$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/47A21580B6CC11EC98672826C4F9AE02.roa File: 47A21580B6CC11EC98672826C4F9AE02.roa (raw, json) Hash identifier: LEtlM4YuHVZO4hp1ekYsLvEULMY1rw4omfHoEthYUqU= Subject key identifier: 25:0C:41:92:05:87:15:F4:AC:BE:81:95:88:96:5A:D5:0C:99:38:43 Certificate issuer: /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Certificate serial: 3015 Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/47A21580B6CC11EC98672826C4F9AE02.roa Signing time: Tue 02 Sep 2025 16:02:35 +0000 ROA not before: Tue 02 Sep 2025 16:02:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133382 IP address blocks: 103.79.108.0/24 maxlen: 24 103.79.109.0/24 maxlen: 24 103.241.6.0/24 maxlen: 24 103.241.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12309 (0x3015) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A445C, serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Validity Not Before: Sep 2 16:02:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7151a-50cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:95:fc:94:c6:7f:f8:5b:10:0e:31:24:57:c9: 28:61:4a:61:66:ef:f3:c7:d6:a9:63:05:d5:2e:24: 6a:d6:4f:ff:e6:f8:26:03:e8:ca:c1:90:50:31:0e: 0b:49:c0:bc:2c:49:16:db:93:81:1e:19:14:8f:b0: 08:a6:c1:d7:9a:2a:ec:fe:ff:be:be:fd:e8:28:1b: f5:fe:ce:4c:b1:c5:3b:cf:3f:2a:fc:56:e1:5a:0f: 99:84:d0:8a:8c:d2:53:2a:aa:f4:2f:44:13:e1:6d: d3:31:61:d3:9d:42:94:e3:06:e5:4b:60:ba:de:c2: e4:7b:6f:ac:2e:b7:cd:c4:d3:00:55:eb:30:09:75: 2d:06:cc:1e:74:f8:39:77:0e:08:ce:44:18:c3:ed: 42:66:b8:d4:2f:dd:c7:49:e7:1b:89:e5:03:38:b5: 46:44:f3:9c:f2:66:5a:85:3a:f6:7c:41:d8:a7:87: 21:22:e9:d5:6b:40:2d:26:f0:3e:a6:68:58:97:fd: e1:39:14:8e:ed:cb:08:22:a8:3c:7a:71:25:f6:a7: c1:cb:b8:20:2a:fe:38:c9:a0:ca:4b:98:cc:50:67: 73:b9:1e:cd:8c:0a:59:1d:95:41:d6:04:cd:84:8b: c9:4d:db:47:48:53:f1:48:d1:b9:86:43:39:09:86: 42:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0C:41:92:05:87:15:F4:AC:BE:81:95:88:96:5A:D5:0C:99:38:43 X509v3 Authority Key Identifier: keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/47A21580B6CC11EC98672826C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.108.0/23 103.241.6.0/23 Signature Algorithm: sha256WithRSAEncryption c1:05:e8:1f:87:bc:2b:c4:47:3b:5a:a3:d9:10:c6:73:1b:f5: db:08:59:a5:e9:f9:5a:9c:e9:c7:b3:1a:d7:84:d7:e5:d8:99: b7:5e:27:f9:d6:06:2c:3f:87:a6:b5:d0:11:23:c3:f7:1d:74: 21:f2:5f:27:74:60:51:01:41:2b:19:f7:66:a0:f5:38:d7:1b: 9e:e4:ff:49:4a:8f:92:0a:57:07:6e:41:54:f3:51:da:89:af: 4c:f1:1e:38:ba:6c:ee:08:1e:dc:50:71:c5:20:0f:59:b9:15: 94:aa:4f:46:f0:98:b6:db:3c:9d:fe:bb:b3:20:ae:77:85:de: e4:06:65:26:4a:a0:1e:79:48:ba:0f:4f:6f:f3:41:6a:c8:ae: 2d:b1:7a:50:66:3c:fd:76:c8:f9:38:56:e8:cb:60:30:dc:84: a4:51:a5:2c:d2:d8:4b:f6:67:97:2f:7b:86:27:e5:57:84:4e: 49:d3:db:35:f8:5c:cf:82:f1:b4:1e:29:13:05:ff:41:56:97: 45:f2:4c:db:87:38:8e:cd:cd:62:44:27:bd:dd:9e:41:60:7c: 26:c9:92:59:91:a9:87:e6:4a:fa:5d:05:0f:0f:06:f6:bc:cb: 1f:49:79:8f:b0:48:2b:df:1f:5c:bd:78:a5:bf:6f:a0:39:2d: ad:60:2a:11 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICMBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0NUMxMTAvBgNVBAUTKEMwRjdEOEQ2RDU0MTYzNzY1RkY2RjNFMkZCMzM3RkNG RTE1MDcyMTkwHhcNMjUwOTAyMTYwMjM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTUxYS01MGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA75X8lMZ/+FsQDjEkV8koYUphZu/zx9apYwXVLiRq1k//5vgmA+jKwZBQMQ4L ScC8LEkW25OBHhkUj7AIpsHXmirs/v++vv3oKBv1/s5MscU7zz8q/FbhWg+ZhNCK jNJTKqr0L0QT4W3TMWHTnUKU4wblS2C63sLke2+sLrfNxNMAVeswCXUtBswedPg5 dw4IzkQYw+1CZrjUL93HSecbieUDOLVGRPOc8mZahTr2fEHYp4chIunVa0AtJvA+ pmhYl/3hORSO7csIIqg8enEl9qfBy7ggKv44yaDKS5jMUGdzuR7NjApZHZVB1gTN hIvJTdtHSFPxSNG5hkM5CYZCMwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCUMQZIF hxX0rL6BlYiWWtUMmThDMB8GA1UdIwQYMBaAFMD32NbVQWN2X/bz4vszf8/hUHIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ1Qy81QThBRDA4ODBC MTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkzWmY5dlBpLXpOX3otRlFj aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dQZlkxdFZCWTNaZjl2UGktek5fei1GUWNoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0NUMvNUE4QUQwODgwQjE4MTFFM0I2MzdDNjc5NTkxMUVBMzIvNDdBMjE1ODBC NkNDMTFFQzk4NjcyODI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnT2wDBAFn8QYwDQYJKoZIhvcNAQELBQADggEBAMEF6B+H vCvERztao9kQxnMb9dsIWaXp+Vqc6cezGteE1+XYmbdeJ/nWBiw/h6a10BEjw/cd dCHyXyd0YFEBQSsZ92ag9TjXG57k/0lKj5IKVwduQVTzUdqJr0zxHji6bO4IHtxQ ccUgD1m5FZSqT0bwmLbbPJ3+u7MgrneF3uQGZSZKoB55SLoPT2/zQWrIri2xelBm PP12yPk4VujLYDDchKRRpSzS2Ev2Z5cve4Yn5VeETknT2zX4XM+C8bQeKRMF/0FW l0XyTNuHOI7NzWJEJ73dnkFgfCbJklmRqYfmSvpdBQ8PBva8yx9JeY+wSCvfH1y9 eKW/b6A5La1gKhE= -----END CERTIFICATE-----Generated at Mon Oct 20 16:16:50 2025 by rpki-client