$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/82C54A1E3BD311EE84056461C4F9AE02.roa File: 82C54A1E3BD311EE84056461C4F9AE02.roa (raw, json) Hash identifier: QBXnAMzlDGSKoRSO4pH4e+ph6DI/p8Rnis/UQXiltLI= Subject key identifier: C8:CC:A7:D3:31:50:9A:53:91:4D:3E:FB:62:AE:61:FE:0B:F8:D3:BB Certificate issuer: /CN=A91FDDD1/serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Certificate serial: 01B3 Authority key identifier: 21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/82C54A1E3BD311EE84056461C4F9AE02.roa Signing time: Fri 31 Oct 2025 03:47:26 +0000 ROA not before: Fri 31 Oct 2025 03:47:26 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 132405 IP address blocks: 103.126.80.0/24 maxlen: 24 103.126.81.0/24 maxlen: 24 103.243.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDDD1, serialNumber=216AD1D75A93E037AE94F6C91896D2D582D8FF54 Validity Not Before: Oct 31 03:47:26 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6904314d-2a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b9:93:58:30:6a:ba:5f:d6:e4:32:4e:5b:2d: ef:cb:7b:f3:2a:c3:3a:47:48:1e:a0:c9:ba:c2:ea: c3:49:01:6d:fb:74:b4:87:b1:ef:d9:65:fd:aa:5f: 44:69:5a:40:fd:0b:43:de:35:59:ec:4b:d8:ee:fe: 68:93:0b:d0:3b:fd:f6:09:5a:4a:24:57:c6:a3:77: 93:7d:d5:6f:63:8d:15:9d:9a:cd:60:86:c6:bc:a4: d1:21:cc:c6:75:9c:0b:2b:ae:b2:3e:7a:59:d4:8c: 56:39:00:05:d9:36:9b:ec:cc:f8:e9:c2:e6:30:30: b4:4a:e2:4b:44:15:63:e2:eb:49:9b:45:46:25:b3: 12:2b:f4:c2:c5:f8:36:fc:18:8f:9c:75:03:6f:3f: dc:d6:d3:5b:2f:57:98:b3:5f:1b:f5:9d:02:86:2e: 03:d9:5a:67:c7:d4:89:8c:1a:44:e1:2d:5a:31:09: 8d:61:dc:d6:a0:67:c3:c3:9d:cb:86:0c:47:ea:23: 4a:85:32:92:80:68:94:1a:cb:a1:11:d7:ef:b6:fc: 4c:50:db:38:6d:67:1c:92:88:86:4d:8d:9f:f3:59: 09:21:f1:37:f8:ba:a2:b6:e3:75:bb:c5:ce:15:9e: 99:d3:3e:59:d7:e9:c2:6d:47:32:e7:82:76:23:7d: 17:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CC:A7:D3:31:50:9A:53:91:4D:3E:FB:62:AE:61:FE:0B:F8:D3:BB X509v3 Authority Key Identifier: keyid:21:6A:D1:D7:5A:93:E0:37:AE:94:F6:C9:18:96:D2:D5:82:D8:FF:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/IWrR11qT4DeulPbJGJbS1YLY_1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IWrR11qT4DeulPbJGJbS1YLY_1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDDD1/68C1D4963BD011EE8BAC351AC4F9AE02/82C54A1E3BD311EE84056461C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.80.0/23 103.243.17.0/24 Signature Algorithm: sha256WithRSAEncryption 07:4d:5e:bf:b4:d4:6b:5f:35:f3:96:e3:ae:4a:fa:0e:1e:2d: 53:c7:d9:84:ff:b5:c9:61:90:d8:a3:7b:29:13:79:79:55:76: a1:f6:3d:d4:45:e4:26:6b:79:b0:e4:10:29:2b:2d:7e:98:e0: f3:66:2e:97:c5:d5:65:f4:18:fc:37:29:fb:68:19:13:49:3e: 87:76:32:ae:99:e7:36:a3:dd:bd:e0:86:e2:8b:57:39:d6:93: 4e:fa:cd:0a:cd:13:41:c6:fb:69:26:b0:02:b6:f0:64:02:4d: 14:b2:22:93:95:a9:06:b3:5f:60:d5:c0:83:fe:eb:bd:65:99: f5:09:6d:4a:71:c0:fa:52:7d:a4:81:e2:58:4d:9d:df:1c:99: 73:09:41:69:1b:8b:a9:bb:ad:f7:0d:13:41:a9:af:08:7d:e6: 7c:fb:19:73:a2:e1:ec:c0:50:47:ac:75:22:ec:9d:3c:a3:e9: 68:60:79:1d:3d:c9:f0:f4:a7:6d:37:8f:4d:f9:37:08:cd:ec: db:97:de:a9:4a:48:06:84:16:ff:90:1c:29:8a:cb:d4:59:c3: 62:29:b1:4c:29:c3:0e:3d:90:6a:6b:34:de:c4:88:02:de:37: a0:f6:dd:82:e1:1f:ef:57:e9:4e:33:5c:6d:a9:d7:03:7b:e7: 33:eb:a3:54 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRERDExMTAvBgNVBAUTKDIxNkFEMUQ3NUE5M0UwMzdBRTk0RjZDOTE4OTZEMkQ1 ODJEOEZGNTQwHhcNMjUxMDMxMDM0NzI2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0MzE0ZC0yYTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7mTWDBqul/W5DJOWy3vy3vzKsM6R0geoMm6wurDSQFt+3S0h7Hv2WX9ql9E aVpA/QtD3jVZ7EvY7v5okwvQO/32CVpKJFfGo3eTfdVvY40VnZrNYIbGvKTRIczG dZwLK66yPnpZ1IxWOQAF2Tab7Mz46cLmMDC0SuJLRBVj4utJm0VGJbMSK/TCxfg2 /BiPnHUDbz/c1tNbL1eYs18b9Z0Chi4D2Vpnx9SJjBpE4S1aMQmNYdzWoGfDw53L hgxH6iNKhTKSgGiUGsuhEdfvtvxMUNs4bWcckoiGTY2f81kJIfE3+LqituN1u8XO FZ6Z0z5Z1+nCbUcy54J2I30XQwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMjMp9Mx UJpTkU0++2KuYf4L+NO7MB8GA1UdIwQYMBaAFCFq0ddak+A3rpT2yRiW0tWC2P9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREREMS82OEMxRDQ5NjNC RDAxMUVFOEJBQzM1MUFDNEY5QUUwMi9JV3JSMTFxVDREZXVsUGJKR0piUzFZTFlf MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXclIxMXFUNERldWxQYkpHSmJTMVlMWV8xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRERDEvNjhDMUQ0OTYzQkQwMTFFRThCQUMzNTFBQzRGOUFFMDIvODJDNTRBMUUz QkQzMTFFRTg0MDU2NDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnflADBABn8xEwDQYJKoZIhvcNAQELBQADggEBAAdNXr+0 1GtfNfOW465K+g4eLVPH2YT/tclhkNijeykTeXlVdqH2PdRF5CZrebDkECkrLX6Y 4PNmLpfF1WX0GPw3KftoGRNJPod2Mq6Z5zaj3b3ghuKLVznWk076zQrNE0HG+2km sAK28GQCTRSyIpOVqQazX2DVwIP+671lmfUJbUpxwPpSfaSB4lhNnd8cmXMJQWkb i6m7rfcNE0Gprwh95nz7GXOi4ezAUEesdSLsnTyj6WhgeR09yfD0p203j035NwjN 7NuX3qlKSAaEFv+QHCmKy9RZw2IpsUwpww49kGprNN7EiALeN6D23YLhH+9X6U4z XG2p1wN75zPro1Q= -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:03 2025 by rpki-client