$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/98FD8A0E538411ED8D781C7CC4F9AE02.roa File: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (raw, json) Hash identifier: KvaqXLWWsSi0DyIW72uaV8JvweT4UuqZ2OwGOX+bYh8= Subject key identifier: 30:A9:0A:3E:E9:4D:50:BD:10:4C:3C:2D:6A:A6:A8:5E:CE:40:40:53 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 023A Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/98FD8A0E538411ED8D781C7CC4F9AE02.roa Signing time: Wed 29 Oct 2025 01:46:09 +0000 ROA not before: Wed 29 Oct 2025 01:46:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136957 IP address blocks: 103.100.46.0/23 maxlen: 23 103.100.46.0/24 maxlen: 24 103.100.47.0/24 maxlen: 24 2001:df3:2b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:48:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49, serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Oct 29 01:46:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=690171e1-1c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:5b:58:d8:01:53:20:ad:8a:38:ee:76:73:50: 61:1d:f6:b7:b9:16:44:2a:46:ad:53:f5:28:5a:b3: 34:b6:9b:14:43:db:73:20:28:0a:ad:22:8c:6b:ea: 96:a0:25:a5:11:6e:78:d3:84:05:d3:c7:6b:0b:c5: 1c:b4:7e:67:50:32:53:fa:ee:46:13:cb:a6:a9:a1: 68:d4:d3:76:4d:27:cd:32:e9:82:df:e8:d2:40:ab: 29:f7:aa:94:2b:06:f1:ee:75:c1:db:1a:49:6a:d1: 45:2c:42:2a:37:9a:3b:57:8c:2a:e5:12:86:88:9f: 64:1f:bc:59:84:10:9e:bb:a0:b7:4a:04:64:91:e8: 3d:b8:3d:03:24:4d:d5:b3:cc:0b:71:6c:b5:98:d0: 37:11:06:86:9e:76:48:2c:81:c9:42:99:3e:46:42: 87:5b:01:88:cd:60:77:99:7b:ef:18:a1:27:56:45: e7:bd:74:5f:6c:c9:4e:32:6e:e7:6b:4d:f7:c1:19: 87:79:39:0a:59:10:08:e5:f0:b9:33:07:68:8c:53: ae:cb:19:43:6c:fb:3a:96:d5:15:16:d2:fc:f2:72: d7:d1:49:1d:99:93:a9:61:88:c7:14:78:f3:f5:d5: 34:39:ef:f1:5d:a6:55:e2:ca:9c:17:5f:3c:63:58: b2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A9:0A:3E:E9:4D:50:BD:10:4C:3C:2D:6A:A6:A8:5E:CE:40:40:53 X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/98FD8A0E538411ED8D781C7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.46.0/23 IPv6: 2001:df3:2b00::/48 Signature Algorithm: sha256WithRSAEncryption 4a:b2:6e:25:c7:d4:13:99:aa:36:d4:39:0d:dd:f3:a5:10:44: 4a:8c:27:fe:99:53:69:40:69:14:92:a1:83:82:8c:cc:fb:c0: e7:19:fc:e1:5b:4b:eb:47:2a:f7:0d:cc:21:5d:30:f2:ea:00: e6:cb:f1:63:a6:19:c2:f5:a7:84:59:97:ab:58:bb:30:ca:e4: e4:d3:f0:59:5e:be:f7:fe:5e:f3:58:82:e0:66:9d:89:9b:9d: d1:01:63:09:fc:27:ac:5e:cf:ea:27:05:5d:ed:77:f0:e4:5c: 62:9d:ed:32:fd:c9:ab:c5:c2:a6:a1:14:20:0f:42:5e:9f:fa: ef:d4:07:73:d5:fc:15:f7:4e:5d:f6:c5:b0:a0:34:f4:65:58: 6a:12:10:d9:80:53:2f:5c:0e:20:bf:5f:2f:0a:6e:eb:f6:a3: 4f:cf:66:1b:4c:42:22:3f:98:cc:5c:46:84:2d:b7:3c:6a:40: 80:a9:4e:d8:ed:cc:d2:f9:a9:43:3d:9d:6a:41:c3:1f:f5:18: 28:da:ad:d5:d9:7c:70:04:67:34:25:79:1d:7c:d2:2e:c2:60: a6:4d:1d:56:51:f8:ae:12:1a:88:48:0e:f4:3a:5e:a3:33:14: 75:7e:83:ca:fb:b2:0b:7f:d6:d0:11:fc:83:0d:d6:29:7e:2c: 26:b1:6c:d4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjUxMDI5MDE0NjA5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAxNzFlMS0xYzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/VtY2AFTIK2KOO52c1BhHfa3uRZEKkatU/UoWrM0tpsUQ9tzICgKrSKMa+qW oCWlEW5404QF08drC8UctH5nUDJT+u5GE8umqaFo1NN2TSfNMumC3+jSQKsp96qU Kwbx7nXB2xpJatFFLEIqN5o7V4wq5RKGiJ9kH7xZhBCeu6C3SgRkkeg9uD0DJE3V s8wLcWy1mNA3EQaGnnZILIHJQpk+RkKHWwGIzWB3mXvvGKEnVkXnvXRfbMlOMm7n a033wRmHeTkKWRAI5fC5MwdojFOuyxlDbPs6ltUVFtL88nLX0UkdmZOpYYjHFHjz 9dU0Oe/xXaZV4sqcF188Y1iyQQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDCpCj7p TVC9EEw8LWqmqF7OQEBTMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZFNDkvQjMzQUE3QTY1MzgxMTFFRDhBQTk4Rjc3QzRGOUFFMDIvOThGRDhBMEU1 Mzg0MTFFRDhENzgxQzdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnZC4wDwQCAAIwCQMHACABDfMrADANBgkqhkiG9w0BAQsF AAOCAQEASrJuJcfUE5mqNtQ5Dd3zpRBESown/plTaUBpFJKhg4KMzPvA5xn84VtL 60cq9w3MIV0w8uoA5svxY6YZwvWnhFmXq1i7MMrk5NPwWV6+9/5e81iC4GadiZud 0QFjCfwnrF7P6icFXe138ORcYp3tMv3Jq8XCpqEUIA9CXp/679QHc9X8FfdOXfbF sKA09GVYahIQ2YBTL1wOIL9fLwpu6/ajT89mG0xCIj+YzFxGhC23PGpAgKlO2O3M 0vmpQz2dakHDH/UYKNqt1dl8cARnNCV5HXzSLsJgpk0dVlH4rhIaiEgO9DpeozMU dX6DyvuyC3/W0BH8gw3WKX4sJrFs1A== -----END CERTIFICATE-----Generated at Tue Nov 4 01:07:18 2025 by rpki-client