$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa File: 5705E30EFC7A11E8BFCC760AC4F9AE02.roa (raw, json) Hash identifier: oLOhMPQKsGkv3U/SksV/65t4ewatETecgN0Im/W6WBo= Subject key identifier: 49:AA:41:A8:08:DD:6E:0F:BA:81:E6:AC:5A:EC:AD:CA:AF:0B:1B:BA Certificate issuer: /CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Certificate serial: 1909 Authority key identifier: 93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa Signing time: Wed 10 Sep 2025 16:55:21 +0000 ROA not before: Wed 10 Sep 2025 16:55:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137962 IP address blocks: 103.99.50.0/24 maxlen: 24 103.99.51.0/24 maxlen: 24 103.118.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:49:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6409 (0x1909) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDEB3, serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Validity Not Before: Sep 10 16:55:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c1ad78-8616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:75:03:43:e3:02:3a:92:dd:b9:1f:01:ea:2f: ff:70:af:51:f9:cb:4e:62:1e:fc:90:a3:ab:43:1d: a9:7f:70:5c:88:5d:a6:5b:97:eb:1a:17:16:d1:00: ce:17:bd:fe:24:6e:7f:2d:bd:46:5e:d2:0f:4e:b8: 90:9e:ff:d0:7a:1a:47:aa:cd:b5:24:a2:fc:37:d5: 65:22:fe:7a:68:73:40:70:4f:89:42:04:6f:98:5f: 81:d6:67:c8:9b:ed:d1:1d:47:26:62:fb:d9:f3:bb: 23:3e:c6:1c:7c:e4:d8:f9:3e:4a:5b:68:ad:8b:11: ec:58:4a:d8:e0:95:80:90:a6:62:61:2c:88:b6:89: 46:5f:32:67:3c:c3:09:ef:f9:02:34:79:67:67:24: 4b:cc:29:ee:00:2a:b1:4d:90:26:62:cc:1c:04:b5: 34:21:cd:c1:bf:76:37:25:89:26:ee:fc:7e:ca:47: 3d:15:02:08:10:d2:45:d2:43:f7:5a:cc:02:b7:12: d3:c4:7e:0c:b4:a0:30:50:ab:7a:94:82:51:86:53: 05:08:7e:5c:bf:3d:fe:0f:4e:a9:35:67:a0:46:3d: 39:88:aa:63:63:42:ad:b3:bd:d8:12:54:1a:43:8e: 5d:da:a5:cc:4b:2d:8e:37:b7:d6:0d:1b:01:b9:7b: 68:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AA:41:A8:08:DD:6E:0F:BA:81:E6:AC:5A:EC:AD:CA:AF:0B:1B:BA X509v3 Authority Key Identifier: keyid:93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.50.0/23 103.118.81.0/24 Signature Algorithm: sha256WithRSAEncryption a8:5d:35:6c:f7:6e:f9:d9:e7:c4:1e:03:17:86:2f:7f:41:e6: 58:be:f7:f1:94:42:c1:3e:90:e7:f9:bd:8d:f2:8e:96:6e:f7: 00:46:ed:e4:c7:84:11:39:6a:90:4d:16:07:27:c4:27:f7:d7: 26:5f:e1:44:d3:61:5d:60:b7:45:a3:80:de:38:51:b0:55:16: 6b:a2:04:c8:df:6a:ed:a5:55:ea:0f:d5:11:d5:81:37:f9:00: f1:b8:1d:b8:e0:bb:03:2b:d0:ca:c2:9e:7f:75:3a:11:46:f8: 2c:f2:12:74:d6:88:60:1c:be:56:db:ec:ce:d8:8e:a6:cd:f4: 0b:77:c1:c1:50:c7:89:a1:7b:64:b8:4e:aa:57:30:8e:8a:74: 16:b9:d1:52:8f:7c:7d:ef:74:ba:d4:5a:d9:57:61:dd:65:bf: 82:eb:2e:64:20:51:47:b3:65:6d:f4:0f:21:46:b2:b2:7d:bb: c7:9d:2a:40:5e:35:08:c0:9c:99:22:32:c2:34:55:dd:78:74: b6:84:96:6e:6a:52:32:cf:c4:16:7c:b7:07:90:e0:e8:ac:96: d9:9f:4e:28:37:93:9e:d0:cd:ba:ea:44:43:53:6e:ee:a4:65: 3e:45:dc:af:55:fa:0a:50:51:da:24:b2:d1:1f:6d:05:8c:0b: 67:bf:b1:37 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFQjMxMTAvBgNVBAUTKDkzOURCOEE3ODYwMDBDMjZCQUU0ODM3QjZFQ0RBRTBG OEFCQUQxQjAwHhcNMjUwOTEwMTY1NTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxYWQ3OC04NjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3UDQ+MCOpLduR8B6i//cK9R+ctOYh78kKOrQx2pf3BciF2mW5frGhcW0QDO F73+JG5/Lb1GXtIPTriQnv/QehpHqs21JKL8N9VlIv56aHNAcE+JQgRvmF+B1mfI m+3RHUcmYvvZ87sjPsYcfOTY+T5KW2itixHsWErY4JWAkKZiYSyItolGXzJnPMMJ 7/kCNHlnZyRLzCnuACqxTZAmYswcBLU0Ic3Bv3Y3JYkm7vx+ykc9FQIIENJF0kP3 WswCtxLTxH4MtKAwUKt6lIJRhlMFCH5cvz3+D06pNWegRj05iKpjY0Kts73YElQa Q45d2qXMSy2ON7fWDRsBuXtoVwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEmqQagI 3W4PuoHmrFrsrcqvCxu6MB8GA1UdIwQYMBaAFJOduKeGAAwmuuSDe27Nrg+KutGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREVCMy81RDczNUQ0Njk2 REUxMUU3QkE3RDJBNzdDNEY5QUUwMi9rNTI0cDRZQURDYTY1SU43YnMydUQ0cTYw YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s1MjRwNFlBRENhNjVJTjdiczJ1RDRxNjBiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RFQjMvNUQ3MzVENDY5NkRFMTFFN0JBN0QyQTc3QzRGOUFFMDIvNTcwNUUzMEVG QzdBMTFFOEJGQ0M3NjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYzIDBABndlEwDQYJKoZIhvcNAQELBQADggEBAKhdNWz3 bvnZ58QeAxeGL39B5li+9/GUQsE+kOf5vY3yjpZu9wBG7eTHhBE5apBNFgcnxCf3 1yZf4UTTYV1gt0WjgN44UbBVFmuiBMjfau2lVeoP1RHVgTf5APG4HbjguwMr0MrC nn91OhFG+CzyEnTWiGAcvlbb7M7YjqbN9At3wcFQx4mhe2S4TqpXMI6KdBa50VKP fH3vdLrUWtlXYd1lv4LrLmQgUUezZW30DyFGsrJ9u8edKkBeNQjAnJkiMsI0Vd14 dLaElm5qUjLPxBZ8tweQ4OisltmfTig3k57QzbrqRENTbu6kZT5F3K9V+gpQUdok stEfbQWMC2e/sTc= -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:13 2025 by rpki-client