$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/2CB0D29E211411EE82DE6110C4F9AE02.roa File: 2CB0D29E211411EE82DE6110C4F9AE02.roa (raw, json) Hash identifier: ZxuEm2Wd5fAEoiVfZalrPIP42EJY5+D/pXPR0pxQEC4= Subject key identifier: FE:00:EE:89:EC:6F:2B:A1:63:2D:A7:5B:31:88:CB:87:8A:61:0D:64 Certificate issuer: /CN=A91DC75C/serialNumber=A536A54DB41E441DE74C33F6F736C5AD7A6685C6 Certificate serial: 045F Authority key identifier: A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/2CB0D29E211411EE82DE6110C4F9AE02.roa Signing time: Sat 13 Sep 2025 00:36:21 +0000 ROA not before: Sat 13 Sep 2025 00:36:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151415 IP address blocks: 103.228.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.crl rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC75C, serialNumber=A536A54DB41E441DE74C33F6F736C5AD7A6685C6 Validity Not Before: Sep 13 00:36:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c4bc85-91bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8b:77:54:4d:ec:4e:84:0a:b4:06:33:6d:91: b1:b1:01:21:a2:45:dd:cb:e5:bb:98:b2:1e:59:a0: 64:81:fc:ea:09:2c:61:ad:32:3d:08:cb:ba:26:6a: ed:a9:d7:b7:dc:51:b5:e6:b7:c6:d8:4c:dc:25:dd: 3d:2b:19:59:3e:d6:a3:c4:99:09:50:43:9e:b6:45: 53:d5:fa:f4:d1:14:f7:c3:80:b9:01:a3:b3:57:c0: 70:8f:9f:53:92:87:24:d7:bc:68:3b:13:fb:f5:7a: 3e:99:74:d0:fe:c8:8b:ba:8e:72:50:4f:43:90:7e: ee:ef:ac:48:33:bc:4f:78:cc:95:b9:ad:84:cd:4d: 4b:21:26:68:6d:97:f6:d6:71:c1:4d:8a:44:ac:7a: 52:1e:68:e6:7b:4b:49:71:94:cf:bc:39:c3:73:9c: 0c:77:19:91:48:49:9b:e7:d5:02:2f:5a:84:12:d3: 40:8c:3a:a2:9f:c5:3c:c8:26:e5:5c:d5:78:d6:ff: 31:c1:95:24:d2:3d:0c:da:45:35:4c:fb:f2:eb:e1: e1:e0:ea:96:b2:79:3f:28:16:e4:a4:55:a8:55:8f: dc:b8:25:2d:e2:d4:3f:0f:70:bb:70:13:13:11:6b: 81:fb:8a:e1:20:8d:04:0f:d4:21:7f:ec:3c:b2:19: a4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:00:EE:89:EC:6F:2B:A1:63:2D:A7:5B:31:88:CB:87:8A:61:0D:64 X509v3 Authority Key Identifier: keyid:A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/2CB0D29E211411EE82DE6110C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.124.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:dc:ac:59:c3:10:e8:c9:88:f4:c0:1d:72:b3:84:6b:df:87: 10:0c:06:30:2c:cb:da:d5:41:f7:c8:f0:12:f1:5f:3c:af:f8: 05:08:c9:fb:3f:74:ab:80:2b:6c:c1:2c:96:ab:0a:76:9c:eb: 2e:f8:8c:6f:b9:28:3b:03:86:0e:ff:04:76:7d:d7:1a:7b:86: 47:7d:ac:78:ac:fc:c5:19:07:6d:0e:de:96:24:6d:31:5a:73: a1:4d:e5:7b:ec:ab:0b:b9:54:54:e4:94:36:e9:b3:d8:21:d5: 8a:a5:72:7f:bb:ec:7a:1d:ad:13:19:8e:c1:ef:69:61:3a:44: 47:44:ad:3f:00:0f:eb:ef:66:82:e3:64:b6:f1:86:9b:bd:48: 76:81:bf:95:c1:a8:e4:18:20:3f:37:a0:7d:78:b5:da:fa:8a: 89:ec:cd:0d:90:d4:bf:29:7b:e2:dd:6e:30:44:ca:63:78:ef: a5:6a:84:c1:82:e7:08:72:c8:51:15:44:49:3e:3b:25:ad:1f: 2a:c3:99:e7:a6:db:63:97:fb:cf:23:e4:75:72:be:af:00:6a: 98:bb:2a:f2:aa:64:e3:48:d7:3c:0f:ae:74:f3:43:99:ab:99: cb:10:8b:7c:5f:91:7d:a2:18:e2:fc:de:61:91:1b:67:1b:7e: 73:b1:64:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM3NUMxMTAvBgNVBAUTKEE1MzZBNTREQjQxRTQ0MURFNzRDMzNGNkY3MzZDNUFE N0E2Njg1QzYwHhcNMjUwOTEzMDAzNjIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0YmM4NS05MWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyot3VE3sToQKtAYzbZGxsQEhokXdy+W7mLIeWaBkgfzqCSxhrTI9CMu6Jmrt qde33FG15rfG2EzcJd09KxlZPtajxJkJUEOetkVT1fr00RT3w4C5AaOzV8Bwj59T kock17xoOxP79Xo+mXTQ/siLuo5yUE9DkH7u76xIM7xPeMyVua2EzU1LISZobZf2 1nHBTYpErHpSHmjme0tJcZTPvDnDc5wMdxmRSEmb59UCL1qEEtNAjDqin8U8yCbl XNV41v8xwZUk0j0M2kU1TPvy6+Hh4OqWsnk/KBbkpFWoVY/cuCUt4tQ/D3C7cBMT EWuB+4rhII0ED9Qhf+w8shmk+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFP4A7ons byuhYy2nWzGIy4eKYQ1kMB8GA1UdIwQYMBaAFKU2pU20HkQd50wz9vc2xa16ZoXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzc1Qy9BQ0FDMzlCRTY4 NzExMUVDOEJEQjM0NkJDNEY5QUUwMi9wVGFsVGJRZVJCM25URFAyOXpiRnJYcG1o Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BUYWxUYlFlUkIzblREUDI5emJGclhwbWhjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM3NUMvQUNBQzM5QkU2ODcxMTFFQzhCREIzNDZCQzRGOUFFMDIvMkNCMEQyOUUy MTE0MTFFRTgyREU2MTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5HwwDQYJKoZIhvcNAQELBQADggEBAJvcrFnDEOjJiPTA HXKzhGvfhxAMBjAsy9rVQffI8BLxXzyv+AUIyfs/dKuAK2zBLJarCnac6y74jG+5 KDsDhg7/BHZ91xp7hkd9rHis/MUZB20O3pYkbTFac6FN5Xvsqwu5VFTklDbps9gh 1Yqlcn+77HodrRMZjsHvaWE6REdErT8AD+vvZoLjZLbxhpu9SHaBv5XBqOQYID83 oH14tdr6ionszQ2Q1L8pe+LdbjBEymN476VqhMGC5whyyFEVREk+OyWtHyrDmeem 22OX+88j5HVyvq8Aapi7KvKqZONI1zwPrnTzQ5mrmcsQi3xfkX2iGOL83mGRG2cb fnOxZAM= -----END CERTIFICATE-----Generated at Wed Nov 5 23:35:40 2025 by rpki-client