$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/D2D714387F6A11F0932D5109C4F9AE02.roa File: D2D714387F6A11F0932D5109C4F9AE02.roa (raw, json) Hash identifier: Cng37RmGs09g9dbHO+ShWe6tnoOJsgQFmF1ZQB1DAkI= Subject key identifier: 1B:FB:0A:34:06:E3:35:22:B1:58:49:94:90:B8:D4:F0:9E:EF:59:EA Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 053E Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/D2D714387F6A11F0932D5109C4F9AE02.roa Signing time: Sat 04 Oct 2025 23:55:39 +0000 ROA not before: Sat 04 Oct 2025 23:55:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9304 IP address blocks: 103.73.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1342 (0x53e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4, serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Oct 4 23:55:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1b3fb-a777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:60:74:de:21:4e:28:5b:68:fc:b3:82:10:cb: ea:bc:03:d6:53:11:35:62:38:eb:57:45:ef:93:e1: da:ac:88:ce:ce:06:98:8c:15:bd:f1:23:a0:0d:e7: a0:b3:0f:15:96:38:3d:a8:ea:7d:6b:a3:3c:23:b7: a6:74:1f:e7:5e:c1:13:fe:32:35:19:4a:b9:ff:d5: 26:62:0d:b5:d3:0c:bc:c2:3e:eb:a8:10:8a:76:9a: 8b:98:87:b9:d3:d9:3d:af:46:7e:b6:e4:b0:b1:a1: d4:2e:f2:e9:c3:ec:3d:4d:7a:b6:c3:a9:a2:3c:22: 10:59:d4:6c:f9:05:3b:29:76:30:0c:00:09:9d:89: b5:b8:af:05:5d:fa:11:d8:45:d6:03:32:65:43:5e: a6:9f:64:cd:e5:ca:cf:66:22:ed:e7:ed:b2:08:55: cf:a6:bd:df:6c:08:da:8e:10:3f:0d:a5:af:5a:4e: 78:80:d5:67:3b:b6:4e:16:37:b2:37:b2:5f:17:80: 61:98:bd:42:58:3b:b9:ef:65:3e:91:4b:37:fc:88: 80:17:8c:0b:22:3d:4a:e1:30:2e:2b:ec:a7:73:84: a9:47:48:a5:31:f6:bc:33:3c:2a:c3:d4:19:08:e3: 1b:f1:ea:e1:29:5e:c5:9f:23:8b:7e:ab:32:f4:ba: 4c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FB:0A:34:06:E3:35:22:B1:58:49:94:90:B8:D4:F0:9E:EF:59:EA X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/D2D714387F6A11F0932D5109C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.221.0/24 Signature Algorithm: sha256WithRSAEncryption 39:b5:4c:e6:ad:59:7d:5a:fb:49:95:0c:45:9b:23:bc:2a:d5: 99:d4:3f:26:86:94:db:9c:22:33:c0:ce:4b:2f:b3:33:d5:f6: 63:df:c7:f9:63:a0:83:7f:9b:98:20:9f:33:08:b3:51:c7:36: f9:d4:cd:a9:28:90:3f:9e:b1:2f:bf:f7:59:a1:a0:06:9d:fe: 72:8d:75:9d:85:35:14:0e:6b:4f:ee:56:09:5b:3c:63:f9:fd: 7b:3b:16:6e:b8:2e:e2:1a:84:e6:ad:d3:fc:53:11:11:ba:31: 0a:d2:30:79:20:fa:dd:96:bd:21:ba:dd:33:91:20:20:da:d4: ed:4f:54:0d:4d:cc:f0:ac:23:48:79:6b:d7:27:32:f7:7b:6b: 95:76:b5:5c:47:ad:cb:ab:ae:f1:38:6e:9d:8b:22:d5:02:fa: 49:91:3e:f0:f5:ae:c7:31:61:af:2c:eb:3b:2f:d8:f0:33:d1: 43:b8:45:d0:34:ff:04:77:a1:b1:73:31:e4:8d:73:8b:aa:d6: 26:17:79:95:71:4e:4f:a3:1c:64:3a:31:7a:60:4b:26:29:f7: 22:44:fc:8b:dc:a7:78:f8:72:fc:14:ec:47:9f:c3:c4:73:2a: 8d:0f:5a:fd:67:b0:b8:27:d1:01:a3:29:8c:7c:f8:56:bb:a6: 3b:5f:65:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjUxMDA0MjM1NTM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxYjNmYi1hNzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmB03iFOKFto/LOCEMvqvAPWUxE1YjjrV0Xvk+HarIjOzgaYjBW98SOgDeeg sw8Vljg9qOp9a6M8I7emdB/nXsET/jI1GUq5/9UmYg210wy8wj7rqBCKdpqLmIe5 09k9r0Z+tuSwsaHULvLpw+w9TXq2w6miPCIQWdRs+QU7KXYwDAAJnYm1uK8FXfoR 2EXWAzJlQ16mn2TN5crPZiLt5+2yCFXPpr3fbAjajhA/DaWvWk54gNVnO7ZOFjey N7JfF4BhmL1CWDu572U+kUs3/IiAF4wLIj1K4TAuK+ync4SpR0ilMfa8Mzwqw9QZ COMb8erhKV7FnyOLfqsy9LpM3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBv7CjQG 4zUisVhJlJC41PCe71nqMB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg4RDQvMkY1OEU0NzIyRTUwMTFFQ0EwNEI2QzI1QzRGOUFFMDIvRDJENzE0Mzg3 RjZBMTFGMDkzMkQ1MTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSd0wDQYJKoZIhvcNAQELBQADggEBADm1TOatWX1a+0mV DEWbI7wq1ZnUPyaGlNucIjPAzksvszPV9mPfx/ljoIN/m5ggnzMIs1HHNvnUzako kD+esS+/91mhoAad/nKNdZ2FNRQOa0/uVglbPGP5/Xs7Fm64LuIahOat0/xTERG6 MQrSMHkg+t2WvSG63TORICDa1O1PVA1NzPCsI0h5a9cnMvd7a5V2tVxHrcurrvE4 bp2LItUC+kmRPvD1rscxYa8s6zsv2PAz0UO4RdA0/wR3obFzMeSNc4uq1iYXeZVx Tk+jHGQ6MXpgSyYp9yJE/Ivcp3j4cvwU7Eefw8RzKo0PWv1nsLgn0QGjKYx8+Fa7 pjtfZQM= -----END CERTIFICATE-----Generated at Mon Oct 20 11:40:11 2025 by rpki-client