$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa File: 0EF4DA3A38D011EC936A8C4FC4F9AE02.roa (raw, json) Hash identifier: amAbeNg9WhoR9LiBcCPddN+usabEY60TrC7LxRq3i34= Subject key identifier: BB:35:5B:3B:78:C0:B7:04:33:50:FB:53:62:8B:33:87:3A:6E:57:FB Certificate issuer: /CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Certificate serial: 056D Authority key identifier: BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa Signing time: Sat 09 Aug 2025 00:05:33 +0000 ROA not before: Sat 09 Aug 2025 00:05:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140499 IP address blocks: 103.169.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7C21, serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Validity Not Before: Aug 9 00:05:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689690cd-b333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:41:c2:7f:c0:13:a1:6c:28:6b:73:94:b2:4d: b6:a1:f4:30:0f:16:0f:50:6c:34:d5:25:3d:55:02: 34:c2:5f:b0:f4:e6:2c:e6:4b:9c:48:16:95:7f:30: 6b:15:79:4c:45:53:ce:d4:37:9e:05:f3:8e:2d:29: d9:0b:f7:de:a8:1d:bf:75:48:9d:3d:59:6a:55:b5: bb:16:ec:df:74:76:a1:05:88:c1:73:7f:3b:0f:c3: 99:6f:29:e8:9b:97:1c:22:46:4a:68:d5:a9:21:cc: 0e:8f:51:40:ad:21:bb:a9:ad:49:89:44:37:5b:4a: 71:b4:1f:6b:be:1d:47:30:a4:60:8c:d9:b9:05:3b: 4b:33:12:08:19:24:70:41:d7:f9:06:07:50:d0:65: 31:27:66:0e:51:32:28:33:d7:94:22:e6:89:2b:ba: 03:98:9d:be:e6:42:99:cc:88:87:b2:41:79:52:74: 7c:0e:8a:95:3c:a8:56:4b:bc:3b:a0:68:69:11:07: bf:d8:28:cc:e3:65:e6:59:c7:da:3a:ab:55:0a:9c: 6f:31:aa:6c:0e:70:80:7d:28:a4:ba:28:52:53:17: e7:d1:ea:04:de:10:81:de:c9:c5:55:41:db:35:60: 04:48:5f:cb:f0:ba:26:03:41:69:0c:a3:3d:cd:ab: d4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:35:5B:3B:78:C0:B7:04:33:50:FB:53:62:8B:33:87:3A:6E:57:FB X509v3 Authority Key Identifier: keyid:BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.64.0/24 Signature Algorithm: sha256WithRSAEncryption 63:c4:58:8c:a0:f0:97:f9:f5:e2:a5:d2:6c:5a:bc:e7:93:81: 2d:06:78:58:00:db:19:8f:30:19:b5:6f:4d:55:58:69:84:b8: 67:da:6f:f6:47:8a:24:33:40:04:3b:db:40:a3:ec:b4:69:12: 02:ec:23:72:6f:fa:53:b3:85:26:85:39:1a:65:de:29:54:fd: b0:20:98:63:86:9d:3b:29:4b:e8:13:0e:e8:d7:9c:56:ee:e4: 8f:bc:9f:19:5f:51:6a:c6:84:d7:ac:ac:e8:ba:ea:ce:00:b2: a7:25:9c:a7:0e:e5:c0:18:e4:38:41:15:d5:5a:c7:2a:78:03: 94:0c:87:6c:91:8a:97:03:2a:af:65:c8:ec:c4:b2:21:77:c2: 51:9a:61:a1:f1:31:57:b9:6b:cd:21:c9:4b:3a:78:12:e3:74: af:1a:58:3f:19:21:c3:ec:61:8b:ae:d3:1d:7f:ed:6d:d9:93: fe:01:fb:aa:3c:d3:73:d6:e2:63:1d:01:70:61:5c:85:41:b8: 17:72:2d:1b:ff:56:b8:4a:ee:41:d6:97:eb:50:26:a0:99:00: 81:cb:b2:c1:18:6c:12:10:f6:e1:56:ca:42:3c:50:64:b4:bb: 5a:fb:32:02:23:46:fb:25:0a:9d:2b:b3:7d:7f:85:a7:96:8a: d6:02:ab:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdDMjExMTAvBgNVBAUTKEJDMkRBMzVDQjU2NTEzQTk0QTY4QjU5MUREMkM3NkM1 MUQ4MTExMzQwHhcNMjUwODA5MDAwNTMzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2OTBjZC1iMzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUHCf8AToWwoa3OUsk22ofQwDxYPUGw01SU9VQI0wl+w9OYs5kucSBaVfzBr FXlMRVPO1DeeBfOOLSnZC/feqB2/dUidPVlqVbW7FuzfdHahBYjBc387D8OZbyno m5ccIkZKaNWpIcwOj1FArSG7qa1JiUQ3W0pxtB9rvh1HMKRgjNm5BTtLMxIIGSRw Qdf5BgdQ0GUxJ2YOUTIoM9eUIuaJK7oDmJ2+5kKZzIiHskF5UnR8DoqVPKhWS7w7 oGhpEQe/2CjM42XmWcfaOqtVCpxvMapsDnCAfSikuihSUxfn0eoE3hCB3snFVUHb NWAESF/L8LomA0FpDKM9zavUDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLs1Wzt4 wLcEM1D7U2KLM4c6blf7MB8GA1UdIwQYMBaAFLwto1y1ZROpSmi1kd0sdsUdgRE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0MyMS8zQkNEMDA3NEY1 QUUxMUVCOEUzRUZCMzNDNEY5QUUwMi92QzJqWExWbEU2bEthTFdSM1N4MnhSMkJF VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZDMmpYTFZsRTZsS2FMV1IzU3gyeFIyQkVUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdDMjEvM0JDRDAwNzRGNUFFMTFFQjhFM0VGQjMzQzRGOUFFMDIvMEVGNERBM0Ez OEQwMTFFQzkzNkE4QzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqUAwDQYJKoZIhvcNAQELBQADggEBAGPEWIyg8Jf59eKl 0mxavOeTgS0GeFgA2xmPMBm1b01VWGmEuGfab/ZHiiQzQAQ720Cj7LRpEgLsI3Jv +lOzhSaFORpl3ilU/bAgmGOGnTspS+gTDujXnFbu5I+8nxlfUWrGhNesrOi66s4A sqclnKcO5cAY5DhBFdVaxyp4A5QMh2yRipcDKq9lyOzEsiF3wlGaYaHxMVe5a80h yUs6eBLjdK8aWD8ZIcPsYYuu0x1/7W3Zk/4B+6o803PW4mMdAXBhXIVBuBdyLRv/ VrhK7kHWl+tQJqCZAIHLssEYbBIQ9uFWykI8UGS0u1r7MgIjRvslCp0rs31/haeW itYCq5k= -----END CERTIFICATE-----Generated at Tue Oct 28 16:40:08 2025 by rpki-client