$ rpki-client -vvf rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/C3835BF6B9A311EEB293524AC4F9AE02.roa File: C3835BF6B9A311EEB293524AC4F9AE02.roa (raw, json) Hash identifier: UlpJBRG/slW4YmDu7jI0m8GwClz9FqM/W/iTuDuu4YY= Subject key identifier: 2C:D3:C0:DD:18:EE:FB:4A:BD:C2:CD:EB:72:3B:71:AA:7A:CC:A5:CC Certificate issuer: /CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Certificate serial: 01C8 Authority key identifier: EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/C3835BF6B9A311EEB293524AC4F9AE02.roa Signing time: Mon 03 Nov 2025 03:17:39 +0000 ROA not before: Mon 03 Nov 2025 03:17:39 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147024 IP address blocks: 103.173.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A352E, serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Validity Not Before: Nov 3 03:17:39 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69081ed2-b32c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a8:92:c2:d7:70:76:c9:e7:e4:a9:1c:4c:ff: 41:38:be:50:0a:f6:e5:b5:1c:83:0f:46:f0:cf:54: 4a:33:f9:a2:48:2f:d4:b1:1e:17:ba:e7:b2:22:ce: 25:84:e6:9a:f9:08:bb:6a:87:05:0f:53:88:8a:98: cf:0e:15:ca:7d:19:53:9e:82:7a:db:94:df:46:47: ef:57:2b:4a:6f:96:93:ff:3a:bc:39:91:51:1c:db: 06:b2:ec:9a:5c:59:59:d2:74:2d:bd:c6:7c:92:ea: 5a:b0:af:34:91:cd:7c:37:8f:3a:49:04:0c:5b:fd: e8:78:d4:5e:15:89:7d:8b:52:bc:bb:01:94:3c:1e: 4b:fe:bd:28:0a:81:ca:9f:57:23:2a:91:ec:c9:b6: 7b:7a:77:f4:d4:d6:bf:a2:f6:d1:48:b7:16:9d:20: 85:92:50:43:19:96:b0:6a:ef:01:c1:15:32:87:bd: 55:4f:1a:ce:a4:e5:ab:a9:9d:a8:a3:0e:a2:b6:16: af:c9:72:98:6a:59:b1:b8:27:f0:1a:5c:de:ab:d1: a9:4e:e2:59:ef:15:7a:d7:3a:f8:f6:3e:69:26:6a: cd:7a:63:40:d2:b2:24:37:88:54:9c:3c:d1:77:8b: 58:46:be:d1:ac:ed:25:2e:e8:24:21:79:7e:13:22: 97:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D3:C0:DD:18:EE:FB:4A:BD:C2:CD:EB:72:3B:71:AA:7A:CC:A5:CC X509v3 Authority Key Identifier: keyid:EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/C3835BF6B9A311EEB293524AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.33.0/24 Signature Algorithm: sha256WithRSAEncryption b6:2e:6b:b6:11:09:d2:ef:8b:04:a4:84:46:16:24:be:33:9a: f3:36:22:36:90:fe:6a:df:56:64:92:e9:1c:c3:08:18:9f:31: 22:cb:1f:83:0a:77:fc:00:32:98:0b:7a:e4:b2:f1:b5:7c:99: de:50:34:ef:f1:e3:c0:52:17:a2:7f:f9:07:2e:d2:b6:d5:fb: 59:a0:b4:d1:39:a8:30:e8:43:0c:fb:83:a5:0e:54:4c:e6:44: 1d:98:56:90:04:92:ba:eb:b7:84:61:a7:54:a5:e7:72:ef:0d: ca:0f:10:21:b1:9d:13:cd:db:72:24:51:ec:13:7a:7f:48:cd: 4f:c8:7b:b2:76:bd:1e:a8:f2:94:30:f4:92:cf:a5:c3:7d:9f: 4e:16:2b:ba:72:3e:6f:ac:36:ad:7d:9e:05:8b:05:72:bc:f0: 3d:b5:39:f1:a3:1c:d9:f8:81:d9:85:a8:ed:b0:a4:2c:aa:6c: d1:d8:57:db:3d:ce:0d:14:6d:84:ea:94:38:63:22:3b:f6:da: b9:ca:3a:bd:ab:86:fd:a9:bc:d4:bb:0d:9a:1f:92:f5:a2:6d: 36:5b:1f:2c:48:92:e8:69:af:05:4d:4f:b6:ba:57:10:b9:30: 42:25:40:da:f0:5a:ca:e9:7f:f2:a9:c2:00:9c:8c:82:36:07: 5b:91:c9:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MkUxMTAvBgNVBAUTKEVGNjcwMkE3RDBBRUM4MzRERUZCOEY0MTY4QjJGRThG NEQ1ODQzRTgwHhcNMjUxMTAzMDMxNzM5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MWVkMi1iMzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlKiSwtdwdsnn5KkcTP9BOL5QCvbltRyDD0bwz1RKM/miSC/UsR4XuueyIs4l hOaa+Qi7aocFD1OIipjPDhXKfRlTnoJ625TfRkfvVytKb5aT/zq8OZFRHNsGsuya XFlZ0nQtvcZ8kupasK80kc18N486SQQMW/3oeNReFYl9i1K8uwGUPB5L/r0oCoHK n1cjKpHsybZ7enf01Na/ovbRSLcWnSCFklBDGZawau8BwRUyh71VTxrOpOWrqZ2o ow6ithavyXKYalmxuCfwGlzeq9GpTuJZ7xV61zr49j5pJmrNemNA0rIkN4hUnDzR d4tYRr7RrO0lLugkIXl+EyKXqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCzTwN0Y 7vtKvcLN63I7cap6zKXMMB8GA1UdIwQYMBaAFO9nAqfQrsg03vuPQWiy/o9NWEPo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyRS9EQzMzNTk3QzBC NjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlEVGUtNDlCYUxMLWowMVlR LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyY0NwOUN1eURUZS00OUJhTEwtajAxWVEtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM1MkUvREMzMzU5N0MwQjYwMTFFRUIzMjIwNDFBQzRGOUFFMDIvQzM4MzVCRjZC OUEzMTFFRUIyOTM1MjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrSEwDQYJKoZIhvcNAQELBQADggEBALYua7YRCdLviwSk hEYWJL4zmvM2IjaQ/mrfVmSS6RzDCBifMSLLH4MKd/wAMpgLeuSy8bV8md5QNO/x 48BSF6J/+Qcu0rbV+1mgtNE5qDDoQwz7g6UOVEzmRB2YVpAEkrrrt4Rhp1Sl53Lv DcoPECGxnRPN23IkUewTen9IzU/Ie7J2vR6o8pQw9JLPpcN9n04WK7pyPm+sNq19 ngWLBXK88D21OfGjHNn4gdmFqO2wpCyqbNHYV9s9zg0UbYTqlDhjIjv22rnKOr2r hv2pvNS7DZofkvWibTZbHyxIkuhprwVNT7a6VxC5MEIlQNrwWsrpf/KpwgCcjII2 B1uRycI= -----END CERTIFICATE-----Generated at Tue Nov 4 09:27:44 2025 by rpki-client