$ rpki-client -vvf rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/BFA10A96FA8911EB8122C53FC4F9AE02.roa File: BFA10A96FA8911EB8122C53FC4F9AE02.roa (raw, json) Hash identifier: 2XbXZcyCmkwNngGPogkbhBm8QONSr+SCdJI+4quVjcM= Subject key identifier: 00:34:E1:FE:1B:34:77:85:5F:2B:E3:E8:8E:97:D0:90:55:20:50:CA Certificate issuer: /CN=A91222FA/serialNumber=C740DD4924C082341737E219E15AE68F7017DCB8 Certificate serial: 056C Authority key identifier: C7:40:DD:49:24:C0:82:34:17:37:E2:19:E1:5A:E6:8F:70:17:DC:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/BFA10A96FA8911EB8122C53FC4F9AE02.roa Signing time: Fri 19 Sep 2025 00:05:32 +0000 ROA not before: Fri 19 Sep 2025 00:05:32 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 142627 IP address blocks: 103.171.68.0/23 maxlen: 23 103.171.68.0/24 maxlen: 24 103.171.69.0/24 maxlen: 24 2001:df7:3b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.crl rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:58:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1388 (0x56c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91222FA, serialNumber=C740DD4924C082341737E219E15AE68F7017DCB8 Validity Not Before: Sep 19 00:05:32 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68cc9e4b-50cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:96:37:64:ce:81:0e:cf:d5:8f:bf:24:0d: e1:9d:51:4f:97:45:b0:79:5f:87:6f:b9:76:fe:e4: cb:24:08:11:f6:72:ec:c6:4b:2d:83:86:a2:82:f1: 3c:52:24:2c:6c:d5:80:fd:83:c8:7b:83:94:0a:d6: b6:bf:cf:8c:27:be:de:7b:85:1e:50:b1:34:70:99: a9:63:1e:f5:ed:a4:e9:f9:4f:bb:2e:6b:bd:6c:e7: e3:b0:13:ca:b6:c0:01:1d:bd:05:a4:6c:a0:4a:d3: c3:f6:9e:01:99:fa:64:d0:00:1e:47:8b:d9:f2:90: 7d:dc:ec:51:99:5d:a5:e1:de:4e:f6:57:7d:9f:06: 9d:5a:3f:56:24:8c:c0:48:f5:f4:57:69:1f:e6:ab: 9d:e4:f0:98:a2:e3:fe:fb:47:26:bf:a5:12:d8:7a: f2:8f:24:ec:54:b7:74:f5:71:03:79:f8:1a:5b:c8: f2:3c:d3:32:ba:d1:6a:42:78:0c:28:3d:25:90:59: 21:85:f6:7e:00:fd:17:9e:18:90:4c:31:ec:e4:2b: 8f:99:fd:0d:68:93:49:30:71:b6:6f:e0:b1:81:e0: 91:f8:e4:a7:73:4a:13:8c:08:da:85:d2:8c:6c:6d: 5a:37:ee:e1:8c:a8:dc:ad:4e:42:b3:02:87:c9:34: 5a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:34:E1:FE:1B:34:77:85:5F:2B:E3:E8:8E:97:D0:90:55:20:50:CA X509v3 Authority Key Identifier: keyid:C7:40:DD:49:24:C0:82:34:17:37:E2:19:E1:5A:E6:8F:70:17:DC:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x0DdSSTAgjQXN-IZ4Vrmj3AX3Lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91222FA/E80DAA2EFA8511EBB6682F37C4F9AE02/BFA10A96FA8911EB8122C53FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.68.0/23 IPv6: 2001:df7:3b80::/48 Signature Algorithm: sha256WithRSAEncryption 1a:86:6c:35:2b:d7:29:1d:9a:a7:47:df:01:d4:04:f4:b5:3d: f6:81:76:23:00:62:10:c6:26:08:30:96:0d:28:7f:28:dd:34: b7:53:66:08:7e:21:57:72:98:c6:d0:16:7d:4c:3d:37:dd:b3: 24:d3:9b:1a:6e:fc:da:98:ed:cc:66:d7:eb:b5:2a:b1:b4:84: 43:10:78:03:ff:8e:42:6b:30:a8:d4:d3:b5:35:37:44:ba:38: c0:12:80:c9:bf:e7:ac:92:29:61:6d:7f:dc:47:28:af:3d:20: fe:3f:a1:73:6d:27:7b:b6:b3:3a:c6:7b:a9:fc:1f:c8:00:9c: ad:0d:05:12:4f:6e:27:13:7d:50:1e:5f:33:48:b5:70:0e:8a: c8:73:af:00:9c:f0:d4:13:94:c7:91:fd:af:16:74:a4:b9:70: ff:eb:56:ae:6f:75:a4:9b:9d:fa:c7:f3:79:91:24:45:81:ef: 22:19:95:c9:36:d7:fe:0f:b9:ce:d9:a8:8f:1c:13:73:81:d7: 70:08:6a:8f:6a:48:da:c6:02:39:00:c2:22:21:36:fc:16:76: d4:66:39:e2:ed:d3:e0:5c:d8:41:2c:66:46:bd:42:bf:c1:29: f4:d1:55:51:07:fb:e5:c5:79:b7:90:a1:89:4e:20:2d:ac:32: 14:42:6e:51 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyRkExMTAvBgNVBAUTKEM3NDBERDQ5MjRDMDgyMzQxNzM3RTIxOUUxNUFFNjhG NzAxN0RDQjgwHhcNMjUwOTE5MDAwNTMyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjOWU0Yi01MGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc6WN2TOgQ7P1Y+/JA3hnVFPl0WweV+Hb7l2/uTLJAgR9nLsxkstg4aigvE8 UiQsbNWA/YPIe4OUCta2v8+MJ77ee4UeULE0cJmpYx717aTp+U+7Lmu9bOfjsBPK tsABHb0FpGygStPD9p4Bmfpk0AAeR4vZ8pB93OxRmV2l4d5O9ld9nwadWj9WJIzA SPX0V2kf5qud5PCYouP++0cmv6US2HryjyTsVLd09XEDefgaW8jyPNMyutFqQngM KD0lkFkhhfZ+AP0XnhiQTDHs5CuPmf0NaJNJMHG2b+CxgeCR+OSnc0oTjAjahdKM bG1aN+7hjKjcrU5CswKHyTRa1QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAA04f4b NHeFXyvj6I6X0JBVIFDKMB8GA1UdIwQYMBaAFMdA3UkkwII0FzfiGeFa5o9wF9y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjJGQS9FODBEQUEyRUZB ODUxMUVCQjY2ODJGMzdDNEY5QUUwMi94MERkU1NUQWdqUVhOLUlaNFZybWozQVgz TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gwRGRTU1RBZ2pRWE4tSVo0VnJtajNBWDNMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjIyRkEvRTgwREFBMkVGQTg1MTFFQkI2NjgyRjM3QzRGOUFFMDIvQkZBMTBBOTZG QTg5MTFFQjgxMjJDNTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnq0QwDwQCAAIwCQMHACABDfc7gDANBgkqhkiG9w0BAQsF AAOCAQEAGoZsNSvXKR2ap0ffAdQE9LU99oF2IwBiEMYmCDCWDSh/KN00t1NmCH4h V3KYxtAWfUw9N92zJNObGm782pjtzGbX67UqsbSEQxB4A/+OQmswqNTTtTU3RLo4 wBKAyb/nrJIpYW1/3Ecorz0g/j+hc20ne7azOsZ7qfwfyACcrQ0FEk9uJxN9UB5f M0i1cA6KyHOvAJzw1BOUx5H9rxZ0pLlw/+tWrm91pJud+sfzeZEkRYHvIhmVyTbX /g+5ztmojxwTc4HXcAhqj2pI2sYCOQDCIiE2/BZ21GY54u3T4FzYQSxmRr1Cv8Ep 9NFVUQf75cV5t5ChiU4gLawyFEJuUQ== -----END CERTIFICATE-----Generated at Mon Oct 20 19:26:40 2025 by rpki-client