$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/FCF7126E310711ECBFFF5E62C4F9AE02.roa File: FCF7126E310711ECBFFF5E62C4F9AE02.roa (raw, json) Hash identifier: F3pgM3DGI+wP2jrjrPXa65ZGlXf9TnXpF1OSKK2H5GQ= Subject key identifier: E3:D2:6F:15:5E:01:E9:4F:78:BF:A3:74:CC:56:5B:BD:C8:CF:64:9E Certificate issuer: /CN=A91EC38C/serialNumber=C396C1E5037D335F7341CA2ECF82261300CDFE95 Certificate serial: 0458 Authority key identifier: C3:96:C1:E5:03:7D:33:5F:73:41:CA:2E:CF:82:26:13:00:CD:FE:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5bB5QN9M19zQcouz4ImEwDN_pU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/FCF7126E310711ECBFFF5E62C4F9AE02.roa Signing time: Sun 01 Dec 2024 00:03:39 +0000 ROA not before: Sun 01 Dec 2024 00:03:39 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 147176 IP address blocks: 103.174.190.0/24 maxlen: 24 103.174.191.0/24 maxlen: 24 2001:df7:d280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/w5bB5QN9M19zQcouz4ImEwDN_pU.crl rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/w5bB5QN9M19zQcouz4ImEwDN_pU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5bB5QN9M19zQcouz4ImEwDN_pU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1112 (0x458) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC38C, serialNumber=C396C1E5037D335F7341CA2ECF82261300CDFE95 Validity Not Before: Dec 1 00:03:39 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674ba7db-3510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a4:df:1d:72:c4:68:5c:3f:54:32:8f:b8:2d: e0:a3:65:15:87:c5:55:6e:5b:b2:82:75:e9:58:8a: 83:ba:25:95:35:eb:cd:95:7f:da:55:e0:09:70:15: c9:59:19:9b:42:b3:95:b5:2e:0a:86:fb:04:30:9d: 21:a7:21:e8:32:3f:93:8b:2f:1b:f5:ac:2c:da:34: d7:eb:9b:d2:b2:88:95:0f:24:b9:64:4d:dc:a0:e0: 1c:98:d4:52:f2:b7:94:17:87:98:6d:2c:dc:ac:73: a7:c4:80:5e:4e:89:18:7e:82:41:6f:78:7e:cd:2d: 3d:8e:a2:dc:8d:fe:3c:a3:33:a9:54:8a:e5:16:c3: a1:8f:3e:22:aa:4a:17:e1:89:19:98:5a:5f:7c:e7: b1:11:3a:72:d4:cc:26:af:a6:b7:a2:97:b3:66:80: b3:5d:9b:0a:a7:2f:92:74:61:f6:1d:a9:b9:97:f7: f4:06:23:da:73:54:be:9c:46:b0:3f:6a:c9:fc:3d: 21:5c:44:c0:12:6a:04:29:bb:d7:0f:39:85:93:09: 46:b7:3c:cf:8d:2e:54:ca:62:9f:52:44:2e:0d:3c: 6c:33:09:6c:02:e3:13:bf:4f:de:e5:3a:03:a7:46: e0:71:c5:47:40:5f:c3:92:2f:2d:3d:43:22:37:84: 42:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D2:6F:15:5E:01:E9:4F:78:BF:A3:74:CC:56:5B:BD:C8:CF:64:9E X509v3 Authority Key Identifier: keyid:C3:96:C1:E5:03:7D:33:5F:73:41:CA:2E:CF:82:26:13:00:CD:FE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/w5bB5QN9M19zQcouz4ImEwDN_pU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w5bB5QN9M19zQcouz4ImEwDN_pU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC38C/87048DAA310411EC83DF2C5BC4F9AE02/FCF7126E310711ECBFFF5E62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.190.0/23 IPv6: 2001:df7:d280::/48 Signature Algorithm: sha256WithRSAEncryption 1a:f5:d7:e4:bf:ed:88:e2:48:91:26:f5:63:19:5a:c6:5b:08: cf:fa:c9:76:2d:6a:73:3b:fd:42:90:d9:04:44:80:e5:85:fe: 4d:a0:d3:be:7a:de:fa:b2:21:f4:0b:37:b9:37:08:42:81:82: fe:90:12:72:86:e3:fd:e3:15:95:04:6e:5c:0e:bd:18:f6:f3: 41:fe:16:fe:2b:06:5f:06:15:18:6e:da:0b:bb:0a:2f:fb:63: 8f:8d:71:72:86:28:d8:c8:3f:fe:3e:fd:0c:be:a5:6f:ed:ab: 9c:c4:4d:3e:6e:50:0d:b4:36:f9:01:b2:68:09:38:09:5f:28: 8a:bd:8e:b9:cc:b1:29:2a:7a:73:7f:de:f7:ee:70:31:4c:18: e0:d7:23:0a:cb:51:44:86:67:b3:02:29:5a:97:8d:78:b8:67: 49:93:09:2a:6d:64:ed:e0:38:ab:f5:0e:f8:88:8d:26:e7:c4: 41:60:f3:75:aa:f0:f7:6c:24:03:59:af:74:28:b7:d0:cb:45: c9:d4:20:c4:9a:0b:a2:35:39:01:a1:6a:e1:3e:14:8d:bb:e1: 0e:de:e8:9d:a1:b4:67:28:fe:c1:e7:1d:d3:a0:cb:ac:c5:68: 2c:a9:f8:36:24:3b:f0:d9:42:1d:4b:5c:12:2a:3c:9e:85:36: 9c:d4:11:e1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzOEMxMTAvBgNVBAUTKEMzOTZDMUU1MDM3RDMzNUY3MzQxQ0EyRUNGODIyNjEz MDBDREZFOTUwHhcNMjQxMjAxMDAwMzM5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiYTdkYi0zNTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaTfHXLEaFw/VDKPuC3go2UVh8VVbluygnXpWIqDuiWVNevNlX/aVeAJcBXJ WRmbQrOVtS4KhvsEMJ0hpyHoMj+Tiy8b9aws2jTX65vSsoiVDyS5ZE3coOAcmNRS 8reUF4eYbSzcrHOnxIBeTokYfoJBb3h+zS09jqLcjf48ozOpVIrlFsOhjz4iqkoX 4YkZmFpffOexETpy1Mwmr6a3opezZoCzXZsKpy+SdGH2Ham5l/f0BiPac1S+nEaw P2rJ/D0hXETAEmoEKbvXDzmFkwlGtzzPjS5UymKfUkQuDTxsMwlsAuMTv0/e5ToD p0bgccVHQF/Dki8tPUMiN4RCAQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOPSbxVe AelPeL+jdMxWW73Iz2SeMB8GA1UdIwQYMBaAFMOWweUDfTNfc0HKLs+CJhMAzf6V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzM4Qy84NzA0OERBQTMx MDQxMUVDODNERjJDNUJDNEY5QUUwMi93NWJCNVFOOU0xOXpRY291ejRJbUV3RE5f cFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c1YkI1UU45TTE5elFjb3V6NEltRXdETl9wVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUMzOEMvODcwNDhEQUEzMTA0MTFFQzgzREYyQzVCQzRGOUFFMDIvRkNGNzEyNkUz MTA3MTFFQ0JGRkY1RTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrr4wDwQCAAIwCQMHACABDffSgDANBgkqhkiG9w0BAQsF AAOCAQEAGvXX5L/tiOJIkSb1YxlaxlsIz/rJdi1qczv9QpDZBESA5YX+TaDTvnre +rIh9As3uTcIQoGC/pAScobj/eMVlQRuXA69GPbzQf4W/isGXwYVGG7aC7sKL/tj j41xcoYo2Mg//j79DL6lb+2rnMRNPm5QDbQ2+QGyaAk4CV8oir2OucyxKSp6c3/e 9+5wMUwY4NcjCstRRIZnswIpWpeNeLhnSZMJKm1k7eA4q/UO+IiNJufEQWDzdarw 92wkA1mvdCi30MtFydQgxJoLojU5AaFq4T4UjbvhDt7onaG0Zyj+wecd06DLrMVo LKn4NiQ78NlCHUtcEio8noU2nNQR4Q== -----END CERTIFICATE-----Generated at Wed Nov 5 07:37:34 2025 by rpki-client