$ rpki-client -vvf rpki.apnic.net/member_repository/A91A87AB/F096DCC4E44B11EBB2C81E80C4F9AE02/9C3424A08F7F11F09A0D9529C4F9AE02.roa File: 9C3424A08F7F11F09A0D9529C4F9AE02.roa (raw, json) Hash identifier: cwF8COUkuSrij9NX2KXpkgFn2IJIbJrzIKS8a9AaFJE= Subject key identifier: 75:82:24:AE:79:07:C7:8C:C5:25:86:ED:88:7D:74:8C:7F:5B:A6:37 Certificate issuer: /CN=A91A87AB/serialNumber=C1A2C71FD8AD582589F04902DDAF839885DFD337 Certificate serial: 05A7 Authority key identifier: C1:A2:C7:1F:D8:AD:58:25:89:F0:49:02:DD:AF:83:98:85:DF:D3:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/waLHH9itWCWJ8EkC3a-DmIXf0zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A87AB/F096DCC4E44B11EBB2C81E80C4F9AE02/9C3424A08F7F11F09A0D9529C4F9AE02.roa Signing time: Fri 12 Sep 2025 02:24:29 +0000 ROA not before: Fri 12 Sep 2025 02:24:29 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149014 IP address blocks: 103.146.8.0/23 maxlen: 23 103.146.8.0/24 maxlen: 24 103.146.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A87AB/F096DCC4E44B11EBB2C81E80C4F9AE02/waLHH9itWCWJ8EkC3a-DmIXf0zc.crl rsync://rpki.apnic.net/member_repository/A91A87AB/F096DCC4E44B11EBB2C81E80C4F9AE02/waLHH9itWCWJ8EkC3a-DmIXf0zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/waLHH9itWCWJ8EkC3a-DmIXf0zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1447 (0x5a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A87AB, serialNumber=C1A2C71FD8AD582589F04902DDAF839885DFD337 Validity Not Before: Sep 12 02:24:29 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68c3845d-5cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:20:71:2a:c4:f8:98:8a:b1:1e:2a:6f:cd:0b: 06:0a:68:49:a9:43:b5:8b:29:0c:61:9d:1b:c3:83: 57:2e:0e:60:58:5c:0a:a4:e8:bc:48:f6:80:70:17: 07:82:b7:af:84:04:06:35:e5:c0:bf:6c:27:03:e3: 37:ba:df:22:0b:56:ad:76:ac:0b:0a:d9:91:23:8e: d9:d4:83:35:d2:2a:8a:36:1e:8f:07:9b:59:33:e5: 3f:07:f2:66:81:0d:cc:dc:19:78:6c:4c:27:a5:2f: 1b:29:85:fa:9a:9c:c4:08:2e:6b:cf:7a:f3:f4:38: aa:ad:f2:c8:19:17:52:bc:57:ea:14:4e:ec:10:04: c7:87:33:f0:b1:3a:7f:bd:d4:56:58:f9:dc:d9:70: 5b:45:70:22:97:e4:d6:46:d0:4a:05:4c:ab:c3:bb: ec:cc:87:f2:8d:ab:00:3b:49:ac:42:12:0e:b3:e6: 9a:43:5a:37:c8:26:03:e7:e1:c1:4d:88:dd:d3:fd: f9:f9:03:3a:63:83:e1:78:46:0b:96:b0:2e:c5:fc: 8f:15:0c:d9:4a:9e:b4:56:f1:e4:4c:74:56:3e:73: d3:27:fe:f4:fb:bf:9d:68:ff:c6:b2:4c:b2:84:c0: b0:ef:3e:6b:8a:33:f5:3f:d1:cd:63:a4:2a:ab:17: 19:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:82:24:AE:79:07:C7:8C:C5:25:86:ED:88:7D:74:8C:7F:5B:A6:37 X509v3 Authority Key Identifier: keyid:C1:A2:C7:1F:D8:AD:58:25:89:F0:49:02:DD:AF:83:98:85:DF:D3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A87AB/F096DCC4E44B11EBB2C81E80C4F9AE02/waLHH9itWCWJ8EkC3a-DmIXf0zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/waLHH9itWCWJ8EkC3a-DmIXf0zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A87AB/F096DCC4E44B11EBB2C81E80C4F9AE02/9C3424A08F7F11F09A0D9529C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.8.0/23 Signature Algorithm: sha256WithRSAEncryption 51:d2:71:48:e5:95:d3:a8:7d:15:bc:28:fc:4f:b5:e0:5b:a7: f6:df:b3:95:43:25:cd:17:2f:49:50:80:5e:df:e9:d9:18:34: d2:a0:d0:12:a0:04:aa:6d:f4:12:67:6e:ae:b2:70:08:6c:2b: 01:d4:a0:47:ab:d2:80:db:7e:16:fb:59:2e:e4:95:08:9b:1b: e6:68:d3:6c:53:2f:31:14:5e:7a:d6:b7:ee:c0:82:df:ec:b8: 83:3d:a4:07:d9:d5:4b:3c:f8:02:7b:fd:0a:33:2d:4a:7b:83: 77:c3:0e:97:ca:87:fb:83:ce:7a:15:ec:b1:f3:f8:78:26:07: 8c:2f:2d:e9:39:a1:96:00:da:4d:35:5a:61:8a:ad:10:50:80: 1f:af:17:d9:d2:ad:30:80:0e:13:a3:5d:6e:eb:d9:25:fb:ff: 6d:73:bf:5f:05:5a:15:4f:b3:83:a0:36:02:01:97:11:2e:0e: 8c:fe:08:17:aa:fb:13:11:4e:cf:34:b9:63:2a:68:ca:91:97: 34:1d:4a:5f:3c:3c:53:36:4d:bb:a8:18:e7:28:f7:ef:46:6e: a9:24:bd:43:4b:ab:d2:8d:f9:bb:00:d8:9b:c2:21:17:8c:c3: ce:be:d4:6e:a2:32:99:34:71:f3:77:c1:a9:43:bb:cd:4b:b2: 15:84:6f:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg3QUIxMTAvBgNVBAUTKEMxQTJDNzFGRDhBRDU4MjU4OUYwNDkwMkREQUY4Mzk4 ODVERkQzMzcwHhcNMjUwOTEyMDIyNDI5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMzODQ1ZC01Y2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCBxKsT4mIqxHipvzQsGCmhJqUO1iykMYZ0bw4NXLg5gWFwKpOi8SPaAcBcH grevhAQGNeXAv2wnA+M3ut8iC1atdqwLCtmRI47Z1IM10iqKNh6PB5tZM+U/B/Jm gQ3M3Bl4bEwnpS8bKYX6mpzECC5rz3rz9DiqrfLIGRdSvFfqFE7sEATHhzPwsTp/ vdRWWPnc2XBbRXAil+TWRtBKBUyrw7vszIfyjasAO0msQhIOs+aaQ1o3yCYD5+HB TYjd0/35+QM6Y4PheEYLlrAuxfyPFQzZSp60VvHkTHRWPnPTJ/70+7+daP/Gskyy hMCw7z5rijP1P9HNY6QqqxcZ9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHWCJK55 B8eMxSWG7Yh9dIx/W6Y3MB8GA1UdIwQYMBaAFMGixx/YrVglifBJAt2vg5iF39M3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODdBQi9GMDk2RENDNEU0 NEIxMUVCQjJDODFFODBDNEY5QUUwMi93YUxISDlpdFdDV0o4RWtDM2EtRG1JWGYw emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dhTEhIOWl0V0NXSjhFa0MzYS1EbUlYZjB6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg3QUIvRjA5NkRDQzRFNDRCMTFFQkIyQzgxRTgwQzRGOUFFMDIvOUMzNDI0QTA4 RjdGMTFGMDlBMEQ5NTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkggwDQYJKoZIhvcNAQELBQADggEBAFHScUjlldOofRW8 KPxPteBbp/bfs5VDJc0XL0lQgF7f6dkYNNKg0BKgBKpt9BJnbq6ycAhsKwHUoEer 0oDbfhb7WS7klQibG+Zo02xTLzEUXnrWt+7Agt/suIM9pAfZ1Us8+AJ7/QozLUp7 g3fDDpfKh/uDznoV7LHz+HgmB4wvLek5oZYA2k01WmGKrRBQgB+vF9nSrTCADhOj XW7r2SX7/21zv18FWhVPs4OgNgIBlxEuDoz+CBeq+xMRTs80uWMqaMqRlzQdSl88 PFM2TbuoGOco9+9GbqkkvUNLq9KN+bsA2JvCIReMw86+1G6iMpk0cfN3walDu81L shWEb+Y= -----END CERTIFICATE-----Generated at Fri Sep 19 16:16:54 2025 by rpki-client