$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa File: 5AA3FD0868D111ED99477B87C4F9AE02.roa (raw, json) Hash identifier: sXqVXr7ZHzH2JmpUEnTy5shMtTPK9xhXC3ul6iYq9+g= Subject key identifier: C9:B8:BF:50:5C:35:3F:AF:15:0C:90:1D:02:14:0B:3D:49:CD:FF:64 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0C74 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa Signing time: Tue 16 Sep 2025 18:58:30 +0000 ROA not before: Tue 16 Sep 2025 18:58:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137961 IP address blocks: 103.118.84.0/24 maxlen: 24 103.118.85.0/24 maxlen: 24 103.118.86.0/24 maxlen: 24 2403:2ec0::/32 maxlen: 40 2403:2ec0:2000::/48 maxlen: 48 2403:2ec0:20ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3188 (0xc74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC, serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Sep 16 18:58:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c9b356-bbae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:07:b4:a1:67:72:8d:51:6e:44:81:10:fd:c4: bc:7f:53:66:c3:a2:07:f9:18:63:08:90:4f:e1:00: 14:bb:dc:03:c2:a1:10:bc:70:11:a7:ae:ae:8c:e5: d6:1f:3b:30:e6:65:d2:c0:3a:28:ce:55:84:04:b1: 47:26:c1:96:22:cb:51:87:91:e7:2f:22:3e:16:2c: dc:52:cc:d3:26:c4:bc:a4:84:ca:92:04:4e:c5:2b: 40:7f:85:32:41:5d:06:73:22:9b:92:6a:8e:e3:ba: 6d:9d:39:c9:ae:e2:60:fd:04:50:ac:ae:b6:ba:a4: d0:b6:75:70:c6:3c:0d:6f:c3:1b:74:a9:49:e6:d8: 0d:3a:55:53:8e:83:f5:7f:fb:6b:51:e2:18:e9:a3: 2b:26:4f:71:b1:93:1b:6a:f6:af:4a:6d:e7:a9:98: 26:1a:79:ec:d3:e6:f2:5a:c0:aa:f5:98:f3:b1:fe: 30:4e:26:98:ee:a3:e1:bf:e1:a4:93:4d:28:56:d9: aa:08:6a:39:87:72:52:e0:b0:61:3f:9d:61:76:e9: c8:3c:b5:bf:70:3d:fb:b8:ea:2c:25:21:3a:55:21: 07:71:74:a1:7e:8c:74:d4:da:87:9e:94:07:04:63: 60:63:e7:5e:82:c3:67:be:bd:21:04:e3:25:3e:58: a3:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:B8:BF:50:5C:35:3F:AF:15:0C:90:1D:02:14:0B:3D:49:CD:FF:64 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.84.0-103.118.86.255 IPv6: 2403:2ec0::/32 Signature Algorithm: sha256WithRSAEncryption 22:89:2e:31:76:27:f3:86:29:67:af:9e:5e:2d:fe:4b:12:a5: 02:09:41:7e:70:64:14:9e:ea:c1:cc:3f:96:0b:d4:92:5d:a7: e1:d9:cb:b7:e9:0f:17:36:de:19:8a:53:e3:eb:1c:5a:04:58: 5d:59:ff:a7:97:11:d2:86:57:c9:4d:4c:44:bc:00:74:90:64: f1:bd:73:1d:62:f8:8a:79:bd:48:67:b3:0d:20:db:31:a3:d1: df:f8:a2:29:9f:86:eb:7b:79:4d:ef:df:2a:be:1e:05:fe:14: 63:78:32:0a:46:b3:bd:ee:9f:9a:c4:11:b4:98:1f:56:80:be: 85:8d:8b:5e:b0:5a:31:d4:13:e3:95:4e:24:69:a1:12:39:2b: 73:cb:56:b4:13:58:6d:50:b4:87:f4:62:8b:33:cf:6d:6d:d0: 31:59:ef:7e:51:8b:83:7a:25:02:ef:96:ef:b9:ec:2f:5a:3c: b4:f9:7e:46:8b:59:23:6f:5a:84:fb:eb:c9:bd:45:00:27:5e: 1e:35:3c:4c:b6:65:83:5d:2d:91:36:1c:83:2e:98:72:41:07: 84:48:66:08:8b:f2:ff:16:c0:81:3a:35:14:a9:96:7f:3a:5a: 0b:9f:37:76:f3:ab:4c:f2:42:20:5f:f4:ff:65:9e:64:64:e0: a9:a4:83:f1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjUwOTE2MTg1ODMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5YjM1Ni1iYmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxge0oWdyjVFuRIEQ/cS8f1Nmw6IH+RhjCJBP4QAUu9wDwqEQvHARp66ujOXW Hzsw5mXSwDoozlWEBLFHJsGWIstRh5HnLyI+FizcUszTJsS8pITKkgROxStAf4Uy QV0GcyKbkmqO47ptnTnJruJg/QRQrK62uqTQtnVwxjwNb8MbdKlJ5tgNOlVTjoP1 f/trUeIY6aMrJk9xsZMbavavSm3nqZgmGnns0+byWsCq9Zjzsf4wTiaY7qPhv+Gk k00oVtmqCGo5h3JS4LBhP51hdunIPLW/cD37uOosJSE6VSEHcXShfox01NqHnpQH BGNgY+degsNnvr0hBOMlPlijsQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMm4v1Bc NT+vFQyQHQIUCz1Jzf9kMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIzREMvMDY2MzlGODYwQTkzMTFFQTg1QUQ4ODZBQzRGOUFFMDIvNUFBM0ZEMDg2 OEQxMTFFRDk5NDc3Qjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAmd2VAMEAGd2VjANBAIAAjAHAwUAJAMuwDANBgkqhkiG 9w0BAQsFAAOCAQEAIokuMXYn84YpZ6+eXi3+SxKlAglBfnBkFJ7qwcw/lgvUkl2n 4dnLt+kPFzbeGYpT4+scWgRYXVn/p5cR0oZXyU1MRLwAdJBk8b1zHWL4inm9SGez DSDbMaPR3/iiKZ+G63t5Te/fKr4eBf4UY3gyCkazve6fmsQRtJgfVoC+hY2LXrBa MdQT45VOJGmhEjkrc8tWtBNYbVC0h/RiizPPbW3QMVnvflGLg3olAu+W77nsL1o8 tPl+RotZI29ahPvryb1FACdeHjU8TLZlg10tkTYcgy6YckEHhEhmCIvy/xbAgTo1 FKmWfzpaC583dvOrTPJCIF/0/2WeZGTgqaSD8Q== -----END CERTIFICATE-----Generated at Tue Oct 21 00:25:40 2025 by rpki-client