$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/DF1E2FEA97D611EB8BEF8223C4F9AE02.roa File: DF1E2FEA97D611EB8BEF8223C4F9AE02.roa (raw, json) Hash identifier: ltU83qHdHMX+gE2JiPsnwwizXD7fI0umImKJHXZ+qiY= Subject key identifier: 0F:9F:DB:3E:80:23:00:29:43:A5:B1:F0:E8:D5:FD:28:B4:5D:9D:05 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0C7F Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/DF1E2FEA97D611EB8BEF8223C4F9AE02.roa Signing time: Wed 08 Oct 2025 18:48:34 +0000 ROA not before: Wed 08 Oct 2025 18:48:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133547 IP address blocks: 103.100.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3199 (0xc7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Oct 8 18:48:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6b202-73b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a3:51:c8:5f:f5:27:1e:fa:55:4a:e0:0c:0e: 65:df:ea:14:51:c6:a1:54:0a:75:19:41:a5:dd:86: 32:e0:04:73:ee:95:ba:d7:4f:57:09:13:a4:9c:91: 47:90:79:e6:50:6f:c3:b4:10:df:0a:5f:eb:fe:fd: 87:8e:e8:11:c3:0f:ff:cd:04:14:86:7a:b6:40:b8: 54:c8:98:2c:ac:86:44:aa:90:bf:1c:b6:44:7e:e9: bd:f8:ad:1f:0b:45:0b:e6:67:15:c7:8b:87:f1:d8: 30:71:2b:04:2c:23:74:9b:d0:10:44:cd:66:0b:e1: 3f:08:4f:39:7b:e6:8d:1e:55:d2:e3:d4:be:ca:59: 05:37:8f:ee:13:9c:8e:cc:63:86:8f:42:ee:d2:85: ac:a5:a9:0c:1c:71:4d:9a:64:04:56:98:54:34:36: 6c:00:2b:7a:97:66:41:32:6d:1a:5b:b2:49:a3:60: 3a:af:cf:f0:b2:b9:e2:aa:88:35:28:18:55:01:51: 41:af:c5:2c:e1:df:63:d6:4f:f3:b8:8f:cb:92:e5: 3e:34:71:fd:30:5c:1a:86:4e:1d:95:d1:b2:fe:31: a9:a1:31:9f:f3:43:db:24:5b:a8:ff:1a:03:6c:2b: 7d:ed:cd:de:ec:26:07:40:12:36:c4:ae:ce:4a:44: cd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:9F:DB:3E:80:23:00:29:43:A5:B1:F0:E8:D5:FD:28:B4:5D:9D:05 X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/DF1E2FEA97D611EB8BEF8223C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.235.0/24 Signature Algorithm: sha256WithRSAEncryption c6:cd:a9:5d:13:78:22:90:ba:1f:a0:1a:b1:a2:eb:85:8c:3c: d6:c2:ad:a7:db:60:3c:db:19:8a:ab:34:27:c1:13:a4:48:87: 93:16:0e:ce:cc:b7:76:b2:de:45:34:c7:dd:d2:b8:65:4e:28: ea:e6:62:bf:f0:40:95:cc:73:48:b8:6a:45:b8:0d:bc:22:76: 71:d7:33:f6:b6:15:dc:0b:8b:6b:1b:4d:d9:5a:f2:1f:2c:e9: 4d:13:a5:a1:47:41:97:4a:4c:74:67:fa:96:f7:8f:6c:f3:99: 46:80:fe:93:20:45:74:b9:47:6d:d9:ce:ff:61:1f:ba:d1:96: 74:7c:47:fa:41:c1:44:3c:6f:8b:5d:eb:46:5e:64:53:7a:f2: 94:47:02:12:b6:fc:c8:86:9a:6b:d6:ac:46:db:48:5d:6c:ea: 38:ae:20:6b:0e:71:f9:cb:c7:7f:e5:aa:d6:27:27:f9:d4:4a: 82:39:64:4a:f4:1f:7c:c0:d3:1e:32:9f:b8:ac:04:7c:ca:d6: 38:12:a7:1b:20:63:fe:0e:57:9c:f0:2b:3e:00:64:68:20:a5: 08:f3:7f:ad:46:3b:76:a8:2b:95:92:6d:f9:08:93:1b:48:b4: 4d:35:c8:6a:ab:ca:85:b5:58:5d:24:55:69:5e:57:1d:66:74: d2:0c:63:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjUxMDA4MTg0ODM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2YjIwMi03M2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKNRyF/1Jx76VUrgDA5l3+oUUcahVAp1GUGl3YYy4ARz7pW6109XCROknJFH kHnmUG/DtBDfCl/r/v2HjugRww//zQQUhnq2QLhUyJgsrIZEqpC/HLZEfum9+K0f C0UL5mcVx4uH8dgwcSsELCN0m9AQRM1mC+E/CE85e+aNHlXS49S+ylkFN4/uE5yO zGOGj0Lu0oWspakMHHFNmmQEVphUNDZsACt6l2ZBMm0aW7JJo2A6r8/wsrniqog1 KBhVAVFBr8Us4d9j1k/zuI/LkuU+NHH9MFwahk4dldGy/jGpoTGf80PbJFuo/xoD bCt97c3e7CYHQBI2xK7OSkTNFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA+f2z6A IwApQ6Wx8OjV/Si0XZ0FMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1RTAvMjNCRjJGMjYxMTNFMTFFQTg4RTg3ODc2QzRGOUFFMDIvREYxRTJGRUE5 N0Q2MTFFQjhCRUY4MjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZOswDQYJKoZIhvcNAQELBQADggEBAMbNqV0TeCKQuh+g GrGi64WMPNbCrafbYDzbGYqrNCfBE6RIh5MWDs7Mt3ay3kU0x93SuGVOKOrmYr/w QJXMc0i4akW4DbwidnHXM/a2FdwLi2sbTdla8h8s6U0TpaFHQZdKTHRn+pb3j2zz mUaA/pMgRXS5R23Zzv9hH7rRlnR8R/pBwUQ8b4td60ZeZFN68pRHAhK2/MiGmmvW rEbbSF1s6jiuIGsOcfnLx3/lqtYnJ/nUSoI5ZEr0H3zA0x4yn7isBHzK1jgSpxsg Y/4OV5zwKz4AZGggpQjzf61GO3aoK5WSbfkIkxtItE01yGqryoW1WF0kVWleVx1m dNIMY1Q= -----END CERTIFICATE-----Generated at Mon Oct 20 18:25:53 2025 by rpki-client