$ rpki-client -vvf rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/AD9C1DEE9E2311F0A35D7D1FC4F9AE02.roa File: AD9C1DEE9E2311F0A35D7D1FC4F9AE02.roa (raw, json) Hash identifier: 2AFvxOgERN6IP1ghZwOz+nDsY9qU1LoYMzKU7ME8H9M= Subject key identifier: 8B:8B:AA:31:F8:D5:87:B8:0F:AD:3B:40:2E:4E:DC:30:6B:9B:54:04 Certificate issuer: /CN=A91886CC/serialNumber=D1E299F9E82C937CB2B2A69061E817341F8508F5 Certificate serial: 01D5 Authority key identifier: D1:E2:99:F9:E8:2C:93:7C:B2:B2:A6:90:61:E8:17:34:1F:85:08:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0eKZ-egsk3yysqaQYegXNB-FCPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/AD9C1DEE9E2311F0A35D7D1FC4F9AE02.roa Signing time: Tue 30 Sep 2025 17:34:12 +0000 ROA not before: Tue 30 Sep 2025 17:34:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151064 IP address blocks: 103.234.12.0/24 maxlen: 24 2401:c6a0::/32 maxlen: 32 2401:c6a0:a000::/36 maxlen: 36 2401:c6a0:b000::/36 maxlen: 36 2401:c6a0:c000::/36 maxlen: 36 2401:c6a0:d000::/36 maxlen: 36 2401:c6a0:e000::/36 maxlen: 36 2401:c6a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/0eKZ-egsk3yysqaQYegXNB-FCPU.crl rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/0eKZ-egsk3yysqaQYegXNB-FCPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0eKZ-egsk3yysqaQYegXNB-FCPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91886CC, serialNumber=D1E299F9E82C937CB2B2A69061E817341F8508F5 Validity Not Before: Sep 30 17:34:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68dc1494-5654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:a5:f3:d9:9e:55:09:1e:cc:bf:6f:a5:ea: 05:34:a5:c4:ae:ef:4e:bb:38:e3:de:c6:d6:86:1b: 41:b5:9f:4b:57:f1:e5:0b:1b:ef:14:6d:9a:77:1f: fa:33:8c:64:85:45:5d:ca:bd:fa:78:ba:76:e7:96: 2b:28:d6:46:fc:e7:6e:f4:35:53:76:f6:58:55:84: cf:f0:30:6b:24:34:6b:46:a5:5d:f5:21:13:78:63: 60:78:71:3e:c0:d6:88:9f:1b:2d:cb:5e:5e:5d:a9: 73:e2:05:78:d4:36:6f:ba:9d:a9:1a:8f:9a:9e:68: eb:a8:fe:69:1d:aa:b7:6f:9e:31:32:9a:f0:bf:5e: 7f:7d:89:5c:76:89:e7:02:a6:f6:0f:f1:fa:46:05: a9:17:2e:5c:d3:ad:cd:d8:8d:2b:2d:59:61:22:77: 8f:71:8a:4e:63:42:2c:22:f1:6d:22:f0:78:66:c9: f4:8f:10:b2:5a:53:c4:b9:26:81:c6:88:69:15:4b: 6a:c4:2c:2d:e5:a8:cf:a8:9c:64:0a:29:38:18:4d: 93:05:bf:f6:34:31:5f:e5:92:9f:e9:ef:52:7d:fb: 6a:fc:b5:64:22:c7:cc:5a:ce:55:4d:36:f1:0f:b9: ad:39:82:9a:c0:8e:95:73:89:df:12:9a:c7:83:2a: f5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8B:AA:31:F8:D5:87:B8:0F:AD:3B:40:2E:4E:DC:30:6B:9B:54:04 X509v3 Authority Key Identifier: keyid:D1:E2:99:F9:E8:2C:93:7C:B2:B2:A6:90:61:E8:17:34:1F:85:08:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/0eKZ-egsk3yysqaQYegXNB-FCPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0eKZ-egsk3yysqaQYegXNB-FCPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91886CC/4EA6C618E8BD11ED8B892522C4F9AE02/AD9C1DEE9E2311F0A35D7D1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.12.0/24 IPv6: 2401:c6a0::/32 Signature Algorithm: sha256WithRSAEncryption 7e:83:c6:11:87:f4:d2:d7:e4:5c:aa:69:58:56:5e:e2:60:93: 01:f0:62:f3:b1:58:ef:17:64:8f:7c:3e:07:b1:76:ec:86:45: 32:f5:27:f3:ed:4e:99:52:44:7a:4e:89:c7:81:a0:a5:9b:2c: 45:d2:99:b9:f8:20:5b:fc:0a:87:56:da:d6:b7:36:e5:ce:e8: a9:d6:a5:9d:c9:0d:47:2b:29:51:78:2e:ce:35:4e:0f:bf:bf: a1:d2:2c:8d:12:27:84:57:c3:84:bc:19:30:fc:f2:d1:56:61: fa:12:61:ba:6b:7c:6d:3b:71:75:0c:ce:9e:6e:9a:25:f2:b0: b4:03:bd:58:cc:b7:50:63:ab:dc:fa:f8:ce:61:26:56:05:f8: e8:76:1d:2d:3f:03:f9:e1:0d:a7:77:7b:f3:60:5a:fd:20:57: 34:ba:47:70:fc:59:56:2a:97:89:32:0f:50:d0:d7:2a:cf:20: 8b:db:61:ae:d9:2e:9a:73:f2:c0:5a:9c:76:6c:b4:ad:26:0c: 20:2f:ec:d2:67:2b:89:1a:53:ac:bb:e3:34:7f:af:2a:85:af: 8c:93:83:1f:7c:6c:cf:9d:a6:81:2c:0a:1c:34:8b:49:9a:79: 91:59:4b:e5:b4:3e:92:c4:a2:b3:d4:b3:c3:94:50:e7:84:2b: 0b:64:86:63 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg2Q0MxMTAvBgNVBAUTKEQxRTI5OUY5RTgyQzkzN0NCMkIyQTY5MDYxRTgxNzM0 MUY4NTA4RjUwHhcNMjUwOTMwMTczNDEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjMTQ5NC01NjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJ+l89meVQkezL9vpeoFNKXEru9Ouzjj3sbWhhtBtZ9LV/HlCxvvFG2adx/6 M4xkhUVdyr36eLp255YrKNZG/Odu9DVTdvZYVYTP8DBrJDRrRqVd9SETeGNgeHE+ wNaInxsty15eXalz4gV41DZvup2pGo+anmjrqP5pHaq3b54xMprwv15/fYlcdonn Aqb2D/H6RgWpFy5c063N2I0rLVlhInePcYpOY0IsIvFtIvB4Zsn0jxCyWlPEuSaB xohpFUtqxCwt5ajPqJxkCik4GE2TBb/2NDFf5ZKf6e9Sfftq/LVkIsfMWs5VTTbx D7mtOYKawI6Vc4nfEprHgyr1twIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIuLqjH4 1Ye4D607QC5O3DBrm1QEMB8GA1UdIwQYMBaAFNHimfnoLJN8srKmkGHoFzQfhQj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODZDQy80RUE2QzYxOEU4 QkQxMUVEOEI4OTI1MjJDNEY5QUUwMi8wZUtaLWVnc2szeXlzcWFRWWVnWE5CLUZD UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBlS1otZWdzazN5eXNxYVFZZWdYTkItRkNQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg2Q0MvNEVBNkM2MThFOEJEMTFFRDhCODkyNTIyQzRGOUFFMDIvQUQ5QzFERUU5 RTIzMTFGMEEzNUQ3RDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABn6gwwDQQCAAIwBwMFACQBxqAwDQYJKoZIhvcNAQELBQAD ggEBAH6DxhGH9NLX5FyqaVhWXuJgkwHwYvOxWO8XZI98PgexduyGRTL1J/PtTplS RHpOiceBoKWbLEXSmbn4IFv8CodW2ta3NuXO6KnWpZ3JDUcrKVF4Ls41Tg+/v6HS LI0SJ4RXw4S8GTD88tFWYfoSYbprfG07cXUMzp5umiXysLQDvVjMt1Bjq9z6+M5h JlYF+Oh2HS0/A/nhDad3e/NgWv0gVzS6R3D8WVYql4kyD1DQ1yrPIIvbYa7ZLppz 8sBanHZstK0mDCAv7NJnK4kaU6y74zR/ryqFr4yTgx98bM+dpoEsChw0i0maeZFZ S+W0PpLEorPUs8OUUOeEKwtkhmM= -----END CERTIFICATE-----Generated at Mon Oct 20 23:29:10 2025 by rpki-client