$ rpki-client -vvf rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/21884064C42111ED91F8CA85C4F9AE02.roa File: 21884064C42111ED91F8CA85C4F9AE02.roa (raw, json) Hash identifier: VjxTOh6nZmBtEj7WHEySB1uCjm7XwQ6WjCFAjhobX0Q= Subject key identifier: 14:80:C4:7E:FA:F7:1C:CE:17:9A:66:01:EA:E0:94:A9:ED:59:F6:65 Certificate issuer: /CN=A91975B6/serialNumber=E95FA0EDF1112E320C225E7B8D50418667A30ACF Certificate serial: 01E8 Authority key identifier: E9:5F:A0:ED:F1:11:2E:32:0C:22:5E:7B:8D:50:41:86:67:A3:0A:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V-g7fERLjIMIl57jVBBhmejCs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/21884064C42111ED91F8CA85C4F9AE02.roa Signing time: Fri 19 Sep 2025 03:40:21 +0000 ROA not before: Fri 19 Sep 2025 03:40:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138914 IP address blocks: 103.236.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/6V-g7fERLjIMIl57jVBBhmejCs8.crl rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/6V-g7fERLjIMIl57jVBBhmejCs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V-g7fERLjIMIl57jVBBhmejCs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975B6, serialNumber=E95FA0EDF1112E320C225E7B8D50418667A30ACF Validity Not Before: Sep 19 03:40:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ccd0a5-1570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:17:f3:ab:16:27:72:8c:4f:f9:c5:cc:0c:d3: 1a:08:17:6c:0c:b6:46:f9:c8:13:4c:e4:6d:4a:db: 32:9d:7b:4b:b2:27:91:90:10:e4:de:f3:2e:22:fb: 9e:8d:d4:d3:7b:fe:24:e4:98:ab:02:ee:b5:9c:f6: 58:10:eb:8b:0e:a4:3b:ae:d1:fb:37:e0:6d:81:cf: 3a:95:50:8d:49:9e:47:5c:65:74:aa:b0:b4:26:80: 66:54:8b:57:e8:e8:a3:da:5b:27:13:13:20:12:85: 8f:c5:7e:ef:f2:8b:3b:67:6c:28:14:ba:68:9a:5d: 05:3a:f2:a7:1b:77:6a:01:10:07:da:8b:25:5a:ec: ee:fc:2d:ed:eb:c3:ce:a1:af:6c:3f:bd:a2:32:d1: c5:0f:2f:50:c1:85:1f:a9:15:ce:e2:41:72:aa:d7: de:30:d7:a0:8f:03:76:20:b7:57:b1:40:48:ec:7e: 01:12:bb:f9:a4:28:df:75:ea:74:b3:36:0b:85:15: de:97:33:4f:9e:92:d6:bc:d8:05:8e:e3:83:84:2d: 64:55:dc:de:45:42:dc:c3:7a:e5:18:e5:26:2c:35: 40:33:1c:2e:05:f8:f6:c6:71:e8:f1:b9:23:d4:73: 84:26:8d:ac:25:46:d0:fa:e5:18:c6:4a:e5:c5:45: 14:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:80:C4:7E:FA:F7:1C:CE:17:9A:66:01:EA:E0:94:A9:ED:59:F6:65 X509v3 Authority Key Identifier: keyid:E9:5F:A0:ED:F1:11:2E:32:0C:22:5E:7B:8D:50:41:86:67:A3:0A:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/6V-g7fERLjIMIl57jVBBhmejCs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V-g7fERLjIMIl57jVBBhmejCs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/21884064C42111ED91F8CA85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.236.132.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:a6:d6:20:80:6c:9b:16:ff:ba:7d:cc:62:f5:d3:99:c6:89: 43:f9:09:ac:4b:52:49:03:b1:a5:96:fa:23:1e:45:d9:45:97: 37:8d:c4:4a:1e:a6:80:05:1f:01:3d:5d:a0:0b:57:b7:c3:dc: 24:7b:64:1f:e8:1e:a8:16:34:66:df:fb:75:80:25:53:57:f7: a3:b4:3c:dd:6f:ec:60:38:e7:55:84:a1:50:33:26:ad:1a:20: 4a:47:65:0f:8b:12:68:d9:55:4a:2c:2d:a7:b6:4a:5a:b6:62: 07:7e:51:ee:67:d3:36:64:14:e5:68:92:e2:9f:a1:20:6e:2d: b1:68:7f:fb:63:46:b2:4f:15:08:45:7b:85:43:2f:57:02:fa: 59:2d:77:3e:e0:b9:57:b7:23:65:7e:97:5b:2d:2f:53:10:6a: 55:bb:7c:6e:13:36:68:56:23:9c:10:5f:b7:b1:6c:02:85:1b: 26:32:30:22:53:57:39:27:c8:44:39:36:9d:82:59:a1:72:9b: a3:a8:fb:c0:00:a7:73:88:41:ed:81:6e:5c:f6:ee:e0:9a:93: 94:bd:ca:ac:b0:6b:4e:cb:7c:8c:fe:95:0a:73:2e:84:9d:77: 12:1c:d7:d6:45:37:3b:c9:0a:de:81:9c:06:44:91:41:7f:f6: aa:2e:52:6c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1QjYxMTAvBgNVBAUTKEU5NUZBMEVERjExMTJFMzIwQzIyNUU3QjhENTA0MTg2 NjdBMzBBQ0YwHhcNMjUwOTE5MDM0MDIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjZDBhNS0xNTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RfzqxYncoxP+cXMDNMaCBdsDLZG+cgTTORtStsynXtLsieRkBDk3vMuIvue jdTTe/4k5JirAu61nPZYEOuLDqQ7rtH7N+Btgc86lVCNSZ5HXGV0qrC0JoBmVItX 6Oij2lsnExMgEoWPxX7v8os7Z2woFLpoml0FOvKnG3dqARAH2oslWuzu/C3t68PO oa9sP72iMtHFDy9QwYUfqRXO4kFyqtfeMNegjwN2ILdXsUBI7H4BErv5pCjfdep0 szYLhRXelzNPnpLWvNgFjuODhC1kVdzeRULcw3rlGOUmLDVAMxwuBfj2xnHo8bkj 1HOEJo2sJUbQ+uUYxkrlxUUUFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBSAxH76 9xzOF5pmAerglKntWfZlMB8GA1UdIwQYMBaAFOlfoO3xES4yDCJee41QQYZnowrP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVCNi9CNTc2MkRENkMy N0QxMUVEOTEyQjc3NEJDNEY5QUUwMi82Vi1nN2ZFUkxqSU1JbDU3alZCQmhtZWpD czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZWLWc3ZkVSTGpJTUlsNTdqVkJCaG1lakNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTc1QjYvQjU3NjJERDZDMjdEMTFFRDkxMkI3NzRCQzRGOUFFMDIvMjE4ODQwNjRD NDIxMTFFRDkxRjhDQTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn7IQwDQYJKoZIhvcNAQELBQADggEBAF6m1iCAbJsW/7p9 zGL105nGiUP5CaxLUkkDsaWW+iMeRdlFlzeNxEoepoAFHwE9XaALV7fD3CR7ZB/o HqgWNGbf+3WAJVNX96O0PN1v7GA451WEoVAzJq0aIEpHZQ+LEmjZVUosLae2Slq2 Ygd+Ue5n0zZkFOVokuKfoSBuLbFof/tjRrJPFQhFe4VDL1cC+lktdz7guVe3I2V+ l1stL1MQalW7fG4TNmhWI5wQX7exbAKFGyYyMCJTVzknyEQ5Np2CWaFym6Oo+8AA p3OIQe2Bblz27uCak5S9yqywa07LfIz+lQpzLoSddxIc19ZFNzvJCt6BnAZEkUF/ 9qouUmw= -----END CERTIFICATE-----Generated at Mon Oct 20 13:42:46 2025 by rpki-client