$ rpki-client -vvf rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D421D958881611E78B9B0850C4F9AE02.roa File: D421D958881611E78B9B0850C4F9AE02.roa (raw, json) Hash identifier: jwMU1HqTvqxMmK/7tE3BOcmdI4jJyKnBQ4irQO6dgGw= Subject key identifier: A2:35:74:14:F8:7D:83:B3:E6:83:42:10:56:52:37:85:DA:22:9D:37 Certificate issuer: /CN=A91E892A/serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Certificate serial: 192A Authority key identifier: 23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D421D958881611E78B9B0850C4F9AE02.roa Signing time: Thu 04 Sep 2025 16:55:21 +0000 ROA not before: Thu 04 Sep 2025 16:55:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136926 IP address blocks: 103.99.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6442 (0x192a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E892A, serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Validity Not Before: Sep 4 16:55:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b9c479-bd72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b8:9d:3a:20:a5:fc:c5:7e:d7:ab:3c:29:78: ef:9c:16:13:a9:26:f0:46:69:64:03:c2:8a:2d:58: a4:58:85:6f:1f:02:b5:1c:24:09:1b:7b:18:6b:78: c6:4f:77:76:cd:58:84:e7:16:2b:1c:e8:f9:57:43: 39:a0:bf:50:d5:1d:d9:5f:4f:1d:36:96:a8:10:92: 82:f5:f8:bc:93:35:5e:9d:f7:a3:74:6d:b3:eb:98: 03:12:23:64:e2:63:d7:38:63:20:4f:c3:40:d8:ef: ca:0c:7f:21:40:00:1a:1a:a8:82:e1:3d:a4:e7:57: 7f:85:13:39:46:05:d7:53:94:9d:3c:97:69:16:6f: fd:18:77:fb:c9:77:dc:13:5a:2c:7e:e5:ea:2a:a1: 19:8e:98:67:72:1b:b1:1c:44:a0:45:b6:a3:7f:f9: 3e:16:1c:ba:c2:73:7b:79:46:5b:b9:07:dc:d9:e8: d6:48:49:33:f1:93:1a:3d:9b:66:6b:25:b3:0e:11: 06:54:06:92:8b:b7:7e:33:12:28:7c:50:5c:19:b7: e4:42:9c:25:37:64:f6:33:55:60:66:9f:ef:87:a6: ab:e5:ab:b8:08:75:0e:55:56:45:25:d9:a1:da:1c: 7b:06:bf:37:b8:9e:7c:d9:67:c8:14:b1:9b:8e:b1: f7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:35:74:14:F8:7D:83:B3:E6:83:42:10:56:52:37:85:DA:22:9D:37 X509v3 Authority Key Identifier: keyid:23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D421D958881611E78B9B0850C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.42.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:fa:f0:a2:1a:df:c4:18:95:0d:ba:e3:3e:e9:e8:5a:4c:df: 2b:69:24:ba:5c:cb:08:71:57:28:f7:cf:d7:b7:2a:f1:cd:1d: 5e:a6:35:d5:04:2a:eb:a4:92:ef:e3:f3:55:68:fe:09:e1:1c: 06:82:41:dd:c2:fd:1e:d9:ba:dd:eb:d3:63:a1:8a:87:5f:50: 98:a3:e4:7e:47:f0:49:aa:23:d7:7d:b1:58:8b:f9:a0:2f:fc: 78:97:24:73:a8:84:09:06:72:4a:2e:34:ef:ed:c1:6b:a9:e5: 7f:de:a2:42:1b:25:32:84:a3:45:7e:e8:5c:9d:9e:be:dc:b9: 13:70:ef:ad:40:4b:16:a9:f4:1f:9d:9d:06:f2:12:1c:25:e8: f4:89:c5:ae:a7:e3:b7:9f:73:85:e3:db:e7:da:f4:76:fa:95: 4b:93:b7:83:fc:e0:a3:ab:ff:0e:5c:bd:7d:80:d2:bb:9f:c7: 84:15:05:1a:ab:71:93:9b:1a:7a:18:63:b8:f0:62:29:02:fe: 78:e3:81:2f:e7:66:30:9f:7c:ad:0b:ea:c1:42:5c:6d:bc:d8: ab:bc:f6:31:ea:8f:02:8b:ed:37:30:7e:99:20:d8:72:2a:c6: 52:5a:2b:65:71:a3:0f:77:66:b1:98:a3:48:da:98:9c:75:30: 61:d1:9d:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MkExMTAvBgNVBAUTKDIzQjk2MDM3QUI4QUQyMzdFNjMyNkY3RUQwRjgxRTMx OEU4QTE0QUIwHhcNMjUwOTA0MTY1NTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5YzQ3OS1iZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLidOiCl/MV+16s8KXjvnBYTqSbwRmlkA8KKLVikWIVvHwK1HCQJG3sYa3jG T3d2zViE5xYrHOj5V0M5oL9Q1R3ZX08dNpaoEJKC9fi8kzVenfejdG2z65gDEiNk 4mPXOGMgT8NA2O/KDH8hQAAaGqiC4T2k51d/hRM5RgXXU5SdPJdpFm/9GHf7yXfc E1osfuXqKqEZjphnchuxHESgRbajf/k+Fhy6wnN7eUZbuQfc2ejWSEkz8ZMaPZtm ayWzDhEGVAaSi7d+MxIofFBcGbfkQpwlN2T2M1VgZp/vh6ar5au4CHUOVVZFJdmh 2hx7Br83uJ582WfIFLGbjrH3OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKI1dBT4 fYOz5oNCEFZSN4XaIp03MB8GA1UdIwQYMBaAFCO5YDeritI35jJvftD4HjGOihSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkyQS9GODEwRTlBNDg4 MTUxMUU3OEJGN0QxNEVDNEY5QUUwMi9JN2xnTjZ1SzBqZm1NbTktMFBnZU1ZNktG S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k3bGdONnVLMGpmbU1tOS0wUGdlTVk2S0ZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MkEvRjgxMEU5QTQ4ODE1MTFFNzhCRjdEMTRFQzRGOUFFMDIvRDQyMUQ5NTg4 ODE2MTFFNzhCOUIwODUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYyowDQYJKoZIhvcNAQELBQADggEBABr68KIa38QYlQ26 4z7p6FpM3ytpJLpcywhxVyj3z9e3KvHNHV6mNdUEKuukku/j81Vo/gnhHAaCQd3C /R7Zut3r02OhiodfUJij5H5H8EmqI9d9sViL+aAv/HiXJHOohAkGckouNO/twWup 5X/eokIbJTKEo0V+6Fydnr7cuRNw761ASxap9B+dnQbyEhwl6PSJxa6n47efc4Xj 2+fa9Hb6lUuTt4P84KOr/w5cvX2A0rufx4QVBRqrcZObGnoYY7jwYikC/njjgS/n ZjCffK0L6sFCXG282Ku89jHqjwKL7Tcwfpkg2HIqxlJaK2Vxow93ZrGYo0jamJx1 MGHRne4= -----END CERTIFICATE-----Generated at Fri Sep 19 08:50:47 2025 by rpki-client