$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/A5393FF2E70911E8B4D19B84C4F9AE02.roa File: A5393FF2E70911E8B4D19B84C4F9AE02.roa (raw, json) Hash identifier: V0JrvauXWXNDpsL43DjdmMpgmoTrusHbq711Y8hqbp8= Subject key identifier: AE:FA:A8:8C:9D:D2:F3:03:FF:9C:C5:C7:63:3E:7F:17:C9:DF:D5:A8 Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 1300 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/A5393FF2E70911E8B4D19B84C4F9AE02.roa Signing time: Fri 12 Sep 2025 17:26:18 +0000 ROA not before: Fri 12 Sep 2025 17:26:18 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 55901 IP address blocks: 103.123.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4864 (0x1300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Sep 12 17:26:18 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c457b9-bab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f9:98:fd:ec:70:de:47:1b:cb:6a:96:f5:7a: 39:e8:d7:f6:4d:3a:34:50:5c:c7:d5:c8:32:11:5d: 18:b4:79:86:0b:af:ce:24:ad:75:2f:21:c8:19:77: 0f:56:94:fa:6f:b7:a2:24:a6:26:4d:74:74:32:c7: da:d5:5f:7f:01:89:7e:30:e3:1b:72:9c:e6:85:dd: 5b:5d:69:11:d2:dd:c5:0e:53:f4:e0:e7:8d:73:ef: 06:6d:a8:cf:d7:f1:58:f5:42:af:04:ea:5b:28:c1: cf:8b:d0:65:8c:7c:10:4c:f3:3e:88:cb:6b:30:a9: ad:e3:15:5c:cb:2a:06:6b:56:b9:91:91:52:b0:9b: c6:39:30:3a:6b:b4:6e:e3:30:06:74:25:4a:29:42: 80:c9:ce:c2:4c:92:ea:fd:98:18:ae:bb:a7:30:09: c3:df:c5:e1:bc:93:5a:55:f2:b2:3b:35:7d:15:fd: 5b:38:bf:a5:b6:d5:b5:96:1d:0b:7b:ae:54:08:3e: e0:46:ca:17:28:f1:f7:34:17:79:e2:eb:4a:e6:e5: b9:f1:69:57:2b:21:a4:77:c8:e1:86:0a:4f:52:33: 25:de:f7:ae:14:9f:d3:da:cb:4f:da:f5:8e:01:75: 2c:0b:f8:ac:c6:7c:7e:f5:47:64:59:df:37:17:cf: 65:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:FA:A8:8C:9D:D2:F3:03:FF:9C:C5:C7:63:3E:7F:17:C9:DF:D5:A8 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/A5393FF2E70911E8B4D19B84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.136.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:80:68:98:e6:58:11:98:83:a1:b0:ee:50:58:30:27:2d:2e: b5:7c:99:6a:26:c9:39:a1:7d:8f:0e:8a:4f:f6:97:ab:85:8c: 09:4c:1b:ca:fc:63:e7:6c:e2:da:54:00:8c:78:ca:d2:fa:18: 94:5b:15:75:5f:f0:f9:6e:d9:73:59:7a:74:e7:40:fb:07:86: 94:10:f2:ac:10:92:d1:9e:82:a8:39:59:9a:d2:6a:8c:3a:45: f3:53:4c:98:22:e2:c9:13:53:89:fc:72:2d:bf:13:2c:5e:43: 8b:e1:4a:7a:78:48:34:52:db:64:3b:ab:de:65:d6:10:2e:3c: 0b:d8:5a:92:26:5a:ff:25:b6:9f:12:9a:97:cd:f7:48:9f:a5: 63:29:dd:b5:88:37:da:90:46:bf:48:b6:2c:80:48:28:11:5f: c7:b5:7d:81:bc:e1:b4:6c:16:ed:1d:6f:48:58:7a:04:90:5a: 48:1f:24:2b:97:50:fb:2f:90:bc:c9:4c:e9:18:11:77:33:0b: ee:00:46:08:4f:d6:e2:7c:19:ee:b1:71:4f:1e:59:f2:56:03: 4b:26:79:2b:5f:fd:a2:5b:7a:a0:50:50:94:2f:53:ab:cd:75: d7:18:bb:f7:76:3d:f2:aa:0e:26:f3:77:5f:2b:20:e8:4d:e7: 11:c3:91:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUwOTEyMTcyNjE4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0NTdiOS1iYWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvmY/exw3kcby2qW9Xo56Nf2TTo0UFzH1cgyEV0YtHmGC6/OJK11LyHIGXcP VpT6b7eiJKYmTXR0Msfa1V9/AYl+MOMbcpzmhd1bXWkR0t3FDlP04OeNc+8GbajP 1/FY9UKvBOpbKMHPi9BljHwQTPM+iMtrMKmt4xVcyyoGa1a5kZFSsJvGOTA6a7Ru 4zAGdCVKKUKAyc7CTJLq/ZgYrrunMAnD38XhvJNaVfKyOzV9Ff1bOL+lttW1lh0L e65UCD7gRsoXKPH3NBd54utK5uW58WlXKyGkd8jhhgpPUjMl3veuFJ/T2stP2vWO AXUsC/isxnx+9UdkWd83F89liwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK76qIyd 0vMD/5zFx2M+fxfJ39WoMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjcyRjkvRDJFRDQ5QzJDMjZEMTFFOEJBQkUxMTY1QzRGOUFFMDIvQTUzOTNGRjJF NzA5MTFFOEI0RDE5Qjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJne4gwDQYJKoZIhvcNAQELBQADggEBAI6AaJjmWBGYg6Gw 7lBYMCctLrV8mWomyTmhfY8Oik/2l6uFjAlMG8r8Y+ds4tpUAIx4ytL6GJRbFXVf 8Plu2XNZenTnQPsHhpQQ8qwQktGegqg5WZrSaow6RfNTTJgi4skTU4n8ci2/Eyxe Q4vhSnp4SDRS22Q7q95l1hAuPAvYWpImWv8ltp8SmpfN90ifpWMp3bWIN9qQRr9I tiyASCgRX8e1fYG84bRsFu0db0hYegSQWkgfJCuXUPsvkLzJTOkYEXczC+4ARghP 1uJ8Ge6xcU8eWfJWA0smeStf/aJbeqBQUJQvU6vNddcYu/d2PfKqDibzd18rIOhN 5xHDkc0= -----END CERTIFICATE-----Generated at Mon Oct 20 19:29:19 2025 by rpki-client