$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/3CEDCE18900D11F0BD65E474C4F9AE02.roa File: 3CEDCE18900D11F0BD65E474C4F9AE02.roa (raw, json) Hash identifier: S8BkDgkB+teQACEKAhdExV5xGoqrMJ7uZNKZ0G5lh/0= Subject key identifier: EA:73:C1:B1:68:8A:69:0E:AE:65:ED:68:69:EB:B6:6B:89:A1:54:60 Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Certificate serial: 06AB Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/3CEDCE18900D11F0BD65E474C4F9AE02.roa Signing time: Fri 12 Sep 2025 19:18:18 +0000 ROA not before: Fri 12 Sep 2025 19:18:18 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 15143 IP address blocks: 103.99.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1707 (0x6ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B29F8, serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Validity Not Before: Sep 12 19:18:18 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68c471fa-7e30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bc:76:df:62:21:d4:22:f0:7b:b1:36:a2:37: 73:19:d2:ae:ec:43:04:2d:dd:41:aa:e9:9e:ea:13: b8:94:69:47:d3:f7:8b:1f:7c:c0:ec:83:dc:bf:68: 5e:6c:9d:d9:aa:40:72:8c:65:6a:80:9e:17:c2:ca: 0c:67:12:2f:e7:66:ba:20:35:3c:8e:fa:7c:c1:a8: d9:ba:b5:ce:02:19:83:24:da:57:98:c0:1b:a1:a0: 6f:70:20:aa:dc:9a:a9:3e:07:27:02:a9:df:63:bd: a2:1a:ad:cd:aa:f7:3b:6e:91:a6:ed:5a:d1:e6:d5: 9c:82:0c:6a:76:e1:8a:2e:da:75:8c:8a:29:d0:28: 55:e7:51:95:4d:d0:e3:58:f5:69:d7:4f:18:7e:d3: 72:d6:81:cf:e9:3d:01:16:e3:4a:b6:36:f9:96:1d: 48:14:60:e8:ca:33:5d:7d:c3:9c:b6:e6:34:34:6d: 4d:60:3b:c4:8e:24:84:dd:f7:33:e0:30:b2:9b:fa: 5b:88:2b:47:aa:5c:61:55:8c:7a:74:95:f4:78:97: 4f:1a:00:dd:1b:62:49:93:8c:14:ff:46:45:15:98: bf:4d:41:03:2a:c8:26:3a:e6:cb:22:fd:1b:65:ee: e5:50:5c:3a:f8:a1:da:63:8a:af:de:27:ef:18:df: 59:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:73:C1:B1:68:8A:69:0E:AE:65:ED:68:69:EB:B6:6B:89:A1:54:60 X509v3 Authority Key Identifier: keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/3CEDCE18900D11F0BD65E474C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.60.0/23 Signature Algorithm: sha256WithRSAEncryption 84:63:f4:08:e2:89:ee:c4:3b:4a:6b:3e:1c:d1:51:72:a8:ef: d2:f9:89:ea:c8:c6:89:ef:97:7b:b7:47:9c:fc:66:a9:36:6a: c6:aa:d8:e7:42:5e:dd:f9:1b:78:3f:f8:c0:4b:a9:c2:a2:87: c0:50:62:10:e5:17:5f:56:59:80:79:5e:92:d8:09:a5:ac:b5: 5b:29:62:5e:eb:5e:c5:8c:f5:ec:4f:46:e0:89:7b:ec:c2:03: db:c5:1d:3b:85:aa:67:f2:2c:fc:3d:c1:07:d9:45:de:92:59: 60:2b:f2:3d:56:97:44:8b:4c:0f:30:44:98:22:4b:8b:6b:7f: d1:f3:9a:f2:1d:25:30:c8:65:03:a7:02:06:59:35:83:59:1e: de:40:85:a2:a9:5b:9e:3d:fe:11:91:81:fd:40:3e:75:53:02: 8a:96:5b:cb:5c:3c:cc:70:9b:0e:ca:78:fc:77:10:66:95:fd: 19:09:91:9d:b6:2f:a4:7d:35:09:bc:a6:d6:76:c1:0d:80:56: 05:5d:16:66:3d:4c:f0:b7:07:14:c0:32:37:a3:43:49:41:13: b6:dc:6e:d8:2e:e0:52:dd:eb:fb:10:01:ff:63:0e:fb:c1:16: 70:33:3f:18:e8:99:e8:20:78:04:8e:b0:27:36:a4:c1:8c:39: dc:3f:74:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIzNkEyQTVBNTBB RjA5Rjg0MTEwHhcNMjUwOTEyMTkxODE4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0NzFmYS03ZTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bx232Ih1CLwe7E2ojdzGdKu7EMELd1Bqume6hO4lGlH0/eLH3zA7IPcv2he bJ3ZqkByjGVqgJ4XwsoMZxIv52a6IDU8jvp8wajZurXOAhmDJNpXmMAboaBvcCCq 3JqpPgcnAqnfY72iGq3Nqvc7bpGm7VrR5tWcggxqduGKLtp1jIop0ChV51GVTdDj WPVp108YftNy1oHP6T0BFuNKtjb5lh1IFGDoyjNdfcOctuY0NG1NYDvEjiSE3fcz 4DCym/pbiCtHqlxhVYx6dJX0eJdPGgDdG2JJk4wU/0ZFFZi/TUEDKsgmOubLIv0b Ze7lUFw6+KHaY4qv3ifvGN9ZZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOpzwbFo imkOrmXtaGnrtmuJoVRgMB8GA1UdIwQYMBaAFHbI4BFVSe2pLeIiNqKlpQrwn4QR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjlGOC85MkQwQkUwMjkw NjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZWSjdha3Q0aUkyb3FXbEN2Q2Zo QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzamdFVlZKN2FrdDRpSTJvcVdsQ3ZDZmhCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI5RjgvOTJEMEJFMDI5MDY4MTFFQjlFM0ZDNjZDQzRGOUFFMDIvM0NFRENFMTg5 MDBEMTFGMEJENjVFNDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnYzwwDQYJKoZIhvcNAQELBQADggEBAIRj9Ajiie7EO0pr PhzRUXKo79L5ierIxonvl3u3R5z8Zqk2asaq2OdCXt35G3g/+MBLqcKih8BQYhDl F19WWYB5XpLYCaWstVspYl7rXsWM9exPRuCJe+zCA9vFHTuFqmfyLPw9wQfZRd6S WWAr8j1Wl0SLTA8wRJgiS4trf9HzmvIdJTDIZQOnAgZZNYNZHt5AhaKpW549/hGR gf1APnVTAoqWW8tcPMxwmw7KePx3EGaV/RkJkZ22L6R9NQm8ptZ2wQ2AVgVdFmY9 TPC3BxTAMjejQ0lBE7bcbtgu4FLd6/sQAf9jDvvBFnAzPxjomeggeASOsCc2pMGM Odw/dIo= -----END CERTIFICATE-----Generated at Fri Sep 19 00:56:45 2025 by rpki-client