$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/B2D0D768766011F08F4AF05AC4F9AE02.roa File: B2D0D768766011F08F4AF05AC4F9AE02.roa (raw, json) Hash identifier: 9nhYmTgkqcOjR0NO2+wz26tomnd/zZ4DybayX4g1JJs= Subject key identifier: 72:98:A2:6C:4D:B4:A8:D8:E4:C8:61:EE:01:58:E0:47:BE:08:DA:43 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: BC Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/B2D0D768766011F08F4AF05AC4F9AE02.roa Signing time: Wed 01 Oct 2025 07:05:30 +0000 ROA not before: Wed 01 Oct 2025 07:05:30 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153952 IP address blocks: 103.75.236.0/24 maxlen: 24 2001:df1:c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 09:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Oct 1 07:05:30 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68dcd2ba-706a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:3e:c0:2c:8b:da:cf:f6:8b:43:cf:88:7b:78: 5c:e0:70:9e:2d:0e:78:6a:58:da:c3:02:8d:6e:07: c2:a4:9f:59:56:10:5c:31:ef:7b:d6:65:76:80:af: 61:c9:92:8d:b4:15:a3:e2:83:ed:11:73:c0:58:34: 89:81:db:a6:5d:4f:57:63:6c:cf:9d:16:c3:c7:a4: c3:d5:e9:6e:56:b9:bc:2b:88:0a:7c:4d:49:f0:fd: 12:f0:bb:4b:0c:d6:62:c0:9e:84:3d:9e:dd:84:e5: bb:8e:2e:3f:e5:23:e4:c2:01:d7:c6:f7:a0:20:e7: 5e:20:3a:9d:8a:0d:4a:f9:e6:43:ed:1b:98:b8:47: 39:9f:a1:42:38:ac:ad:83:99:f5:38:5b:21:72:34: 46:82:87:b1:64:0b:42:4a:4c:1e:1d:25:1b:d5:b5: 65:90:fa:96:84:91:37:4e:be:03:3f:fe:d9:b1:bb: 3e:26:7a:7d:83:d7:c4:f0:f9:6f:9d:8b:5f:58:b6: 11:aa:e1:35:69:1a:7d:5e:84:6b:19:f6:26:92:56: 74:2b:3e:1a:b4:12:9e:04:51:f2:8d:bf:fe:4b:93: 94:68:db:09:3a:f8:22:83:d2:8b:29:88:ac:e7:3b: 73:25:c4:77:e1:61:0c:fe:5c:2b:bb:8d:14:de:37: b8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:98:A2:6C:4D:B4:A8:D8:E4:C8:61:EE:01:58:E0:47:BE:08:DA:43 X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/B2D0D768766011F08F4AF05AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.75.236.0/24 IPv6: 2001:df1:c80::/48 Signature Algorithm: sha256WithRSAEncryption 76:6c:95:99:6d:cf:8b:ba:87:2f:45:cc:2b:fa:15:64:f8:d6: a6:48:7a:ee:98:63:a3:1a:61:c4:30:0a:9a:04:f4:fd:2f:88: 59:44:22:b5:32:b0:56:e9:f2:a3:be:15:04:77:be:c2:49:30: 98:ef:8b:02:47:c8:4b:69:3f:49:0b:61:1b:21:fb:e6:60:70: 00:44:fe:16:e0:ce:f9:04:24:f6:40:4e:da:c2:35:5c:f1:23: aa:3f:09:3d:9f:ef:4f:1e:67:27:03:15:92:75:d6:76:58:8f: 7f:7f:d7:6a:98:fd:8b:31:53:3d:01:14:89:ae:28:29:4c:8f: 98:7c:b3:5d:10:1c:84:72:9f:d9:14:3e:6c:db:15:1b:92:c4: 16:33:7b:a3:6f:ab:7a:7b:d6:14:e2:3b:bc:cb:42:df:59:04: 34:b8:d2:ac:8d:ff:cd:3f:47:f7:ae:f2:8e:0c:1d:70:01:47: ff:33:88:24:53:09:4d:14:aa:02:23:e3:6e:e2:e7:4a:79:98: c4:2d:64:db:65:70:8e:ab:d4:ba:1a:df:a8:67:00:34:1b:3b: a1:ac:0e:ea:f2:ae:78:0c:a4:f2:b2:7e:c5:5d:59:5e:86:09: 5f:f0:4b:40:1f:77:59:64:b2:fc:1b:80:1d:ac:62:7a:c9:8c: 92:c7:2b:7c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFEQUYxMTAvBgNVBAUTKDY4QzJCNTg4RDE2ODVBNTg3NDJEOEEyRTE4ODg2NURC MzExMDNDRjcwHhcNMjUxMDAxMDcwNTMwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjZDJiYS03MDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6T7ALIvaz/aLQ8+Ie3hc4HCeLQ54aljawwKNbgfCpJ9ZVhBcMe971mV2gK9h yZKNtBWj4oPtEXPAWDSJgdumXU9XY2zPnRbDx6TD1eluVrm8K4gKfE1J8P0S8LtL DNZiwJ6EPZ7dhOW7ji4/5SPkwgHXxvegIOdeIDqdig1K+eZD7RuYuEc5n6FCOKyt g5n1OFshcjRGgoexZAtCSkweHSUb1bVlkPqWhJE3Tr4DP/7Zsbs+Jnp9g9fE8Plv nYtfWLYRquE1aRp9XoRrGfYmklZ0Kz4atBKeBFHyjb/+S5OUaNsJOvgig9KLKYis 5ztzJcR34WEM/lwru40U3je4AQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHKYomxN tKjY5Mhh7gFY4Ee+CNpDMB8GA1UdIwQYMBaAFGjCtYjRaFpYdC2KLhiIZdsxEDz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQURBRi84NzE1OUM5NjhD RjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1dsaDBMWW91R0lobDJ6RVFQ UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFEQUYvODcxNTlDOTY4Q0YzMTFFRjlGM0VBNDBGQzRGOUFFMDIvQjJEMEQ3Njg3 NjYwMTFGMDhGNEFGMDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnS+wwDwQCAAIwCQMHACABDfEMgDANBgkqhkiG9w0BAQsF AAOCAQEAdmyVmW3Pi7qHL0XMK/oVZPjWpkh67phjoxphxDAKmgT0/S+IWUQitTKw Vunyo74VBHe+wkkwmO+LAkfIS2k/SQthGyH75mBwAET+FuDO+QQk9kBO2sI1XPEj qj8JPZ/vTx5nJwMVknXWdliPf3/Xapj9izFTPQEUia4oKUyPmHyzXRAchHKf2RQ+ bNsVG5LEFjN7o2+renvWFOI7vMtC31kENLjSrI3/zT9H967yjgwdcAFH/zOIJFMJ TRSqAiPjbuLnSnmYxC1k22VwjqvUuhrfqGcANBs7oawO6vKueAyk8rJ+xV1ZXoYJ X/BLQB93WWSy/BuAHaxiesmMkscrfA== -----END CERTIFICATE-----Generated at Tue Oct 14 09:13:03 2025 by rpki-client