$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/1BEFBED451B911F097C15C49C4F9AE02.roa File: 1BEFBED451B911F097C15C49C4F9AE02.roa (raw, json) Hash identifier: au2wuZlStRAiQIz6GHb6zEgbdpYBgkZrv7Xcs6eeF3c= Subject key identifier: 1B:4A:BC:50:FE:59:D7:0D:22:2C:8C:65:3B:75:81:F5:A7:4D:61:6D Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 0523 Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/1BEFBED451B911F097C15C49C4F9AE02.roa Signing time: Sat 11 Oct 2025 01:56:13 +0000 ROA not before: Sat 11 Oct 2025 01:56:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 397373 IP address blocks: 103.134.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1315 (0x523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B, serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Validity Not Before: Oct 11 01:56:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e9b93d-f6a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:63:a3:51:62:6c:09:95:08:62:62:e6:7c:a6: b9:e1:50:44:77:45:7f:48:2f:f6:24:56:3e:95:9a: 9d:a1:85:77:5b:25:4c:ae:82:ab:2f:0b:33:bf:dc: 7a:79:68:ec:27:94:a7:f2:2f:88:54:2a:b3:34:be: 71:d0:90:cd:24:73:99:a0:61:b5:14:01:5f:4d:d7: 9b:19:90:66:63:c0:32:fd:96:10:21:f1:92:b1:b7: f1:b3:b0:81:96:82:28:8a:8e:59:94:3a:f7:18:b9: e9:58:53:98:85:7f:75:ed:25:25:81:1c:e8:b1:80: 69:23:9b:1b:1b:13:0b:71:83:cc:07:1d:e0:b8:a6: 10:f5:66:82:05:6c:6d:2a:08:d0:68:de:89:93:41: 98:69:5a:f2:e7:77:5d:73:c1:a4:e3:ca:97:97:b9: 56:3a:19:81:d4:36:0b:4d:3d:90:9a:86:80:23:e0: 94:b8:1b:3c:d9:58:38:d7:39:7f:a9:a8:55:9b:39: 40:6b:c6:c6:4d:d9:16:a0:d6:b5:84:53:1c:ea:f9: d2:6f:41:1c:e7:e6:42:17:eb:b0:8c:cc:a0:9e:64: 7f:3c:56:da:8b:11:e0:9a:aa:63:11:17:8f:aa:2a: 5c:84:b7:d8:fe:b5:28:9a:71:ba:4a:ea:71:dc:10: 94:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:4A:BC:50:FE:59:D7:0D:22:2C:8C:65:3B:75:81:F5:A7:4D:61:6D X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/1BEFBED451B911F097C15C49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.74.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:1d:87:09:10:2b:46:aa:35:50:9b:5e:e4:f3:e0:9b:28:1f: 5f:c4:74:85:55:1a:40:13:b0:48:8a:c4:2e:c9:97:9a:34:6d: 29:26:93:a7:35:d6:0c:80:ef:97:1c:5c:d0:07:90:cd:81:43: e7:76:76:99:4a:a7:90:ac:e1:d8:80:6e:fe:de:ac:15:d7:e7: 25:46:2f:83:8e:60:66:e2:73:b4:56:7b:de:a1:e8:ce:dd:bd: 1c:11:88:e1:58:17:a8:3b:c7:58:aa:44:03:e1:bb:07:5a:a5: a3:26:dc:a0:60:75:08:87:51:f2:28:19:07:48:f3:de:00:02: b7:e7:6e:39:7d:a7:ba:ae:a1:4f:5d:8f:a3:66:c0:eb:ce:5d: 34:ad:0a:20:59:5a:06:ed:5d:fb:b5:5c:d8:98:e8:1b:3b:83: 0f:0b:7e:1e:73:ee:df:cd:68:3b:d8:4b:1d:a4:e7:7c:6f:a9: 55:ee:c9:e3:33:76:59:2f:49:79:dd:00:1c:7f:6b:67:9e:d7: 05:04:68:5a:07:e9:c9:c0:0f:b4:63:3b:75:06:73:19:12:c6: c7:8b:f9:f8:27:e4:cc:ba:4f:b0:12:cd:28:41:d5:48:68:86: a9:d8:5e:11:b7:3b:f0:fe:73:d1:30:f7:5d:5d:6e:8d:fb:c2: 77:ed:50:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjUxMDExMDE1NjEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU5YjkzZC1mNmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumOjUWJsCZUIYmLmfKa54VBEd0V/SC/2JFY+lZqdoYV3WyVMroKrLwszv9x6 eWjsJ5Sn8i+IVCqzNL5x0JDNJHOZoGG1FAFfTdebGZBmY8Ay/ZYQIfGSsbfxs7CB loIoio5ZlDr3GLnpWFOYhX917SUlgRzosYBpI5sbGxMLcYPMBx3guKYQ9WaCBWxt KgjQaN6Jk0GYaVry53ddc8Gk48qXl7lWOhmB1DYLTT2QmoaAI+CUuBs82Vg41zl/ qahVmzlAa8bGTdkWoNa1hFMc6vnSb0Ec5+ZCF+uwjMygnmR/PFbaixHgmqpjEReP qipchLfY/rUomnG6Supx3BCU6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBtKvFD+ WdcNIiyMZTt1gfWnTWFtMB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDOUIvQTQ2RTk4OUEzMjJCMTFFQzk3RjhDRjdDQzRGOUFFMDIvMUJFRkJFRDQ1 MUI5MTFGMDk3QzE1QzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhkowDQYJKoZIhvcNAQELBQADggEBAE8dhwkQK0aqNVCb XuTz4JsoH1/EdIVVGkATsEiKxC7Jl5o0bSkmk6c11gyA75ccXNAHkM2BQ+d2dplK p5Cs4diAbv7erBXX5yVGL4OOYGbic7RWe96h6M7dvRwRiOFYF6g7x1iqRAPhuwda paMm3KBgdQiHUfIoGQdI894AArfnbjl9p7quoU9dj6NmwOvOXTStCiBZWgbtXfu1 XNiY6Bs7gw8Lfh5z7t/NaDvYSx2k53xvqVXuyeMzdlkvSXndABx/a2ee1wUEaFoH 6cnAD7RjO3UGcxkSxseL+fgn5My6T7ASzShB1UhohqnYXhG3O/D+c9Ew911dbo37 wnftUH4= -----END CERTIFICATE-----Generated at Mon Oct 20 11:18:15 2025 by rpki-client