$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/3763B68C774C11EE81607E76C4F9AE02.roa File: 3763B68C774C11EE81607E76C4F9AE02.roa (raw, json) Hash identifier: UJJG1UL9HoDl6QIw7eUsq+CXxe1yKgi6+x82OgA5hEc= Subject key identifier: F2:27:0F:05:E8:F8:8B:86:D6:9A:F1:47:1C:F6:4D:5F:6D:9F:E2:D4 Certificate issuer: /CN=A91AD09B/serialNumber=1AF3C89CF147F2FEB51DAAE8957DB99D387263B8 Certificate serial: 0193 Authority key identifier: 1A:F3:C8:9C:F1:47:F2:FE:B5:1D:AA:E8:95:7D:B9:9D:38:72:63:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GvPInPFH8v61HarolX25nThyY7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/3763B68C774C11EE81607E76C4F9AE02.roa Signing time: Wed 01 Oct 2025 04:32:06 +0000 ROA not before: Wed 01 Oct 2025 04:32:06 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150774 IP address blocks: 103.7.120.0/23 maxlen: 23 103.7.120.0/24 maxlen: 24 103.7.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/GvPInPFH8v61HarolX25nThyY7g.crl rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/GvPInPFH8v61HarolX25nThyY7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GvPInPFH8v61HarolX25nThyY7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD09B, serialNumber=1AF3C89CF147F2FEB51DAAE8957DB99D387263B8 Validity Not Before: Oct 1 04:32:06 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68dcaec5-fc64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e7:78:99:c7:9d:9e:da:0e:00:2f:8d:57:39: b3:8c:2f:7e:da:51:a7:c2:0c:36:bc:f4:2d:c8:ee: 4f:a7:56:42:f9:c9:7e:38:0e:15:9d:41:db:a8:41: 4b:e2:f1:4e:25:86:47:ed:d2:d3:ea:23:f3:00:a1: c5:5c:de:5e:c5:c6:ee:e1:8e:9a:8a:a8:40:f4:db: 20:2b:b2:ea:3f:23:07:e6:f4:80:3a:02:ad:0d:77: 03:c6:06:39:62:98:3d:c9:04:12:dc:e1:b4:59:3f: 8e:ee:5f:8e:55:ac:02:24:cb:a6:38:d6:13:1d:38: ab:b0:87:af:3c:9f:96:85:fd:84:26:67:18:08:e9: 64:5d:75:f2:a5:0a:f8:c7:2c:a5:79:6c:7b:6a:95: 26:76:17:fa:63:70:d8:4a:b1:5c:11:56:68:11:30: 5b:11:1f:f4:e7:25:5d:d5:f9:02:70:f4:51:54:e0: 3a:18:35:49:65:b7:76:c0:07:3b:8e:a5:ea:a8:ff: 9a:14:0e:68:1a:ca:7f:35:7c:61:ea:98:7e:df:25: f0:15:d8:46:cf:ab:f2:2a:ab:4e:c2:81:30:b4:d7: 72:22:46:eb:0c:47:d9:2d:33:b5:8f:2b:64:bd:6b: 08:22:8d:c4:3c:b0:3a:fa:6d:7c:f5:fe:f6:65:f2: c4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:27:0F:05:E8:F8:8B:86:D6:9A:F1:47:1C:F6:4D:5F:6D:9F:E2:D4 X509v3 Authority Key Identifier: keyid:1A:F3:C8:9C:F1:47:F2:FE:B5:1D:AA:E8:95:7D:B9:9D:38:72:63:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/GvPInPFH8v61HarolX25nThyY7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GvPInPFH8v61HarolX25nThyY7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD09B/1E2FBED45C6411EEA59A821EC4F9AE02/3763B68C774C11EE81607E76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.120.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:07:dd:0f:cc:f6:17:23:88:e7:46:a1:f8:8c:2f:be:05:c8: 3d:5d:44:13:30:ee:a0:b3:f8:38:43:5e:f7:09:f8:cf:76:14: b3:39:1f:fa:16:2f:5b:59:0c:d7:31:c1:3f:0d:97:55:93:22: de:44:0d:27:36:37:ce:d1:81:9a:b2:cf:48:af:fa:9c:a3:14: 2f:ea:b0:9d:2f:28:3e:87:4f:99:f5:98:f8:94:ad:88:3d:ba: 3a:b5:d3:78:ac:90:07:22:20:40:6e:9e:e6:4a:5f:51:c7:20: 27:b7:fb:7f:a5:d9:8d:ee:fe:57:34:96:da:be:d6:1e:5f:0b: 3d:6a:77:17:02:7e:5d:7f:a1:8c:08:d2:04:a8:8c:6f:e4:ff: 21:1f:d3:81:6d:ca:36:b4:96:63:27:b5:06:87:eb:2e:0e:0b: d1:55:26:26:3c:59:52:59:13:07:72:ef:cd:2b:e1:9a:e8:6c: be:76:a4:20:a2:bd:2a:9c:d5:d0:46:04:73:81:e8:c0:04:c5: d3:46:81:46:6b:a1:de:11:6f:48:e7:6a:65:55:47:7a:e0:ae: a6:b6:44:1c:bc:29:d0:46:94:90:59:73:a4:f5:68:d6:da:f2: 4f:f6:7e:d6:1c:69:03:ab:2c:93:ba:40:fc:bc:62:5c:61:67: 9d:31:33:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUQwOUIxMTAvBgNVBAUTKDFBRjNDODlDRjE0N0YyRkVCNTFEQUFFODk1N0RCOTlE Mzg3MjYzQjgwHhcNMjUxMDAxMDQzMjA2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjYWVjNS1mYzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoOd4mcedntoOAC+NVzmzjC9+2lGnwgw2vPQtyO5Pp1ZC+cl+OA4VnUHbqEFL 4vFOJYZH7dLT6iPzAKHFXN5excbu4Y6aiqhA9NsgK7LqPyMH5vSAOgKtDXcDxgY5 Ypg9yQQS3OG0WT+O7l+OVawCJMumONYTHTirsIevPJ+Whf2EJmcYCOlkXXXypQr4 xyyleWx7apUmdhf6Y3DYSrFcEVZoETBbER/05yVd1fkCcPRRVOA6GDVJZbd2wAc7 jqXqqP+aFA5oGsp/NXxh6ph+3yXwFdhGz6vyKqtOwoEwtNdyIkbrDEfZLTO1jytk vWsIIo3EPLA6+m189f72ZfLEXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPInDwXo +IuG1prxRxz2TV9tn+LUMB8GA1UdIwQYMBaAFBrzyJzxR/L+tR2q6JV9uZ04cmO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRDA5Qi8xRTJGQkVENDVD NjQxMUVFQTU5QTgyMUVDNEY5QUUwMi9HdlBJblBGSDh2NjFIYXJvbFgyNW5UaHlZ N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d2UEluUEZIOHY2MUhhcm9sWDI1blRoeVk3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUQwOUIvMUUyRkJFRDQ1QzY0MTFFRUE1OUE4MjFFQzRGOUFFMDIvMzc2M0I2OEM3 NzRDMTFFRTgxNjA3RTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnB3gwDQYJKoZIhvcNAQELBQADggEBAHsH3Q/M9hcjiOdG ofiML74FyD1dRBMw7qCz+DhDXvcJ+M92FLM5H/oWL1tZDNcxwT8Nl1WTIt5EDSc2 N87RgZqyz0iv+pyjFC/qsJ0vKD6HT5n1mPiUrYg9ujq103iskAciIEBunuZKX1HH ICe3+3+l2Y3u/lc0ltq+1h5fCz1qdxcCfl1/oYwI0gSojG/k/yEf04Ftyja0lmMn tQaH6y4OC9FVJiY8WVJZEwdy780r4ZrobL52pCCivSqc1dBGBHOB6MAExdNGgUZr od4Rb0jnamVVR3rgrqa2RBy8KdBGlJBZc6T1aNba8k/2ftYcaQOrLJO6QPy8Ylxh Z50xMwQ= -----END CERTIFICATE-----Generated at Mon Oct 20 13:11:08 2025 by rpki-client