$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/E40A00021F9311ECAF64925DC4F9AE02.roa File: E40A00021F9311ECAF64925DC4F9AE02.roa (raw, json) Hash identifier: IpF3dE92/TbQ62Lm9/2a1/eIhWDEF6cu9VkkblkvmV8= Subject key identifier: B7:A3:87:D3:2C:6E:42:F1:5F:38:99:15:78:EE:6C:51:EE:30:57:78 Certificate issuer: /CN=A91B9EBB/serialNumber=2D64FA3478C99491768E66E6E997E9FAA95CA2D3 Certificate serial: 0BD1 Authority key identifier: 2D:64:FA:34:78:C9:94:91:76:8E:66:E6:E9:97:E9:FA:A9:5C:A2:D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWT6NHjJlJF2jmbm6Zfp-qlcotM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/E40A00021F9311ECAF64925DC4F9AE02.roa Signing time: Tue 30 Sep 2025 19:19:15 +0000 ROA not before: Tue 30 Sep 2025 19:19:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139605 IP address blocks: 103.142.54.0/23 maxlen: 23 103.142.54.0/24 maxlen: 24 103.142.55.0/24 maxlen: 24 2001:df7:a980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/LWT6NHjJlJF2jmbm6Zfp-qlcotM.crl rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/LWT6NHjJlJF2jmbm6Zfp-qlcotM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWT6NHjJlJF2jmbm6Zfp-qlcotM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3025 (0xbd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9EBB, serialNumber=2D64FA3478C99491768E66E6E997E9FAA95CA2D3 Validity Not Before: Sep 30 19:19:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dc2d32-87b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:16:87:01:32:c6:9f:94:1b:d8:a3:0e:0b:83: 8f:c0:55:c7:fc:32:02:59:c4:2e:83:39:23:23:1f: 2d:dd:6c:da:30:6e:15:c5:c5:bb:10:17:72:34:6b: 9f:bd:8d:6f:c2:ad:07:9b:05:eb:4c:df:cc:f9:b3: 12:ab:41:a4:72:97:5b:62:53:61:cf:4b:4f:42:50: b7:a5:a7:d9:84:5f:75:39:79:3e:ff:c9:dc:9a:7f: 68:d2:69:e9:30:4b:80:83:1a:57:bd:06:da:79:bb: 47:72:71:d4:73:d9:d1:08:dc:f1:91:8a:1d:4c:35: 70:ea:7e:33:86:be:a5:bb:cc:21:3c:a3:1d:3e:3e: 83:00:76:68:fb:67:1e:e5:ce:1a:d9:a2:0d:9b:9c: 8a:c8:b9:56:5c:be:f4:f7:cd:95:c5:ce:38:af:20: 00:2d:24:3d:03:29:85:b9:40:dd:58:36:48:4b:92: 6c:93:76:af:97:4b:f0:78:d7:75:0f:50:42:e8:8f: 94:a9:19:c0:bd:bc:05:12:78:b4:fb:62:d3:00:89: bc:e1:ea:85:3e:71:a8:02:46:a5:cf:a5:f4:8d:8c: 7a:d2:b0:8a:c9:8c:47:88:45:95:ea:a5:fb:ba:25: 0a:c2:d2:b5:45:94:5b:23:3d:a6:3d:13:46:3d:a4: a5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A3:87:D3:2C:6E:42:F1:5F:38:99:15:78:EE:6C:51:EE:30:57:78 X509v3 Authority Key Identifier: keyid:2D:64:FA:34:78:C9:94:91:76:8E:66:E6:E9:97:E9:FA:A9:5C:A2:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/LWT6NHjJlJF2jmbm6Zfp-qlcotM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWT6NHjJlJF2jmbm6Zfp-qlcotM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9EBB/F9263D162B0711EAB85BB87CC4F9AE02/E40A00021F9311ECAF64925DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.54.0/23 IPv6: 2001:df7:a980::/48 Signature Algorithm: sha256WithRSAEncryption 08:56:1b:8c:fc:04:44:07:2c:92:88:f2:89:1a:d8:d0:1f:5b: f9:3a:e0:42:10:a7:29:44:d1:ff:4e:98:e2:b5:41:52:fe:74: 45:bd:e6:c1:85:fd:01:0b:8d:05:21:b0:14:fe:a6:67:6e:91: e1:18:40:9c:63:b2:ca:5f:8b:8b:7f:a4:15:38:22:c3:99:b1: 99:6b:24:89:89:fb:82:4d:a6:25:ca:ff:cb:47:19:5a:02:db: 82:4e:b0:59:65:11:c7:50:31:28:16:e4:35:b4:ba:48:db:ce: f0:a5:6d:4e:93:f8:01:cb:6a:3f:00:fa:16:a0:46:9d:e0:13: 43:17:db:bf:bd:19:cd:64:55:e8:81:94:61:36:1b:31:43:e9: b0:76:97:d0:36:bf:f4:fe:99:0e:f6:b6:4d:46:a0:40:0e:9d: f5:4e:bc:f4:75:f6:00:e7:3a:da:95:20:48:f8:2c:be:bd:40: c9:b6:95:44:26:57:6e:95:a8:6b:83:13:3f:ae:16:b1:b6:7a: 8b:d7:22:54:13:81:5c:01:12:f7:ef:7e:e6:52:b5:57:c5:58: 80:31:f0:71:71:4f:99:a6:45:b1:b1:16:54:41:47:dd:e2:0f: d7:26:04:6e:38:dd:e4:20:b5:c8:ea:e5:ea:06:b2:47:07:c4: 7b:8c:95:9e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlFQkIxMTAvBgNVBAUTKDJENjRGQTM0NzhDOTk0OTE3NjhFNjZFNkU5OTdFOUZB QTk1Q0EyRDMwHhcNMjUwOTMwMTkxOTE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjMmQzMi04N2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxaHATLGn5Qb2KMOC4OPwFXH/DICWcQugzkjIx8t3WzaMG4VxcW7EBdyNGuf vY1vwq0HmwXrTN/M+bMSq0GkcpdbYlNhz0tPQlC3pafZhF91OXk+/8ncmn9o0mnp MEuAgxpXvQbaebtHcnHUc9nRCNzxkYodTDVw6n4zhr6lu8whPKMdPj6DAHZo+2ce 5c4a2aINm5yKyLlWXL70982Vxc44ryAALSQ9AymFuUDdWDZIS5Jsk3avl0vweNd1 D1BC6I+UqRnAvbwFEni0+2LTAIm84eqFPnGoAkalz6X0jYx60rCKyYxHiEWV6qX7 uiUKwtK1RZRbIz2mPRNGPaSltQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLejh9Ms bkLxXziZFXjubFHuMFd4MB8GA1UdIwQYMBaAFC1k+jR4yZSRdo5m5umX6fqpXKLT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUVCQi9GOTI2M0QxNjJC MDcxMUVBQjg1QkI4N0NDNEY5QUUwMi9MV1Q2TkhqSmxKRjJqbWJtNlpmcC1xbGNv dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXVDZOSGpKbEpGMmptYm02WmZwLXFsY290TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlFQkIvRjkyNjNEMTYyQjA3MTFFQUI4NUJCODdDQzRGOUFFMDIvRTQwQTAwMDIx RjkzMTFFQ0FGNjQ5MjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjjYwDwQCAAIwCQMHACABDfepgDANBgkqhkiG9w0BAQsF AAOCAQEACFYbjPwERAcskojyiRrY0B9b+TrgQhCnKUTR/06Y4rVBUv50Rb3mwYX9 AQuNBSGwFP6mZ26R4RhAnGOyyl+Li3+kFTgiw5mxmWskiYn7gk2mJcr/y0cZWgLb gk6wWWURx1AxKBbkNbS6SNvO8KVtTpP4ActqPwD6FqBGneATQxfbv70ZzWRV6IGU YTYbMUPpsHaX0Da/9P6ZDva2TUagQA6d9U689HX2AOc62pUgSPgsvr1AybaVRCZX bpWoa4MTP64WsbZ6i9ciVBOBXAES9+9+5lK1V8VYgDHwcXFPmaZFsbEWVEFH3eIP 1yYEbjjd5CC1yOrl6gayRwfEe4yVng== -----END CERTIFICATE-----Generated at Mon Oct 20 23:34:15 2025 by rpki-client