$ rpki-client -vvf rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/40C76F3ACC1611EC80603209C4F9AE02.roa File: 40C76F3ACC1611EC80603209C4F9AE02.roa (raw, json) Hash identifier: gHbb1DedGEVNYDe8gPkrOnV+opTyWHpDa3aEA0RGNJI= Subject key identifier: CB:17:CE:E3:EE:4D:A9:C3:15:4B:4D:89:5F:BB:3F:F9:EC:2D:65:9F Certificate issuer: /CN=A91789F9/serialNumber=5BA8D05DC99A9310462C63C5D0269F5E885E489D Certificate serial: 0366 Authority key identifier: 5B:A8:D0:5D:C9:9A:93:10:46:2C:63:C5:D0:26:9F:5E:88:5E:48:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/40C76F3ACC1611EC80603209C4F9AE02.roa Signing time: Mon 29 Sep 2025 01:28:25 +0000 ROA not before: Mon 29 Sep 2025 01:28:25 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38549 IP address blocks: 103.196.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.crl rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 870 (0x366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91789F9, serialNumber=5BA8D05DC99A9310462C63C5D0269F5E885E489D Validity Not Before: Sep 29 01:28:25 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d9e0b9-044e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:46:ce:60:73:a4:7f:af:0c:ad:64:19:ed:45: 70:ce:b9:e6:0d:27:f1:a6:1f:9a:cc:4c:58:2a:95: 5b:ad:ed:63:d1:d4:97:3a:92:17:21:ee:d9:81:e5: 87:5c:e0:ca:b1:a8:c3:63:0a:40:2b:01:e6:79:3a: db:34:63:8c:66:93:9d:40:9c:45:9d:b0:4a:14:65: 75:66:42:2a:2b:af:01:f4:29:75:27:b0:8d:4d:52: 22:34:7b:4d:fa:7e:34:4a:29:12:3d:ae:41:60:52: d5:f5:f5:6b:93:9d:b1:de:bf:61:27:b5:38:10:dd: 2d:69:60:da:de:e0:ba:1d:0d:1f:80:a9:6c:82:54: b0:1f:49:a7:31:cf:c0:8d:81:09:28:47:13:5d:47: d8:62:ee:b0:dc:fd:0b:6b:d3:d4:6a:f7:b0:70:8a: 6f:6d:1c:85:fc:5f:c0:51:9c:03:35:25:67:d0:19: a1:56:18:ba:c1:1f:3a:66:0c:20:a0:35:18:e2:dc: a4:5b:4e:7b:02:32:5c:24:56:2d:54:00:e1:63:23: d1:23:af:f6:87:d0:04:c7:b6:38:12:89:79:fd:e2: c3:20:8a:c2:cb:91:d2:3f:67:d5:f8:4b:a0:d0:0d: 30:53:b8:1b:09:7d:12:6e:83:f0:37:25:e1:72:ba: ce:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:17:CE:E3:EE:4D:A9:C3:15:4B:4D:89:5F:BB:3F:F9:EC:2D:65:9F X509v3 Authority Key Identifier: keyid:5B:A8:D0:5D:C9:9A:93:10:46:2C:63:C5:D0:26:9F:5E:88:5E:48:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/40C76F3ACC1611EC80603209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.68.0/24 Signature Algorithm: sha256WithRSAEncryption 30:67:ec:33:9d:22:67:ae:5e:3e:7b:e4:82:19:28:9c:e4:b4: 5e:60:c6:13:c6:a9:a9:7e:61:ae:f0:95:b2:38:e0:2c:f2:de: 03:c3:97:54:e9:fa:53:f7:73:d6:e0:51:2d:07:4b:7e:78:32: 43:50:41:82:d4:9f:af:a4:a3:c2:cb:70:42:7a:d1:c0:b7:72: 20:18:8d:62:0b:f9:d3:9e:13:03:a2:9f:70:ba:24:81:f8:0a: c4:c9:cb:b2:83:2f:d8:5b:95:05:dd:56:e2:46:a7:fe:01:09: 46:17:36:d8:62:92:05:8a:7c:43:d4:24:54:f6:c9:79:10:4d: 95:26:fc:33:2e:3c:8b:18:c3:3f:7e:cc:09:ba:51:a2:53:51: f2:6d:7d:8e:35:84:b5:05:c6:24:a5:6f:b8:9d:6f:f3:14:91: db:f8:1a:d0:aa:8b:05:01:46:54:c3:01:a2:c9:95:68:d9:da: 73:e9:16:8d:ca:00:d1:d6:e8:d9:62:71:92:04:2f:74:04:27: 13:2c:bc:37:1b:47:39:3b:40:66:bc:6b:fc:e5:0b:3c:87:a8: f5:7a:a1:8a:e5:e3:81:ce:21:ae:21:fb:e2:9f:34:5d:da:c9: 8d:c7:8c:29:24:0b:50:bd:37:02:a4:14:5a:02:4a:00:12:bf: 3d:ae:cf:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg5RjkxMTAvBgNVBAUTKDVCQThEMDVEQzk5QTkzMTA0NjJDNjNDNUQwMjY5RjVF ODg1RTQ4OUQwHhcNMjUwOTI5MDEyODI1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ5ZTBiOS0wNDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0bOYHOkf68MrWQZ7UVwzrnmDSfxph+azExYKpVbre1j0dSXOpIXIe7ZgeWH XODKsajDYwpAKwHmeTrbNGOMZpOdQJxFnbBKFGV1ZkIqK68B9Cl1J7CNTVIiNHtN +n40SikSPa5BYFLV9fVrk52x3r9hJ7U4EN0taWDa3uC6HQ0fgKlsglSwH0mnMc/A jYEJKEcTXUfYYu6w3P0La9PUavewcIpvbRyF/F/AUZwDNSVn0BmhVhi6wR86Zgwg oDUY4tykW057AjJcJFYtVADhYyPRI6/2h9AEx7Y4Eol5/eLDIIrCy5HSP2fV+Eug 0A0wU7gbCX0SboPwNyXhcrrOcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMsXzuPu TanDFUtNiV+7P/nsLWWfMB8GA1UdIwQYMBaAFFuo0F3JmpMQRixjxdAmn16IXkid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODlGOS9GRDgwNkJBMkND MTMxMUVDODI3QTI2ODdDNEY5QUUwMi9XNmpRWGNtYWt4QkdMR1BGMENhZlhvaGVT SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c2alFYY21ha3hCR0xHUEYwQ2FmWG9oZVNKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzg5RjkvRkQ4MDZCQTJDQzEzMTFFQzgyN0EyNjg3QzRGOUFFMDIvNDBDNzZGM0FD QzE2MTFFQzgwNjAzMjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxEQwDQYJKoZIhvcNAQELBQADggEBADBn7DOdImeuXj57 5IIZKJzktF5gxhPGqal+Ya7wlbI44Czy3gPDl1Tp+lP3c9bgUS0HS354MkNQQYLU n6+ko8LLcEJ60cC3ciAYjWIL+dOeEwOin3C6JIH4CsTJy7KDL9hblQXdVuJGp/4B CUYXNthikgWKfEPUJFT2yXkQTZUm/DMuPIsYwz9+zAm6UaJTUfJtfY41hLUFxiSl b7idb/MUkdv4GtCqiwUBRlTDAaLJlWjZ2nPpFo3KANHW6NlicZIEL3QEJxMsvDcb Rzk7QGa8a/zlCzyHqPV6oYrl44HOIa4h++KfNF3ayY3HjCkkC1C9NwKkFFoCSgAS vz2uz7k= -----END CERTIFICATE-----Generated at Mon Oct 20 11:39:50 2025 by rpki-client