$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/196C52A8D0F711EC8673072FC4F9AE02.roa File: 196C52A8D0F711EC8673072FC4F9AE02.roa (raw, json) Hash identifier: 1zywqVEPzRbdKjUH9lfurYX548Q8woU0JCmn0L04HiU= Subject key identifier: E5:89:B1:4E:83:B1:CA:F6:F8:DE:52:3F:23:F8:C8:0B:15:0E:16:96 Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 0362 Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/196C52A8D0F711EC8673072FC4F9AE02.roa Signing time: Sun 31 Aug 2025 02:18:36 +0000 ROA not before: Sun 31 Aug 2025 02:18:36 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 131251 IP address blocks: 103.244.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1, serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Aug 31 02:18:36 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68b3b0fc-ea0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:75:a3:75:ac:25:d9:e6:52:90:de:62:04:a1: 75:61:b1:57:9d:34:f7:87:f5:f9:f4:cc:dd:c0:34: da:1e:bf:fe:a1:30:24:4f:fd:69:8d:bc:cc:23:99: 50:4c:8c:c4:f3:5c:c5:66:17:af:5b:5d:8b:07:5b: 18:e9:6b:a1:69:93:46:92:51:02:7a:0b:24:9c:d8: df:4d:ea:9b:58:66:a9:19:85:cd:f4:eb:d5:f3:9f: 83:e6:7b:1a:88:23:7f:0e:39:f7:3b:f0:1a:20:1b: c3:9b:9c:2f:51:2a:52:86:e9:b1:91:8c:fb:e5:74: 29:68:ca:25:15:22:88:ad:e8:46:7a:fd:31:5e:e5: 0b:b5:62:b5:56:98:a5:44:9a:a5:fa:48:9c:27:f8: b3:42:3c:ea:8e:e7:81:f0:0f:ce:fb:9d:ea:f2:33: 0d:19:63:f2:be:7a:5d:6c:26:66:fc:a9:01:61:f6: 2d:6c:81:b0:b6:88:d1:c7:5d:26:34:62:4b:0a:37: 5c:b3:97:38:49:70:c8:14:ca:2d:4d:6e:81:dc:6e: d2:7d:e9:8c:e9:15:cd:4b:e1:b7:89:de:e5:de:5b: b0:e2:1a:44:ce:22:56:af:b2:60:20:a0:fd:bd:ff: 61:ec:22:c2:77:3e:04:f7:26:12:c5:ed:85:70:c2: f4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:89:B1:4E:83:B1:CA:F6:F8:DE:52:3F:23:F8:C8:0B:15:0E:16:96 X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/196C52A8D0F711EC8673072FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.192.0/24 Signature Algorithm: sha256WithRSAEncryption ac:8b:85:b2:bb:70:6f:f4:f6:e7:ac:da:dd:8e:83:0a:30:ef: 86:03:8b:d1:00:5c:a4:b3:ab:48:ba:a0:ea:36:68:aa:23:c8: ff:e6:1b:6f:e4:25:2d:19:c8:f5:f0:eb:cb:ca:6b:46:1d:5c: f2:17:12:28:62:43:79:93:ba:16:28:69:7f:13:97:1d:79:81: 78:7c:3c:83:1f:35:f0:d8:8e:be:ed:8b:9a:fa:eb:82:52:53: 9d:ca:77:be:36:cf:d7:ee:a1:86:60:d0:0d:c4:b0:cf:24:08: d5:0a:c3:93:9f:88:74:bc:66:9b:86:2c:a7:d5:15:97:75:d5: ed:1d:2e:14:24:43:98:36:0f:15:1e:24:23:2f:49:7d:21:39: b5:ce:0a:00:8c:dd:c8:89:99:e3:2d:5d:14:bb:79:d9:84:30: 87:ce:21:98:7b:ed:1c:d8:00:30:55:07:0b:35:64:41:0c:a1: 86:0a:10:65:12:16:63:39:7d:68:b4:c4:46:74:75:e3:93:da: ac:15:1c:1d:f8:74:67:94:c9:cc:68:bd:4d:c9:9f:ce:2e:07: 76:79:e1:98:6f:ec:d3:68:e8:74:0c:62:29:7d:ed:41:56:94: 3e:f0:dd:3f:26:c6:02:41:ea:a9:f7:1a:aa:8e:fd:0f:be:76: ee:93:0d:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjUwODMxMDIxODM2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzYjBmYy1lYTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3Wjdawl2eZSkN5iBKF1YbFXnTT3h/X59MzdwDTaHr/+oTAkT/1pjbzMI5lQ TIzE81zFZhevW12LB1sY6WuhaZNGklECegsknNjfTeqbWGapGYXN9OvV85+D5nsa iCN/Djn3O/AaIBvDm5wvUSpShumxkYz75XQpaMolFSKIrehGev0xXuULtWK1Vpil RJql+kicJ/izQjzqjueB8A/O+53q8jMNGWPyvnpdbCZm/KkBYfYtbIGwtojRx10m NGJLCjdcs5c4SXDIFMotTW6B3G7SfemM6RXNS+G3id7l3luw4hpEziJWr7JgIKD9 vf9h7CLCdz4E9yYSxe2FcML0jQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOWJsU6D scr2+N5SPyP4yAsVDhaWMB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ2QjEvOUEwRUNFMTBEMEYwMTFFQzhFQ0RCRjYzQzRGOUFFMDIvMTk2QzUyQThE MEY3MTFFQzg2NzMwNzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn9MAwDQYJKoZIhvcNAQELBQADggEBAKyLhbK7cG/09ues 2t2Ogwow74YDi9EAXKSzq0i6oOo2aKojyP/mG2/kJS0ZyPXw68vKa0YdXPIXEihi Q3mTuhYoaX8Tlx15gXh8PIMfNfDYjr7ti5r664JSU53Kd742z9fuoYZg0A3EsM8k CNUKw5OfiHS8ZpuGLKfVFZd11e0dLhQkQ5g2DxUeJCMvSX0hObXOCgCM3ciJmeMt XRS7edmEMIfOIZh77RzYADBVBws1ZEEMoYYKEGUSFmM5fWi0xEZ0deOT2qwVHB34 dGeUycxovU3Jn84uB3Z54Zhv7NNo6HQMYil97UFWlD7w3T8mxgJB6qn3GqqO/Q++ du6TDUM= -----END CERTIFICATE-----Generated at Mon Oct 20 15:50:21 2025 by rpki-client