$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa File: AF91ADB42CE211EC8664D47EC4F9AE02.roa (raw, json) Hash identifier: wwz7C2WhiFB/fPJcMxt1QlkPUOWQEV9jMcZeemu9/Kg= Subject key identifier: CD:EB:27:E4:97:B1:70:D4:5D:FC:9F:B8:3E:4F:AD:B0:9D:94:9B:DA Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 0504 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa Signing time: Tue 09 Sep 2025 00:05:27 +0000 ROA not before: Tue 09 Sep 2025 00:05:27 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.70.49.0/24 maxlen: 24 103.70.51.0/24 maxlen: 24 182.54.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1284 (0x504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Sep 9 00:05:27 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68bf6f47-86e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dc:9b:8a:8a:c4:11:53:e2:2c:5e:37:5c:c5: aa:5c:06:2d:e0:ff:b5:ad:ba:0a:7b:6a:f4:7e:1e: 91:d9:70:fa:92:07:64:79:56:d1:aa:da:e0:0e:6b: 30:a1:41:ef:fd:a4:07:12:56:37:06:f4:fc:c6:e5: 54:51:ed:24:47:7b:ce:38:5b:58:83:c2:de:63:9e: 87:db:12:25:f2:df:9f:e6:67:52:b3:07:fb:32:ad: 6e:01:45:6a:03:60:15:19:b6:30:a0:b2:b8:d8:51: 5d:8f:88:86:2a:a1:0c:74:b6:23:18:73:41:5b:c6: 75:96:ca:be:60:99:ec:17:72:da:a6:4a:8c:02:db: 15:08:82:b0:74:e0:b3:0f:4a:5c:e3:10:09:5b:40: f0:a5:ca:31:68:f2:17:b0:99:c0:5a:62:23:5b:1b: d8:6b:e5:c5:ad:0a:f1:ae:ce:ae:50:9e:f3:29:02: e1:4b:aa:9e:4c:94:21:0a:87:6a:29:c4:9c:f7:ff: f6:14:fe:19:c6:af:0f:b1:bb:8e:ef:55:13:83:15: da:6f:8b:46:7a:38:a0:6a:9e:d9:c9:bc:97:67:5f: d2:8a:55:19:95:b9:7d:f2:d1:76:89:02:07:61:43: 51:d4:8d:dc:27:f2:09:74:92:f0:ab:b9:77:d0:32: 2c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:EB:27:E4:97:B1:70:D4:5D:FC:9F:B8:3E:4F:AD:B0:9D:94:9B:DA X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.49.0/24 103.70.51.0/24 182.54.135.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:0e:26:9a:80:4f:80:6d:c0:de:be:fa:87:dd:ca:f9:1c:69: f9:29:62:a9:ef:3f:c8:ed:4a:fb:d0:a4:49:77:f4:e4:3b:ba: 4f:59:01:cc:62:c5:fe:bc:70:a0:24:90:7a:0d:c5:fa:12:29: 2d:4c:08:73:91:79:19:1a:96:ad:d5:b8:dc:72:0d:53:78:3a: 45:cc:2b:3e:8a:9c:d1:07:50:d0:20:7b:6f:c5:f1:10:63:ad: d1:94:e9:4b:ae:c7:41:c0:fe:96:c6:e2:bf:5f:6e:9d:5e:b8: 71:4f:93:3f:82:ab:78:dc:ad:4f:ca:13:05:17:e1:4a:cd:17: 2e:59:cf:49:ea:11:87:1c:09:6d:d9:9c:f2:bd:c1:cf:98:10: de:f8:fe:b4:d5:1b:d9:e4:83:81:b4:c1:88:8e:6a:ae:7d:d9: 92:cd:54:24:2e:08:0e:50:64:ed:10:9f:db:3f:43:42:6f:6c: f7:c7:0a:0b:34:0d:48:b1:c7:1a:db:25:91:ce:ad:c4:35:63: 21:50:30:02:6c:21:cf:c6:bf:68:e9:16:88:7a:b3:5f:a8:72: 06:32:02:da:0a:6b:f7:1a:1d:7a:90:97:0a:5a:37:3f:af:85: 24:08:95:a0:be:02:77:4e:be:03:4f:b5:22:a3:60:ce:29:24: bb:c7:c8:96 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjUwOTA5MDAwNTI3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmNmY0Ny04NmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdybiorEEVPiLF43XMWqXAYt4P+1rboKe2r0fh6R2XD6kgdkeVbRqtrgDmsw oUHv/aQHElY3BvT8xuVUUe0kR3vOOFtYg8LeY56H2xIl8t+f5mdSswf7Mq1uAUVq A2AVGbYwoLK42FFdj4iGKqEMdLYjGHNBW8Z1lsq+YJnsF3LapkqMAtsVCIKwdOCz D0pc4xAJW0DwpcoxaPIXsJnAWmIjWxvYa+XFrQrxrs6uUJ7zKQLhS6qeTJQhCodq KcSc9//2FP4Zxq8PsbuO71UTgxXab4tGejigap7ZybyXZ1/SilUZlbl98tF2iQIH YUNR1I3cJ/IJdJLwq7l30DIsgQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFM3rJ+SX sXDUXfyfuD5PrbCdlJvaMB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvQUY5MUFEQjQy Q0UyMTFFQzg2NjRENDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnRjEDBABnRjMDBAC2NocwDQYJKoZIhvcNAQELBQADggEB ADoOJpqAT4BtwN6++ofdyvkcafkpYqnvP8jtSvvQpEl39OQ7uk9ZAcxixf68cKAk kHoNxfoSKS1MCHOReRkalq3VuNxyDVN4OkXMKz6KnNEHUNAge2/F8RBjrdGU6Uuu x0HA/pbG4r9fbp1euHFPkz+Cq3jcrU/KEwUX4UrNFy5Zz0nqEYccCW3ZnPK9wc+Y EN74/rTVG9nkg4G0wYiOaq592ZLNVCQuCA5QZO0Qn9s/Q0JvbPfHCgs0DUixxxrb JZHOrcQ1YyFQMAJsIc/Gv2jpFoh6s1+ocgYyAtoKa/caHXqQlwpaNz+vhSQIlaC+ AndOvgNPtSKjYM4pJLvHyJY= -----END CERTIFICATE-----Generated at Wed Sep 17 22:18:29 2025 by rpki-client