$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/FD22BBAE231F11EB99F53580C4F9AE02.roa File: FD22BBAE231F11EB99F53580C4F9AE02.roa (raw, json) Hash identifier: XXa6SJA5QTgmd2S25JSyBGpv+kardlTpnYOCPB9Kf1Y= Subject key identifier: 14:9B:6F:EB:15:9E:63:AC:BC:49:29:F9:E2:9B:AE:15:3D:4F:E6:BA Certificate issuer: /CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Certificate serial: 0FE4 Authority key identifier: 6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/FD22BBAE231F11EB99F53580C4F9AE02.roa Signing time: Tue 30 Sep 2025 17:46:13 +0000 ROA not before: Tue 30 Sep 2025 17:46:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137969 IP address blocks: 103.99.40.0/23 maxlen: 24 103.132.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4068 (0xfe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6B4, serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Validity Not Before: Sep 30 17:46:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dc1765-e804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0b:b3:5a:b3:8d:0e:a9:4a:10:6e:1a:1f:bd: d8:f9:2c:4d:27:13:43:59:04:dc:57:00:e9:f4:9d: 2c:0b:06:9b:bb:3e:3c:68:af:75:32:2c:42:0f:e8: 1d:11:36:dd:6e:16:70:f0:54:b9:b2:d9:86:19:d8: 56:6a:9f:c7:96:b3:b9:39:cb:8e:0c:ae:02:d1:4c: 59:07:6b:a0:cd:37:b4:be:5c:91:fc:90:3c:25:c4: d7:0e:05:2e:d1:fa:32:66:ef:38:e6:87:40:5e:69: af:b8:5b:ac:6b:4c:0c:1c:cf:cb:73:33:fa:2c:24: 67:50:ad:b5:5e:fe:bc:47:5c:db:14:12:86:5a:f7: 4a:d6:ce:19:e5:8e:3c:35:14:02:97:33:b8:dd:72: 02:90:84:dc:3b:ef:9c:82:c2:bc:d9:bc:c0:01:40: 7f:4d:97:00:2f:ce:f2:e8:5d:b9:f6:00:17:29:95: 9c:ca:49:ae:c2:00:6b:3d:61:86:e1:1f:0d:dd:c1: 54:ca:c5:24:9c:4b:e3:1d:bc:a2:17:76:09:63:11: c9:fe:b2:8b:19:10:cb:d6:40:f1:4c:fe:22:40:92: 66:0d:51:12:51:2f:cb:e0:e0:06:e8:ce:f3:e4:83: 15:7c:06:c4:62:01:0f:4a:b4:ca:89:27:7c:7b:3f: 5e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:9B:6F:EB:15:9E:63:AC:BC:49:29:F9:E2:9B:AE:15:3D:4F:E6:BA X509v3 Authority Key Identifier: keyid:6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/FD22BBAE231F11EB99F53580C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.40.0/23 103.132.234.0/23 Signature Algorithm: sha256WithRSAEncryption b3:13:6e:f7:e0:3a:5e:f3:f7:0e:14:f5:2d:86:68:cc:c0:6f: 47:ce:8b:2e:55:98:4c:ce:8c:83:d7:35:2a:1e:a8:16:b4:f3: 8c:8a:10:44:39:5c:b4:b6:d2:71:94:9c:38:c4:ca:43:4a:c4: 4d:e6:5f:07:9f:1c:06:9f:b8:f3:fe:94:17:8b:a9:de:80:98: 01:b5:a3:d8:ce:3d:ad:c0:31:c0:17:63:a4:9f:fc:30:4b:7d: c2:60:15:4d:6f:c5:62:77:9d:bc:93:9e:9b:14:29:4f:c8:b6: b6:08:00:aa:4b:22:08:77:c0:03:20:06:43:5a:99:0d:04:9e: 92:09:6a:51:f8:4e:7e:c6:49:3d:6c:c3:13:04:d5:97:f1:80: fc:30:2e:a9:d6:09:51:34:16:65:0b:b8:9b:44:34:25:7e:12: 6b:4b:03:82:21:cd:3c:da:26:c1:7d:84:5b:7d:b5:ac:d6:a6: dd:4c:11:20:8f:be:91:1f:d6:41:2e:82:4a:79:13:ef:7a:1a: 67:95:0e:33:94:d9:61:f1:fa:62:a5:75:c2:a2:e7:93:98:ec: 2a:d4:87:48:e2:ce:c6:18:33:c9:a0:b2:88:3e:48:55:5c:59: 32:7d:e6:c2:11:44:9b:cf:2e:8b:2c:48:7b:aa:bf:a2:1f:40: bf:f5:61:f1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2QjQxMTAvBgNVBAUTKDZDQTZCMkFDMUREMTdCMDE0REI2Qzc2NzI3OUQwOEM2 NkU0RUZDMDUwHhcNMjUwOTMwMTc0NjEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjMTc2NS1lODA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAuzWrONDqlKEG4aH73Y+SxNJxNDWQTcVwDp9J0sCwabuz48aK91MixCD+gd ETbdbhZw8FS5stmGGdhWap/HlrO5OcuODK4C0UxZB2ugzTe0vlyR/JA8JcTXDgUu 0foyZu845odAXmmvuFusa0wMHM/LczP6LCRnUK21Xv68R1zbFBKGWvdK1s4Z5Y48 NRQClzO43XICkITcO++cgsK82bzAAUB/TZcAL87y6F259gAXKZWcykmuwgBrPWGG 4R8N3cFUysUknEvjHbyiF3YJYxHJ/rKLGRDL1kDxTP4iQJJmDVESUS/L4OAG6M7z 5IMVfAbEYgEPSrTKiSd8ez9e7QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBSbb+sV nmOsvEkp+eKbrhU9T+a6MB8GA1UdIwQYMBaAFGymsqwd0XsBTbbHZyedCMZuTvwF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZCNC83MjZGNTFDMjYz RjIxMUU5QkIyMERENDVDNEY5QUUwMi9iS2F5ckIzUmV3Rk50c2RuSjUwSXhtNU9f QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLYXlyQjNSZXdGTnRzZG5KNTBJeG01T19BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2QjQvNzI2RjUxQzI2M0YyMTFFOUJCMjBERDQ1QzRGOUFFMDIvRkQyMkJCQUUy MzFGMTFFQjk5RjUzNTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYygDBAFnhOowDQYJKoZIhvcNAQELBQADggEBALMTbvfg Ol7z9w4U9S2GaMzAb0fOiy5VmEzOjIPXNSoeqBa084yKEEQ5XLS20nGUnDjEykNK xE3mXwefHAafuPP+lBeLqd6AmAG1o9jOPa3AMcAXY6Sf/DBLfcJgFU1vxWJ3nbyT npsUKU/ItrYIAKpLIgh3wAMgBkNamQ0EnpIJalH4Tn7GST1swxME1ZfxgPwwLqnW CVE0FmULuJtENCV+EmtLA4IhzTzaJsF9hFt9tazWpt1MESCPvpEf1kEugkp5E+96 GmeVDjOU2WHx+mKldcKi55OY7CrUh0jizsYYM8mgsog+SFVcWTJ95sIRRJvPLoss SHuqv6IfQL/1YfE= -----END CERTIFICATE-----Generated at Mon Oct 20 12:17:38 2025 by rpki-client