$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa File: 7043D43679BB11ECB6D72266C4F9AE02.roa (raw, json) Hash identifier: iU2Hi3gnDAAGhDttleotVYNL88jidVA94xxut38qdqc= Subject key identifier: F1:A1:42:71:3E:39:E1:DB:BC:24:CE:91:43:CA:17:96:C5:A9:24:1A Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0E06 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa Signing time: Thu 04 Sep 2025 18:28:33 +0000 ROA not before: Thu 04 Sep 2025 18:28:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133929 IP address blocks: 103.141.236.0/23 maxlen: 23 103.141.236.0/24 maxlen: 24 103.141.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3590 (0xe06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Sep 4 18:28:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b9da51-ec11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7f:5f:36:13:0b:19:78:a1:db:9a:eb:cb:42: b1:33:ad:39:80:e9:2f:f5:e8:2e:58:06:ad:d2:85: f1:9c:69:f6:04:da:4b:f3:95:c0:d3:05:ab:95:66: 60:0b:3f:f5:aa:05:64:8b:0e:d4:41:1f:70:8d:1f: db:6e:c9:f3:46:9a:af:d2:4d:e1:ce:ab:de:03:9b: 23:3c:f7:74:0f:5c:da:ab:0f:4c:3a:31:fa:08:5a: a1:b2:71:b6:ad:72:fd:6f:bb:97:2d:30:0e:ea:8c: f0:4c:14:63:71:46:70:01:99:05:c2:d0:ba:91:4b: c3:76:ce:77:96:26:1c:b2:58:3a:b0:ec:aa:d7:cf: 3d:29:84:c6:c0:85:b8:d8:a0:21:82:cc:fd:fd:a8: 98:61:40:13:53:53:19:72:21:48:50:12:db:86:69: fe:81:ce:9e:45:0a:29:ae:5e:f5:57:a8:84:d2:f1: d9:5c:84:7a:9f:35:75:de:11:14:52:74:17:8a:0a: e5:48:ff:e9:99:35:4c:93:f6:19:f0:e5:44:9c:2c: 70:5d:0b:87:08:04:de:f0:3a:28:ee:e9:66:aa:5b: 55:1d:c6:17:41:ac:2e:a3:cc:c2:ed:07:6d:ab:2e: 9f:a4:8c:e5:2d:ff:aa:25:ce:be:16:79:d5:9d:a8: 3f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A1:42:71:3E:39:E1:DB:BC:24:CE:91:43:CA:17:96:C5:A9:24:1A X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/7043D43679BB11ECB6D72266C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.236.0/23 Signature Algorithm: sha256WithRSAEncryption 79:6d:6e:40:99:fe:0b:26:97:f6:3f:fa:36:05:27:a7:d7:4b: 64:23:ac:88:e7:26:dd:e4:1b:a2:ef:15:f5:59:9e:31:19:78: b3:98:2e:35:2a:13:22:9a:8f:e5:67:92:1e:82:90:d7:c9:22: cd:ce:2b:82:ac:77:ee:07:94:72:6f:e3:eb:74:cc:40:3b:5e: 58:c0:61:ef:b7:ef:72:9a:89:ca:69:f3:0a:5e:68:9a:df:9a: 89:42:df:ef:96:3d:2e:a1:99:13:07:1d:0e:f1:23:06:0d:a0: 59:bb:5c:a8:ee:ee:2f:46:5a:d8:f1:c5:6a:ea:95:b1:fe:a6: c7:6d:49:04:91:6c:4b:33:7e:ad:b2:8f:44:e1:29:57:d4:64: fd:ac:17:61:5e:a6:52:2f:8b:36:b4:be:1e:67:76:20:ae:ba: fd:02:5f:6f:79:50:f2:04:aa:04:ea:ff:0c:09:97:f7:e9:ff: 1f:ef:b8:f1:32:af:8c:58:39:09:3c:f3:35:38:1e:12:b4:26: 10:c2:6b:f6:06:b9:e5:1c:62:09:77:8e:1d:4f:5f:0a:ef:33: f8:33:fe:8e:50:5b:35:48:64:a8:18:89:3a:f1:89:e3:6f:c0: 67:0c:cc:c6:41:7a:51:36:8f:5f:22:16:ec:b2:c5:fa:12:3b: ed:d5:e7:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwOTA0MTgyODMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5ZGE1MS1lYzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp39fNhMLGXih25rry0KxM605gOkv9eguWAat0oXxnGn2BNpL85XA0wWrlWZg Cz/1qgVkiw7UQR9wjR/bbsnzRpqv0k3hzqveA5sjPPd0D1zaqw9MOjH6CFqhsnG2 rXL9b7uXLTAO6ozwTBRjcUZwAZkFwtC6kUvDds53liYcslg6sOyq1889KYTGwIW4 2KAhgsz9/aiYYUATU1MZciFIUBLbhmn+gc6eRQoprl71V6iE0vHZXIR6nzV13hEU UnQXigrlSP/pmTVMk/YZ8OVEnCxwXQuHCATe8Doo7ulmqltVHcYXQawuo8zC7Qdt qy6fpIzlLf+qJc6+FnnVnag/SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPGhQnE+ OeHbvCTOkUPKF5bFqSQaMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYwNzYvQTQwOEY1ODJCOTA0MTFFOUIxRDUwQjQxQzRGOUFFMDIvNzA0M0Q0MzY3 OUJCMTFFQ0I2RDcyMjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjewwDQYJKoZIhvcNAQELBQADggEBAHltbkCZ/gsml/Y/ +jYFJ6fXS2QjrIjnJt3kG6LvFfVZnjEZeLOYLjUqEyKaj+Vnkh6CkNfJIs3OK4Ks d+4HlHJv4+t0zEA7XljAYe+373Kaicpp8wpeaJrfmolC3++WPS6hmRMHHQ7xIwYN oFm7XKju7i9GWtjxxWrqlbH+psdtSQSRbEszfq2yj0ThKVfUZP2sF2FeplIviza0 vh5ndiCuuv0CX295UPIEqgTq/wwJl/fp/x/vuPEyr4xYOQk88zU4HhK0JhDCa/YG ueUcYgl3jh1PXwrvM/gz/o5QWzVIZKgYiTrxieNvwGcMzMZBelE2j18iFuyyxfoS O+3V56c= -----END CERTIFICATE-----Generated at Sat Sep 20 04:42:49 2025 by rpki-client