:28:58:23: 8e:cd:22:17:c9:2b:08:d9:9f:91:4a:e0:13:79:17: 95:f9:ab:37:95:81:da:22:9d:ee:7b:81:82:1c:68: 50:8a:20:c7:5c:5e:1f:81:87:b1:0b:f2:d8:87:b4: de:55:e6:b8:20:54:08:2b:48:14:50:1f:2c:d3:55: f2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D3:41:60:6E:1B:A2:F2:10:12:E3:E3:11:FA:27:0F:69:75:45:F4 X509v3 Authority Key Identifier: keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/27E42824621B11ECB96F443FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.24.0/22 123.253.192.0/22 Signature Algorithm: sha256WithRSAEncryption 28:8c:d3:0d:38:a6:23:79:cb:90:25:3e:47:3a:43:e9:ef:cd: e9:66:6d:61:77:fa:d9:5b:21:d0:f7:4d:59:60:28:17:fd:e0: ee:02:32:eb:c8:9f:d0:11:b1:89:16:84:d4:ae:69:2e:59:07: bb:fe:1e:18:21:45:6a:54:cc:53:6b:fb:25:db:88:76:77:9b: 11:aa:6f:bf:16:3b:4c:1b:4e:f0:08:f2:3f:7e:01:8d:b0:2c: d2:2f:9e:2e:8f:52:98:95:87:12:d7:45:25:18:ae:5d:61:72: f4:06:2a:7a:e4:03:20:0d:1c:26:52:b5:97:09:d4:10:52:74: ec:d9:11:4e:68:ac:06:ba:5c:56:3a:7f:0c:bd:94:08:8f:49: ea:31:38:c3:b0:3d:00:2d:cd:92:73:94:e9:3f:0c:be:5d:ee: 84:ed:a1:40:6c:bd:4e:28:5c:30:82:3f:82:02:85:ba:1a:2d: 4e:c1:e6:ab:98:db:2c:48:c9:18:24:34:17:2f:5e:3b:45:95: c1:2d:5e:48:da:1e:47:e6:ba:b1:f5:9c:6c:50:71:d2:6d:21: f3:25:fe:b4:c8:dd:8b:7f:f7:1e:bb:44:d8:c3:0e:14:e6:6a: 1c:86:9b:6a:c6:65:79:50:47:16:5d:92:88:67:29:f4:25:b4: 68:5c:81:12 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJBMUYxMTAvBgNVBAUTKDY5MzlGQzA0MERBNUMzMEI3NjZEQzc5NEY5Q0E0QzJG NDFBQ0FFRUEwHhcNMjUwODMxMDExODAxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzYTJjOS1jMGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LQsO/cR07un5BJO2UrIDqXiYCVFlFy8NYnsO2s7QIf8PYkK1Rl91ptWdMDl LFWJRDXKN06GOgKITYUziiUmHD/U95S+bpt2f45pKIFcS4TBKQxra1MsL/gK6a4f 5jKR9HCmLgaQYT/NfNxMsv3+EYDokFsewzYnbTX5Y1QQwKUJhuQGYIUF1fPJD+Jd lNKNTjcp+Ar+lHMzMHcwJZ9GHHTGPNK0cv6EzEJp05qVul06RR31qtLOm+HvzhBv 7WUoWCOOzSIXySsI2Z+RSuATeReV+as3lYHaIp3ue4GCHGhQiiDHXF4fgYexC/LY h7TeVea4IFQIK0gUUB8s01XyYQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEvTQWBu G6LyEBLj4xH6Jw9pdUX0MB8GA1UdIwQYMBaAFGk5/AQNpcMLdm3HlPnKTC9BrK7q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkExRi8xRUNGRkM0QzYy MTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3dDJiY2VVLWNwTUwwR3Ny dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUbjhCQTJsd3d0MmJjZVUtY3BNTDBHc3J1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTJBMUYvMUVDRkZDNEM2MjE5MTFFQzk5QTU1RjNFQzRGOUFFMDIvMjdFNDI4MjQ2 MjFCMTFFQ0I5NkY0NDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnYBgDBAJ7/cAwDQYJKoZIhvcNAQELBQADggEBACiM0w04 piN5y5AlPkc6Q+nvzelmbWF3+tlbIdD3TVlgKBf94O4CMuvIn9ARsYkWhNSuaS5Z B7v+HhghRWpUzFNr+yXbiHZ3mxGqb78WO0wbTvAI8j9+AY2wLNIvni6PUpiVhxLX RSUYrl1hcvQGKnrkAyANHCZStZcJ1BBSdOzZEU5orAa6XFY6fwy9lAiPSeoxOMOw PQAtzZJzlOk/DL5d7oTtoUBsvU4oXDCCP4IChboaLU7B5quY2yxIyRgkNBcvXjtF lcEtXkjaHkfmurH1nGxQcdJtIfMl/rTI3Yt/9x67RNjDDhTmahyGm2rGZXlQRxZd kohnKfQltGhcgRI= -----END CERTIFICATE-----Generated at Fri Sep 19 05:19:59 2025 by rpki-client