$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/C0FD1FF0AA7111F0B4546269C4F9AE02.roa File: C0FD1FF0AA7111F0B4546269C4F9AE02.roa (raw, json) Hash identifier: tb9Z/1utdPuZydG4QyPURJ2Dph5uJmmV+jlmkscDXF8= Subject key identifier: 81:A8:64:D8:A1:25:D2:3C:59:66:55:AE:92:8E:4E:68:3E:DA:D8:FA Certificate issuer: /CN=A91C4401/serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Certificate serial: 02 Authority key identifier: A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/C0FD1FF0AA7111F0B4546269C4F9AE02.roa Signing time: Thu 16 Oct 2025 09:23:19 +0000 ROA not before: Thu 16 Oct 2025 09:23:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139138 IP address blocks: 103.121.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4401, serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Validity Not Before: Oct 16 09:23:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f0b987-c838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:33:64:9d:1a:46:cf:f8:81:4e:23:d4:a4:76: 17:59:15:a8:7e:88:f8:f3:af:b7:b9:33:7f:90:9d: 81:1a:b3:03:94:a0:1d:93:78:ce:e2:4c:3d:f5:35: c0:63:e1:23:4e:69:56:28:72:36:69:58:c0:27:a4: ba:13:15:b9:91:1d:aa:e6:6f:dc:0a:e3:4e:d5:17: 0c:d3:c1:91:6c:50:52:08:6c:47:9a:07:ad:e1:21: 7d:65:da:5f:4f:85:14:3e:07:f3:22:d0:38:fa:ed: 95:17:6b:bd:a8:58:97:d0:4d:6d:18:7e:03:a2:21: 92:f4:f6:5c:bd:94:5f:60:bf:67:35:6d:d5:68:5f: 81:18:fa:20:1b:39:25:6f:1b:55:72:5f:5d:47:bd: 9f:95:19:58:1d:2b:95:10:92:e5:4c:cb:12:77:0e: 0c:72:0e:53:33:3f:16:5e:e6:cf:d3:ab:51:b7:fe: c6:a2:7f:f4:6d:09:58:3e:af:52:22:70:f1:29:1c: 29:f4:88:6b:fb:eb:6b:cc:31:fa:2e:f5:f4:a6:c8: 00:b4:db:c7:26:8c:19:64:ff:c2:6b:89:4a:7a:0b: db:e7:33:25:87:f3:8b:22:94:23:a5:10:b5:1d:7a: 3a:bb:da:87:8c:42:d7:2a:f5:f7:2e:1d:6b:cf:0b: 0d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:A8:64:D8:A1:25:D2:3C:59:66:55:AE:92:8E:4E:68:3E:DA:D8:FA X509v3 Authority Key Identifier: keyid:A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/C0FD1FF0AA7111F0B4546269C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.250.0/24 Signature Algorithm: sha256WithRSAEncryption 93:8b:16:e6:c6:98:9d:2b:43:60:63:5b:c2:e2:f0:c4:2a:c8: f0:a8:9d:d3:24:cc:80:73:49:36:0f:2d:d3:1c:3f:ec:3c:36: 4e:cf:cc:ff:59:ed:40:e2:fe:34:4a:0e:aa:aa:d6:50:e8:21: c7:b8:2c:6a:3d:61:b8:ed:8a:60:6c:eb:42:03:f7:e6:23:fa: 54:06:2e:f1:5d:36:87:d9:28:52:84:82:91:c0:44:a2:94:10: 08:1c:ed:5d:7d:4c:85:71:52:6d:95:79:cd:5f:d7:16:dc:01: 4a:79:20:90:36:80:44:51:a1:1c:02:4e:12:e1:69:96:1c:9d: 26:01:63:df:e2:59:3b:d7:2c:38:ac:f0:15:24:5d:a8:2a:89: 7f:a0:d6:57:e8:99:59:2a:7b:42:eb:34:b2:e8:7f:ba:3a:48: fe:ac:2d:35:1e:8d:d2:eb:f0:5b:37:59:37:14:18:b4:36:84: c3:ac:72:24:76:81:77:84:ff:93:a5:6a:4c:ee:5f:4d:f6:c9: 13:19:8b:41:0c:a5:63:37:d6:32:c9:13:e2:a4:84:ed:c9:c0: 1e:f0:0a:42:e5:cb:79:51:1e:df:47:96:22:10:f3:f7:b7:2a: 03:eb:9a:8a:5a:9a:ab:92:57:32:eb:2b:83:4f:0f:f4:84:2c: 98:19:93:a5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDQwMTExMC8GA1UEBRMoQTM5OUExMkM0OEMwMEU0MjYxRDI4RTBDNTdGRDRFM0U0 NzBEMkVCNzAeFw0yNTEwMTYwOTIzMTlaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjBiOTg3LWM4MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEM2SdGkbP+IFOI9SkdhdZFah+iPjzr7e5M3+QnYEaswOUoB2TeM7iTD31NcBj 4SNOaVYocjZpWMAnpLoTFbmRHarmb9wK407VFwzTwZFsUFIIbEeaB63hIX1l2l9P hRQ+B/Mi0Dj67ZUXa72oWJfQTW0YfgOiIZL09ly9lF9gv2c1bdVoX4EY+iAbOSVv G1VyX11HvZ+VGVgdK5UQkuVMyxJ3DgxyDlMzPxZe5s/Tq1G3/saif/RtCVg+r1Ii cPEpHCn0iGv762vMMfou9fSmyAC028cmjBlk/8JriUp6C9vnMyWH84silCOlELUd ejq72oeMQtcq9fcuHWvPCw3JAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgahk2KEl 0jxZZlWuko5OaD7a2PowHwYDVR0jBBgwFoAUo5mhLEjADkJh0o4MV/1OPkcNLrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0NDAxLzFCODgyMTYwQUE3 MDExRjBCNDI4RTY2M0M0RjlBRTAyL281bWhMRWpBRGtKaDBvNE1WXzFPUGtjTkxy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzVtaExFakFEa0poMG80TVZfMU9Qa2NOTHJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDQwMS8xQjg4MjE2MEFBNzAxMUYwQjQyOEU2NjNDNEY5QUUwMi9DMEZEMUZGMEFB NzExMUYwQjQ1NDYyNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGd5+jANBgkqhkiG9w0BAQsFAAOCAQEAk4sW5saYnStDYGNb wuLwxCrI8Kid0yTMgHNJNg8t0xw/7Dw2Ts/M/1ntQOL+NEoOqqrWUOghx7gsaj1h uO2KYGzrQgP35iP6VAYu8V02h9koUoSCkcBEopQQCBztXX1MhXFSbZV5zV/XFtwB SnkgkDaARFGhHAJOEuFplhydJgFj3+JZO9csOKzwFSRdqCqJf6DWV+iZWSp7Qus0 suh/ujpI/qwtNR6N0uvwWzdZNxQYtDaEw6xyJHaBd4T/k6VqTO5fTfbJExmLQQyl YzfWMskT4qSE7cnAHvAKQuXLeVEe30eWIhDz97cqA+uailqaq5JXMusrg08P9IQs mBmTpQ== -----END CERTIFICATE-----Generated at Mon Oct 20 01:55:11 2025 by rpki-client