$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/349ACBB2450811F09650FF5FC4F9AE02.roa File: 349ACBB2450811F09650FF5FC4F9AE02.roa (raw, json) Hash identifier: yHDrOZAHkb1aNlUdTrbId0x6TGNas51iB5olcDBHB+Q= Subject key identifier: D6:C7:2E:F9:2E:E0:73:EC:65:F6:72:51:D5:CD:AF:19:B8:9C:EB:78 Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 3A Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/349ACBB2450811F09650FF5FC4F9AE02.roa Signing time: Mon 09 Jun 2025 08:03:19 +0000 ROA not before: Mon 09 Jun 2025 08:03:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 401701 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 09:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: Jun 9 08:03:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68469547-e426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b8:cf:17:4f:de:bc:d4:2a:86:75:97:9d:24: 9f:d4:75:60:c8:91:91:fd:50:24:9b:59:8c:06:84: 31:2b:39:37:f1:67:e2:14:23:8c:9e:9d:f7:44:7b: ca:08:e8:d2:55:07:1d:c5:7f:a7:45:aa:cf:20:0b: bb:f4:3c:cc:d4:bb:ce:61:f5:2a:77:42:61:c5:40: 39:de:0a:78:5f:7f:33:9d:af:18:0c:f7:88:17:42: 72:93:10:0d:4c:a7:dc:6e:31:43:bb:50:e8:90:58: 9a:bd:2a:ac:5d:60:c3:01:ff:97:40:4f:3c:7c:e4: 2f:4c:39:2e:5c:7d:cb:9c:ad:58:07:29:fb:b0:c8: 45:0e:b6:21:15:1c:50:da:3c:1b:3d:47:7e:b5:fc: 80:38:19:a5:53:b8:48:89:62:47:ec:83:ac:85:44: a1:f3:61:b2:cb:83:90:9d:c4:9d:c6:b6:c6:32:4b: 09:73:69:38:6f:a6:03:b8:2e:92:05:6d:17:1c:15: 71:51:23:65:bc:29:34:fa:85:87:31:7f:23:3a:c2: 6d:20:59:6a:5e:c6:59:21:4f:7d:a3:17:66:1b:35: af:98:af:72:98:93:04:bd:0b:2b:ae:36:81:2c:73: 0b:ef:a8:32:34:3f:1e:31:14:68:f1:bf:ac:85:63: bb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C7:2E:F9:2E:E0:73:EC:65:F6:72:51:D5:CD:AF:19:B8:9C:EB:78 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/349ACBB2450811F09650FF5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption b2:e9:d7:69:96:c4:c4:56:1b:b2:12:a4:8e:e9:c1:c8:0b:54: c5:b3:e8:96:04:a1:68:e8:44:ad:07:49:f5:5f:2b:60:46:b9: a3:d1:c3:3d:7f:d7:ed:26:fe:b1:eb:ca:c7:eb:e3:f9:0f:9d: a6:89:c2:da:89:08:81:5a:0a:5e:1d:89:5b:b6:35:90:1e:e5: c0:66:d8:cf:1e:d3:1d:d4:6d:34:07:49:fa:88:48:bf:81:3e: cc:d6:44:d2:63:f0:2e:2c:2f:2b:d6:86:bb:7c:79:4c:eb:a3: 91:62:92:24:08:0e:32:b5:17:9c:40:69:0b:d8:58:fd:85:87: b6:4f:4e:3e:09:1b:ca:4c:a3:50:10:01:2c:fc:c8:10:b5:aa: db:af:26:24:09:41:74:33:a9:ac:60:bb:32:11:b5:20:7e:8b: c1:ea:7b:d3:2a:9a:f0:56:d3:94:83:27:38:21:90:38:e5:03: e3:42:d9:94:75:10:45:7a:f2:b7:cb:0f:30:85:17:e2:40:12: 7c:7d:64:09:bf:ca:23:81:b6:e8:c8:53:54:c3:a0:cc:64:bb: 55:97:f8:ce:57:36:a6:5e:4e:59:fc:d5:2c:cf:0e:2c:8e:59: cf:21:6a:1a:36:b6:d0:30:07:d5:e1:01:00:a7:4a:d8:05:9e: d6:0a:f0:72 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA2MDkwODAzMTlaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDY5NTQ3LWU0MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNuM8XT9681CqGdZedJJ/UdWDIkZH9UCSbWYwGhDErOTfxZ+IUI4yenfdEe8oI 6NJVBx3Ff6dFqs8gC7v0PMzUu85h9Sp3QmHFQDneCnhffzOdrxgM94gXQnKTEA1M p9xuMUO7UOiQWJq9KqxdYMMB/5dATzx85C9MOS5cfcucrVgHKfuwyEUOtiEVHFDa PBs9R361/IA4GaVTuEiJYkfsg6yFRKHzYbLLg5CdxJ3GtsYySwlzaThvpgO4LpIF bRccFXFRI2W8KTT6hYcxfyM6wm0gWWpexlkhT32jF2YbNa+Yr3KYkwS9CyuuNoEs cwvvqDI0Px4xFGjxv6yFY7tDAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQU1scu+S7g c+xl9nJR1c2vGbic63gwHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi8zNDlBQ0JCMjQ1 MDgxMUYwOTY1MEZGNUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmd1iAMEAmd5XAMEAWe61jANBgkqhkiG9w0BAQsFAAOCAQEA sunXaZbExFYbshKkjunByAtUxbPolgShaOhErQdJ9V8rYEa5o9HDPX/X7Sb+sevK x+vj+Q+dponC2okIgVoKXh2JW7Y1kB7lwGbYzx7THdRtNAdJ+ohIv4E+zNZE0mPw LiwvK9aGu3x5TOujkWKSJAgOMrUXnEBpC9hY/YWHtk9OPgkbykyjUBABLPzIELWq 268mJAlBdDOprGC7MhG1IH6Lwep70yqa8FbTlIMnOCGQOOUD40LZlHUQRXryt8sP MIUX4kASfH1kCb/KI4G26MhTVMOgzGS7VZf4zlc2pl5OWfzVLM8OLI5ZzyFqGja2 0DAH1eEBAKdK2AWe1grwcg== -----END CERTIFICATE-----Generated at Fri Oct 24 12:18:45 2025 by rpki-client