$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE4E/DB03F65A52C911EE90328F14C4F9AE02/273A3FAAF3FC11EFB697C52FC4F9AE02.roa File: 273A3FAAF3FC11EFB697C52FC4F9AE02.roa (raw, json) Hash identifier: 2wLVZsO1YLWnfKEgyqwWeI7d6uTw73iY7K/Cbc0W2X0= Subject key identifier: B2:8F:ED:7F:CD:57:91:A4:B3:8C:7E:5E:57:8A:50:96:0C:87:C3:91 Certificate issuer: /CN=A91CBE4E/serialNumber=6FF1A24E7F54F2EF0C605E0E06FC8A46C544D6D3 Certificate serial: 018E Authority key identifier: 6F:F1:A2:4E:7F:54:F2:EF:0C:60:5E:0E:06:FC:8A:46:C5:44:D6:D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_GiTn9U8u8MYF4OBvyKRsVE1tM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE4E/DB03F65A52C911EE90328F14C4F9AE02/273A3FAAF3FC11EFB697C52FC4F9AE02.roa Signing time: Wed 01 Oct 2025 04:31:52 +0000 ROA not before: Wed 01 Oct 2025 04:31:52 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151809 IP address blocks: 103.218.136.0/24 maxlen: 24 2001:df2:ee40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBE4E/DB03F65A52C911EE90328F14C4F9AE02/b_GiTn9U8u8MYF4OBvyKRsVE1tM.crl rsync://rpki.apnic.net/member_repository/A91CBE4E/DB03F65A52C911EE90328F14C4F9AE02/b_GiTn9U8u8MYF4OBvyKRsVE1tM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_GiTn9U8u8MYF4OBvyKRsVE1tM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBE4E, serialNumber=6FF1A24E7F54F2EF0C605E0E06FC8A46C544D6D3 Validity Not Before: Oct 1 04:31:52 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68dcaeb8-d190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:45:8c:15:83:52:9d:11:bf:ed:24:fe:b8:01: ea:41:94:bd:1d:67:f0:b1:cb:57:f9:8f:ba:f8:bb: 5d:31:d5:11:68:7c:ec:cd:33:6c:f3:38:85:a0:b8: 3b:8d:03:24:94:12:3d:07:4e:b3:12:f1:bc:f9:b6: 85:44:a8:7a:ed:1f:47:03:5e:97:a3:f4:3f:aa:26: 68:6a:26:07:98:75:2f:09:c4:c1:5f:4e:66:4c:87: b9:84:ec:5c:a4:53:41:a5:1a:c1:03:3c:12:6e:69: fc:2c:5a:31:97:31:6d:61:99:9c:70:e4:c6:ee:38: ee:00:b5:2f:7f:26:bf:d2:9f:93:1e:a7:01:63:27: 51:03:3e:6e:5d:d2:7a:78:61:90:85:b8:0c:08:e4: 96:67:47:c3:75:e4:23:66:c9:8d:d0:c0:cc:5c:0b: f1:2e:e0:55:b7:84:46:2b:46:e9:4e:42:ed:66:c7: 36:a2:a1:5d:cb:0e:76:d2:0b:8a:da:1c:b5:aa:8c: 24:ee:cd:89:c5:aa:ed:32:40:cb:ac:a7:6b:03:49: 47:03:1a:df:60:c9:b1:e6:01:5c:bf:bd:26:58:c2: c4:e3:9c:ca:ae:73:f1:99:88:77:06:9a:9a:39:bc: e7:0f:74:a0:18:61:a8:27:07:5b:8f:54:d0:41:bf: 33:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8F:ED:7F:CD:57:91:A4:B3:8C:7E:5E:57:8A:50:96:0C:87:C3:91 X509v3 Authority Key Identifier: keyid:6F:F1:A2:4E:7F:54:F2:EF:0C:60:5E:0E:06:FC:8A:46:C5:44:D6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBE4E/DB03F65A52C911EE90328F14C4F9AE02/b_GiTn9U8u8MYF4OBvyKRsVE1tM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_GiTn9U8u8MYF4OBvyKRsVE1tM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE4E/DB03F65A52C911EE90328F14C4F9AE02/273A3FAAF3FC11EFB697C52FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.218.136.0/24 IPv6: 2001:df2:ee40::/48 Signature Algorithm: sha256WithRSAEncryption 49:cf:26:6f:aa:eb:d7:c4:07:d0:74:91:c4:90:d1:b1:65:c1: ad:fb:7f:78:d8:fb:6e:7b:ab:ee:bb:25:81:c0:fd:b8:04:0b: 55:e7:a6:d7:3c:4f:21:be:e4:bd:bb:80:2d:c0:47:4b:0a:37: ad:80:0a:c5:10:14:96:0f:63:36:be:ba:1c:3e:9d:ce:83:6c: 83:95:51:7d:94:90:93:ce:52:6a:24:c0:c8:2b:d9:39:4f:ee: 1d:73:7f:26:f3:03:f3:07:0e:6f:06:b5:f2:8c:04:3b:35:4f: d7:88:85:e9:2b:b9:f0:44:c6:9b:28:19:49:61:8f:e5:1a:d2: 08:3a:e8:5f:0b:4a:14:c0:69:8e:ba:2d:d8:c3:f1:06:42:f1: 4e:cf:f1:7a:5b:65:62:b8:04:92:9f:cd:e5:47:e9:6d:90:99: 1a:2f:32:08:80:f0:bf:95:7a:bc:ca:1d:69:7f:ee:23:5e:9a: 44:49:e9:b6:a8:9d:33:8a:ca:d5:e7:65:d4:c3:86:23:fe:41: 42:3f:de:e6:64:95:75:42:f7:4e:5a:66:f4:b7:4d:0d:81:58: 27:31:9b:d2:1d:10:ad:bc:da:c0:af:a2:23:2b:0b:44:6b:be: 75:69:04:cd:f9:2a:55:48:25:cd:3d:0e:67:a1:6f:ec:a6:46: db:5b:6b:2b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JFNEUxMTAvBgNVBAUTKDZGRjFBMjRFN0Y1NEYyRUYwQzYwNUUwRTA2RkM4QTQ2 QzU0NEQ2RDMwHhcNMjUxMDAxMDQzMTUyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjYWViOC1kMTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskWMFYNSnRG/7ST+uAHqQZS9HWfwsctX+Y+6+LtdMdURaHzszTNs8ziFoLg7 jQMklBI9B06zEvG8+baFRKh67R9HA16Xo/Q/qiZoaiYHmHUvCcTBX05mTIe5hOxc pFNBpRrBAzwSbmn8LFoxlzFtYZmccOTG7jjuALUvfya/0p+THqcBYydRAz5uXdJ6 eGGQhbgMCOSWZ0fDdeQjZsmN0MDMXAvxLuBVt4RGK0bpTkLtZsc2oqFdyw520guK 2hy1qowk7s2JxartMkDLrKdrA0lHAxrfYMmx5gFcv70mWMLE45zKrnPxmYh3Bpqa ObznD3SgGGGoJwdbj1TQQb8zswIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLKP7X/N V5Gks4x+XleKUJYMh8ORMB8GA1UdIwQYMBaAFG/xok5/VPLvDGBeDgb8ikbFRNbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkU0RS9EQjAzRjY1QTUy QzkxMUVFOTAzMjhGMTRDNEY5QUUwMi9iX0dpVG45VTh1OE1ZRjRPQnZ5S1JzVkUx dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfR2lUbjlVOHU4TVlGNE9CdnlLUnNWRTF0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JFNEUvREIwM0Y2NUE1MkM5MTFFRTkwMzI4RjE0QzRGOUFFMDIvMjczQTNGQUFG M0ZDMTFFRkI2OTdDNTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn2ogwDwQCAAIwCQMHACABDfLuQDANBgkqhkiG9w0BAQsF AAOCAQEASc8mb6rr18QH0HSRxJDRsWXBrft/eNj7bnur7rslgcD9uAQLVeem1zxP Ib7kvbuALcBHSwo3rYAKxRAUlg9jNr66HD6dzoNsg5VRfZSQk85SaiTAyCvZOU/u HXN/JvMD8wcObwa18owEOzVP14iF6Su58ETGmygZSWGP5RrSCDroXwtKFMBpjrot 2MPxBkLxTs/xeltlYrgEkp/N5UfpbZCZGi8yCIDwv5V6vModaX/uI16aREnptqid M4rK1edl1MOGI/5BQj/e5mSVdUL3Tlpm9LdNDYFYJzGb0h0QrbzawK+iIysLRGu+ dWkEzfkqVUglzT0OZ6Fv7KZG21trKw== -----END CERTIFICATE-----Generated at Mon Oct 20 10:45:32 2025 by rpki-client