$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/4314DB4C8EAF11F091C0B421C4F9AE02.roa File: 4314DB4C8EAF11F091C0B421C4F9AE02.roa (raw, json) Hash identifier: soxPBotfeGZJQtYFANg/AIsqymj558YBgTRf2OttWoQ= Subject key identifier: 20:2A:7B:19:D8:FB:49:56:AC:C6:1B:EC:F6:B6:6F:54:DC:00:CD:4E Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 0803 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/4314DB4C8EAF11F091C0B421C4F9AE02.roa Signing time: Thu 11 Sep 2025 01:33:05 +0000 ROA not before: Thu 11 Sep 2025 01:33:05 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132827 IP address blocks: 43.231.223.0/24 maxlen: 24 103.20.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Sep 11 01:33:05 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c226d0-0721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:93:8f:f5:d5:e5:ee:21:06:7f:1f:d4:fb:53: bc:dc:99:9a:3a:5d:f1:98:d5:54:5d:66:99:91:dd: ad:e9:bb:19:e9:2d:25:b2:d2:16:21:7c:ed:94:5b: 40:a1:5a:20:de:2b:68:f3:92:c7:ee:99:64:c2:24: 88:72:3c:9d:ba:ca:b4:da:46:19:25:98:82:0c:27: ea:ce:51:f4:17:74:74:c6:db:7c:07:7d:55:9f:1c: 92:7c:27:92:d6:6d:d7:5d:0b:9c:c6:30:c0:5a:af: a4:5a:96:30:ef:49:01:39:fd:15:ab:8b:de:b0:ba: 0b:52:79:3e:3d:a8:b1:51:23:b7:ad:5c:16:85:30: 58:6a:5e:4e:84:98:ee:e2:fc:4c:3c:f1:3a:64:d9: 1e:7f:46:7f:b0:7f:f4:48:f2:d5:2d:39:cf:66:a2: a0:46:50:4a:07:a7:dc:55:0e:41:76:be:69:4b:65: aa:b1:b5:39:6d:05:96:76:27:f7:04:76:4e:7e:dd: 17:72:bc:02:17:47:29:f5:ec:c1:8c:b6:31:8d:76: bd:fb:cd:99:12:4b:30:95:f6:6d:a8:e9:75:f6:f0: 91:26:b5:95:70:4c:5f:61:87:38:eb:c1:b2:2b:b7: 04:61:03:e8:ae:4b:4c:14:eb:43:84:53:19:34:75: 46:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2A:7B:19:D8:FB:49:56:AC:C6:1B:EC:F6:B6:6F:54:DC:00:CD:4E X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/4314DB4C8EAF11F091C0B421C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.223.0/24 103.20.158.0/24 Signature Algorithm: sha256WithRSAEncryption 48:e0:f3:ea:67:35:34:9c:de:80:21:6c:99:f2:65:58:a0:e3: 9d:b5:d2:63:c0:17:3c:59:c7:28:f1:ba:39:97:e1:6d:9b:80: 9e:6c:4c:7f:79:4d:6d:59:ec:a6:2d:63:88:b1:50:0f:dc:65: 84:c4:ca:81:46:23:7e:59:05:4b:36:b7:02:48:45:71:df:d9: 4c:2f:e8:93:34:9b:5f:87:da:91:f0:a3:3c:dd:84:29:a1:66: fa:f8:c0:86:da:13:bc:d0:66:c9:93:8b:3e:60:88:13:74:8f: 95:cf:65:e0:bb:cb:eb:94:78:fe:9e:76:a1:6a:84:8b:28:be: a7:e7:2e:01:73:ca:1a:3f:ff:15:e9:4c:a6:2c:ba:ef:0c:e6: 54:68:f3:06:25:82:16:e0:89:a1:89:67:49:13:6a:a4:6a:56: ec:76:09:a1:75:00:42:72:f4:ed:f4:5c:01:14:0b:dc:46:73: 68:31:ea:f2:0d:96:8a:98:4b:a2:4b:b4:1d:d4:73:0d:05:0b: 63:c5:46:4a:1d:51:03:57:0d:80:28:4c:af:aa:61:44:de:e4: c4:23:ec:b1:05:e5:25:f2:e9:e0:66:98:bb:e2:d6:f5:3c:93: 12:ef:35:de:72:a1:ea:a9:89:63:0d:de:29:aa:d8:6e:c2:03: 90:55:88:9e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjUwOTExMDEzMzA1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMyMjZkMC0wNzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9pOP9dXl7iEGfx/U+1O83JmaOl3xmNVUXWaZkd2t6bsZ6S0lstIWIXztlFtA oVog3ito85LH7plkwiSIcjydusq02kYZJZiCDCfqzlH0F3R0xtt8B31VnxySfCeS 1m3XXQucxjDAWq+kWpYw70kBOf0Vq4vesLoLUnk+PaixUSO3rVwWhTBYal5OhJju 4vxMPPE6ZNkef0Z/sH/0SPLVLTnPZqKgRlBKB6fcVQ5Bdr5pS2WqsbU5bQWWdif3 BHZOft0XcrwCF0cp9ezBjLYxjXa9+82ZEkswlfZtqOl19vCRJrWVcExfYYc468Gy K7cEYQPorktMFOtDhFMZNHVGIwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCAqexnY +0lWrMYb7Pa2b1TcAM1OMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQxRTkvREFEOEZCODAwNzkwMTFFQkJCOThDMDc2QzRGOUFFMDIvNDMxNERCNEM4 RUFGMTFGMDkxQzBCNDIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr598DBABnFJ4wDQYJKoZIhvcNAQELBQADggEBAEjg8+pn NTSc3oAhbJnyZVig45210mPAFzxZxyjxujmX4W2bgJ5sTH95TW1Z7KYtY4ixUA/c ZYTEyoFGI35ZBUs2twJIRXHf2Uwv6JM0m1+H2pHwozzdhCmhZvr4wIbaE7zQZsmT iz5giBN0j5XPZeC7y+uUeP6edqFqhIsovqfnLgFzyho//xXpTKYsuu8M5lRo8wYl ghbgiaGJZ0kTaqRqVux2CaF1AEJy9O30XAEUC9xGc2gx6vINloqYS6JLtB3Ucw0F C2PFRkodUQNXDYAoTK+qYUTe5MQj7LEF5SXy6eBmmLvi1vU8kxLvNd5yoeqpiWMN 3imq2G7CA5BViJ4= -----END CERTIFICATE-----Generated at Mon Oct 20 16:22:27 2025 by rpki-client