$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/DCEF2F3CFFD611EFA348445FC4F9AE02.roa File: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (raw, json) Hash identifier: itQJmN/dVP+mV48MgGkgS4f24QJYRTaFn3QelUYBhJw= Subject key identifier: F5:76:B8:12:E2:6E:DE:AF:C9:C4:26:D7:AA:74:57:4E:DC:F1:62:DD Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 0491 Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/DCEF2F3CFFD611EFA348445FC4F9AE02.roa Signing time: Thu 13 Mar 2025 06:46:17 +0000 ROA not before: Thu 13 Mar 2025 06:46:17 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 963 IP address blocks: 103.203.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1169 (0x491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Mar 13 06:46:17 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67d27f38-968f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7c:02:ef:78:8e:28:8f:11:ad:1b:c7:d9:b0: 04:c4:3e:a7:8e:a1:1f:cc:da:46:7b:fd:7c:e4:b4: b1:29:78:6d:74:94:10:a8:d0:d1:54:6d:46:2c:81: 69:83:5b:cc:73:88:bf:b6:bd:f5:c2:c3:58:d7:a8: b9:16:39:3f:c2:73:b9:b3:93:79:24:91:cb:3f:13: a2:4d:89:12:49:65:c8:82:44:bf:33:05:78:6f:e0: 36:4e:e0:9b:ca:87:bd:2a:0f:be:d4:53:59:d6:53: 6b:a5:08:8d:6c:92:ba:70:b0:73:60:32:6f:5a:34: cf:88:40:60:2d:d7:61:b5:24:6c:58:ec:0f:dd:b5: be:a8:40:a1:27:00:3b:c1:5a:61:06:cc:23:58:60: 43:86:c0:02:7b:87:bd:31:47:b1:61:36:45:49:cb: 4b:dc:09:b0:40:33:b8:99:05:a7:51:c2:0f:48:f1: 76:ae:89:26:9c:f4:e1:1e:6a:d6:6d:4a:f5:7e:ce: a6:a7:f5:2d:93:08:6f:49:49:05:bc:d9:30:dd:10: a0:cd:67:18:fa:d7:ec:e3:14:54:ca:a8:f1:2d:5d: b4:a1:32:10:19:f1:b7:9c:cd:e8:d9:40:89:d8:d8: 4c:5d:82:72:12:c1:a0:b1:40:aa:7d:33:69:76:55: 9f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:76:B8:12:E2:6E:DE:AF:C9:C4:26:D7:AA:74:57:4E:DC:F1:62:DD X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/DCEF2F3CFFD611EFA348445FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.48.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:1b:8e:a3:f8:a5:d5:17:0a:a7:0d:f1:5f:9f:7c:93:5d:99: 16:5f:ee:49:ec:42:eb:56:95:db:89:2f:44:05:15:b0:51:42: 8d:7b:c0:5c:d7:87:0d:97:03:bd:51:b9:f4:71:17:00:f2:dc: 64:ff:1e:85:59:2c:8c:28:65:b0:20:cb:8a:5c:05:3d:fe:d3: 40:82:8d:d5:7f:67:19:84:f9:29:b2:06:9f:64:d0:92:7c:56: e4:26:5f:72:ca:2c:b4:45:45:2c:ce:5c:9d:25:d1:71:6b:8d: be:50:fc:5b:e9:66:54:36:9b:91:04:fb:2e:ba:7b:85:9d:c0: 53:09:6c:09:39:b0:1b:57:62:5d:1a:ed:21:c4:be:67:d0:12: a7:3f:a3:d9:85:06:c7:df:3b:5f:25:0c:dc:05:53:ea:9e:20: 08:99:c7:cd:e1:0b:c9:af:27:a9:60:fe:0a:6d:78:7c:b3:64: 69:74:47:67:fe:ce:85:a8:c5:aa:82:68:06:99:97:9c:36:b7: f2:60:06:c6:0d:75:7c:57:4b:57:e9:86:f2:90:e3:b9:21:d5: 72:5a:27:a7:5e:8d:c5:f0:c1:55:40:8d:d0:ea:cc:cf:d2:1a: e9:4b:ec:66:cb:29:4a:bd:ed:e5:ee:0a:62:42:0b:fb:91:be: 9a:c5:ca:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjUwMzEzMDY0NjE3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QyN2YzOC05NjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHwC73iOKI8RrRvH2bAExD6njqEfzNpGe/185LSxKXhtdJQQqNDRVG1GLIFp g1vMc4i/tr31wsNY16i5Fjk/wnO5s5N5JJHLPxOiTYkSSWXIgkS/MwV4b+A2TuCb yoe9Kg++1FNZ1lNrpQiNbJK6cLBzYDJvWjTPiEBgLddhtSRsWOwP3bW+qEChJwA7 wVphBswjWGBDhsACe4e9MUexYTZFSctL3AmwQDO4mQWnUcIPSPF2rokmnPThHmrW bUr1fs6mp/UtkwhvSUkFvNkw3RCgzWcY+tfs4xRUyqjxLV20oTIQGfG3nM3o2UCJ 2NhMXYJyEsGgsUCqfTNpdlWfZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPV2uBLi bt6vycQm16p0V07c8WLdMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFFMzQvNEJFRkJFQ0EzMEMyMTFFQzkxQTE3MDFEQzRGOUFFMDIvRENFRjJGM0NG RkQ2MTFFRkEzNDg0NDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnyzAwDQYJKoZIhvcNAQELBQADggEBAG0bjqP4pdUXCqcN 8V+ffJNdmRZf7knsQutWlduJL0QFFbBRQo17wFzXhw2XA71RufRxFwDy3GT/HoVZ LIwoZbAgy4pcBT3+00CCjdV/ZxmE+SmyBp9k0JJ8VuQmX3LKLLRFRSzOXJ0l0XFr jb5Q/FvpZlQ2m5EE+y66e4WdwFMJbAk5sBtXYl0a7SHEvmfQEqc/o9mFBsffO18l DNwFU+qeIAiZx83hC8mvJ6lg/gpteHyzZGl0R2f+zoWoxaqCaAaZl5w2t/JgBsYN dXxXS1fphvKQ47kh1XJaJ6dejcXwwVVAjdDqzM/SGulL7GbLKUq97eXuCmJCC/uR vprFyk0= -----END CERTIFICATE-----Generated at Tue Oct 28 21:30:04 2025 by rpki-client