$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/4FE5F30290D411F0B8A56049C4F9AE02.roa File: 4FE5F30290D411F0B8A56049C4F9AE02.roa (raw, json) Hash identifier: tijl1a/Co2BtT46BKoUW7AiBvHenjrU1pgwCiF84Uq0= Subject key identifier: 6A:A5:85:AC:0A:F5:8B:65:0E:5E:5A:DE:03:CC:49:14:EF:96:8F:97 Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Certificate serial: 06CA Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/4FE5F30290D411F0B8A56049C4F9AE02.roa Signing time: Wed 22 Oct 2025 23:42:11 +0000 ROA not before: Wed 22 Oct 2025 23:42:11 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 21859 IP address blocks: 103.99.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B29F8, serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Validity Not Before: Oct 22 23:42:11 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f96bd3-f1bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:93:9c:a7:16:61:15:78:93:21:7a:78:37:77: fc:6d:a2:eb:0e:7c:1a:67:7b:87:65:fc:87:8f:f5: 89:44:0f:6d:01:29:a2:f9:be:0d:e0:ca:7a:b0:7e: 85:8b:69:89:c4:bf:af:28:45:d8:3d:4f:be:01:ed: 4b:18:4a:8d:12:de:f6:15:1f:30:3b:bc:bf:86:e2: 5f:a5:ba:a5:11:e0:32:9b:30:89:d1:80:16:11:c3: 84:1a:fd:3b:7c:f5:f9:32:9c:1f:cc:0b:5c:76:53: ba:70:fb:bb:ee:f6:f0:c7:f7:16:0e:21:8d:5f:0e: 19:bd:cc:cf:68:e7:e4:0a:65:02:c4:ab:71:c6:b3: 78:75:1a:95:92:47:e9:b8:53:30:50:cf:bf:19:af: cc:85:ac:4c:4a:13:13:9c:27:86:dd:3a:a6:cb:09: 4e:95:c2:a5:11:3e:7f:f4:65:5a:cd:b6:02:c9:be: fd:36:6a:26:70:47:48:2f:1c:80:2e:9b:25:39:61: c0:5d:fe:28:1c:cc:cd:5c:b8:90:de:be:3a:f6:95: be:93:0b:9f:83:85:43:83:a4:08:0b:df:52:86:60: bf:76:ac:98:7e:f2:29:e1:3b:46:82:61:ad:91:f9: 9b:cd:d3:1f:51:db:aa:81:a8:28:15:2b:2e:56:99: 83:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A5:85:AC:0A:F5:8B:65:0E:5E:5A:DE:03:CC:49:14:EF:96:8F:97 X509v3 Authority Key Identifier: keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/4FE5F30290D411F0B8A56049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.63.0/24 Signature Algorithm: sha256WithRSAEncryption 94:7b:33:f1:2d:93:93:16:66:7a:b0:b4:c0:e2:b5:8d:0c:17: 35:79:80:ae:4e:cb:bc:29:99:ee:4c:3c:6e:e3:52:61:16:15: 30:8a:cb:5b:c2:dc:9f:24:ef:ad:7c:0b:f3:85:04:6a:e8:8e: 21:43:27:0a:a4:a7:b7:4b:ff:54:db:3f:e3:90:ad:5b:da:11: 3b:d5:52:86:3b:2d:d8:23:36:27:8e:b7:6a:ff:f1:a2:de:5b: 14:25:f0:0a:3c:20:12:19:24:0f:57:55:e4:b9:c9:5a:a7:fb: d1:51:f4:95:8a:80:88:d0:62:80:25:fb:05:79:44:c3:69:f7: 8a:4e:0d:6b:bf:48:fb:3e:26:12:2e:b5:ef:ab:2d:03:a3:b9: e4:6a:e5:71:11:ce:67:f3:ea:a1:bb:69:ae:02:0a:11:e4:87: 02:45:28:04:c6:81:fd:c5:84:c2:5f:77:a5:e1:3b:a3:bb:7d: 83:0b:0c:d6:54:65:be:4c:c5:4e:e2:f1:12:44:20:66:76:d1: 1f:2c:5c:40:5f:d9:35:45:aa:76:41:18:e1:ad:aa:0a:9a:f7: 3d:2e:c9:74:59:b4:45:f9:8c:41:4f:a9:be:17:89:29:1d:fe: ad:56:24:65:82:ed:58:2d:53:9b:bc:13:6d:b5:8c:12:c5:bb: ba:4f:cb:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIzNkEyQTVBNTBB RjA5Rjg0MTEwHhcNMjUxMDIyMjM0MjExWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5NmJkMy1mMWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJOcpxZhFXiTIXp4N3f8baLrDnwaZ3uHZfyHj/WJRA9tASmi+b4N4Mp6sH6F i2mJxL+vKEXYPU++Ae1LGEqNEt72FR8wO7y/huJfpbqlEeAymzCJ0YAWEcOEGv07 fPX5MpwfzAtcdlO6cPu77vbwx/cWDiGNXw4ZvczPaOfkCmUCxKtxxrN4dRqVkkfp uFMwUM+/Ga/MhaxMShMTnCeG3TqmywlOlcKlET5/9GVazbYCyb79NmomcEdILxyA LpslOWHAXf4oHMzNXLiQ3r469pW+kwufg4VDg6QIC99ShmC/dqyYfvIp4TtGgmGt kfmbzdMfUduqgagoFSsuVpmDCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGqlhawK 9YtlDl5a3gPMSRTvlo+XMB8GA1UdIwQYMBaAFHbI4BFVSe2pLeIiNqKlpQrwn4QR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjlGOC85MkQwQkUwMjkw NjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZWSjdha3Q0aUkyb3FXbEN2Q2Zo QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzamdFVlZKN2FrdDRpSTJvcVdsQ3ZDZmhCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI5RjgvOTJEMEJFMDI5MDY4MTFFQjlFM0ZDNjZDQzRGOUFFMDIvNEZFNUYzMDI5 MEQ0MTFGMEI4QTU2MDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYz8wDQYJKoZIhvcNAQELBQADggEBAJR7M/Etk5MWZnqw tMDitY0MFzV5gK5Oy7wpme5MPG7jUmEWFTCKy1vC3J8k7618C/OFBGrojiFDJwqk p7dL/1TbP+OQrVvaETvVUoY7LdgjNieOt2r/8aLeWxQl8Ao8IBIZJA9XVeS5yVqn +9FR9JWKgIjQYoAl+wV5RMNp94pODWu/SPs+JhIute+rLQOjueRq5XERzmfz6qG7 aa4CChHkhwJFKATGgf3FhMJfd6XhO6O7fYMLDNZUZb5MxU7i8RJEIGZ20R8sXEBf 2TVFqnZBGOGtqgqa9z0uyXRZtEX5jEFPqb4XiSkd/q1WJGWC7VgtU5u8E221jBLF u7pPy4g= -----END CERTIFICATE-----Generated at Mon Nov 3 09:32:51 2025 by rpki-client