$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/041D7B1E7F3811F0ACD8DD1DC4F9AE02.roa File: 041D7B1E7F3811F0ACD8DD1DC4F9AE02.roa (raw, json) Hash identifier: d06+mSNp0KvkytcMNow0ahEeejEwPmx7QslBksVYoOs= Subject key identifier: 36:C0:0A:AE:10:7F:B9:4F:33:D3:F5:BD:15:FB:20:2B:83:F0:32:13 Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 0880 Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/041D7B1E7F3811F0ACD8DD1DC4F9AE02.roa Signing time: Fri 29 Aug 2025 10:15:31 +0000 ROA not before: Fri 29 Aug 2025 10:15:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9304 IP address blocks: 103.94.76.0/23 maxlen: 24 103.94.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2176 (0x880) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6, serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: Aug 29 10:15:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68b17dc3-1d94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0f:18:60:38:9e:73:f5:4f:34:16:d1:49:fc: 94:d4:6c:38:ab:62:81:6d:c9:b1:42:a3:32:5b:06: e2:d7:7a:13:22:e0:df:7a:b1:de:de:8a:50:cf:71: df:99:ed:b6:56:71:5d:2c:d9:f4:15:5a:7c:16:58: 0f:ff:a8:c5:1d:dd:e5:f0:e1:6e:5c:e6:62:d5:44: 49:2e:a4:0d:6c:78:65:7e:fb:c1:e4:70:1d:91:2f: b3:20:91:e3:21:3f:c6:d0:7b:7e:66:b6:ec:1b:28: 14:f7:b2:52:78:b1:87:31:98:eb:b2:1d:d5:21:6d: 56:4b:5b:0b:a0:9f:c3:d2:d4:64:a0:94:4e:1d:cb: 6e:e1:6d:06:9a:27:f4:e4:65:f5:36:f3:63:98:7a: 00:61:51:95:88:bb:d5:9d:46:89:32:f2:f6:45:03: ef:fb:c4:df:1b:ee:1a:dd:ca:73:b1:06:ff:90:36: 23:01:c7:af:7f:04:29:f9:89:88:2b:67:60:d9:74: a1:ac:ef:e0:a1:4e:fd:54:3f:d4:cc:f3:20:34:28: 6e:e7:8c:40:57:89:82:ef:f6:a7:ce:60:eb:67:6f: f6:1a:69:23:ab:d7:4b:f4:8f:21:d6:62:28:40:85: 88:a4:02:39:98:63:cc:53:db:f8:20:64:60:e3:0a: 17:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C0:0A:AE:10:7F:B9:4F:33:D3:F5:BD:15:FB:20:2B:83:F0:32:13 X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/041D7B1E7F3811F0ACD8DD1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.76.0/22 Signature Algorithm: sha256WithRSAEncryption 45:b3:90:fe:58:80:30:25:b6:d6:79:27:c1:fe:90:bc:01:40: c9:53:89:dd:b6:33:cc:fa:8b:f5:1a:ea:a5:a2:ea:63:65:da: 9c:e0:44:d8:2d:f8:3c:49:b8:a5:9e:d2:a5:92:1b:c6:a2:52: 47:da:3d:c0:35:39:3b:05:25:09:7f:d1:7a:52:40:0f:90:0b: f7:51:81:85:2c:6b:df:f6:13:99:4d:cc:17:ca:28:4a:30:29: cc:49:25:8a:04:42:bd:bb:ac:28:60:03:be:bf:9a:39:5a:2c: 55:03:70:9a:08:04:06:9d:39:ec:1a:2d:dc:f1:83:3f:bf:36: bf:63:7c:a0:1c:8d:cb:47:e8:19:3c:2a:9e:e4:90:02:42:86: 94:61:bd:5d:b9:2a:3c:19:fc:42:99:48:30:4a:6c:fb:61:05: 98:b8:e7:1c:c1:85:46:31:65:ad:f1:61:6a:08:67:c2:da:78: 25:ee:23:63:26:7e:67:b7:22:a4:85:93:b6:2e:7f:38:e0:f3: 55:e3:9a:bd:83:f7:42:14:08:c9:64:ef:d3:f2:96:60:ef:c4: 32:66:b4:77:3a:9f:b9:19:b4:85:36:ef:23:1e:12:a9:eb:ee: 55:54:77:6a:8a:a9:98:5a:61:19:c4:69:24:34:3b:70:45:58: 9e:3f:db:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjUwODI5MTAxNTMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxN2RjMy0xZDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0w8YYDiec/VPNBbRSfyU1Gw4q2KBbcmxQqMyWwbi13oTIuDferHe3opQz3Hf me22VnFdLNn0FVp8FlgP/6jFHd3l8OFuXOZi1URJLqQNbHhlfvvB5HAdkS+zIJHj IT/G0Ht+ZrbsGygU97JSeLGHMZjrsh3VIW1WS1sLoJ/D0tRkoJROHctu4W0Gmif0 5GX1NvNjmHoAYVGViLvVnUaJMvL2RQPv+8TfG+4a3cpzsQb/kDYjAcevfwQp+YmI K2dg2XShrO/goU79VD/UzPMgNChu54xAV4mC7/anzmDrZ2/2Gmkjq9dL9I8h1mIo QIWIpAI5mGPMU9v4IGRg4woXGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDbACq4Q f7lPM9P1vRX7ICuD8DITMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAxQzYvNDkxQzhDRTZDQzkxMTFFQThBNTlFRjQ2QzRGOUFFMDIvMDQxRDdCMUU3 RjM4MTFGMEFDRDhERDFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnXkwwDQYJKoZIhvcNAQELBQADggEBAEWzkP5YgDAlttZ5 J8H+kLwBQMlTid22M8z6i/Ua6qWi6mNl2pzgRNgt+DxJuKWe0qWSG8aiUkfaPcA1 OTsFJQl/0XpSQA+QC/dRgYUsa9/2E5lNzBfKKEowKcxJJYoEQr27rChgA76/mjla LFUDcJoIBAadOewaLdzxgz+/Nr9jfKAcjctH6Bk8Kp7kkAJChpRhvV25KjwZ/EKZ SDBKbPthBZi45xzBhUYxZa3xYWoIZ8LaeCXuI2Mmfme3IqSFk7Yufzjg81Xjmr2D 90IUCMlk79PylmDvxDJmtHc6n7kZtIU27yMeEqnr7lVUd2qKqZhaYRnEaSQ0O3BF WJ4/2+g= -----END CERTIFICATE-----Generated at Fri Sep 5 10:04:02 2025 by rpki-client