$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa File: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (raw, json) Hash identifier: k08HrzQA4orJaDMpNJ4cYiGD96bVzWAF2REZWm3ObQ4= Subject key identifier: 40:CA:95:49:BA:D7:23:C9:5E:CC:51:6E:70:E3:4B:35:4B:28:75:97 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0E9C Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa Signing time: Fri 12 Sep 2025 17:57:15 +0000 ROA not before: Fri 12 Sep 2025 17:57:15 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139300 IP address blocks: 103.141.2.0/23 maxlen: 23 103.141.2.0/24 maxlen: 24 103.141.3.0/24 maxlen: 24 2001:df0:e280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3740 (0xe9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773, serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Sep 12 17:57:15 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68c45efb-acec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:83:58:66:4c:76:35:06:10:63:72:4b:e6:94: 37:f6:d8:18:c7:0f:2d:41:1e:b0:46:2a:f6:89:13: d2:38:00:00:eb:a4:d0:8a:6a:33:84:f5:9d:72:c4: aa:7e:93:4b:22:11:60:81:ec:b5:fb:69:42:bd:e5: e3:f5:27:dc:d9:d6:c4:ba:51:83:58:7f:c3:8f:f4: 8d:1f:7a:09:0d:84:7a:3a:b1:d9:c3:a8:19:0a:c7: 79:93:1a:11:55:77:ae:f5:9f:4c:7f:18:f0:59:1f: f5:05:5a:ee:c4:f3:50:0f:53:c8:a7:2e:7c:ea:05: a9:30:72:53:a1:d6:ee:bd:c1:fd:2b:e4:ac:70:c1: ba:3d:3e:a5:44:8c:eb:5d:26:89:11:0a:d1:5d:9e: 6a:0c:17:44:9f:f5:a6:1f:db:c0:20:1a:ea:95:71: 77:fa:1c:81:d5:4f:ca:e4:28:83:62:5e:ae:86:12: df:31:a0:ef:ed:70:90:17:05:9b:bf:4e:57:9d:aa: b0:3d:34:36:2e:20:72:24:d0:9b:4d:8b:a7:1e:6d: c5:c1:f7:84:1a:66:28:b9:50:29:f8:01:cb:12:b2: 86:71:23:e4:0f:6d:fc:2e:dc:1b:a6:ec:67:d4:2b: 74:6b:f5:5b:cc:ec:61:d3:bd:28:39:e9:ea:33:1f: ef:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:CA:95:49:BA:D7:23:C9:5E:CC:51:6E:70:E3:4B:35:4B:28:75:97 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.2.0/23 IPv6: 2001:df0:e280::/48 Signature Algorithm: sha256WithRSAEncryption 52:d1:18:25:d6:20:b9:f4:2f:97:ab:d9:5a:78:3e:69:b8:e0: 46:cf:68:df:6a:ac:d2:d9:b7:b4:eb:c5:78:4b:0d:fa:e0:4e: 7d:cb:ff:7f:95:b1:3f:20:e5:eb:5c:a9:3e:48:4c:08:e0:03: d6:aa:f9:16:a2:99:4c:95:3d:0d:fc:e7:2a:22:7a:7e:0d:ce: a2:30:28:39:24:d8:93:3a:a2:b0:0f:42:81:20:7f:b8:ed:79: a4:9c:d6:ad:c4:8b:39:7b:d7:bf:bc:c8:75:4e:c0:92:58:49: 80:9e:0d:85:d0:ed:1b:3b:72:ca:25:23:82:47:7f:f6:bb:3f: ff:05:d9:f4:f1:ad:00:51:c4:5d:f6:4f:97:f3:b2:ce:37:1f: 5b:55:82:9d:92:de:f5:0c:bb:63:de:eb:1c:c9:78:9b:6b:f6: e4:62:a5:df:40:e4:6d:d7:d9:3f:02:b2:3e:90:4c:0b:ad:69: 51:70:5d:59:dd:c1:d4:14:9a:c0:55:52:7d:56:0f:24:16:23: 87:d1:af:b0:7c:53:c5:68:43:e5:a2:39:3c:b1:31:70:9c:34: 53:a2:cb:1f:b9:1a:60:92:ef:3b:50:83:aa:cb:19:f5:99:80: fc:be:69:47:5c:27:d5:70:7e:90:44:1d:4c:15:11:40:91:8d: bf:d0:cc:7e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjUwOTEyMTc1NzE1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0NWVmYi1hY2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4NYZkx2NQYQY3JL5pQ39tgYxw8tQR6wRir2iRPSOAAA66TQimozhPWdcsSq fpNLIhFggey1+2lCveXj9Sfc2dbEulGDWH/Dj/SNH3oJDYR6OrHZw6gZCsd5kxoR VXeu9Z9MfxjwWR/1BVruxPNQD1PIpy586gWpMHJTodbuvcH9K+SscMG6PT6lRIzr XSaJEQrRXZ5qDBdEn/WmH9vAIBrqlXF3+hyB1U/K5CiDYl6uhhLfMaDv7XCQFwWb v05XnaqwPTQ2LiByJNCbTYunHm3FwfeEGmYouVAp+AHLErKGcSPkD238Ltwbpuxn 1Ct0a/VbzOxh070oOenqMx/vqwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEDKlUm6 1yPJXsxRbnDjSzVLKHWXMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc3NzMvQUQzMjIzN0NBMkU4MTFFOUJBRTc4RDQ3QzRGOUFFMDIvQTQ3RDJFQzg0 QzFFMTFFRUJBOENEQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjQIwDwQCAAIwCQMHACABDfDigDANBgkqhkiG9w0BAQsF AAOCAQEAUtEYJdYgufQvl6vZWng+abjgRs9o32qs0tm3tOvFeEsN+uBOfcv/f5Wx PyDl61ypPkhMCOAD1qr5FqKZTJU9DfznKiJ6fg3OojAoOSTYkzqisA9CgSB/uO15 pJzWrcSLOXvXv7zIdU7AklhJgJ4NhdDtGztyyiUjgkd/9rs//wXZ9PGtAFHEXfZP l/OyzjcfW1WCnZLe9Qy7Y97rHMl4m2v25GKl30DkbdfZPwKyPpBMC61pUXBdWd3B 1BSawFVSfVYPJBYjh9GvsHxTxWhD5aI5PLExcJw0U6LLH7kaYJLvO1CDqssZ9ZmA /L5pR1wn1XB+kEQdTBURQJGNv9DMfg== -----END CERTIFICATE-----Generated at Fri Sep 19 05:14:13 2025 by rpki-client