$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/9261E554464611EE84B7C534C4F9AE02.roa File: 9261E554464611EE84B7C534C4F9AE02.roa (raw, json) Hash identifier: i3esyJrHHzIBHRmVCNUz0W4VMdpIDRgi+XPXqZ5CNEs= Subject key identifier: 4F:49:DC:DE:7F:44:0F:EF:52:03:F6:42:83:E0:E3:89:95:09:CB:BF Certificate issuer: /CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Certificate serial: 0A81 Authority key identifier: 1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/9261E554464611EE84B7C534C4F9AE02.roa Signing time: Thu 04 Sep 2025 20:00:16 +0000 ROA not before: Thu 04 Sep 2025 20:00:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58895 IP address blocks: 103.117.160.0/24 maxlen: 24 103.117.161.0/24 maxlen: 24 103.117.162.0/24 maxlen: 24 103.117.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 20:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2689 (0xa81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BB4, serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Validity Not Before: Sep 4 20:00:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b9efd0-5dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6f:f0:7d:3e:49:5d:2a:95:54:6d:dd:6c:1d: 58:3b:ae:d2:da:7f:3a:14:5d:96:3a:df:a7:ca:9b: 4d:37:dd:18:b2:2e:84:2f:6c:f8:13:ce:ee:d7:cd: 81:0b:09:97:46:96:44:50:d9:3f:a6:8a:98:14:64: 62:eb:3e:2e:f5:59:75:c3:17:1d:22:13:0b:78:16: 15:24:aa:f9:f0:84:a5:ca:a2:01:a5:21:e0:c4:71: e3:07:11:de:0a:30:dd:f8:ba:c0:a2:26:60:84:d4: fb:d7:17:78:a0:d4:86:b4:f4:4d:c1:8f:56:ae:5e: 87:7b:68:4b:82:da:54:f8:ac:de:67:c6:7d:4d:f2: c5:2a:ef:27:a3:84:4b:50:1e:95:22:6e:74:89:05: 35:f5:70:58:71:34:ce:7d:8b:a1:cd:46:81:65:26: 21:a9:d3:81:b8:52:a7:85:72:1b:48:33:8f:69:1b: a2:8e:47:dc:42:c2:35:4c:a5:d6:a1:3c:ad:ba:47: 08:aa:8f:8e:54:89:80:69:b8:4c:7a:ee:ce:13:4d: 7b:75:21:fb:36:69:e0:f9:8c:b5:7f:dd:12:c5:5a: b4:a0:e7:3d:f3:ba:07:46:35:a3:cc:fa:86:b4:ed: bc:8a:51:62:0f:c7:8e:8a:a1:e1:66:6a:d5:46:ed: 99:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:49:DC:DE:7F:44:0F:EF:52:03:F6:42:83:E0:E3:89:95:09:CB:BF X509v3 Authority Key Identifier: keyid:1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/9261E554464611EE84B7C534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.160.0/22 Signature Algorithm: sha256WithRSAEncryption 91:83:41:df:2b:34:c9:92:62:41:37:d2:4f:fd:b9:57:24:61: 34:01:77:9b:e0:86:83:8b:98:ed:2e:8e:89:ce:5f:2d:e3:91: a7:2b:c9:2a:2a:58:d1:8d:47:61:c2:26:4d:53:8d:b7:58:5e: 20:8a:cd:b2:b6:e2:af:52:f2:c7:8a:7e:fd:72:d6:76:43:a9: a9:ce:d9:72:c9:4d:bd:de:1a:25:cc:34:ab:fd:d6:ce:1a:4b: 6e:78:45:4e:bd:bf:45:57:69:31:4a:f7:64:5a:16:dd:d4:8b: a9:e2:b4:f4:52:40:e1:fa:eb:9f:f9:91:75:6d:16:2d:d5:99: 55:ed:32:75:66:66:d9:17:d9:4f:e3:c6:24:c1:0d:24:13:34: 33:ae:d7:91:05:f3:fe:01:21:a2:de:1f:61:a6:68:70:15:93: 52:a3:c2:10:ee:6d:36:c7:0f:30:72:93:41:c3:85:e4:24:c2: 45:b7:d0:72:4a:80:3d:f8:9e:46:90:a3:37:99:05:d2:80:d3: ee:a3:59:79:dd:7e:d8:cc:72:a4:67:bc:ba:58:5d:7c:ba:a0: 9c:ec:41:9b:17:bc:6b:9c:dd:c9:18:10:f9:ef:74:47:57:a8: ee:bd:a0:4b:98:96:b5:a5:57:b5:b3:6d:cd:aa:4b:09:eb:d5: fb:f5:fd:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCQjQxMTAvBgNVBAUTKDFEMTIxN0VGOEZFODRCNTgyNTUxNjcxQkNBMzVFNjg0 NDg2OTI0OTcwHhcNMjUwOTA0MjAwMDE2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5ZWZkMC01ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsG/wfT5JXSqVVG3dbB1YO67S2n86FF2WOt+nyptNN90Ysi6EL2z4E87u182B CwmXRpZEUNk/poqYFGRi6z4u9Vl1wxcdIhMLeBYVJKr58ISlyqIBpSHgxHHjBxHe CjDd+LrAoiZghNT71xd4oNSGtPRNwY9Wrl6He2hLgtpU+KzeZ8Z9TfLFKu8no4RL UB6VIm50iQU19XBYcTTOfYuhzUaBZSYhqdOBuFKnhXIbSDOPaRuijkfcQsI1TKXW oTytukcIqo+OVImAabhMeu7OE017dSH7Nmng+Yy1f90SxVq0oOc987oHRjWjzPqG tO28ilFiD8eOiqHhZmrVRu2ZBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE9J3N5/ RA/vUgP2QoPg44mVCcu/MB8GA1UdIwQYMBaAFB0SF++P6EtYJVFnG8o15oRIaSSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJCNC9EOTU0QkFCRTY5 QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1MxZ2xVV2NieWpYbWhFaHBK SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hSSVg3NF9vUzFnbFVXY2J5alhtaEVocEpKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhCQjQvRDk1NEJBQkU2OUI3MTFFQTg4RTcyRTU5QzRGOUFFMDIvOTI2MUU1NTQ0 NjQ2MTFFRTg0QjdDNTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndaAwDQYJKoZIhvcNAQELBQADggEBAJGDQd8rNMmSYkE3 0k/9uVckYTQBd5vghoOLmO0ujonOXy3jkacrySoqWNGNR2HCJk1TjbdYXiCKzbK2 4q9S8seKfv1y1nZDqanO2XLJTb3eGiXMNKv91s4aS254RU69v0VXaTFK92RaFt3U i6nitPRSQOH665/5kXVtFi3VmVXtMnVmZtkX2U/jxiTBDSQTNDOu15EF8/4BIaLe H2GmaHAVk1KjwhDubTbHDzByk0HDheQkwkW30HJKgD34nkaQozeZBdKA0+6jWXnd ftjMcqRnvLpYXXy6oJzsQZsXvGuc3ckYEPnvdEdXqO69oEuYlrWlV7Wzbc2qSwnr 1fv1/Ts= -----END CERTIFICATE-----Generated at Tue Oct 14 01:41:56 2025 by rpki-client