$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/84CFF0D6D2F311EEAFCF3273C4F9AE02.roa File: 84CFF0D6D2F311EEAFCF3273C4F9AE02.roa (raw, json) Hash identifier: 3CkpfzzdlD3cY7gMPcsoVBDo+GHLrm85uXTpFP0fJ9Q= Subject key identifier: 0A:B5:FB:F0:6A:B3:CB:DF:F1:7D:DF:3F:D1:06:EB:9F:E2:ED:6F:53 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0C82 Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/84CFF0D6D2F311EEAFCF3273C4F9AE02.roa Signing time: Wed 08 Oct 2025 18:48:37 +0000 ROA not before: Wed 08 Oct 2025 18:48:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150748 IP address blocks: 103.100.233.0/24 maxlen: 24 103.100.234.0/24 maxlen: 24 103.100.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 19:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3202 (0xc82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Oct 8 18:48:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6b204-95e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a7:71:8a:1c:b3:1d:75:73:d6:60:1a:0d:08: c9:84:63:0c:3b:b6:cf:18:16:62:ee:7d:5c:84:59: a9:35:75:ff:e6:05:84:80:db:df:d9:d1:f3:88:31: 73:1a:81:9f:5a:04:b3:1c:69:9c:cf:7c:5e:c1:9c: 64:a0:90:e4:df:d6:d5:88:53:fa:68:04:a8:85:5e: a2:d8:f4:44:a3:d2:cf:a7:20:48:9e:be:10:80:58: c6:a1:50:e0:d7:ee:62:77:6b:cf:a2:72:7d:b4:4a: 80:dd:e5:7e:04:07:ab:3b:08:01:33:d7:aa:28:f6: 1d:f5:49:f5:ef:13:af:85:da:c7:7b:16:c7:11:81: 71:05:6c:0a:fa:e1:12:89:45:62:1f:23:c7:77:6e: c9:dd:b0:1b:65:28:0c:b8:e4:a1:99:b7:99:54:63: d1:1b:1c:5c:e0:a3:56:bf:43:fa:a3:16:28:74:c8: 9f:74:a8:f7:af:83:b2:31:36:bf:94:01:06:9b:58: 51:61:86:b1:36:a5:46:9e:da:c7:96:cd:7a:8b:3b: 58:3d:58:9b:6b:1b:8e:c4:38:60:4b:18:cd:b8:a1: ba:36:aa:97:ba:7c:5a:2c:26:e1:e6:b1:70:e8:20: 0d:e6:0a:88:83:3b:ad:1c:7d:1c:ac:4a:6f:d8:a6: 93:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B5:FB:F0:6A:B3:CB:DF:F1:7D:DF:3F:D1:06:EB:9F:E2:ED:6F:53 X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/84CFF0D6D2F311EEAFCF3273C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.233.0-103.100.235.255 Signature Algorithm: sha256WithRSAEncryption 95:24:ca:db:5d:34:ab:96:22:9f:3c:c0:68:1c:a5:8b:39:2f: f3:09:45:95:09:41:31:81:19:3b:9b:0c:ce:85:31:32:2d:93: 6d:39:a8:34:28:d1:5d:99:0a:30:8e:8b:7c:2c:14:fb:83:fc: d8:4f:40:d2:d7:23:d9:69:07:30:d2:28:eb:4f:59:d3:1e:d4: 6f:47:06:54:32:d3:0a:51:05:27:7d:d5:02:5a:eb:9e:7c:ab: dd:ee:a1:c4:4a:81:b8:a2:ae:ab:f8:8e:89:64:6f:46:d7:eb: dd:6f:29:38:a3:d3:83:0a:a6:53:2d:7e:cf:90:20:42:2c:55: 40:ea:7e:61:aa:cc:9f:26:79:8f:53:65:7b:ab:1a:20:7e:f3: 78:47:1f:6a:40:10:ff:94:f0:5a:cd:0d:38:1d:61:06:93:ee: 7c:e5:5a:11:13:c0:38:d3:d1:e0:65:55:d6:7a:f6:fb:e9:fb: d4:08:95:44:11:33:be:0a:23:dd:9b:70:7a:7d:c1:84:2d:05: ce:4e:7c:7a:90:c9:8d:ab:fc:83:90:c9:8d:1f:4f:a4:be:95: 28:fa:bb:b7:d2:90:f2:49:70:29:7a:70:f1:ec:68:77:d9:c1: ec:29:d7:8b:65:00:cd:3a:8c:0a:76:a0:84:b9:c4:bb:33:b1: 9a:ff:70:c9 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjUxMDA4MTg0ODM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2YjIwNC05NWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwadxihyzHXVz1mAaDQjJhGMMO7bPGBZi7n1chFmpNXX/5gWEgNvf2dHziDFz GoGfWgSzHGmcz3xewZxkoJDk39bViFP6aASohV6i2PREo9LPpyBInr4QgFjGoVDg 1+5id2vPonJ9tEqA3eV+BAerOwgBM9eqKPYd9Un17xOvhdrHexbHEYFxBWwK+uES iUViHyPHd27J3bAbZSgMuOShmbeZVGPRGxxc4KNWv0P6oxYodMifdKj3r4OyMTa/ lAEGm1hRYYaxNqVGntrHls16iztYPVibaxuOxDhgSxjNuKG6NqqXunxaLCbh5rFw 6CAN5gqIgzutHH0crEpv2KaTRwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFAq1+/Bq s8vf8X3fP9EG65/i7W9TMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1RTAvMjNCRjJGMjYxMTNFMTFFQTg4RTg3ODc2QzRGOUFFMDIvODRDRkYwRDZE MkYzMTFFRUFGQ0YzMjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGdk6QMEAmdk6DANBgkqhkiG9w0BAQsFAAOCAQEAlSTK 2100q5YinzzAaBylizkv8wlFlQlBMYEZO5sMzoUxMi2TbTmoNCjRXZkKMI6LfCwU +4P82E9A0tcj2WkHMNIo609Z0x7Ub0cGVDLTClEFJ33VAlrrnnyr3e6hxEqBuKKu q/iOiWRvRtfr3W8pOKPTgwqmUy1+z5AgQixVQOp+YarMnyZ5j1Nle6saIH7zeEcf akAQ/5TwWs0NOB1hBpPufOVaERPAONPR4GVV1nr2++n71AiVRBEzvgoj3Ztwen3B hC0Fzk58epDJjav8g5DJjR9PpL6VKPq7t9KQ8klwKXpw8exod9nB7CnXi2UAzTqM CnaghLnEuzOxmv9wyQ== -----END CERTIFICATE-----Generated at Tue Oct 28 17:02:40 2025 by rpki-client