$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/C32D1F4A13A011F09B8EF66AC4F9AE02.roa File: C32D1F4A13A011F09B8EF66AC4F9AE02.roa (raw, json) Hash identifier: uvWCOvomLN/7hlVYLp/jcmXt9zO2kyVBg9I1lGQNm1w= Subject key identifier: 46:55:6F:E6:92:64:7D:65:1E:54:8A:04:26:DE:05:92:01:D6:05:11 Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 0522 Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/C32D1F4A13A011F09B8EF66AC4F9AE02.roa Signing time: Sat 11 Oct 2025 01:56:12 +0000 ROA not before: Sat 11 Oct 2025 01:56:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 26042 IP address blocks: 103.120.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1314 (0x522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B, serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Validity Not Before: Oct 11 01:56:12 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e9b93c-8435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:27:35:39:e9:cf:7e:27:79:dd:42:95:a6:27: 49:6c:d7:81:40:a4:f7:82:1b:68:9c:c6:9d:7e:fa: f3:dc:b8:29:8e:53:cb:e2:c3:a1:92:67:f9:e6:a8: 19:0c:9a:4a:1a:3b:64:ba:dd:6a:72:13:02:5c:27: 80:d3:8e:76:d0:4b:6f:2a:69:0b:13:f7:bc:40:8e: cb:27:8d:ee:d4:10:fc:9f:b7:06:8c:7e:7b:f2:f4: 82:d8:51:95:80:a9:58:23:fe:2a:7f:37:14:1b:70: 6f:56:0c:a1:ff:99:ec:46:c7:75:99:1e:36:6a:c4: e6:e0:aa:35:8a:98:78:fd:3f:6a:79:2f:a2:b6:96: 0e:e7:a9:e2:05:14:1e:ef:c4:d7:04:97:9c:7e:35: cf:e7:71:73:19:74:ae:67:61:5a:30:9c:32:51:1a: b4:54:aa:0f:cc:67:81:f3:4a:2f:c3:fc:bf:95:b7: dc:21:53:7c:3a:95:f7:b9:0e:81:df:ee:2e:1e:c5: 45:1d:65:80:85:76:6a:44:8f:a9:ce:60:8f:26:01: 33:f8:44:a5:e6:60:0e:44:80:84:67:84:0e:39:34: ab:46:fd:9b:58:8b:a2:0e:5f:ea:98:29:8d:f9:1c: cd:fa:8b:2b:cb:62:3d:38:1d:c6:01:84:36:7c:2a: 8f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:55:6F:E6:92:64:7D:65:1E:54:8A:04:26:DE:05:92:01:D6:05:11 X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/C32D1F4A13A011F09B8EF66AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.128.0/24 Signature Algorithm: sha256WithRSAEncryption 72:5c:99:38:4a:6a:cd:ac:38:25:12:b1:41:b8:ad:3a:55:18: a0:1e:cd:e4:89:c1:9f:78:90:e3:5d:ec:00:39:a9:62:f1:fd: f5:86:6d:4b:de:15:16:ac:26:60:c2:2e:62:e0:43:97:4f:93: 4c:4d:65:e6:cf:ea:b0:f8:07:42:e2:bf:a8:8e:a0:03:db:f9: cb:a0:7f:21:6d:ba:d8:b4:cf:c6:5d:a3:22:8a:f7:3d:15:41: e0:ba:06:cc:f5:90:87:d4:1c:2c:8d:d2:a9:10:16:89:98:49: d7:16:07:7d:d8:8a:d9:bc:8f:34:22:d5:b7:e5:ea:1c:b8:63: a0:9d:0d:03:8c:39:1e:d4:04:e4:0e:fb:9e:91:2c:d0:13:07: b7:ff:27:9b:36:e1:f4:d4:d8:58:0b:27:b4:0a:76:47:9d:21: 99:64:84:3b:fd:73:4e:1a:7e:9a:9a:c3:97:7f:0e:ba:e8:36: 2d:5c:44:f8:1b:f3:fc:4a:06:a6:bb:28:59:94:3f:5a:d6:cc: e3:fe:0c:ae:37:12:69:66:af:67:d2:c8:44:de:d6:03:9e:c7: 07:3d:e6:88:76:60:c6:47:da:b8:ec:df:9d:64:1f:18:22:1b: 25:28:fd:07:24:9f:62:0e:68:a2:eb:78:84:80:82:26:a0:8c: 03:3d:54:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjUxMDExMDE1NjEyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU5YjkzYy04NDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwic1OenPfid53UKVpidJbNeBQKT3ghtonMadfvrz3LgpjlPL4sOhkmf55qgZ DJpKGjtkut1qchMCXCeA04520EtvKmkLE/e8QI7LJ43u1BD8n7cGjH578vSC2FGV gKlYI/4qfzcUG3BvVgyh/5nsRsd1mR42asTm4Ko1iph4/T9qeS+itpYO56niBRQe 78TXBJecfjXP53FzGXSuZ2FaMJwyURq0VKoPzGeB80ovw/y/lbfcIVN8OpX3uQ6B 3+4uHsVFHWWAhXZqRI+pzmCPJgEz+ESl5mAORICEZ4QOOTSrRv2bWIuiDl/qmCmN +RzN+osry2I9OB3GAYQ2fCqPNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEZVb+aS ZH1lHlSKBCbeBZIB1gURMB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDOUIvQTQ2RTk4OUEzMjJCMTFFQzk3RjhDRjdDQzRGOUFFMDIvQzMyRDFGNEEx M0EwMTFGMDlCOEVGNjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneIAwDQYJKoZIhvcNAQELBQADggEBAHJcmThKas2sOCUS sUG4rTpVGKAezeSJwZ94kONd7AA5qWLx/fWGbUveFRasJmDCLmLgQ5dPk0xNZebP 6rD4B0Liv6iOoAPb+cugfyFtuti0z8ZdoyKK9z0VQeC6Bsz1kIfUHCyN0qkQFomY SdcWB33Yitm8jzQi1bfl6hy4Y6CdDQOMOR7UBOQO+56RLNATB7f/J5s24fTU2FgL J7QKdkedIZlkhDv9c04afpqaw5d/DrroNi1cRPgb8/xKBqa7KFmUP1rWzOP+DK43 Emlmr2fSyETe1gOexwc95oh2YMZH2rjs351kHxgiGyUo/Qckn2IOaKLreISAgiag jAM9VNk= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:12 2025 by rpki-client