$ rpki-client -vvf rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/9917A4D6285311ED9DD8324EC4F9AE02.roa File: 9917A4D6285311ED9DD8324EC4F9AE02.roa (raw, json) Hash identifier: /QZn6eJNp1QkpQ2tx9f8l2ROi+aoRJ31N2B9Wc759hU= Subject key identifier: 0D:11:BB:A5:4B:64:5F:CC:1D:B6:70:E9:B1:0F:69:5E:13:D1:55:39 Certificate issuer: /CN=A91618E1/serialNumber=2D0CB0E98F562E9366D5A995FB26F666A8C0A95A Certificate serial: 0282 Authority key identifier: 2D:0C:B0:E9:8F:56:2E:93:66:D5:A9:95:FB:26:F6:66:A8:C0:A9:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/9917A4D6285311ED9DD8324EC4F9AE02.roa Signing time: Wed 15 Oct 2025 04:27:36 +0000 ROA not before: Wed 15 Oct 2025 04:27:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150176 IP address blocks: 103.204.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.crl rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91618E1, serialNumber=2D0CB0E98F562E9366D5A995FB26F666A8C0A95A Validity Not Before: Oct 15 04:27:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ef22b7-2b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:41:f3:5f:09:e9:1a:1c:1a:dd:eb:1e:3e:9a: 76:ef:cb:1d:17:1e:c5:62:af:a5:02:b3:ae:f5:dc: c2:56:d3:6f:b1:63:07:da:5d:e3:44:40:c0:7b:52: e2:c8:44:40:12:2f:25:4b:35:9c:96:db:5b:e5:b3: e9:76:cd:54:e2:2d:2c:0b:50:40:3c:eb:c4:86:52: 80:18:47:03:0f:5d:48:4e:2c:b0:14:cf:c6:c3:6c: a8:21:af:41:9f:82:0c:01:93:b5:2a:3f:53:16:81: 7a:ae:21:83:63:7e:a7:7c:a6:e2:b2:2c:8f:4a:a9: ff:73:19:8d:61:e7:8b:9d:8e:71:5e:fe:3b:af:0a: 44:a3:0f:a5:37:f8:f6:9b:5c:0b:ca:72:b8:41:dd: c1:cc:1e:5b:c9:0a:57:7f:7b:7b:db:93:12:fa:83: b3:bf:c0:11:d4:f8:87:32:f9:32:c1:0b:f5:96:e7: a6:cd:95:12:c5:01:21:88:2d:9d:db:79:15:6a:44: e2:99:64:a8:03:e3:53:0d:72:24:e5:2f:75:8f:66: 9b:0d:bd:56:6b:0e:8d:3f:ec:89:78:c8:ed:62:2e: c7:f2:ce:1f:aa:44:c0:b4:56:aa:c1:66:d6:da:d1: 1d:45:66:9f:ea:e9:e5:07:27:f1:67:72:20:5f:c0: 76:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:11:BB:A5:4B:64:5F:CC:1D:B6:70:E9:B1:0F:69:5E:13:D1:55:39 X509v3 Authority Key Identifier: keyid:2D:0C:B0:E9:8F:56:2E:93:66:D5:A9:95:FB:26:F6:66:A8:C0:A9:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LQyw6Y9WLpNm1amV-yb2ZqjAqVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91618E1/1131662C285011ED8C89794AC4F9AE02/9917A4D6285311ED9DD8324EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.68.0/24 Signature Algorithm: sha256WithRSAEncryption 86:18:98:5b:95:6d:5c:39:b3:37:a4:56:eb:3f:cb:f9:fb:40: ea:c1:ed:4d:3a:6a:30:62:d8:bc:a8:d7:da:dc:22:82:46:5e: cd:9f:cf:15:ed:a7:41:1b:e0:a8:81:5b:cd:ae:78:b2:40:3c: ac:f3:4c:6b:81:fd:23:06:42:28:e3:f0:c0:72:cb:19:75:a5: 3f:16:be:dc:a9:41:f3:8d:77:0c:f5:01:74:e6:95:8a:bf:f7: eb:b4:cf:64:20:84:bc:76:f7:09:6d:4c:41:47:b2:b0:f2:8d: 55:3b:4b:fc:0b:8a:c1:ff:9e:1e:2f:da:e1:ef:fc:1e:3e:5b: 4d:59:ff:0b:93:7e:45:4c:7a:7b:05:44:08:77:b8:8b:db:73: b3:0f:02:57:c4:9d:c5:46:1b:d9:39:7f:bd:b6:9c:af:89:a6: 17:0f:7c:0b:59:fb:95:3f:09:39:d3:fe:c0:dc:64:89:f4:a0: 83:bf:e6:ee:aa:b8:b3:1b:ab:4e:f5:92:aa:36:9b:ca:86:86: 06:bb:2c:98:05:27:8f:fc:d4:b1:41:bd:e0:4b:94:da:20:47: 62:c5:3d:37:f3:6c:44:0d:22:56:77:7f:97:98:1d:bc:9c:65: fa:ca:61:54:65:55:06:6b:c1:eb:82:09:d9:52:05:a9:5b:48: 65:28:50:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE4RTExMTAvBgNVBAUTKDJEMENCMEU5OEY1NjJFOTM2NkQ1QTk5NUZCMjZGNjY2 QThDMEE5NUEwHhcNMjUxMDE1MDQyNzM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVmMjJiNy0yYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kHzXwnpGhwa3esePpp278sdFx7FYq+lArOu9dzCVtNvsWMH2l3jREDAe1Li yERAEi8lSzWclttb5bPpds1U4i0sC1BAPOvEhlKAGEcDD11ITiywFM/Gw2yoIa9B n4IMAZO1Kj9TFoF6riGDY36nfKbisiyPSqn/cxmNYeeLnY5xXv47rwpEow+lN/j2 m1wLynK4Qd3BzB5byQpXf3t725MS+oOzv8AR1PiHMvkywQv1luemzZUSxQEhiC2d 23kVakTimWSoA+NTDXIk5S91j2abDb1Waw6NP+yJeMjtYi7H8s4fqkTAtFaqwWbW 2tEdRWaf6unlByfxZ3IgX8B2SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA0Ru6VL ZF/MHbZw6bEPaV4T0VU5MB8GA1UdIwQYMBaAFC0MsOmPVi6TZtWplfsm9maowKla MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MThFMS8xMTMxNjYyQzI4 NTAxMUVEOEM4OTc5NEFDNEY5QUUwMi9MUXl3Nlk5V0xwTm0xYW1WLXliMlpxakFx Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xReXc2WTlXTHBObTFhbVYteWIyWnFqQXFWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE4RTEvMTEzMTY2MkMyODUwMTFFRDhDODk3OTRBQzRGOUFFMDIvOTkxN0E0RDYy ODUzMTFFRDlERDgzMjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzEQwDQYJKoZIhvcNAQELBQADggEBAIYYmFuVbVw5szek Vus/y/n7QOrB7U06ajBi2Lyo19rcIoJGXs2fzxXtp0Eb4KiBW82ueLJAPKzzTGuB /SMGQijj8MByyxl1pT8WvtypQfONdwz1AXTmlYq/9+u0z2QghLx29wltTEFHsrDy jVU7S/wLisH/nh4v2uHv/B4+W01Z/wuTfkVMensFRAh3uIvbc7MPAlfEncVGG9k5 f722nK+JphcPfAtZ+5U/CTnT/sDcZIn0oIO/5u6quLMbq071kqo2m8qGhga7LJgF J4/81LFBveBLlNogR2LFPTfzbEQNIlZ3f5eYHbycZfrKYVRlVQZrweuCCdlSBalb SGUoUIU= -----END CERTIFICATE-----Generated at Mon Oct 20 23:15:09 2025 by rpki-client