$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9288/1FDDA7B02C5911ECBAF5F86AC4F9AE02/308C0A50A13C11F08C94C134C4F9AE02.roa File: 308C0A50A13C11F08C94C134C4F9AE02.roa (raw, json) Hash identifier: f+FwTVfeUI4vK/noyKsiUau7ZLzW194Ge45dviz5o4I= Subject key identifier: 6C:AC:41:E0:1E:2E:3E:70:10:17:52:3B:D0:53:36:24:CE:10:16:75 Certificate issuer: /CN=A91B9288/serialNumber=1373D7DBB331B53FCF7C28DC0DFB3E9FDA7EF490 Certificate serial: 0500 Authority key identifier: 13:73:D7:DB:B3:31:B5:3F:CF:7C:28:DC:0D:FB:3E:9F:DA:7E:F4:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3PX27MxtT_PfCjcDfs-n9p-9JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9288/1FDDA7B02C5911ECBAF5F86AC4F9AE02/308C0A50A13C11F08C94C134C4F9AE02.roa Signing time: Sat 04 Oct 2025 16:07:13 +0000 ROA not before: Sat 04 Oct 2025 16:07:13 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138197 IP address blocks: 103.174.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9288/1FDDA7B02C5911ECBAF5F86AC4F9AE02/E3PX27MxtT_PfCjcDfs-n9p-9JA.crl rsync://rpki.apnic.net/member_repository/A91B9288/1FDDA7B02C5911ECBAF5F86AC4F9AE02/E3PX27MxtT_PfCjcDfs-n9p-9JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3PX27MxtT_PfCjcDfs-n9p-9JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1280 (0x500) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9288, serialNumber=1373D7DBB331B53FCF7C28DC0DFB3E9FDA7EF490 Validity Not Before: Oct 4 16:07:13 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68e14631-4f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:93:0e:ef:9e:c1:c1:32:0c:9a:e6:ce:0c:98: b1:59:0e:3d:1c:eb:3f:1d:7b:96:14:d2:70:2c:65: 2d:8c:25:32:ff:72:a1:f0:61:7f:bc:0e:07:8e:03: da:d4:1d:19:93:95:2f:20:99:9f:f9:cb:a3:29:95: 69:f1:ac:f8:30:53:a4:60:7d:95:14:3f:e9:0c:e4: 76:a5:38:ea:07:67:15:cf:e3:c6:68:7b:c0:db:a6: c3:95:b6:75:da:6a:6d:89:e3:33:3c:dc:75:27:24: a7:8e:2a:92:6f:8b:27:ce:ab:25:ba:dd:4b:22:1b: 52:0e:af:4b:ae:8f:31:d3:c6:8b:16:bc:1a:7a:fe: 10:0f:f5:25:39:70:63:9d:af:56:b8:84:d2:b6:75: d9:37:58:79:1f:b3:34:85:20:21:d3:e7:f7:c5:bf: 50:91:3f:b6:d8:6f:39:c8:c8:65:2e:8e:ed:11:bc: 44:b0:6d:94:cd:24:8b:37:27:11:3c:04:b7:22:21: 2f:71:82:a4:05:04:b4:35:0c:db:ba:fb:72:0d:31: 11:43:55:39:d0:b8:71:80:91:a9:5a:84:64:98:bf: 66:e3:8a:c4:93:9f:b3:a5:15:95:85:f3:53:0a:bc: aa:8a:0d:1b:74:f9:97:f2:25:b7:34:0b:c6:6a:76: b0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:AC:41:E0:1E:2E:3E:70:10:17:52:3B:D0:53:36:24:CE:10:16:75 X509v3 Authority Key Identifier: keyid:13:73:D7:DB:B3:31:B5:3F:CF:7C:28:DC:0D:FB:3E:9F:DA:7E:F4:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9288/1FDDA7B02C5911ECBAF5F86AC4F9AE02/E3PX27MxtT_PfCjcDfs-n9p-9JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3PX27MxtT_PfCjcDfs-n9p-9JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9288/1FDDA7B02C5911ECBAF5F86AC4F9AE02/308C0A50A13C11F08C94C134C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.22.0/24 Signature Algorithm: sha256WithRSAEncryption 69:6a:c9:a9:36:30:35:25:b0:f1:3c:cd:24:a1:54:20:f6:e0: 8b:b7:ca:9a:d8:11:38:fa:90:76:47:86:de:43:c6:36:59:40: c4:3f:7d:b6:11:40:88:a5:f7:00:f5:91:8b:b6:cb:69:20:8f: 4d:14:de:44:2f:d5:4c:dd:75:ba:72:d6:88:b4:d0:b4:b4:ed: 4f:ad:80:6d:a3:1c:15:6a:43:5b:de:b0:cc:94:22:9e:76:69: a2:c3:1d:9f:ee:c5:07:58:f4:12:3d:3b:7a:74:56:92:fa:07: 4d:7b:3a:c0:23:0b:f4:8f:57:98:8b:2e:b6:0d:8d:66:96:52: da:c4:43:3b:94:c7:db:a0:78:2b:5f:1d:af:23:5e:c0:4f:a3: 54:9e:ed:63:50:f2:c9:4d:00:0a:41:4d:73:35:36:19:80:45: e8:c0:0f:75:fc:3b:36:ba:60:6d:61:79:79:e2:86:9a:87:b6: e1:e5:7a:4a:e9:d8:0f:db:ef:60:4a:8f:ea:03:72:2d:c8:d2: 35:0f:34:5d:5c:f5:0d:c2:fb:77:2e:a3:d3:d6:5b:5a:8d:80: 45:82:f3:17:cf:2c:e7:a1:f5:5d:cf:14:91:a5:65:dd:d3:88: c9:3b:50:ee:96:aa:f1:ba:0d:d9:e8:4d:be:03:49:28:10:59: d5:91:02:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyODgxMTAvBgNVBAUTKDEzNzNEN0RCQjMzMUI1M0ZDRjdDMjhEQzBERkIzRTlG REE3RUY0OTAwHhcNMjUxMDA0MTYwNzEzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxNDYzMS00ZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypMO757BwTIMmubODJixWQ49HOs/HXuWFNJwLGUtjCUy/3Kh8GF/vA4HjgPa 1B0Zk5UvIJmf+cujKZVp8az4MFOkYH2VFD/pDOR2pTjqB2cVz+PGaHvA26bDlbZ1 2mptieMzPNx1JySnjiqSb4snzqslut1LIhtSDq9Lro8x08aLFrwaev4QD/UlOXBj na9WuITStnXZN1h5H7M0hSAh0+f3xb9QkT+22G85yMhlLo7tEbxEsG2UzSSLNycR PAS3IiEvcYKkBQS0NQzbuvtyDTERQ1U50LhxgJGpWoRkmL9m44rEk5+zpRWVhfNT Cryqig0bdPmX8iW3NAvGanawLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGysQeAe Lj5wEBdSO9BTNiTOEBZ1MB8GA1UdIwQYMBaAFBNz19uzMbU/z3wo3A37Pp/afvSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI4OC8xRkREQTdCMDJD NTkxMUVDQkFGNUY4NkFDNEY5QUUwMi9FM1BYMjdNeHRUX1BmQ2pjRGZzLW45cC05 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UzUFgyN014dFRfUGZDamNEZnMtbjlwLTlKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyODgvMUZEREE3QjAyQzU5MTFFQ0JBRjVGODZBQzRGOUFFMDIvMzA4QzBBNTBB MTNDMTFGMDhDOTRDMTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrhYwDQYJKoZIhvcNAQELBQADggEBAGlqyak2MDUlsPE8 zSShVCD24Iu3yprYETj6kHZHht5DxjZZQMQ/fbYRQIil9wD1kYu2y2kgj00U3kQv 1Uzddbpy1oi00LS07U+tgG2jHBVqQ1vesMyUIp52aaLDHZ/uxQdY9BI9O3p0VpL6 B017OsAjC/SPV5iLLrYNjWaWUtrEQzuUx9ugeCtfHa8jXsBPo1Se7WNQ8slNAApB TXM1NhmARejAD3X8Oza6YG1heXnihpqHtuHlekrp2A/b72BKj+oDci3I0jUPNF1c 9Q3C+3cuo9PWW1qNgEWC8xfPLOeh9V3PFJGlZd3TiMk7UO6WqvG6DdnoTb4DSSgQ WdWRAuI= -----END CERTIFICATE-----Generated at Mon Oct 20 21:14:49 2025 by rpki-client