$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/AA97516E24CA11EFB59A9379C4F9AE02.roa File: AA97516E24CA11EFB59A9379C4F9AE02.roa (raw, json) Hash identifier: d8hqa3VZK4uOVZ2NvSviBU2tKSi94lw2kqJ0YIkiOVk= Subject key identifier: 26:D4:FA:48:D1:DF:8A:AC:83:08:AA:6D:7C:87:1B:AF:07:C1:80:8D Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: 011A Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/AA97516E24CA11EFB59A9379C4F9AE02.roa Signing time: Thu 23 Oct 2025 07:19:20 +0000 ROA not before: Thu 23 Oct 2025 07:19:20 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134167 IP address blocks: 103.37.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A, serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Validity Not Before: Oct 23 07:19:20 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f9d6f8-0256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:76:cd:3e:37:64:65:24:3f:6d:2c:23:ad:97: bb:7f:11:12:31:a0:c6:54:88:2e:36:02:cd:76:03: f7:ae:d2:01:9c:cb:52:04:11:a6:b3:ad:ff:db:5c: 7b:59:b2:a5:ba:21:fa:bb:f7:63:cf:08:da:cd:a4: 6a:4e:15:02:86:21:5e:b5:bb:82:92:4a:08:5f:8b: c3:3c:11:4f:6d:c2:bc:bb:b3:ed:67:d2:f9:21:db: 16:74:1b:19:8c:b3:9a:2f:38:94:c7:ef:72:68:ff: 20:f8:05:1a:c9:2f:a8:ab:91:fc:0a:93:ad:e4:8e: 22:36:6a:66:56:f1:06:d3:43:0a:b1:49:69:6e:dd: 07:bb:45:8f:91:97:da:c4:74:13:17:e5:1a:2c:b0: 48:2b:9f:04:78:40:01:e2:49:b3:40:8c:fd:98:79: b5:f3:67:01:5d:d3:8a:43:19:39:b0:1f:c5:fb:d0: d2:31:df:22:03:d6:ab:3f:d4:5c:f0:59:da:e5:fd: 03:c6:fd:7f:15:33:22:83:d9:10:4c:01:e0:b5:17: 2e:31:1e:12:fa:0e:fc:2e:39:49:33:49:5e:f6:e2: 9d:ee:3d:63:9e:cd:bf:b2:b8:5c:f4:ee:c6:0c:17: 3e:2b:cb:18:0a:68:f1:dc:99:9f:45:77:54:f2:f0: d8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D4:FA:48:D1:DF:8A:AC:83:08:AA:6D:7C:87:1B:AF:07:C1:80:8D X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/AA97516E24CA11EFB59A9379C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.228.0/24 Signature Algorithm: sha256WithRSAEncryption ac:58:f5:2a:d7:43:84:65:66:23:1f:53:1c:b1:52:c5:dc:b5: 68:9f:0f:f9:70:4f:a4:ef:62:1e:f6:b5:98:e5:38:14:29:a7: 33:13:3e:df:1f:91:b3:30:45:dc:e4:8c:a8:fb:28:69:c8:90: 00:7e:00:32:1b:6f:1f:a1:20:62:fb:e0:98:1b:c8:2b:c1:b9: 91:17:61:d0:45:6d:50:c6:70:75:50:f6:48:3b:21:84:c1:f6: 41:de:c0:50:5e:3e:18:f6:9c:5d:5d:33:1a:62:c0:30:74:15: 3b:ea:14:35:cd:3a:f3:48:b0:98:36:b7:dd:e2:38:6b:31:1d: ab:58:76:6c:0c:d8:74:f4:fe:cc:89:b5:e8:3f:00:1c:85:28: a1:e7:45:58:03:d7:ae:26:43:2a:7e:44:d7:84:11:a0:02:64: 98:a0:17:ca:ff:2d:87:9f:a7:7b:12:a9:5e:8b:c0:29:6d:ab: 53:86:01:6b:1f:4a:0a:58:36:8c:28:92:3a:0b:06:14:19:bc: e2:fe:f3:1e:df:47:92:35:37:fb:24:9d:ab:22:66:ba:f7:5e: 99:a1:d7:54:55:a3:1a:4b:0d:45:62:a7:2e:a6:be:f3:8b:b9: 5b:ad:e3:23:cc:54:ec:0c:2b:3f:e0:f4:19:10:c1:89:7c:6f: e4:64:59:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDOEExMTAvBgNVBAUTKDZDRTdCNTc1MEU2RTE3RDNEMzlFQjVCMDg3RkQzRkFE NTk1OUYzMjUwHhcNMjUxMDIzMDcxOTIwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5ZDZmOC0wMjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3bNPjdkZSQ/bSwjrZe7fxESMaDGVIguNgLNdgP3rtIBnMtSBBGms63/21x7 WbKluiH6u/djzwjazaRqThUChiFetbuCkkoIX4vDPBFPbcK8u7PtZ9L5IdsWdBsZ jLOaLziUx+9yaP8g+AUayS+oq5H8CpOt5I4iNmpmVvEG00MKsUlpbt0Hu0WPkZfa xHQTF+UaLLBIK58EeEAB4kmzQIz9mHm182cBXdOKQxk5sB/F+9DSMd8iA9arP9Rc 8Fna5f0Dxv1/FTMig9kQTAHgtRcuMR4S+g78LjlJM0le9uKd7j1jns2/srhc9O7G DBc+K8sYCmjx3JmfRXdU8vDYZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCbU+kjR 34qsgwiqbXyHG68HwYCNMB8GA1UdIwQYMBaAFGzntXUObhfT0561sIf9P61ZWfMl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkM4QS82MUVDNDkxNjI0 QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi9iT2UxZFE1dUY5UFRucld3aF8wX3JWbFo4 eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJDOEEvNjFFQzQ5MTYyNEM5MTFFRjlDOEM2MjU5QzRGOUFFMDIvQUE5NzUxNkUy NENBMTFFRkI1OUE5Mzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnJeQwDQYJKoZIhvcNAQELBQADggEBAKxY9SrXQ4RlZiMf UxyxUsXctWifD/lwT6TvYh72tZjlOBQppzMTPt8fkbMwRdzkjKj7KGnIkAB+ADIb bx+hIGL74JgbyCvBuZEXYdBFbVDGcHVQ9kg7IYTB9kHewFBePhj2nF1dMxpiwDB0 FTvqFDXNOvNIsJg2t93iOGsxHatYdmwM2HT0/syJteg/AByFKKHnRVgD164mQyp+ RNeEEaACZJigF8r/LYefp3sSqV6LwCltq1OGAWsfSgpYNowokjoLBhQZvOL+8x7f R5I1N/sknasiZrr3Xpmh11RVoxpLDUVipy6mvvOLuVut4yPMVOwMKz/g9BkQwYl8 b+RkWR8= -----END CERTIFICATE-----Generated at Fri Oct 24 12:53:36 2025 by rpki-client