$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/D6A69CF45AD711EF8665FF81C4F9AE02.roa File: D6A69CF45AD711EF8665FF81C4F9AE02.roa (raw, json) Hash identifier: sUPjSnVrnjmDdoMwCFJp2zuEZdscR4LvuhmHJ1v7ZYI= Subject key identifier: 78:D8:46:BC:75:BC:D6:D6:15:7A:09:B4:AF:CB:04:A5:9D:44:6C:7F Certificate issuer: /CN=A91A6D8B/serialNumber=9AB686E3C299AA7E4455493495B46BA5A744099D Certificate serial: 016E Authority key identifier: 9A:B6:86:E3:C2:99:AA:7E:44:55:49:34:95:B4:6B:A5:A7:44:09:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/D6A69CF45AD711EF8665FF81C4F9AE02.roa Signing time: Wed 03 Sep 2025 04:52:07 +0000 ROA not before: Wed 03 Sep 2025 04:52:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137996 IP address blocks: 103.120.4.0/24 maxlen: 24 103.120.5.0/24 maxlen: 24 2407:b140:1379::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.crl rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 03:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6D8B, serialNumber=9AB686E3C299AA7E4455493495B46BA5A744099D Validity Not Before: Sep 3 04:52:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7c977-649d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f5:9c:dd:00:3b:4d:75:2b:bc:30:8a:68:fb: 76:d9:e2:dc:b7:79:51:33:64:23:9c:8e:c1:fb:d8: 9a:cb:9a:2d:69:57:e2:ed:cc:9e:c0:8d:33:8d:e8: d2:82:37:d2:91:cf:52:30:e7:2b:20:86:3d:b6:0b: 48:9a:7a:1a:0b:00:8c:db:7c:db:77:64:23:a9:c7: 60:b4:90:27:b1:1b:a8:94:23:68:83:72:dd:3c:34: ed:f1:2a:2c:79:e5:bc:3f:81:f1:10:14:7c:23:c9: 60:15:81:15:40:ad:09:b5:10:4d:32:4f:47:e4:13: 74:54:5d:6c:58:34:35:6f:ab:61:df:8c:6d:de:a3: 24:27:7d:96:1b:8d:7e:32:fe:53:f7:e4:92:60:d7: 92:56:7e:03:f7:0c:19:e3:9a:b5:6d:2d:d1:51:65: 6e:15:56:a7:8d:57:ff:b3:cb:95:52:00:53:e3:39: 1c:3c:0d:b4:98:29:a6:3e:a5:1d:cd:38:30:41:bc: 06:13:c5:76:53:21:6e:8e:64:bc:6b:20:e6:0a:2b: 9e:13:ef:b5:b7:a6:46:06:03:5f:f2:57:06:34:23: 72:84:b8:58:88:20:72:e6:39:2f:46:0d:16:4f:78: 14:82:5b:22:e5:81:61:a5:7d:03:a3:86:10:b7:09: 59:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D8:46:BC:75:BC:D6:D6:15:7A:09:B4:AF:CB:04:A5:9D:44:6C:7F X509v3 Authority Key Identifier: keyid:9A:B6:86:E3:C2:99:AA:7E:44:55:49:34:95:B4:6B:A5:A7:44:09:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/mraG48KZqn5EVUk0lbRrpadECZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mraG48KZqn5EVUk0lbRrpadECZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6D8B/B2F235B2672011EEA146C22DC4F9AE02/D6A69CF45AD711EF8665FF81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.4.0/23 IPv6: 2407:b140:1379::/48 Signature Algorithm: sha256WithRSAEncryption 02:70:8b:ba:1d:13:81:56:8c:71:9b:dc:8c:2a:b9:03:c3:54: f5:d7:60:37:18:a9:c6:3e:25:c4:a4:10:48:d8:79:eb:18:d5: e3:f8:5c:0f:38:13:06:40:56:cb:3f:68:76:8e:2c:ae:bb:3c: b1:e2:c0:9c:27:06:d0:e0:1d:dc:07:9f:94:d0:5c:f3:19:bf: f1:c8:80:c7:43:de:89:de:98:a1:d9:f9:77:03:c1:f5:33:ef: aa:ab:05:2e:7d:8f:32:b4:12:e8:1e:18:5e:c3:10:a0:e6:d4: 6e:3f:b1:60:59:76:4f:e6:69:b5:fa:c7:5a:af:a4:ef:fa:1a: bf:d0:5a:cc:37:e4:9f:3a:1a:00:77:a8:ad:1c:47:80:d6:8a: 00:67:ff:58:22:15:a5:26:31:34:1d:08:b2:44:5d:87:77:b7: 3b:97:0c:cc:f8:05:b2:e5:80:32:18:32:ab:f5:ba:be:0f:b4: 49:3f:87:41:50:6f:03:5d:c6:9c:40:6b:62:99:fe:21:4c:9b: 46:2a:6e:db:3a:7a:cc:3c:81:dc:0f:f6:0f:a6:73:8c:c4:81: d7:4c:74:f4:e4:c2:fc:f7:1e:56:9e:65:fb:58:56:28:ee:ae: 30:e2:63:c6:60:35:a7:b1:63:eb:b1:74:ac:95:95:55:5b:70: 0c:a6:f8:da -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZEOEIxMTAvBgNVBAUTKDlBQjY4NkUzQzI5OUFBN0U0NDU1NDkzNDk1QjQ2QkE1 QTc0NDA5OUQwHhcNMjUwOTAzMDQ1MjA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Yzk3Ny02NDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvWc3QA7TXUrvDCKaPt22eLct3lRM2QjnI7B+9iay5otaVfi7cyewI0zjejS gjfSkc9SMOcrIIY9tgtImnoaCwCM23zbd2QjqcdgtJAnsRuolCNog3LdPDTt8Sos eeW8P4HxEBR8I8lgFYEVQK0JtRBNMk9H5BN0VF1sWDQ1b6th34xt3qMkJ32WG41+ Mv5T9+SSYNeSVn4D9wwZ45q1bS3RUWVuFVanjVf/s8uVUgBT4zkcPA20mCmmPqUd zTgwQbwGE8V2UyFujmS8ayDmCiueE++1t6ZGBgNf8lcGNCNyhLhYiCBy5jkvRg0W T3gUglsi5YFhpX0Do4YQtwlZywIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHjYRrx1 vNbWFXoJtK/LBKWdRGx/MB8GA1UdIwQYMBaAFJq2huPCmap+RFVJNJW0a6WnRAmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkQ4Qi9CMkYyMzVCMjY3 MjAxMUVFQTE0NkMyMkRDNEY5QUUwMi9tcmFHNDhLWnFuNUVWVWswbGJScnBhZEVD WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21yYUc0OEtacW41RVZVazBsYlJycGFkRUNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZEOEIvQjJGMjM1QjI2NzIwMTFFRUExNDZDMjJEQzRGOUFFMDIvRDZBNjlDRjQ1 QUQ3MTFFRjg2NjVGRjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFneAQwDwQCAAIwCQMHACQHsUATeTANBgkqhkiG9w0BAQsF AAOCAQEAAnCLuh0TgVaMcZvcjCq5A8NU9ddgNxipxj4lxKQQSNh56xjV4/hcDzgT BkBWyz9odo4srrs8seLAnCcG0OAd3AeflNBc8xm/8ciAx0Peid6Yodn5dwPB9TPv qqsFLn2PMrQS6B4YXsMQoObUbj+xYFl2T+ZptfrHWq+k7/oav9BazDfknzoaAHeo rRxHgNaKAGf/WCIVpSYxNB0IskRdh3e3O5cMzPgFsuWAMhgyq/W6vg+0ST+HQVBv A13GnEBrYpn+IUybRipu2zp6zDyB3A/2D6ZzjMSB10x09OTC/PceVp5l+1hWKO6u MOJjxmA1p7Fj67F0rJWVVVtwDKb42g== -----END CERTIFICATE-----Generated at Tue Sep 9 19:18:41 2025 by rpki-client