$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/BD314CEA619711EE81211277C4F9AE02.roa File: BD314CEA619711EE81211277C4F9AE02.roa (raw, json) Hash identifier: 16s8rqQL7ZS3OY13WYasSB/OdPD3K/KWoSmSDxk1MUc= Subject key identifier: 99:86:A1:BA:D3:31:E1:81:1B:55:22:D2:4F:E6:62:4E:B2:17:BD:3E Certificate issuer: /CN=A91CDCB6/serialNumber=0781675CC64FAB2B845DA7F51155498042ECE467 Certificate serial: 1E6F Authority key identifier: 07:81:67:5C:C6:4F:AB:2B:84:5D:A7:F5:11:55:49:80:42:EC:E4:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4FnXMZPqyuEXaf1EVVJgELs5Gc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/BD314CEA619711EE81211277C4F9AE02.roa Signing time: Thu 04 Sep 2025 16:24:44 +0000 ROA not before: Thu 04 Sep 2025 16:24:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58668 IP address blocks: 103.12.236.0/22 maxlen: 22 103.12.236.0/23 maxlen: 23 103.12.236.0/23 maxlen: 24 103.12.236.0/24 maxlen: 24 103.12.237.0/24 maxlen: 24 103.12.238.0/23 maxlen: 23 103.12.238.0/23 maxlen: 24 103.12.238.0/24 maxlen: 24 103.12.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/B4FnXMZPqyuEXaf1EVVJgELs5Gc.crl rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/B4FnXMZPqyuEXaf1EVVJgELs5Gc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4FnXMZPqyuEXaf1EVVJgELs5Gc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7791 (0x1e6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDCB6, serialNumber=0781675CC64FAB2B845DA7F51155498042ECE467 Validity Not Before: Sep 4 16:24:44 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b9bd4c-1e84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:87:f1:91:dd:d3:d4:dd:ea:40:e4:89:30:db: 39:3c:19:68:67:48:16:b3:27:0b:fb:90:c6:d9:0d: 5a:97:de:2f:eb:64:6b:f3:2a:10:5c:e4:ea:24:ea: 29:00:db:90:0e:9f:69:50:2c:e3:97:93:d4:d0:d5: 38:7a:05:60:36:dc:95:11:41:54:73:ed:d0:f0:84: d8:93:fe:07:b3:a8:af:7d:d8:ba:cd:c1:1a:c7:4b: 1b:98:1d:95:c6:83:4f:c9:cb:54:3f:63:53:a2:19: da:40:e4:94:32:6c:09:32:0a:8f:44:60:13:e4:89: 8a:97:ea:6c:bc:6c:08:42:8e:d4:08:a1:3e:3a:09: 46:f4:86:dd:3c:02:a7:08:dd:6f:d0:f2:bf:06:c5: 66:6c:7e:ac:88:5d:b2:c9:5a:0d:e6:e7:e9:bc:7c: cc:45:6d:df:f5:a8:42:aa:18:ac:7a:86:61:4e:00: 56:b5:37:02:65:7e:a9:74:04:d9:01:ea:b2:9e:9a: f9:0e:34:9c:66:aa:09:32:e8:33:50:64:57:ea:3a: fd:ec:15:ea:5e:a0:cd:03:ae:98:e6:f6:5a:50:b5: 5e:67:68:7d:e5:a0:21:76:72:93:be:6f:86:cc:8c: b1:4a:cb:51:5c:10:de:11:b8:8a:eb:50:f3:ef:f2: 38:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:86:A1:BA:D3:31:E1:81:1B:55:22:D2:4F:E6:62:4E:B2:17:BD:3E X509v3 Authority Key Identifier: keyid:07:81:67:5C:C6:4F:AB:2B:84:5D:A7:F5:11:55:49:80:42:EC:E4:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/B4FnXMZPqyuEXaf1EVVJgELs5Gc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4FnXMZPqyuEXaf1EVVJgELs5Gc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDCB6/67C6AA4A8AF111E698078355C4F9AE02/BD314CEA619711EE81211277C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.236.0/22 Signature Algorithm: sha256WithRSAEncryption 69:90:1a:b3:33:2c:8f:f8:9b:53:60:74:b6:2b:3c:b6:f4:13: 01:37:a7:bf:68:c6:42:cc:94:e0:3b:3c:a9:8a:93:8f:54:20: f8:1d:dd:37:2e:cc:d5:61:76:de:5e:63:6a:6c:50:92:6e:b6: 3a:3b:65:8f:9d:51:4d:7f:25:77:19:1c:ea:f6:de:ab:00:94: 91:2c:75:bc:97:22:fc:36:e6:0a:0d:ff:b3:e7:16:7a:13:1c: 8d:65:e1:ec:23:20:11:38:ff:67:03:9d:05:9c:ae:dd:f6:0a: ee:cd:3a:73:9f:4b:f6:e1:60:d1:23:1e:b2:5f:4d:fc:d7:c3: 87:ad:b1:12:0f:2d:2c:d9:56:3d:28:54:0c:09:4e:b5:ac:9c: 72:c2:bd:c0:85:1e:06:27:0c:27:6a:2a:29:8b:9d:a2:6a:dc: a6:1d:92:47:3b:59:6f:d1:ba:30:d3:e5:2b:cf:68:a5:f7:26: c7:01:94:a8:14:fc:1e:99:0a:8a:01:10:17:0c:05:6c:5c:a4: 66:b7:cc:0e:86:d4:e6:87:cd:68:93:36:ea:30:69:89:db:7a: 92:63:2c:b4:4b:42:44:0f:3e:7a:87:4c:40:bf:f1:a3:44:15: 7f:c7:a3:18:b8:f3:a2:64:6e:31:fe:10:88:b6:67:ca:47:a1: 01:9b:8d:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RDQjYxMTAvBgNVBAUTKDA3ODE2NzVDQzY0RkFCMkI4NDVEQTdGNTExNTU0OTgw NDJFQ0U0NjcwHhcNMjUwOTA0MTYyNDQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5YmQ0Yy0xZTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwofxkd3T1N3qQOSJMNs5PBloZ0gWsycL+5DG2Q1al94v62Rr8yoQXOTqJOop ANuQDp9pUCzjl5PU0NU4egVgNtyVEUFUc+3Q8ITYk/4Hs6ivfdi6zcEax0sbmB2V xoNPyctUP2NTohnaQOSUMmwJMgqPRGAT5ImKl+psvGwIQo7UCKE+OglG9IbdPAKn CN1v0PK/BsVmbH6siF2yyVoN5ufpvHzMRW3f9ahCqhiseoZhTgBWtTcCZX6pdATZ Aeqynpr5DjScZqoJMugzUGRX6jr97BXqXqDNA66Y5vZaULVeZ2h95aAhdnKTvm+G zIyxSstRXBDeEbiK61Dz7/I4VwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJmGobrT MeGBG1Ui0k/mYk6yF70+MB8GA1UdIwQYMBaAFAeBZ1zGT6srhF2n9RFVSYBC7ORn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRENCNi82N0M2QUE0QThB RjExMUU2OTgwNzgzNTVDNEY5QUUwMi9CNEZuWE1aUHF5dUVYYWYxRVZWSmdFTHM1 R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0Rm5YTVpQcXl1RVhhZjFFVlZKZ0VMczVHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RDQjYvNjdDNkFBNEE4QUYxMTFFNjk4MDc4MzU1QzRGOUFFMDIvQkQzMTRDRUE2 MTk3MTFFRTgxMjExMjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnDOwwDQYJKoZIhvcNAQELBQADggEBAGmQGrMzLI/4m1Ng dLYrPLb0EwE3p79oxkLMlOA7PKmKk49UIPgd3TcuzNVhdt5eY2psUJJutjo7ZY+d UU1/JXcZHOr23qsAlJEsdbyXIvw25goN/7PnFnoTHI1l4ewjIBE4/2cDnQWcrt32 Cu7NOnOfS/bhYNEjHrJfTfzXw4etsRIPLSzZVj0oVAwJTrWsnHLCvcCFHgYnDCdq KimLnaJq3KYdkkc7WW/RujDT5SvPaKX3JscBlKgU/B6ZCooBEBcMBWxcpGa3zA6G 1OaHzWiTNuowaYnbepJjLLRLQkQPPnqHTEC/8aNEFX/Hoxi486JkbjH+EIi2Z8pH oQGbjWE= -----END CERTIFICATE-----Generated at Mon Oct 20 10:39:21 2025 by rpki-client