$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/47EB76428ABA11EB8A85C01BC4F9AE02.roa File: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (raw, json) Hash identifier: Aj09uU6MhDmU5Pp5fUZKM/VJnCnWU68ZEpcYdjejU1M= Subject key identifier: DD:BD:91:18:6B:FE:45:50:8B:20:7A:D0:97:71:15:62:0B:78:AE:DF Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 0681 Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/47EB76428ABA11EB8A85C01BC4F9AE02.roa Signing time: Tue 26 Aug 2025 23:02:49 +0000 ROA not before: Tue 26 Aug 2025 23:02:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 136805 IP address blocks: 103.96.141.0/24 maxlen: 24 103.109.123.0/24 maxlen: 24 103.109.132.0/23 maxlen: 23 2001:df1:df00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D, serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: Aug 26 23:02:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ae3d19-c8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:53:81:02:6f:c6:0f:e9:bb:ce:cc:56:6f:fc: 34:b1:cd:bb:0f:b8:9d:40:5f:4b:74:42:6a:27:ec: c1:76:5f:ec:bc:a1:04:5b:6c:f1:4f:fe:87:b8:48: ba:1a:fc:fe:bc:56:b6:0b:a3:9f:18:22:88:e1:f5: 1a:47:f2:35:ea:81:2f:24:5d:da:5c:ac:93:e0:96: 2d:e8:f7:f5:6d:68:93:56:73:5f:9d:21:dc:48:ad: 3c:f0:17:25:dd:b8:fd:e7:84:b4:f1:13:f1:18:74: 03:da:ae:8e:92:56:0d:4a:27:b6:97:2a:0d:f7:43: 3f:4c:f8:5f:f8:aa:a6:48:48:44:e8:f7:4e:a3:08: 1f:55:3b:f5:6d:78:82:e5:99:e5:dd:1f:d2:bc:ad: fe:95:a3:3c:7a:2d:03:e5:91:d8:dd:cf:41:d0:11: 0c:e5:85:5a:2f:2e:aa:73:c3:37:0c:a5:22:79:fe: f0:77:bf:96:31:b9:8c:5c:ab:29:6b:96:90:5b:9a: a5:10:7b:0a:9f:5b:e1:64:2d:93:ff:fc:ee:52:fd: 94:42:ba:03:e5:35:a4:ca:bd:e2:9a:98:d0:e1:4d: 16:3e:3c:67:85:b6:83:85:65:fd:43:06:2d:53:a2: e6:7f:2e:1c:15:25:11:ff:a3:8a:bc:84:ed:a4:3b: 71:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BD:91:18:6B:FE:45:50:8B:20:7A:D0:97:71:15:62:0B:78:AE:DF X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/47EB76428ABA11EB8A85C01BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.141.0/24 103.109.123.0/24 103.109.132.0/23 IPv6: 2001:df1:df00::/48 Signature Algorithm: sha256WithRSAEncryption ad:3b:49:da:3f:7f:41:c3:b4:cf:54:57:ef:61:cd:0d:a7:21: e7:c8:85:8a:02:f2:f6:b0:27:37:dd:7d:95:26:16:6f:4b:cd: 2c:4d:54:29:fa:33:ca:da:67:06:62:55:94:7d:56:f1:20:18: 45:8a:a3:de:8c:5d:87:4d:4a:2d:9d:36:5c:b8:2d:dc:ce:07: 02:92:25:b1:65:50:c0:66:8f:8e:62:15:01:99:ad:49:85:73: 1a:58:16:b4:cf:67:71:92:34:2a:98:71:1e:a1:b1:8d:53:8d: f8:ba:07:66:b7:da:96:6b:01:37:02:bf:50:20:63:b9:55:e9: 43:b8:4f:8f:91:e8:85:bb:02:31:07:e8:07:35:09:f6:8a:d2: 0f:49:9e:58:41:ad:05:c3:30:9e:e6:9f:9a:64:5b:78:8b:6a: db:73:59:67:0f:26:48:1a:70:86:9a:89:53:b9:15:36:51:90: 8d:1f:93:40:36:50:2f:80:97:a9:4c:2b:6f:6b:00:37:60:45: 55:f7:46:86:01:79:97:6b:e6:29:ff:dd:95:c4:95:4c:36:c5: 25:9a:2b:15:ab:b5:b4:6b:02:1c:5e:b3:8c:3a:53:74:03:a3: d3:c8:86:bf:54:a4:2b:fe:5c:b8:c7:7f:58:15:92:0a:b4:57: 96:f5:6f:ce -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjUwODI2MjMwMjQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlM2QxOS1jOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VOBAm/GD+m7zsxWb/w0sc27D7idQF9LdEJqJ+zBdl/svKEEW2zxT/6HuEi6 Gvz+vFa2C6OfGCKI4fUaR/I16oEvJF3aXKyT4JYt6Pf1bWiTVnNfnSHcSK088Bcl 3bj954S08RPxGHQD2q6OklYNSie2lyoN90M/TPhf+KqmSEhE6PdOowgfVTv1bXiC 5Znl3R/SvK3+laM8ei0D5ZHY3c9B0BEM5YVaLy6qc8M3DKUief7wd7+WMbmMXKsp a5aQW5qlEHsKn1vhZC2T//zuUv2UQroD5TWkyr3impjQ4U0WPjxnhbaDhWX9QwYt U6Lmfy4cFSUR/6OKvITtpDtxSQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFN29kRhr /kVQiyB60JdxFWILeK7fMB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkzNUQvRjUwMEY3Mjg4QUI4MTFFQjg3MDdFMTFBQzRGOUFFMDIvNDdFQjc2NDI4 QUJBMTFFQjhBODVDMDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBABnYI0DBABnbXsDBAFnbYQwDwQCAAIwCQMHACABDfHfADAN BgkqhkiG9w0BAQsFAAOCAQEArTtJ2j9/QcO0z1RX72HNDach58iFigLy9rAnN919 lSYWb0vNLE1UKfozytpnBmJVlH1W8SAYRYqj3oxdh01KLZ02XLgt3M4HApIlsWVQ wGaPjmIVAZmtSYVzGlgWtM9ncZI0KphxHqGxjVON+LoHZrfalmsBNwK/UCBjuVXp Q7hPj5HohbsCMQfoBzUJ9orSD0meWEGtBcMwnuafmmRbeItq23NZZw8mSBpwhpqJ U7kVNlGQjR+TQDZQL4CXqUwrb2sAN2BFVfdGhgF5l2vmKf/dlcSVTDbFJZorFau1 tGsCHF6zjDpTdAOj08iGv1SkK/5cuMd/WBWSCrRXlvVvzg== -----END CERTIFICATE-----Generated at Mon Oct 20 21:41:18 2025 by rpki-client