$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/C9BCEBBE836D11F080B9106BC4F9AE02.roa File: C9BCEBBE836D11F080B9106BC4F9AE02.roa (raw, json) Hash identifier: cBHJ8P4h257b9ER1avgQwPugIdQzEqvKOiFND3PjXQ8= Subject key identifier: AA:A8:1D:89:BE:C0:3D:BB:13:9C:45:A4:7B:6A:D1:1E:4D:53:51:4E Certificate issuer: /CN=A91DFD4C/serialNumber=63833A241E3E4959EBA19C701D04887DB4B1FC74 Certificate serial: 02 Authority key identifier: 63:83:3A:24:1E:3E:49:59:EB:A1:9C:70:1D:04:88:7D:B4:B1:FC:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/C9BCEBBE836D11F080B9106BC4F9AE02.roa Signing time: Wed 27 Aug 2025 17:46:41 +0000 ROA not before: Wed 27 Aug 2025 17:46:41 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154169 IP address blocks: 103.252.126.0/23 maxlen: 23 103.252.126.0/24 maxlen: 24 103.252.127.0/24 maxlen: 24 2001:df6:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.crl rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFD4C, serialNumber=63833A241E3E4959EBA19C701D04887DB4B1FC74 Validity Not Before: Aug 27 17:46:41 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68af4481-d256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f3:8c:3f:b2:ca:36:54:71:b3:41:df:4b:c6: f6:be:bd:af:37:38:94:2f:72:cb:c9:11:e8:35:8e: ad:c5:66:72:01:dc:12:84:4f:11:13:82:b1:b4:71: cf:78:a8:12:47:7c:06:94:de:15:c9:15:bc:ec:bc: b6:60:79:71:99:2a:c7:b7:9e:8e:e2:45:08:fb:0d: d3:f0:4d:fc:fc:25:18:99:79:47:fc:08:44:33:26: e0:0b:c7:33:17:de:6b:3a:4d:1a:62:2b:02:20:3d: 91:c0:21:dd:11:e9:4a:52:e2:7a:3d:94:19:dc:1e: ab:59:c7:11:14:2a:e6:e1:33:13:82:81:72:3a:38: d7:8b:e8:ca:e2:b3:f8:82:1a:a1:08:94:7c:09:2f: 93:73:5e:c0:57:07:64:be:01:bb:b1:13:e7:43:cd: 11:9f:0d:ef:fe:65:b7:be:75:30:00:39:62:18:bb: 21:40:82:81:5f:e1:8c:22:e3:a6:95:9a:36:65:3b: 5f:41:3b:e1:f4:52:c0:c6:1a:67:b0:59:b9:dc:f6: 14:3f:99:7f:c8:d7:56:77:b4:68:ff:34:19:35:6b: 18:38:07:3e:14:63:29:ce:31:30:18:26:85:41:ec: 37:f5:bd:07:aa:27:37:e2:cb:1b:20:d7:45:5f:e4: 4e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A8:1D:89:BE:C0:3D:BB:13:9C:45:A4:7B:6A:D1:1E:4D:53:51:4E X509v3 Authority Key Identifier: keyid:63:83:3A:24:1E:3E:49:59:EB:A1:9C:70:1D:04:88:7D:B4:B1:FC:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/C9BCEBBE836D11F080B9106BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.126.0/23 IPv6: 2001:df6:a40::/48 Signature Algorithm: sha256WithRSAEncryption 87:f4:e2:a5:a7:f7:cb:59:d4:d3:78:56:2d:68:7a:fc:ea:3b: 7c:58:95:8b:97:92:7e:ad:2d:91:1a:0a:2b:eb:ad:a0:03:a4: 93:4e:f1:10:42:a4:b7:50:40:8a:f5:e5:41:6c:1e:04:98:e9: d0:d7:bc:d2:35:78:86:7f:e8:53:3a:c1:84:5a:7e:fd:ef:84: cb:06:bb:e1:97:9a:ea:1f:16:2b:96:45:ba:86:6d:9a:03:09: 90:bf:b1:88:07:ff:1e:dd:7f:f9:a6:7d:b7:b1:d7:6d:33:cb: aa:26:26:be:b4:2c:fd:71:1f:b4:7f:ab:a5:da:13:b1:63:d6: f4:2c:ce:44:2b:a4:23:80:e6:b8:90:17:5d:10:02:5c:41:0b: 86:7c:59:69:92:29:47:ab:bc:ea:4c:6a:0d:5d:ea:1c:5b:3b: e9:be:0e:fd:91:d6:98:2d:44:df:5a:0c:ce:6e:6b:31:7c:d2: 82:cb:fe:df:c3:3c:ae:39:ea:07:22:41:2d:72:14:90:90:90: 6a:86:17:a0:6e:7f:38:84:39:8e:10:de:02:e4:7a:3c:8d:d0: 6c:a0:32:8e:a5:2f:ac:d0:cd:8f:bb:3f:25:3c:5d:bf:3b:bd: 33:75:8a:36:86:29:12:0f:99:c4:53:79:ca:18:ac:80:d0:32: b7:33:04:ef -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RkQ0QzExMC8GA1UEBRMoNjM4MzNBMjQxRTNFNDk1OUVCQTE5QzcwMUQwNDg4N0RC NEIxRkM3NDAeFw0yNTA4MjcxNzQ2NDFaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YWY0NDgxLWQyNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCk84w/sso2VHGzQd9Lxva+va83OJQvcsvJEeg1jq3FZnIB3BKETxETgrG0cc94 qBJHfAaU3hXJFbzsvLZgeXGZKse3no7iRQj7DdPwTfz8JRiZeUf8CEQzJuALxzMX 3ms6TRpiKwIgPZHAId0R6UpS4no9lBncHqtZxxEUKubhMxOCgXI6ONeL6Mris/iC GqEIlHwJL5NzXsBXB2S+AbuxE+dDzRGfDe/+Zbe+dTAAOWIYuyFAgoFf4Ywi46aV mjZlO19BO+H0UsDGGmewWbnc9hQ/mX/I11Z3tGj/NBk1axg4Bz4UYynOMTAYJoVB 7Df1vQeqJzfiyxsg10Vf5E5rAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUqqgdib7A PbsTnEWke2rRHk1TUU4wHwYDVR0jBBgwFoAUY4M6JB4+SVnroZxwHQSIfbSx/HQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGRDRDLzU2RUMzRDlDODM2 RDExRjA4ODE2MDA2QUM0RjlBRTAyL1k0TTZKQjQtU1Zucm9aeHdIUVNJZmJTeF9I US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTRNNkpCNC1TVm5yb1p4d0hRU0lmYlN4X0hRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkQ0Qy81NkVDM0Q5QzgzNkQxMUYwODgxNjAwNkFDNEY5QUUwMi9DOUJDRUJCRTgz NkQxMUYwODBCOTEwNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWf8fjAPBAIAAjAJAwcAIAEN9gpAMA0GCSqGSIb3DQEBCwUA A4IBAQCH9OKlp/fLWdTTeFYtaHr86jt8WJWLl5J+rS2RGgor662gA6STTvEQQqS3 UECK9eVBbB4EmOnQ17zSNXiGf+hTOsGEWn7974TLBrvhl5rqHxYrlkW6hm2aAwmQ v7GIB/8e3X/5pn23sddtM8uqJia+tCz9cR+0f6ul2hOxY9b0LM5EK6QjgOa4kBdd EAJcQQuGfFlpkilHq7zqTGoNXeocWzvpvg79kdaYLUTfWgzObmsxfNKCy/7fwzyu OeoHIkEtchSQkJBqhhegbn84hDmOEN4C5Ho8jdBsoDKOpS+s0M2Puz8lPF2/O70z dYo2hikSD5nEU3nKGKyA0DK3MwTv -----END CERTIFICATE-----Generated at Fri Sep 19 02:23:51 2025 by rpki-client