$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/DB78FCC4BB5211EE8EB48761C4F9AE02.roa File: DB78FCC4BB5211EE8EB48761C4F9AE02.roa (raw, json) Hash identifier: b0uMZp9GhvzQH4K7XX3gLg58rqgZnokwinjo/veJkKM= Subject key identifier: 3B:79:63:73:E1:06:2C:47:AF:45:03:FB:A4:66:CA:03:3E:1E:C1:96 Certificate issuer: /CN=A91BF781/serialNumber=2769A4FA92297DCB1DF896DAE6373996FD31806E Certificate serial: 0156 Authority key identifier: 27:69:A4:FA:92:29:7D:CB:1D:F8:96:DA:E6:37:39:96:FD:31:80:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2mk-pIpfcsd-Jba5jc5lv0xgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/DB78FCC4BB5211EE8EB48761C4F9AE02.roa Signing time: Sun 31 Aug 2025 05:23:01 +0000 ROA not before: Sun 31 Aug 2025 05:23:01 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151483 IP address blocks: 103.230.128.0/24 maxlen: 24 103.230.129.0/24 maxlen: 24 2401:11a0:10::/44 maxlen: 44 2401:11a0:150::/44 maxlen: 48 2401:11a0:1500::/40 maxlen: 40 2401:11a0:d150::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/J2mk-pIpfcsd-Jba5jc5lv0xgG4.crl rsync://rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/J2mk-pIpfcsd-Jba5jc5lv0xgG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2mk-pIpfcsd-Jba5jc5lv0xgG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF781, serialNumber=2769A4FA92297DCB1DF896DAE6373996FD31806E Validity Not Before: Aug 31 05:23:01 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b3dc35-d021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:e1:f9:62:9b:a7:d0:f9:43:a4:6e:c6:07:50: 06:10:f3:5e:78:f6:80:42:ab:af:aa:e0:98:4d:9c: f3:64:06:df:0d:82:b7:ff:17:8e:c7:0b:e7:5b:a3: be:82:af:35:dc:83:0f:4d:1f:51:4a:72:68:43:67: e5:42:ff:8b:e0:9f:2d:7f:da:46:f7:c8:84:ab:73: 55:04:06:71:d7:dc:6e:07:0d:c8:e6:3a:58:88:63: cd:77:74:06:9c:04:b2:b4:d7:b0:9c:70:43:c2:38: a2:38:9b:51:fd:38:e2:dc:86:bd:47:77:ff:31:ee: 63:42:be:3e:91:50:9a:f1:31:d6:66:6f:86:a2:77: a6:5d:2b:68:6e:86:4f:38:2a:69:7a:13:6b:ca:45: bb:02:b1:79:99:cc:84:fa:40:a7:dd:bd:25:f7:79: d3:b9:08:7b:3c:71:47:25:69:ac:3a:8c:10:d4:98: 57:f7:29:9c:d4:e7:30:4a:92:00:71:a2:bc:e5:51: f3:73:23:d1:e7:ad:3b:e2:64:ef:88:92:47:13:4a: 11:d5:75:2e:a9:c9:61:28:a6:9b:b5:9a:b1:9a:1d: fa:fb:33:8a:96:c2:52:d0:b3:8c:e6:a4:4b:40:48: 9c:8d:18:07:ae:db:2d:04:54:a6:a2:83:d5:95:0c: ce:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:79:63:73:E1:06:2C:47:AF:45:03:FB:A4:66:CA:03:3E:1E:C1:96 X509v3 Authority Key Identifier: keyid:27:69:A4:FA:92:29:7D:CB:1D:F8:96:DA:E6:37:39:96:FD:31:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/J2mk-pIpfcsd-Jba5jc5lv0xgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2mk-pIpfcsd-Jba5jc5lv0xgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/DB78FCC4BB5211EE8EB48761C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.128.0/23 IPv6: 2401:11a0:10::/44 2401:11a0:150::/44 2401:11a0:1500::/40 2401:11a0:d150::/44 Signature Algorithm: sha256WithRSAEncryption 32:11:d0:fe:13:cb:43:99:cf:66:2e:70:82:de:64:aa:9b:bb: b4:11:64:0d:aa:70:61:65:85:43:6c:b4:50:d9:2e:12:20:67: f9:84:4d:88:77:e0:45:fd:61:81:e2:70:ce:8a:58:76:a1:5d: b0:40:6f:e1:e4:cf:f6:e6:2a:27:04:50:b4:20:5b:89:cb:1d: fe:5c:7d:d1:32:98:f0:41:19:4a:90:b8:72:5c:61:38:1c:c1: b2:34:c3:d7:ff:82:56:c8:9f:a7:e4:2b:1b:14:40:8f:25:c0: b6:bc:6c:e3:aa:b1:b7:d6:f5:98:22:0a:bd:93:9e:e1:31:e3: e6:22:0a:13:af:5d:0d:ee:d3:78:13:73:ca:72:bc:71:b2:ea: 5a:c4:44:3d:2f:b6:3a:d8:ea:96:37:72:00:b2:25:6a:2c:ff: af:26:b4:cf:d4:a9:06:73:03:38:b1:a7:19:65:de:ca:55:93: f0:51:ab:36:12:00:79:30:b2:f5:b3:9b:9d:aa:99:bb:ea:57: f7:14:f0:f0:86:44:e1:d1:5f:d8:81:a7:98:a5:cb:38:da:4b: 03:d1:a2:94:a4:2c:dd:82:8c:e0:e4:ad:9d:9e:b5:50:3e:e7: 9a:8a:b6:86:57:68:ad:f9:84:15:74:1c:ec:b1:2e:db:e1:99: 4f:29:72:a0 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY3ODExMTAvBgNVBAUTKDI3NjlBNEZBOTIyOTdEQ0IxREY4OTZEQUU2MzczOTk2 RkQzMTgwNkUwHhcNMjUwODMxMDUyMzAxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzZGMzNS1kMDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9eH5Ypun0PlDpG7GB1AGEPNeePaAQquvquCYTZzzZAbfDYK3/xeOxwvnW6O+ gq813IMPTR9RSnJoQ2flQv+L4J8tf9pG98iEq3NVBAZx19xuBw3I5jpYiGPNd3QG nASytNewnHBDwjiiOJtR/Tji3Ia9R3f/Me5jQr4+kVCa8THWZm+GonemXStoboZP OCppehNrykW7ArF5mcyE+kCn3b0l93nTuQh7PHFHJWmsOowQ1JhX9ymc1OcwSpIA caK85VHzcyPR56074mTviJJHE0oR1XUuqclhKKabtZqxmh36+zOKlsJS0LOM5qRL QEicjRgHrtstBFSmooPVlQzOCwIDAQABo4ICwDCCArwwHQYDVR0OBBYEFDt5Y3Ph BixHr0UD+6RmygM+HsGWMB8GA1UdIwQYMBaAFCdppPqSKX3LHfiW2uY3OZb9MYBu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjc4MS83NTA3MEE0QTk2 QUQxMUVFOUY1Rjg0NURDNEY5QUUwMi9KMm1rLXBJcGZjc2QtSmJhNWpjNWx2MHhn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0oybWstcElwZmNzZC1KYmE1amM1bHYweGdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY3ODEvNzUwNzBBNEE5NkFEMTFFRTlGNUY4NDVEQzRGOUFFMDIvREI3OEZDQzRC QjUyMTFFRThFQjQ4NzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MAwEAgABMAYDBAFn5oAwKQQCAAIwIwMHBCQBEaAAEAMHBCQBEaABUAMGACQB EaAVAwcEJAERoNFQMA0GCSqGSIb3DQEBCwUAA4IBAQAyEdD+E8tDmc9mLnCC3mSq m7u0EWQNqnBhZYVDbLRQ2S4SIGf5hE2Id+BF/WGB4nDOilh2oV2wQG/h5M/25ion BFC0IFuJyx3+XH3RMpjwQRlKkLhyXGE4HMGyNMPX/4JWyJ+n5CsbFECPJcC2vGzj qrG31vWYIgq9k57hMePmIgoTr10N7tN4E3PKcrxxsupaxEQ9L7Y62OqWN3IAsiVq LP+vJrTP1KkGcwM4sacZZd7KVZPwUas2EgB5MLL1s5udqpm76lf3FPDwhkTh0V/Y gaeYpcs42ksD0aKUpCzdgozg5K2dnrVQPueairaGV2it+YQVdBzssS7b4ZlPKXKg -----END CERTIFICATE-----Generated at Sat Sep 20 04:42:24 2025 by rpki-client