$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/3CEDCE18900D11F0BD65E474C4F9AE02.roa File: 3CEDCE18900D11F0BD65E474C4F9AE02.roa (raw, json) Hash identifier: UlU8FGyIe5T0I0XXCW9XvGGScSrSWkYOAvIkrPLe+o0= Subject key identifier: D2:41:45:B6:CF:54:E4:60:E9:DC:92:9B:F2:AD:67:F3:92:BD:8B:C9 Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Certificate serial: 06C9 Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/3CEDCE18900D11F0BD65E474C4F9AE02.roa Signing time: Wed 22 Oct 2025 23:42:10 +0000 ROA not before: Wed 22 Oct 2025 23:42:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 15143 IP address blocks: 103.99.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B29F8, serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Validity Not Before: Oct 22 23:42:10 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f96bd2-d58d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4a:48:ec:29:46:a7:ce:ff:cc:f7:2d:af:97: 08:c6:8c:3d:2a:85:27:72:46:27:da:41:82:34:0d: 4f:e9:b4:e9:2d:bd:4c:17:88:6c:b4:2f:94:fa:52: 65:36:ca:c2:95:fb:5d:9c:25:52:2d:bb:89:7d:85: 66:89:0f:51:49:90:ee:59:99:76:ff:56:e2:53:d6: 9e:a5:77:8e:32:e9:2b:fb:45:56:4a:68:3a:b9:34: 23:26:89:de:9e:4f:22:4b:5c:5e:11:87:d2:ab:1c: ba:9d:77:16:de:03:48:c8:fd:ff:ca:5d:df:43:45: f7:9a:c5:09:a4:0b:da:c3:c0:ec:07:3d:29:cb:58: a5:70:e8:93:f9:d4:f1:71:7d:81:20:47:33:58:c7: 9f:ac:4c:10:3c:dc:ca:ee:74:00:47:e1:d0:d1:18: 8d:4e:a5:3f:54:31:30:10:0b:a0:b2:1e:aa:9c:35: 46:77:9b:05:c9:99:c2:05:fc:58:17:05:b5:00:05: bb:59:ee:6f:e0:85:59:66:6a:8b:50:24:ee:47:fc: 15:66:9d:63:c8:cf:f1:e0:af:d4:b8:a8:43:7f:d6: 28:0d:18:c6:dc:14:fc:2b:ab:b7:f1:c0:0e:8b:8c: 84:0d:ed:7e:73:a6:07:3c:87:1e:8a:f3:13:33:f1: 77:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:41:45:B6:CF:54:E4:60:E9:DC:92:9B:F2:AD:67:F3:92:BD:8B:C9 X509v3 Authority Key Identifier: keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/3CEDCE18900D11F0BD65E474C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.60.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:ee:88:5c:1b:b7:e4:ff:35:84:4d:03:ab:d5:dd:21:25:75: 2e:28:1c:14:75:84:b1:8a:f0:63:67:d7:e7:34:1e:9e:44:a4: 58:fd:a5:f7:fa:43:b7:80:e5:69:d0:4c:80:1e:ed:50:dd:bf: 21:ff:53:70:44:0e:3d:46:ee:0a:44:75:10:fd:27:bb:04:bc: d2:ef:7f:26:f1:21:cb:dd:75:39:6c:4f:17:5c:c3:d8:a9:64: c5:e4:59:7a:68:3b:29:c8:ec:26:f0:2c:76:2c:86:20:e5:91: 15:11:f4:db:0c:cc:53:e5:71:56:ce:d4:6b:01:81:c3:e0:8c: 0a:e7:b0:37:b6:f5:6c:7e:d8:19:33:57:2c:25:00:85:9b:e7: 5c:ff:e4:64:ca:e8:41:9c:2f:3b:89:66:6e:57:50:b6:13:07: 53:4d:c3:6d:21:ef:ad:87:5f:91:1c:0c:bc:c9:6d:27:d7:b4: 3b:7f:ba:8b:93:be:55:84:27:5f:c2:59:fe:c2:8a:12:db:45: 22:c9:29:28:9e:0f:d7:f0:64:35:28:7f:87:5e:ba:d4:22:32: ae:35:58:96:6f:94:32:d8:d4:26:64:9e:32:bf:51:9c:12:00: 2f:b3:c0:8a:6d:f2:6e:05:18:fa:2e:5e:d2:cb:38:4d:4e:43: b5:1f:78:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIzNkEyQTVBNTBB RjA5Rjg0MTEwHhcNMjUxMDIyMjM0MjEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5NmJkMi1kNThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0pI7ClGp87/zPctr5cIxow9KoUnckYn2kGCNA1P6bTpLb1MF4hstC+U+lJl NsrClftdnCVSLbuJfYVmiQ9RSZDuWZl2/1biU9aepXeOMukr+0VWSmg6uTQjJone nk8iS1xeEYfSqxy6nXcW3gNIyP3/yl3fQ0X3msUJpAvaw8DsBz0py1ilcOiT+dTx cX2BIEczWMefrEwQPNzK7nQAR+HQ0RiNTqU/VDEwEAugsh6qnDVGd5sFyZnCBfxY FwW1AAW7We5v4IVZZmqLUCTuR/wVZp1jyM/x4K/UuKhDf9YoDRjG3BT8K6u38cAO i4yEDe1+c6YHPIceivMTM/F3yQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNJBRbbP VORg6dySm/KtZ/OSvYvJMB8GA1UdIwQYMBaAFHbI4BFVSe2pLeIiNqKlpQrwn4QR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjlGOC85MkQwQkUwMjkw NjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZWSjdha3Q0aUkyb3FXbEN2Q2Zo QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzamdFVlZKN2FrdDRpSTJvcVdsQ3ZDZmhCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI5RjgvOTJEMEJFMDI5MDY4MTFFQjlFM0ZDNjZDQzRGOUFFMDIvM0NFRENFMTg5 MDBEMTFGMEJENjVFNDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnYzwwDQYJKoZIhvcNAQELBQADggEBAA3uiFwbt+T/NYRN A6vV3SEldS4oHBR1hLGK8GNn1+c0Hp5EpFj9pff6Q7eA5WnQTIAe7VDdvyH/U3BE Dj1G7gpEdRD9J7sEvNLvfybxIcvddTlsTxdcw9ipZMXkWXpoOynI7CbwLHYshiDl kRUR9NsMzFPlcVbO1GsBgcPgjArnsDe29Wx+2BkzVywlAIWb51z/5GTK6EGcLzuJ Zm5XULYTB1NNw20h762HX5EcDLzJbSfXtDt/uouTvlWEJ1/CWf7CihLbRSLJKSie D9fwZDUof4deutQiMq41WJZvlDLY1CZknjK/UZwSAC+zwIpt8m4FGPouXtLLOE1O Q7UfeFg= -----END CERTIFICATE-----Generated at Mon Nov 3 23:17:22 2025 by rpki-client