$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/3B495FFCA46211E9B730310FC4F9AE02.roa File: 3B495FFCA46211E9B730310FC4F9AE02.roa (raw, json) Hash identifier: pWiGa9e3CsBZCkEfjYxSv/AY6FwzKhNWqEBfC5Rt5as= Subject key identifier: 66:F3:15:5A:8F:CC:4F:7A:33:44:76:C3:0A:AC:A0:DA:38:98:EA:01 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0E24 Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/3B495FFCA46211E9B730310FC4F9AE02.roa Signing time: Thu 24 Apr 2025 17:46:58 +0000 ROA not before: Thu 24 Apr 2025 17:46:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55482 IP address blocks: 103.78.32.0/24 maxlen: 24 103.78.33.0/24 maxlen: 24 103.78.34.0/24 maxlen: 24 103.78.35.0/24 maxlen: 24 182.173.72.0/22 maxlen: 22 182.173.72.0/24 maxlen: 24 182.173.73.0/24 maxlen: 24 182.173.74.0/24 maxlen: 24 182.173.75.0/24 maxlen: 24 2401:3140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:48:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3620 (0xe24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Apr 24 17:46:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680a7912-13bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3d:1e:51:e3:73:df:b4:c2:da:4b:6d:15:81: 4e:d9:bc:00:49:2c:92:b4:df:ce:55:35:65:5d:67: e5:97:b2:88:62:58:be:62:d3:1a:da:4a:2c:2a:5d: 7b:c4:1d:95:6c:b8:c5:48:c6:4b:f9:ed:60:a8:d1: 4d:4e:9b:01:ad:e5:78:f0:db:88:06:b4:80:67:a3: 04:af:42:85:38:a6:e9:2c:5f:d7:18:d6:3c:1d:b5: 09:2d:2a:b1:41:a0:83:2d:e4:0e:37:08:88:62:e7: 0e:a7:fa:83:9e:c6:61:2e:34:be:03:05:68:44:68: 89:0d:63:91:97:2c:37:1e:e1:c7:e6:28:81:a2:c3: c0:8b:b9:de:27:d6:21:f8:25:d9:da:30:db:74:d8: aa:b3:8a:a6:9b:73:2c:26:82:7a:1e:5b:5b:63:b8: 85:45:6b:f4:a6:eb:05:08:d8:8c:3a:20:56:43:df: 9f:41:f2:b6:30:d5:16:2e:2e:e4:bd:d5:95:47:63: b6:c2:d1:6b:0f:f8:1e:df:c6:1a:31:9c:e8:ef:3d: 9e:6e:d8:50:5f:f7:80:ce:10:30:2e:e3:a1:74:77: fb:7e:e5:be:3e:5c:71:40:fb:1c:6e:1c:71:68:80: c3:4d:fb:2e:50:2a:fc:4f:01:fc:96:01:33:17:18: c7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F3:15:5A:8F:CC:4F:7A:33:44:76:C3:0A:AC:A0:DA:38:98:EA:01 X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/3B495FFCA46211E9B730310FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.32.0/22 182.173.72.0/22 IPv6: 2401:3140::/48 Signature Algorithm: sha256WithRSAEncryption 29:b6:4e:76:68:f8:3f:6f:c0:d1:ec:bc:1f:75:72:69:ac:45: 62:d5:ac:eb:af:b0:0e:bd:27:fc:a8:26:e5:b8:4d:4c:32:4b: c3:31:84:48:88:1b:ee:c4:f7:f2:8e:6c:d6:0f:a5:66:83:d6: 8e:a6:6e:ac:13:f2:2f:fa:c1:aa:98:2c:d9:68:76:4c:bf:97: d9:ed:f5:27:14:a1:45:f5:29:70:30:fb:8e:b4:8a:34:c1:fa: 73:29:c0:6e:2d:d2:f7:f7:43:49:12:6a:eb:11:a6:2b:85:1b: 6e:d1:3e:86:07:f3:26:86:24:dc:2c:3f:ac:f4:95:62:18:7f: 54:7a:b8:78:d0:30:aa:f9:c1:d5:89:3f:2a:53:8d:cc:a0:e5: 1c:79:11:e0:1a:f1:9b:9d:d7:51:84:8c:ef:ae:fd:51:bd:81: bc:d7:95:6a:74:70:e3:17:cc:84:8d:12:10:a6:36:c5:cd:05: 92:1c:93:c4:06:9c:de:ed:f1:66:9b:ed:27:12:0e:7e:ac:a7: 23:d5:3b:00:63:00:e3:bf:bc:5a:89:03:4a:03:74:2b:6f:8e: 5f:fc:ef:28:1f:32:06:17:a5:9d:bb:c1:ea:71:16:d8:a4:dd: 06:f3:a5:e9:6e:0d:ba:fa:76:ea:43:91:c8:32:94:52:38:60: 6d:fa:f7:2c -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUwNDI0MTc0NjU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzkxMi0xM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuD0eUeNz37TC2kttFYFO2bwASSyStN/OVTVlXWfll7KIYli+YtMa2kosKl17 xB2VbLjFSMZL+e1gqNFNTpsBreV48NuIBrSAZ6MEr0KFOKbpLF/XGNY8HbUJLSqx QaCDLeQONwiIYucOp/qDnsZhLjS+AwVoRGiJDWORlyw3HuHH5iiBosPAi7neJ9Yh +CXZ2jDbdNiqs4qmm3MsJoJ6HltbY7iFRWv0pusFCNiMOiBWQ9+fQfK2MNUWLi7k vdWVR2O2wtFrD/ge38YaMZzo7z2ebthQX/eAzhAwLuOhdHf7fuW+PlxxQPscbhxx aIDDTfsuUCr8TwH8lgEzFxjH8QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFGbzFVqP zE96M0R2wwqsoNo4mOoBMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlCQzQvOTJFODIxRjBBNDYwMTFFOTgxMEE1QzBCQzRGOUFFMDIvM0I0OTVGRkNB NDYyMTFFOUI3MzAzMTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJnTiADBAK2rUgwDwQCAAIwCQMHACQBMUAAADANBgkqhkiG 9w0BAQsFAAOCAQEAKbZOdmj4P2/A0ey8H3VyaaxFYtWs66+wDr0n/Kgm5bhNTDJL wzGESIgb7sT38o5s1g+lZoPWjqZurBPyL/rBqpgs2Wh2TL+X2e31JxShRfUpcDD7 jrSKNMH6cynAbi3S9/dDSRJq6xGmK4UbbtE+hgfzJoYk3Cw/rPSVYhh/VHq4eNAw qvnB1Yk/KlONzKDlHHkR4Brxm53XUYSM7679Ub2BvNeVanRw4xfMhI0SEKY2xc0F khyTxAac3u3xZpvtJxIOfqynI9U7AGMA47+8WokDSgN0K2+OX/zvKB8yBhelnbvB 6nEW2KTdBvOl6W4Nuvp26kORyDKUUjhgbfr3LA== -----END CERTIFICATE-----Generated at Wed Nov 5 18:36:43 2025 by rpki-client