$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/4FF7919CA3AE11F08498344CC4F9AE02.roa File: 4FF7919CA3AE11F08498344CC4F9AE02.roa (raw, json) Hash identifier: AWiL7Ku+LhuTzw8yYOes8DFZCiFrs+UOfXRiEC5RaE4= Subject key identifier: 7F:AB:A1:E4:1E:F2:CA:98:4B:E0:9E:F3:B5:E8:E3:82:16:C0:93:1A Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 062C Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/4FF7919CA3AE11F08498344CC4F9AE02.roa Signing time: Tue 07 Oct 2025 18:49:11 +0000 ROA not before: Tue 07 Oct 2025 18:49:11 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150750 IP address blocks: 103.151.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1580 (0x62c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB, serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Validity Not Before: Oct 7 18:49:11 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68e560a7-7fd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2f:8f:4f:72:51:5e:dc:9a:db:63:5f:f3:fa: 71:d8:6d:80:cc:09:92:34:ec:b8:39:eb:3f:f8:57: ad:15:99:7d:5c:80:c1:cf:7c:1c:22:ab:6f:01:3a: 56:fd:05:c1:d3:3b:bf:96:be:24:e6:5f:15:41:ed: df:83:89:1d:3d:0a:f7:cd:f0:d6:74:b7:66:02:ee: 4c:f2:1f:8b:e8:af:3a:7d:99:dc:a5:bf:b2:6c:60: ed:04:40:0a:5f:98:12:6e:13:74:71:6b:6f:b3:46: 77:6b:c9:c8:cd:13:17:6c:a6:17:39:02:b3:2c:37: 8e:4b:8a:cf:1a:d0:84:f1:2b:07:ab:73:23:ad:5d: 59:dc:f7:ed:e4:10:61:cd:36:a4:68:5e:ed:01:be: 8e:1f:e8:c5:4d:82:ed:93:68:f3:9b:d3:79:7f:95: 59:1b:9b:a3:53:5b:94:02:fc:fe:98:34:e6:82:1a: 40:2e:e3:aa:26:32:f2:a6:19:99:0c:57:7a:90:6a: 3d:10:e7:f4:fc:71:4e:ec:bd:63:7e:1f:72:6f:f8: 56:ee:7b:94:0f:f9:3d:89:8e:ae:da:ae:ae:94:a1: df:b3:ad:d7:48:d6:93:eb:60:13:af:b0:78:4a:45: 40:0c:1e:12:38:f5:97:60:6f:46:aa:2c:9b:f9:75: 42:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AB:A1:E4:1E:F2:CA:98:4B:E0:9E:F3:B5:E8:E3:82:16:C0:93:1A X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/4FF7919CA3AE11F08498344CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.43.0/24 Signature Algorithm: sha256WithRSAEncryption cc:4a:79:b9:03:3e:ce:2d:90:70:08:18:b1:8e:f4:46:14:05: 5f:d3:05:58:04:9b:58:e8:9e:1f:e1:e1:0c:00:a1:78:00:07: 68:ee:4f:7b:7d:ac:82:3d:aa:44:38:35:3a:37:b6:6c:9c:3e: 12:3a:53:d2:48:6a:44:51:8a:5f:2d:dc:93:93:2f:b3:cb:d9: 17:f6:23:eb:44:65:1d:c0:c4:06:e9:b1:e3:ac:c6:2c:d8:7d: e5:a4:e7:cd:aa:f8:ba:a2:71:35:97:a1:6d:d3:8c:1e:01:85: da:46:2e:d0:4d:6f:60:9c:15:12:cb:76:94:25:6e:b4:97:44: a5:bf:ff:ed:dd:69:06:ac:1a:5a:e6:9b:f7:de:6e:88:b5:b2: d3:7c:0d:42:a6:4d:21:a1:b8:d6:ca:69:ef:fb:73:fb:e4:4e: f0:0e:1b:15:e8:88:a2:d1:73:a2:0c:20:21:11:01:14:2a:78: c8:86:46:dd:03:05:d3:0e:8f:bc:d2:c4:f9:a1:bd:ec:22:ae: 83:66:08:1f:51:0f:99:9d:ef:ef:8e:71:38:e7:52:0c:76:b1: 58:82:21:99:de:1a:aa:d3:2e:2f:b0:b1:8a:54:b9:c5:2e:75: 8e:9b:8a:fe:3f:7a:6e:aa:77:f2:c6:14:76:a6:d3:ab:5e:89: b7:50:d3:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUxMDA3MTg0OTExWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU1NjBhNy03ZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy+PT3JRXtya22Nf8/px2G2AzAmSNOy4Oes/+FetFZl9XIDBz3wcIqtvATpW /QXB0zu/lr4k5l8VQe3fg4kdPQr3zfDWdLdmAu5M8h+L6K86fZncpb+ybGDtBEAK X5gSbhN0cWtvs0Z3a8nIzRMXbKYXOQKzLDeOS4rPGtCE8SsHq3MjrV1Z3Pft5BBh zTakaF7tAb6OH+jFTYLtk2jzm9N5f5VZG5ujU1uUAvz+mDTmghpALuOqJjLyphmZ DFd6kGo9EOf0/HFO7L1jfh9yb/hW7nuUD/k9iY6u2q6ulKHfs63XSNaT62ATr7B4 SkVADB4SOPWXYG9Gqiyb+XVCAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH+roeQe 8sqYS+Ce87Xo44IWwJMaMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkyRUIvRkQwMDgxREVDNTY3MTFFQkFGRUE2MDJCQzRGOUFFMDIvNEZGNzkxOUNB M0FFMTFGMDg0OTgzNDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlyswDQYJKoZIhvcNAQELBQADggEBAMxKebkDPs4tkHAI GLGO9EYUBV/TBVgEm1jonh/h4QwAoXgAB2juT3t9rII9qkQ4NTo3tmycPhI6U9JI akRRil8t3JOTL7PL2Rf2I+tEZR3AxAbpseOsxizYfeWk582q+LqicTWXoW3TjB4B hdpGLtBNb2CcFRLLdpQlbrSXRKW//+3daQasGlrmm/feboi1stN8DUKmTSGhuNbK ae/7c/vkTvAOGxXoiKLRc6IMICERARQqeMiGRt0DBdMOj7zSxPmhvewiroNmCB9R D5md7++OcTjnUgx2sViCIZneGqrTLi+wsYpUucUudY6biv4/em6qd/LGFHam06te ibdQ024= -----END CERTIFICATE-----Generated at Mon Oct 20 02:05:09 2025 by rpki-client