$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/A850C476026E11EBB2E0E72FC4F9AE02.roa File: A850C476026E11EBB2E0E72FC4F9AE02.roa (raw, json) Hash identifier: MUbgi1W9az5Y+OqycFqv9bQ0JgxdrpLfybU7ZdOSDHk= Subject key identifier: 8F:AB:9A:A8:49:40:62:AC:AD:1B:49:D1:77:05:F0:00:F5:2D:F9:94 Certificate issuer: /CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Certificate serial: 0FE3 Authority key identifier: 6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/A850C476026E11EBB2E0E72FC4F9AE02.roa Signing time: Tue 30 Sep 2025 17:46:13 +0000 ROA not before: Tue 30 Sep 2025 17:46:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137443 IP address blocks: 103.99.40.0/23 maxlen: 24 103.132.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 18:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4067 (0xfe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6B4, serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Validity Not Before: Sep 30 17:46:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dc1764-29a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:33:e0:65:ab:83:eb:fc:c2:02:93:14:a0:ca: 89:2b:cf:5c:e0:51:84:5e:22:ba:d3:ec:04:51:5b: 86:9c:8e:11:b5:13:b6:b7:96:f5:4e:7a:15:5e:37: a5:78:07:e2:69:ac:e5:6e:18:51:49:08:ca:1b:7b: 16:75:58:98:f4:bf:f7:0b:f5:25:89:21:6a:8c:4a: 82:27:48:ce:d4:82:6a:da:59:29:43:71:25:20:92: 77:25:5b:15:ae:25:71:97:cc:56:f9:51:0f:2f:4a: 4f:aa:6c:5c:56:0a:90:fb:d8:a0:a8:81:0a:d4:23: da:4a:31:9b:39:07:c1:21:74:07:e2:ea:75:84:3d: ee:02:28:76:53:61:42:b2:98:9c:b6:8d:ce:10:16: cb:a5:dc:0d:cb:ef:9a:31:d8:9d:b2:c3:b2:57:84: a3:59:76:31:e7:df:42:d1:d8:00:b2:b2:dc:2b:3e: 57:76:6b:45:85:5d:38:8f:e7:ca:da:d2:73:ee:7c: bc:99:ab:55:f7:7a:7d:06:6f:f2:09:c5:6f:1e:0e: cb:ce:bf:66:ad:8f:a9:f7:6d:ab:ac:f9:70:72:8a: b0:f2:a5:ac:a4:65:e0:d8:ad:85:94:2c:53:da:e2: b0:db:61:d0:53:52:8a:7a:3a:da:f4:c2:44:5e:91: cd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:AB:9A:A8:49:40:62:AC:AD:1B:49:D1:77:05:F0:00:F5:2D:F9:94 X509v3 Authority Key Identifier: keyid:6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/A850C476026E11EBB2E0E72FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.40.0/23 103.132.234.0/23 Signature Algorithm: sha256WithRSAEncryption c2:06:0b:36:af:08:82:da:cc:be:40:66:30:ad:dd:1f:24:4c: ea:65:8c:17:af:6d:e4:6f:a5:cc:90:99:88:c4:b8:9c:11:12: 48:be:05:1b:8f:37:cd:9a:11:6b:ed:48:2e:69:fa:b7:50:6b: 3d:cf:26:4c:cd:17:29:e2:4f:b9:60:74:09:b6:d1:57:fd:d5: d5:a8:5c:e9:1b:64:f1:21:b2:11:3b:ed:f0:61:51:de:5b:b1: 67:4a:05:ed:11:9b:e0:d3:45:d7:19:1a:fd:5d:bb:9e:0d:ce: 6e:60:85:f0:48:e3:76:c8:8c:35:8a:03:3f:dc:58:af:f1:8c: 34:ec:b4:b2:2d:b2:2f:83:c4:3c:54:37:7d:6e:10:d7:07:09: 5d:7e:12:7b:71:d9:d9:d4:2e:d1:92:19:78:ed:39:31:6c:b4: be:09:b3:77:ea:fe:41:92:1b:1f:26:51:d3:0d:8e:70:15:83: 12:76:50:d7:e6:b6:02:9f:3b:da:fa:9b:50:bc:c3:d9:44:2f: 2c:79:29:19:51:c9:93:ec:c2:c0:f6:65:e7:29:9f:8a:69:9b: 31:97:0f:31:00:6a:3a:d8:cc:17:dc:93:5c:52:ab:e3:b8:3c: 90:f7:67:73:24:e6:91:18:e8:52:f5:96:ab:02:81:75:5d:f7: 50:31:c3:44 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2QjQxMTAvBgNVBAUTKDZDQTZCMkFDMUREMTdCMDE0REI2Qzc2NzI3OUQwOEM2 NkU0RUZDMDUwHhcNMjUwOTMwMTc0NjEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjMTc2NC0yOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jPgZauD6/zCApMUoMqJK89c4FGEXiK60+wEUVuGnI4RtRO2t5b1TnoVXjel eAfiaazlbhhRSQjKG3sWdViY9L/3C/UliSFqjEqCJ0jO1IJq2lkpQ3ElIJJ3JVsV riVxl8xW+VEPL0pPqmxcVgqQ+9igqIEK1CPaSjGbOQfBIXQH4up1hD3uAih2U2FC spicto3OEBbLpdwNy++aMdidssOyV4SjWXYx599C0dgAsrLcKz5XdmtFhV04j+fK 2tJz7ny8matV93p9Bm/yCcVvHg7Lzr9mrY+p922rrPlwcoqw8qWspGXg2K2FlCxT 2uKw22HQU1KKejra9MJEXpHNsQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI+rmqhJ QGKsrRtJ0XcF8AD1LfmUMB8GA1UdIwQYMBaAFGymsqwd0XsBTbbHZyedCMZuTvwF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZCNC83MjZGNTFDMjYz RjIxMUU5QkIyMERENDVDNEY5QUUwMi9iS2F5ckIzUmV3Rk50c2RuSjUwSXhtNU9f QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLYXlyQjNSZXdGTnRzZG5KNTBJeG01T19BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2QjQvNzI2RjUxQzI2M0YyMTFFOUJCMjBERDQ1QzRGOUFFMDIvQTg1MEM0NzYw MjZFMTFFQkIyRTBFNzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYygDBAFnhOowDQYJKoZIhvcNAQELBQADggEBAMIGCzav CILazL5AZjCt3R8kTOpljBevbeRvpcyQmYjEuJwREki+BRuPN82aEWvtSC5p+rdQ az3PJkzNFyniT7lgdAm20Vf91dWoXOkbZPEhshE77fBhUd5bsWdKBe0Rm+DTRdcZ Gv1du54Nzm5ghfBI43bIjDWKAz/cWK/xjDTstLItsi+DxDxUN31uENcHCV1+Entx 2dnULtGSGXjtOTFstL4Js3fq/kGSGx8mUdMNjnAVgxJ2UNfmtgKfO9r6m1C8w9lE Lyx5KRlRyZPswsD2Zecpn4ppmzGXDzEAajrYzBfck1xSq+O4PJD3Z3Mk5pEY6FL1 lqsCgXVd91Axw0Q= -----END CERTIFICATE-----Generated at Thu Oct 16 18:57:38 2025 by rpki-client