$ rpki-client -vvf rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/9891A3A4285311ED9DD8324EC4F9AE02.roa File: 9891A3A4285311ED9DD8324EC4F9AE02.roa (raw, json) Hash identifier: S7ZRwjfMRdXYDsbLwG2JwWob+OsTSSbwbMXmMEzGwj4= Subject key identifier: 87:F4:3A:CA:D3:62:D9:8C:80:BF:DA:26:CA:1C:C6:E4:66:03:DC:A4 Certificate issuer: /CN=A91618E1/serialNumber=2D0CB0E98F562E9366D5A995FB26F666A8C0A95A Certificate serial: 0281 Authority key identifier: 2D:0C:B0:E9:8F:56:2E:93:66:D5:A9:95:FB:26:F6:66:A8:C0:A9:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/9891A3A4285311ED9DD8324EC4F9AE02.roa Signing time: Wed 15 Oct 2025 04:27:35 +0000 ROA not before: Wed 15 Oct 2025 04:27:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141731 IP address blocks: 103.204.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.crl rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618E1, serialNumber=2D0CB0E98F562E9366D5A995FB26F666A8C0A95A Validity Not Before: Oct 15 04:27:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ef22b6-80a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5a:ae:51:c2:1f:e6:da:8a:ac:bf:08:d9:24: 94:06:c3:14:29:fa:d3:f5:73:8f:bf:bf:f6:28:3a: 52:22:0f:28:f5:7d:00:4b:47:c2:85:ea:cd:cd:37: 36:a1:12:fa:9e:83:69:96:76:a0:c8:ce:c2:95:94: 5e:f6:e4:b7:11:dc:47:92:b9:7a:16:c9:b1:35:f6: 46:39:15:d8:95:6f:63:24:03:03:dc:60:72:38:6a: 45:8b:26:53:34:ba:20:e1:45:f3:9d:cc:09:3d:11: 51:d2:65:9d:7f:e8:f3:dd:7d:63:bf:f7:46:be:f1: 25:6e:9f:e1:00:2b:f0:f5:78:1b:b8:ed:a8:49:a4: ac:5c:e3:59:85:da:eb:fd:f7:27:ea:c0:36:ea:49: a6:c5:7e:8c:8c:eb:f3:3b:24:cf:46:46:1c:f2:81: 2e:69:d1:55:09:c7:a0:6e:0c:eb:6a:ff:45:94:ef: 34:07:00:86:79:28:44:ff:c3:31:60:37:40:a7:fa: 30:d0:09:b1:48:f6:63:6b:82:c9:98:ed:6f:b8:12: 13:31:29:36:62:6b:d9:7a:15:3a:e8:51:4a:5b:08: 47:06:5a:be:24:80:38:34:94:25:3b:be:cf:e6:15: 91:05:c6:84:2f:be:40:06:43:d2:de:17:ab:d9:10: 54:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F4:3A:CA:D3:62:D9:8C:80:BF:DA:26:CA:1C:C6:E4:66:03:DC:A4 X509v3 Authority Key Identifier: keyid:2D:0C:B0:E9:8F:56:2E:93:66:D5:A9:95:FB:26:F6:66:A8:C0:A9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/9891A3A4285311ED9DD8324EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.69.0/24 Signature Algorithm: sha256WithRSAEncryption b1:b4:96:e1:b0:e0:a3:26:de:3e:98:2c:eb:d1:3b:56:ea:f6: 01:0d:94:8f:37:c2:30:a0:56:9d:67:1e:15:23:0e:d7:a0:1b: 58:8e:61:9e:25:f4:19:af:45:b3:f9:d5:a5:79:4a:d0:ca:9f: 4a:5b:56:9c:1a:bb:ff:f4:3e:37:de:c9:5f:2f:3d:60:82:ea: 72:2a:90:be:30:82:7e:d8:d7:b6:88:a4:fd:91:ef:e8:5c:87: 6e:05:44:07:ef:46:08:49:dd:55:31:ad:7e:54:da:28:ca:4e: 3a:c6:2e:b8:8e:2d:79:8e:9e:57:0c:3d:76:40:3f:60:20:cc: c5:15:6a:31:ac:be:bf:af:67:1f:ce:ac:10:08:93:aa:41:02: 55:b6:34:d2:c7:89:09:80:d7:72:8d:eb:a8:7c:55:dd:d3:25: 05:d7:36:03:47:6b:0a:27:a7:d5:2c:39:f5:6c:9a:e6:c7:2f: 7a:eb:a7:f9:41:bf:4d:5f:2e:f9:6a:c4:6c:af:cf:d1:8d:b0: d3:a4:fd:4f:54:14:cd:a0:c5:3e:3f:e2:e8:7d:7f:73:9c:bc: ae:47:7f:90:bb:e4:b2:ab:29:f0:1e:40:ee:f2:6e:0d:f1:8d: c7:33:00:70:35:9b:c3:ba:7e:4d:38:4f:7e:7d:4d:b7:16:cf: 36:5b:bf:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4RTExMTAvBgNVBAUTKDJEMENCMEU5OEY1NjJFOTM2NkQ1QTk5NUZCMjZGNjY2 QThDMEE5NUEwHhcNMjUxMDE1MDQyNzM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVmMjJiNi04MGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlquUcIf5tqKrL8I2SSUBsMUKfrT9XOPv7/2KDpSIg8o9X0AS0fCherNzTc2 oRL6noNplnagyM7ClZRe9uS3EdxHkrl6FsmxNfZGORXYlW9jJAMD3GByOGpFiyZT NLog4UXzncwJPRFR0mWdf+jz3X1jv/dGvvElbp/hACvw9XgbuO2oSaSsXONZhdrr /fcn6sA26kmmxX6MjOvzOyTPRkYc8oEuadFVCcegbgzrav9FlO80BwCGeShE/8Mx YDdAp/ow0AmxSPZja4LJmO1vuBITMSk2YmvZehU66FFKWwhHBlq+JIA4NJQlO77P 5hWRBcaEL75ABkPS3her2RBUEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIf0OsrT YtmMgL/aJsocxuRmA9ykMB8GA1UdIwQYMBaAFC0MsOmPVi6TZtWplfsm9maowKla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThFMS8xMTMxNjYyQzI4 NTAxMUVEOEM4OTc5NEFDNEY5QUUwMi9MUXl3Nlk5V0xwTm0xYW1WLXliMlpxakFx Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xReXc2WTlXTHBObTFhbVYteWIyWnFqQXFWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4RTEvMTEzMTY2MkMyODUwMTFFRDhDODk3OTRBQzRGOUFFMDIvOTg5MUEzQTQy ODUzMTFFRDlERDgzMjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzEUwDQYJKoZIhvcNAQELBQADggEBALG0luGw4KMm3j6Y LOvRO1bq9gENlI83wjCgVp1nHhUjDtegG1iOYZ4l9BmvRbP51aV5StDKn0pbVpwa u//0PjfeyV8vPWCC6nIqkL4wgn7Y17aIpP2R7+hch24FRAfvRghJ3VUxrX5U2ijK TjrGLriOLXmOnlcMPXZAP2AgzMUVajGsvr+vZx/OrBAIk6pBAlW2NNLHiQmA13KN 66h8Vd3TJQXXNgNHawonp9UsOfVsmubHL3rrp/lBv01fLvlqxGyvz9GNsNOk/U9U FM2gxT4/4uh9f3OcvK5Hf5C75LKrKfAeQO7ybg3xjcczAHA1m8O6fk04T359TbcW zzZbv0w= -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:41 2025 by rpki-client