$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/1FAB60EE9EB111E99ED10D84C4F9AE02.roa File: 1FAB60EE9EB111E99ED10D84C4F9AE02.roa (raw, json) Hash identifier: J9DgdD9cL2JfNJGX2KpEbeL9xCo98zH1CjpWmw6WEyg= Subject key identifier: C9:D6:8B:C5:D1:1D:2C:67:B1:33:76:64:CC:49:6D:35:2B:CC:03:BE Certificate issuer: /CN=A91CAA69/serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Certificate serial: 0E43 Authority key identifier: 94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/1FAB60EE9EB111E99ED10D84C4F9AE02.roa Signing time: Sat 12 Apr 2025 17:57:17 +0000 ROA not before: Sat 12 Apr 2025 17:57:17 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136277 IP address blocks: 103.85.214.0/24 maxlen: 24 103.85.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3651 (0xe43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA69, serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Validity Not Before: Apr 12 17:57:17 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67faa97d-c25a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0f:a3:c4:d8:7c:00:c1:cd:63:08:63:f0:9a: 0a:c8:38:86:0e:e3:57:e5:f3:6f:46:9f:97:9a:3a: 11:35:8d:d4:af:82:05:93:be:79:69:5c:1a:77:1f: 41:92:b0:f0:7a:b3:e5:71:34:d5:6d:a5:a5:e6:5b: d4:58:b7:ec:6b:1e:7f:7e:a0:0e:c0:9f:b6:da:f6: 16:9c:21:07:d9:cc:5f:05:3c:89:7c:64:1a:9f:31: c5:2d:df:01:98:9e:97:ed:6c:70:3f:f3:76:32:98: 1c:a8:78:4c:65:be:12:65:ee:4f:d3:67:7c:3e:2f: 84:1e:7b:59:4e:5a:8a:ec:bd:9f:7c:cf:8f:bd:a8: ed:66:75:20:a6:3b:13:b5:15:13:8b:c4:db:a1:9a: 0c:1d:7c:ba:fc:53:5c:f4:3a:78:85:94:28:fd:fd: c1:53:17:7a:2c:a0:48:ec:33:c9:a4:b9:db:0e:6e: ee:a9:1a:a6:b6:26:79:d4:52:94:a2:6a:2c:6e:b3: 14:12:7f:5a:3f:51:1a:6d:00:20:30:80:27:d4:7f: ae:bf:82:93:b9:d7:ce:44:13:fa:58:07:70:b5:48: c9:de:8f:d3:c3:db:3e:a4:51:9c:13:55:f7:e9:09: dc:a8:b6:0f:84:02:08:c2:70:34:13:d7:7d:36:6d: fd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:D6:8B:C5:D1:1D:2C:67:B1:33:76:64:CC:49:6D:35:2B:CC:03:BE X509v3 Authority Key Identifier: keyid:94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/1FAB60EE9EB111E99ED10D84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.214.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:11:b4:b5:4f:6f:00:3f:a2:c2:ca:ad:29:a0:a4:36:41:3c: 53:ec:cd:28:4f:fa:fc:09:3c:39:49:d1:e8:6c:b9:39:b6:4e: 53:93:85:ff:8c:a5:b7:ed:f9:5f:da:57:78:64:e1:ff:91:23: 7e:2f:9f:45:a9:c8:59:19:c0:e8:90:ee:2a:db:61:ff:ba:3a: a5:74:7a:c8:11:e5:ea:f9:2f:ab:58:7f:82:52:64:93:60:94: 43:5b:af:30:29:35:50:7c:d1:62:75:dc:5c:06:b3:6f:d9:66: a2:e4:01:74:fd:fb:44:f9:be:e7:b5:10:db:00:16:98:df:d9: cb:80:52:a1:ed:be:c7:fa:fd:a5:a9:28:e4:16:5d:93:df:ce: 1b:df:6a:e1:3e:1c:23:ef:3e:d0:46:c3:99:71:7b:b2:a9:4c: 52:34:57:18:fd:3c:51:c3:d3:2e:e3:06:fe:b4:aa:98:61:9a: 86:05:94:bc:ca:6b:fd:0b:b4:4e:26:ac:a8:74:b3:48:b3:bb: 63:b0:8d:a8:49:cd:16:57:c5:30:2e:8e:20:d3:ac:78:43:2b: 48:e3:77:d1:45:25:a4:4b:3b:62:c7:da:3d:de:7c:7f:f0:20: 51:30:71:2b:f5:95:90:74:5c:e4:6e:25:67:63:9d:75:a0:9a: 2a:58:0c:2b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNjkxMTAvBgNVBAUTKDk0NkFBMkYzNENGQUY5RTRCRDZFMzQ1QkEwOUE5REU5 QjlDMkQxNEQwHhcNMjUwNDEyMTc1NzE3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhYTk3ZC1jMjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsA+jxNh8AMHNYwhj8JoKyDiGDuNX5fNvRp+XmjoRNY3Ur4IFk755aVwadx9B krDwerPlcTTVbaWl5lvUWLfsax5/fqAOwJ+22vYWnCEH2cxfBTyJfGQanzHFLd8B mJ6X7WxwP/N2MpgcqHhMZb4SZe5P02d8Pi+EHntZTlqK7L2ffM+PvajtZnUgpjsT tRUTi8TboZoMHXy6/FNc9Dp4hZQo/f3BUxd6LKBI7DPJpLnbDm7uqRqmtiZ51FKU omosbrMUEn9aP1EabQAgMIAn1H+uv4KTudfORBP6WAdwtUjJ3o/Tw9s+pFGcE1X3 6QncqLYPhAIIwnA0E9d9Nm39wQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMnWi8XR HSxnsTN2ZMxJbTUrzAO+MB8GA1UdIwQYMBaAFJRqovNM+vnkvW40W6Canem5wtFN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE2OS80MEUxRkM5QzlF QjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1lUzlialJib0pxZDZibkMw VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xHcWk4MHo2LWVTOWJqUmJvSnFkNmJuQzBVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0FBNjkvNDBFMUZDOUM5RUIwMTFFOUIwN0U3QTgyQzRGOUFFMDIvMUZBQjYwRUU5 RUIxMTFFOTlFRDEwRDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnVdYwDQYJKoZIhvcNAQELBQADggEBAB0RtLVPbwA/osLK rSmgpDZBPFPszShP+vwJPDlJ0ehsuTm2TlOThf+Mpbft+V/aV3hk4f+RI34vn0Wp yFkZwOiQ7irbYf+6OqV0esgR5er5L6tYf4JSZJNglENbrzApNVB80WJ13FwGs2/Z ZqLkAXT9+0T5vue1ENsAFpjf2cuAUqHtvsf6/aWpKOQWXZPfzhvfauE+HCPvPtBG w5lxe7KpTFI0Vxj9PFHD0y7jBv60qphhmoYFlLzKa/0LtE4mrKh0s0izu2OwjahJ zRZXxTAujiDTrHhDK0jjd9FFJaRLO2LH2j3efH/wIFEwcSv1lZB0XORuJWdjnXWg mipYDCs= -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:19 2025 by rpki-client