$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/4967CEF66AD311EF88752B40C4F9AE02.roa File: 4967CEF66AD311EF88752B40C4F9AE02.roa (raw, json) Hash identifier: OxqkPAcwe8U/URYzB78s+OkY3R6dzxppCgDSq39fiQ0= Subject key identifier: 70:66:36:81:25:AF:8D:E0:B8:47:47:CE:4F:B6:AB:B0:9E:BD:05:8A Certificate issuer: /CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Certificate serial: 09F8 Authority key identifier: 59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/4967CEF66AD311EF88752B40C4F9AE02.roa Signing time: Sat 04 Oct 2025 20:20:10 +0000 ROA not before: Sat 04 Oct 2025 20:20:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147302 IP address blocks: 103.72.0.0/24 maxlen: 24 103.72.2.0/24 maxlen: 24 103.72.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2552 (0x9f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFF15, serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Validity Not Before: Oct 4 20:20:10 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1817a-5aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9c:84:0b:56:8a:c4:cf:af:79:92:ce:22:db: 09:3b:99:2a:89:4c:ca:7c:33:66:34:b9:18:a4:69: 63:8a:41:ea:5b:8c:70:21:69:6b:cb:87:1c:c7:01: 4a:21:d1:5a:4a:4d:40:e4:3d:28:75:24:8f:e2:b8: 31:18:5a:8e:e7:51:a6:78:5c:c0:f6:ec:0a:b1:83: 17:fe:ec:12:fa:4c:00:b5:59:c5:53:68:9d:53:75: cf:37:00:a2:cb:5f:fe:a2:c2:67:af:6f:33:33:2a: b1:d7:03:a2:52:30:3a:6f:f9:8a:5f:c6:a4:98:41: 6d:d0:29:ca:d1:59:25:c4:a2:ba:1f:1e:2a:65:54: c3:39:79:13:99:2e:48:d9:e8:96:a5:6d:77:9f:0a: ab:c9:c9:12:ca:db:02:03:34:35:b7:81:41:d7:49: ac:65:38:c9:b8:25:78:d2:6c:14:05:fd:d6:59:ba: 26:17:50:80:a8:0d:a1:d3:05:3b:2a:d2:87:85:3a: d9:9e:5f:67:c9:ba:4c:d4:b2:78:94:0f:59:ae:ec: ab:4a:72:71:e0:b5:81:a8:5c:4b:f8:c7:91:ff:69: 0c:42:c3:58:22:23:a6:00:11:d3:86:5d:5a:9b:bf: a2:9e:eb:74:11:a1:4e:80:89:32:79:de:f2:10:a7: 91:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:66:36:81:25:AF:8D:E0:B8:47:47:CE:4F:B6:AB:B0:9E:BD:05:8A X509v3 Authority Key Identifier: keyid:59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/4967CEF66AD311EF88752B40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.0.0/24 103.72.2.0/23 Signature Algorithm: sha256WithRSAEncryption 63:e5:7d:e1:19:46:c1:82:a9:1a:39:2b:b2:0c:77:bf:ad:5f: 8f:89:bc:95:90:15:9e:4c:ac:66:0a:24:5e:b9:9e:cf:c1:9a: cf:9b:be:70:37:1d:fd:53:33:3b:58:a1:2c:3b:a5:58:a1:e2: 3b:bb:70:99:4e:ad:77:88:0a:c2:49:fd:32:2f:72:8e:01:a3: b3:b9:50:e4:89:d9:0c:1e:b1:81:cb:03:9d:14:ea:a8:55:14: 5c:20:a0:6b:96:57:50:b1:c2:29:c4:ba:85:49:75:96:15:7f: cb:7f:28:c5:31:70:18:ae:26:39:bc:d3:95:13:b6:7f:44:a4: 44:7f:01:ce:d0:20:67:60:30:72:29:1e:a8:c2:e8:88:14:26: e5:18:d0:21:8e:70:c2:f8:f2:e6:e4:10:b7:32:de:79:74:5b: 2c:99:b4:24:f5:bf:9e:0f:a4:f6:70:2a:52:5e:61:2a:f3:f7: 64:b1:a9:c6:a6:5a:18:e1:0a:1a:8d:fc:f1:52:9b:a1:ea:f8: 3b:16:ba:39:20:de:f4:95:fa:94:e0:6e:e0:b4:e7:d4:9c:c4: af:2b:dc:66:e4:2e:86:2b:72:80:a8:98:fc:aa:67:35:5b:30: 14:cb:fb:c7:6f:e8:a4:2d:43:66:7a:7f:56:67:ea:63:f1:dc: e0:60:00:3f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZGMTUxMTAvBgNVBAUTKDU5OUE3OEQ0QkJDRTEzRDREODEzREVGOTE2N0NEMzU3 NDdFQTAyNjAwHhcNMjUxMDA0MjAyMDEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxODE3YS01YWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZyEC1aKxM+veZLOItsJO5kqiUzKfDNmNLkYpGljikHqW4xwIWlry4ccxwFK IdFaSk1A5D0odSSP4rgxGFqO51GmeFzA9uwKsYMX/uwS+kwAtVnFU2idU3XPNwCi y1/+osJnr28zMyqx1wOiUjA6b/mKX8akmEFt0CnK0VklxKK6Hx4qZVTDOXkTmS5I 2eiWpW13nwqryckSytsCAzQ1t4FB10msZTjJuCV40mwUBf3WWbomF1CAqA2h0wU7 KtKHhTrZnl9nybpM1LJ4lA9ZruyrSnJx4LWBqFxL+MeR/2kMQsNYIiOmABHThl1a m7+inut0EaFOgIkyed7yEKeRNwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHBmNoEl r43guEdHzk+2q7CevQWKMB8GA1UdIwQYMBaAFFmaeNS7zhPU2BPe+RZ801dH6gJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkYxNS9CNDc4NUJFODhE NEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5VFlFOTc1Rm56VFYwZnFB bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dacDQxTHZPRTlUWUU5NzVGbnpUVjBmcUFtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUZGMTUvQjQ3ODVCRTg4RDRDMTFFQUJCREQzQTc0QzRGOUFFMDIvNDk2N0NFRjY2 QUQzMTFFRjg4NzUyQjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnSAADBAFnSAIwDQYJKoZIhvcNAQELBQADggEBAGPlfeEZ RsGCqRo5K7IMd7+tX4+JvJWQFZ5MrGYKJF65ns/Bms+bvnA3Hf1TMztYoSw7pVih 4ju7cJlOrXeICsJJ/TIvco4Bo7O5UOSJ2QwesYHLA50U6qhVFFwgoGuWV1CxwinE uoVJdZYVf8t/KMUxcBiuJjm805UTtn9EpER/Ac7QIGdgMHIpHqjC6IgUJuUY0CGO cML48ubkELcy3nl0WyyZtCT1v54PpPZwKlJeYSrz92SxqcamWhjhChqN/PFSm6Hq +DsWujkg3vSV+pTgbuC059ScxK8r3GbkLoYrcoComPyqZzVbMBTL+8dv6KQtQ2Z6 f1Zn6mPx3OBgAD8= -----END CERTIFICATE-----Generated at Mon Oct 20 16:47:32 2025 by rpki-client