$ rpki-client -vvf rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/1C9DA52E9BD011F0AE2D7868C4F9AE02.roa File: 1C9DA52E9BD011F0AE2D7868C4F9AE02.roa (raw, json) Hash identifier: DWlVGSmUTrs+mVqgzEs4ZghKv3WdHzrNxG9RIMrV1aI= Subject key identifier: C6:6B:85:CE:39:53:43:62:D8:42:52:7A:AA:01:62:BB:51:B6:E3:C2 Certificate issuer: /CN=A91211D4/serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Certificate serial: 06D9 Authority key identifier: 96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/1C9DA52E9BD011F0AE2D7868C4F9AE02.roa Signing time: Sat 27 Sep 2025 18:30:58 +0000 ROA not before: Sat 27 Sep 2025 18:30:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142006 IP address blocks: 103.164.86.0/24 maxlen: 24 103.164.87.0/24 maxlen: 24 2001:df6:4280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91211D4, serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Validity Not Before: Sep 27 18:30:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68d82d62-a146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:68:a7:39:ad:af:cb:f1:39:ae:1a:a0:b0:db: 54:2e:b9:18:02:2f:a1:43:e8:b4:37:b1:db:b8:08: 86:ab:76:fa:48:ac:0b:ef:6e:69:e3:7e:37:94:cb: 90:a2:88:14:9a:93:46:87:1f:cf:0e:f5:28:f3:aa: 99:22:c3:3d:7a:29:a2:b3:4e:4b:7c:35:4a:97:ff: 6c:42:91:2d:6c:37:2f:a0:b3:a6:7f:75:8d:3f:68: 58:71:89:41:32:de:f6:62:55:08:3f:9e:ed:f9:eb: f3:32:19:47:d2:41:a4:65:0c:cf:7b:de:da:14:db: 90:40:57:e0:3c:59:f4:36:47:a4:a3:86:b4:f6:83: c2:3e:c8:07:a8:12:64:1f:e1:57:e2:c2:98:d8:7f: 47:ee:87:f6:57:7d:36:cb:2e:e3:e5:ff:d3:21:a7: 00:f7:75:10:1c:1c:d0:ba:57:b7:68:b5:52:6e:95: 8a:60:14:34:90:bc:78:a1:58:4e:1e:f3:2d:ab:be: 44:bd:0c:99:bb:64:0c:40:e7:b1:15:89:5c:cf:4c: e4:4c:f2:a9:ac:f7:b9:d9:ed:4c:df:71:5e:fa:c7: b5:9b:b6:78:af:f8:76:78:fe:20:15:ac:d3:08:70: a0:b3:2c:12:09:c9:70:e0:7b:88:bf:ab:a3:d1:a9: ab:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:6B:85:CE:39:53:43:62:D8:42:52:7A:AA:01:62:BB:51:B6:E3:C2 X509v3 Authority Key Identifier: keyid:96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/1C9DA52E9BD011F0AE2D7868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.86.0/23 IPv6: 2001:df6:4280::/48 Signature Algorithm: sha256WithRSAEncryption 2e:0f:81:4d:55:2e:d4:44:23:90:ff:bd:f6:a0:a7:47:f0:82: b7:17:7f:9e:14:79:31:3a:6f:0f:3c:bf:9e:43:15:2d:49:d7: 57:26:e1:d5:e1:82:37:38:55:60:ca:a4:19:8f:50:27:27:35: ef:af:2d:da:e3:b3:2e:e0:12:00:e3:9d:af:66:66:d0:5f:f3: 0d:e0:81:2a:f6:9c:01:12:f1:65:08:90:c2:dd:6e:81:73:ee: 16:55:18:64:a8:ef:8e:3a:09:0c:49:4b:99:8e:20:bf:02:09: de:17:3b:c0:f4:e0:7a:8b:6b:d4:b9:7a:0e:58:98:f0:e1:1f: 7c:8c:53:2a:ee:94:57:3a:d6:59:c8:fe:bc:8d:ff:08:18:7b: 23:72:cb:b4:31:e5:fb:a8:18:02:16:cd:c8:ac:8b:5d:71:44: 8a:71:60:dd:7b:4d:4e:18:09:c3:fd:07:8e:56:77:14:07:9a: 25:cd:23:e9:b6:da:37:e9:9c:18:f4:0b:17:57:01:91:23:87: 83:a3:de:0d:9c:7f:97:74:74:a4:cb:03:14:e3:46:12:2a:0a: 19:6a:72:3b:20:04:c5:b1:b7:34:e5:b8:6e:13:f8:d3:24:db: e8:d9:e3:6b:dd:b1:59:fc:f4:8f:4d:42:49:49:22:e1:ab:03: 8f:be:e0:57 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExRDQxMTAvBgNVBAUTKDk2OEQyQUFBNjE2OENCNDk2OTQ0QTcyNzAxOEFGQjQy QTI2RTMxRTEwHhcNMjUwOTI3MTgzMDU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ4MmQ2Mi1hMTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArminOa2vy/E5rhqgsNtULrkYAi+hQ+i0N7HbuAiGq3b6SKwL725p4343lMuQ oogUmpNGhx/PDvUo86qZIsM9eimis05LfDVKl/9sQpEtbDcvoLOmf3WNP2hYcYlB Mt72YlUIP57t+evzMhlH0kGkZQzPe97aFNuQQFfgPFn0Nkeko4a09oPCPsgHqBJk H+FX4sKY2H9H7of2V302yy7j5f/TIacA93UQHBzQule3aLVSbpWKYBQ0kLx4oVhO HvMtq75EvQyZu2QMQOexFYlcz0zkTPKprPe52e1M33Fe+se1m7Z4r/h2eP4gFazT CHCgsywSCclw4HuIv6uj0amrKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMZrhc45 U0Ni2EJSeqoBYrtRtuPCMB8GA1UdIwQYMBaAFJaNKqphaMtJaUSnJwGK+0KibjHh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTFENC9BOUY0OTY1Mjg2 Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kwbHBSS2NuQVlyN1FxSnVN ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvMHFxbUZveTBscFJLY25BWXI3UXFKdU1lRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjExRDQvQTlGNDk2NTI4NkNEMTFFQkE0QUZGNjA5QzRGOUFFMDIvMUM5REE1MkU5 QkQwMTFGMEFFMkQ3ODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpFYwDwQCAAIwCQMHACABDfZCgDANBgkqhkiG9w0BAQsF AAOCAQEALg+BTVUu1EQjkP+99qCnR/CCtxd/nhR5MTpvDzy/nkMVLUnXVybh1eGC NzhVYMqkGY9QJyc1768t2uOzLuASAOOdr2Zm0F/zDeCBKvacARLxZQiQwt1ugXPu FlUYZKjvjjoJDElLmY4gvwIJ3hc7wPTgeotr1Ll6DliY8OEffIxTKu6UVzrWWcj+ vI3/CBh7I3LLtDHl+6gYAhbNyKyLXXFEinFg3XtNThgJw/0HjlZ3FAeaJc0j6bba N+mcGPQLF1cBkSOHg6PeDZx/l3R0pMsDFONGEioKGWpyOyAExbG3NOW4bhP40yTb 6Nnja92xWfz0j01CSUki4asDj77gVw== -----END CERTIFICATE-----Generated at Mon Oct 20 17:16:23 2025 by rpki-client