$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/CA364B681A1711F0A1D93523C4F9AE02.roa File: CA364B681A1711F0A1D93523C4F9AE02.roa (raw, json) Hash identifier: ZO+BY1B+XgvoW0KKoO0apsMteX7veM0k8UtwvOCudts= Subject key identifier: 4D:6D:C3:B3:7A:D5:4D:68:C6:BF:BA:85:7B:63:CB:BE:24:0D:47:36 Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: 0191 Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/CA364B681A1711F0A1D93523C4F9AE02.roa Signing time: Fri 12 Sep 2025 10:26:57 +0000 ROA not before: Fri 12 Sep 2025 10:26:57 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 199959 IP address blocks: 103.79.76.0/22 maxlen: 22 103.79.76.0/24 maxlen: 24 103.79.77.0/24 maxlen: 24 103.79.78.0/24 maxlen: 24 103.79.79.0/24 maxlen: 24 103.79.118.0/24 maxlen: 24 103.91.144.0/24 maxlen: 24 103.91.145.0/24 maxlen: 24 103.216.162.0/23 maxlen: 23 202.91.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C, serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Validity Not Before: Sep 12 10:26:57 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68c3f571-ee54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7b:62:73:5c:67:c7:42:4d:67:2f:22:db:d9: c9:bb:c3:b1:d2:dc:00:d6:23:a6:39:51:a5:d6:c7: e4:1c:64:3a:c7:71:c0:58:9b:6f:3b:64:df:39:64: ec:ec:d0:da:97:ed:4f:6b:14:cc:cf:45:68:d5:54: 10:cf:42:a3:e2:ed:4f:86:b1:3d:3e:6f:92:ce:2d: a3:f5:76:98:ce:13:21:06:6f:ad:79:78:cc:90:f4: c2:c3:c1:e0:b6:40:ba:13:c1:d7:f1:5f:f2:f9:d0: 35:c2:cb:7f:47:9c:4e:85:54:b3:5b:8a:62:8e:06: f3:38:9c:6d:e8:94:ca:19:f0:ff:7f:f9:15:d8:cc: f8:4e:c8:d6:c6:e9:c2:f8:ab:b3:ac:64:51:20:ce: 84:28:d4:f7:bf:ac:c0:85:15:3d:c3:26:b1:21:6c: 59:d4:ab:07:69:a2:74:aa:f2:97:04:7e:58:74:7b: f0:23:8c:34:e5:83:74:8a:ac:34:2d:52:46:f5:0e: 3f:b3:e1:aa:c7:96:0e:0c:69:e9:11:f2:b6:6b:a7: f9:fc:82:7e:ba:62:d5:23:70:fe:5e:85:c8:10:23: ac:b9:d8:a9:a2:43:6a:5f:c7:19:89:54:54:eb:ea: 99:fc:5c:ac:93:d4:f0:75:1c:44:92:ec:6b:09:49: 23:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:6D:C3:B3:7A:D5:4D:68:C6:BF:BA:85:7B:63:CB:BE:24:0D:47:36 X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/CA364B681A1711F0A1D93523C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.76.0/22 103.79.118.0/24 103.91.144.0/23 103.216.162.0/23 202.91.32.0/24 Signature Algorithm: sha256WithRSAEncryption 56:37:54:6f:29:15:18:ba:d0:ca:90:88:24:ba:d6:9a:0f:ac: 30:54:71:4f:d2:32:7b:17:f9:ef:c2:1b:0b:70:2d:a4:84:fe: 85:06:18:bd:a9:53:ee:41:22:fe:25:d1:05:6c:dd:eb:55:70: 54:4b:84:97:89:b1:54:5b:f6:d4:cc:12:91:bc:c9:7a:b6:6e: c6:d0:2d:4a:19:1e:3c:a2:a2:1c:32:60:fb:5b:b4:f0:fc:30: 80:28:47:05:61:69:a5:f3:24:a4:4b:28:26:74:5f:f8:73:31: f1:21:20:9f:00:39:b3:90:2a:98:23:be:f4:48:8b:c7:b2:7a: f1:7a:7d:4f:0c:e0:8e:7f:71:d5:ae:d0:9e:7a:67:fd:f2:15: 04:08:9b:9c:bd:05:cf:d3:09:2c:24:bc:a6:d2:45:4c:5b:ce: 75:67:1e:16:91:31:e0:c7:70:20:e7:3b:53:5e:d2:43:b3:88: 7d:5f:4b:d3:1c:9a:6a:6c:b0:8c:50:08:c7:de:0c:49:c8:a6: a9:c6:b7:24:91:80:62:40:9b:94:1a:5e:95:0b:ff:95:25:a8: 69:2d:d8:16:58:91:b3:d3:e9:62:b4:22:9e:c9:9b:37:f9:b5: 04:3c:91:c4:30:01:6d:c1:3e:50:b6:a5:9d:91:4b:49:5b:da: 1d:2e:82:94 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVEMkMxMTAvBgNVBAUTKDlEMzQxNDI4M0IyMjdCOEY1MTJGMzA1RjJBQ0RCNDND REU5RTREMTIwHhcNMjUwOTEyMTAyNjU3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMzZjU3MS1lZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXtic1xnx0JNZy8i29nJu8Ox0twA1iOmOVGl1sfkHGQ6x3HAWJtvO2TfOWTs 7NDal+1PaxTMz0Vo1VQQz0Kj4u1PhrE9Pm+Szi2j9XaYzhMhBm+teXjMkPTCw8Hg tkC6E8HX8V/y+dA1wst/R5xOhVSzW4pijgbzOJxt6JTKGfD/f/kV2Mz4TsjWxunC +KuzrGRRIM6EKNT3v6zAhRU9wyaxIWxZ1KsHaaJ0qvKXBH5YdHvwI4w05YN0iqw0 LVJG9Q4/s+Gqx5YODGnpEfK2a6f5/IJ+umLVI3D+XoXIECOsudipokNqX8cZiVRU 6+qZ/Fysk9TwdRxEkuxrCUkjCwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFE1tw7N6 1U1oxr+6hXtjy74kDUc2MB8GA1UdIwQYMBaAFJ00FCg7InuPUS8wXyrNtDzenk0S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUQyQy8wMDM3M0M2QzlC QkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0OVJMekJmS3MyMFBONmVU UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVEMkMvMDAzNzNDNkM5QkJDMTFFRTg1MUFERDUwQzRGOUFFMDIvQ0EzNjRCNjgx QTE3MTFGMEExRDkzNTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAJnT0wDBABnT3YDBAFnW5ADBAFn2KIDBADKWyAwDQYJKoZI hvcNAQELBQADggEBAFY3VG8pFRi60MqQiCS61poPrDBUcU/SMnsX+e/CGwtwLaSE /oUGGL2pU+5BIv4l0QVs3etVcFRLhJeJsVRb9tTMEpG8yXq2bsbQLUoZHjyiohwy YPtbtPD8MIAoRwVhaaXzJKRLKCZ0X/hzMfEhIJ8AObOQKpgjvvRIi8eyevF6fU8M 4I5/cdWu0J56Z/3yFQQIm5y9Bc/TCSwkvKbSRUxbznVnHhaRMeDHcCDnO1Ne0kOz iH1fS9McmmpssIxQCMfeDEnIpqnGtySRgGJAm5QaXpUL/5UlqGkt2BZYkbPT6WK0 Ip7Jmzf5tQQ8kcQwAW3BPlC2pZ2RS0lb2h0ugpQ= -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:14 2025 by rpki-client