$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/843804BE744C11F0B13EF277C4F9AE02.roa File: 843804BE744C11F0B13EF277C4F9AE02.roa (raw, json) Hash identifier: KVcRx1AIexKUEoEWUnnAhnjFkWCaA/g6jhGPzAyzQQ4= Subject key identifier: 51:C4:F2:B3:3C:40:7E:29:DF:E7:A6:E7:E7:37:F8:2E:E1:88:9A:39 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0B91 Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/843804BE744C11F0B13EF277C4F9AE02.roa Signing time: Fri 12 Sep 2025 19:29:24 +0000 ROA not before: Fri 12 Sep 2025 19:29:24 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 15083 IP address blocks: 103.101.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2961 (0xb91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0, serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: Sep 12 19:29:24 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c47494-0437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:63:85:f5:7f:c5:11:6f:a5:be:df:65:8e:11: 21:2a:53:47:3d:5b:48:a6:be:48:db:4f:0a:a4:5b: 8b:c9:55:f6:f1:a1:49:db:8b:d1:06:fb:60:c9:96: 30:e9:83:fc:a5:bc:72:32:9f:9a:5c:e8:ee:06:ff: 7c:53:1b:c6:ec:42:b3:2f:ce:06:58:56:96:bb:7b: cb:8f:f2:89:aa:c1:79:03:40:18:ef:c8:d2:d9:d7: 1a:8b:ca:59:36:8e:b5:44:e8:49:30:e4:41:9d:7b: 61:6b:5f:b5:33:60:45:da:31:93:4b:e4:ba:38:0d: eb:7c:c9:41:a3:d7:7e:c5:a2:e8:b6:2d:60:25:0c: 27:55:70:f9:e1:b7:a0:03:1a:a4:ea:d7:6c:90:eb: dc:28:9c:d7:e1:3e:dd:56:b2:96:4a:c2:36:1e:ca: 49:2a:9b:c2:98:8e:75:0a:57:69:cf:41:8b:65:f8: bc:2f:4c:8d:cf:40:a3:e9:a2:f5:1c:d1:53:9d:4e: 31:e4:4f:4f:36:a9:85:c3:0a:45:d2:87:e7:b9:26: 80:00:02:f0:37:93:42:1a:0d:7b:59:c8:0a:13:4a: 71:21:fc:4f:17:ad:17:98:88:a7:c7:4b:fb:5b:6c: 25:79:1b:0d:fe:8e:fa:75:94:4a:a3:f2:19:d3:9b: e3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C4:F2:B3:3C:40:7E:29:DF:E7:A6:E7:E7:37:F8:2E:E1:88:9A:39 X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/843804BE744C11F0B13EF277C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.51.0/24 Signature Algorithm: sha256WithRSAEncryption 90:c1:e2:6c:48:c6:49:89:d0:cc:5a:f7:59:02:b1:ed:82:58: 51:f7:91:59:b2:53:34:64:c3:de:e4:dd:d6:54:14:2e:30:68: fa:9a:fc:09:2e:3d:25:fb:96:c3:61:72:a2:12:67:1c:08:19: 14:13:55:dd:b9:8a:97:58:a2:87:45:03:ea:8e:63:23:2f:79: 20:7a:09:bf:47:04:8d:fe:b9:84:bc:57:77:bd:0f:93:fe:fd: 39:44:24:51:e2:9a:fa:cb:eb:1b:cb:ae:59:aa:1e:07:25:fe: f4:c4:21:b6:0f:02:df:76:c6:6f:62:df:a4:07:42:fa:59:2a: d3:ec:0d:7c:b0:f8:c4:ff:0a:a3:82:fa:1b:7b:a8:37:3e:ea: 19:f0:33:5b:77:86:87:05:a4:59:d9:63:3b:3e:22:78:85:ac: 8d:30:28:c9:f2:b0:61:39:a9:e3:d3:71:8c:fd:8e:9c:17:5b: e1:fd:1f:9d:f2:6f:b9:d3:39:0b:e8:b8:2c:ce:28:4b:6b:0a: b3:1d:aa:2c:eb:76:f8:e5:f7:86:ec:68:ac:4c:0c:67:f2:2d: 9f:b0:43:e0:14:cb:ca:08:22:58:e9:07:fb:7a:84:42:8c:64: 20:89:c8:a4:d1:ee:0e:1d:73:d6:79:8f:d3:99:7d:50:99:39: 08:90:e4:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjUwOTEyMTkyOTI0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0NzQ5NC0wNDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2OF9X/FEW+lvt9ljhEhKlNHPVtIpr5I208KpFuLyVX28aFJ24vRBvtgyZYw 6YP8pbxyMp+aXOjuBv98UxvG7EKzL84GWFaWu3vLj/KJqsF5A0AY78jS2dcai8pZ No61ROhJMORBnXtha1+1M2BF2jGTS+S6OA3rfMlBo9d+xaLoti1gJQwnVXD54beg Axqk6tdskOvcKJzX4T7dVrKWSsI2HspJKpvCmI51Cldpz0GLZfi8L0yNz0Cj6aL1 HNFTnU4x5E9PNqmFwwpF0ofnuSaAAALwN5NCGg17WcgKE0pxIfxPF60XmIinx0v7 W2wleRsN/o76dZRKo/IZ05vjCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFHE8rM8 QH4p3+em5+c3+C7hiJo5MB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU2RjAvN0Q2N0U0RDQzODRDMTFFQUJFQTJEQjcxQzRGOUFFMDIvODQzODA0QkU3 NDRDMTFGMEIxM0VGMjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZTMwDQYJKoZIhvcNAQELBQADggEBAJDB4mxIxkmJ0Mxa 91kCse2CWFH3kVmyUzRkw97k3dZUFC4waPqa/AkuPSX7lsNhcqISZxwIGRQTVd25 ipdYoodFA+qOYyMveSB6Cb9HBI3+uYS8V3e9D5P+/TlEJFHimvrL6xvLrlmqHgcl /vTEIbYPAt92xm9i36QHQvpZKtPsDXyw+MT/CqOC+ht7qDc+6hnwM1t3hocFpFnZ Yzs+IniFrI0wKMnysGE5qePTcYz9jpwXW+H9H53yb7nTOQvouCzOKEtrCrMdqizr dvjl94bsaKxMDGfyLZ+wQ+AUy8oIIljpB/t6hEKMZCCJyKTR7g4dc9Z5j9OZfVCZ OQiQ5G0= -----END CERTIFICATE-----Generated at Mon Oct 20 10:45:55 2025 by rpki-client