$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/2A425550ADCA11EC9AD18044C4F9AE02.roa File: 2A425550ADCA11EC9AD18044C4F9AE02.roa (raw, json) Hash identifier: y62fwnKOuDAkqVlw/h3bH1ugR6hj8/2DEk1IWMsKAe0= Subject key identifier: 1C:E2:DD:47:68:CF:F7:34:FF:D1:61:42:44:CF:55:B6:53:07:20:F0 Certificate issuer: /CN=A91D15BF/serialNumber=F771814CF6BF0D19B6324908D07E1E40ABBEF76E Certificate serial: 03C9 Authority key identifier: F7:71:81:4C:F6:BF:0D:19:B6:32:49:08:D0:7E:1E:40:AB:BE:F7:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/93GBTPa_DRm2MkkI0H4eQKu-924.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/2A425550ADCA11EC9AD18044C4F9AE02.roa Signing time: Wed 03 Sep 2025 01:16:53 +0000 ROA not before: Wed 03 Sep 2025 01:16:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137976 IP address blocks: 103.119.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/93GBTPa_DRm2MkkI0H4eQKu-924.crl rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/93GBTPa_DRm2MkkI0H4eQKu-924.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/93GBTPa_DRm2MkkI0H4eQKu-924.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 969 (0x3c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15BF, serialNumber=F771814CF6BF0D19B6324908D07E1E40ABBEF76E Validity Not Before: Sep 3 01:16:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b79705-5328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bf:3f:a8:6d:8a:cd:d0:f4:aa:28:c3:0e:f8: c8:8e:e6:cb:69:25:d5:7d:73:4b:72:b3:9c:16:9b: e9:04:6c:c9:3f:a6:70:72:35:99:cd:0c:06:58:7e: d0:d4:ee:3e:76:00:ec:ab:d6:6e:e8:08:df:ed:16: bd:9d:9d:8d:68:6d:32:ac:00:08:86:23:9c:02:06: 8e:62:60:94:85:95:51:70:30:47:fd:cb:a7:51:be: af:ae:75:58:0a:13:49:bf:8f:bb:9e:eb:68:fb:3a: c5:ef:e3:e2:45:6f:f9:6a:4f:47:1a:2a:78:37:9f: e8:38:02:e1:9d:7d:a1:4c:64:b5:8a:6b:d8:99:ae: 60:1b:29:ab:02:f9:43:d6:91:66:39:aa:e4:16:1a: 0b:13:f0:5d:ab:6e:55:95:34:a9:a1:10:64:d2:62: 98:79:de:24:78:b0:b1:80:4d:f7:0b:a2:b8:e6:c1: 1a:18:66:fb:cc:3a:b4:44:c4:aa:a3:ab:bf:31:f4: 7c:ab:a8:f7:77:9b:5a:b4:19:d7:f7:50:9f:85:57: 35:40:ed:45:e9:8d:2f:9e:99:87:86:4b:16:1c:4d: 5c:2f:3f:ee:aa:3f:48:14:60:bb:d7:1d:eb:26:dd: 04:5d:21:75:92:a0:38:5e:38:d5:52:0d:3f:3c:3e: ea:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:E2:DD:47:68:CF:F7:34:FF:D1:61:42:44:CF:55:B6:53:07:20:F0 X509v3 Authority Key Identifier: keyid:F7:71:81:4C:F6:BF:0D:19:B6:32:49:08:D0:7E:1E:40:AB:BE:F7:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/93GBTPa_DRm2MkkI0H4eQKu-924.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/93GBTPa_DRm2MkkI0H4eQKu-924.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/2A425550ADCA11EC9AD18044C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.20.0/22 Signature Algorithm: sha256WithRSAEncryption bd:a0:24:aa:eb:83:9c:fd:6c:11:ed:f8:40:f9:e7:1c:3f:a3: d2:46:07:a3:c6:4c:f1:5c:ca:5c:4e:e8:e0:c9:0d:94:2b:7a: 2e:de:b6:41:8d:70:8e:80:fc:5a:61:79:82:4f:e9:8d:a4:e0: 2f:13:85:48:00:ce:c7:fc:53:da:e6:9b:4a:53:1e:b2:bf:2b: 65:0e:7c:0c:bd:cd:ae:95:db:4b:78:89:e4:40:68:2f:fd:45: 3f:73:6e:dc:98:fb:4d:6a:22:d7:23:eb:a3:94:65:1b:47:40: f7:61:b1:ce:5a:37:d7:37:ec:e2:6e:06:a4:60:1f:39:7b:24: 2b:fd:89:71:9b:c3:bf:bf:d7:e4:9c:4c:11:fe:a1:35:b9:91: 00:be:42:03:f5:37:b3:6a:d1:4c:9a:1b:a5:f7:cc:04:9d:c1: cf:54:86:48:84:40:ea:d2:2f:99:df:04:b6:7a:2d:a2:64:dc: 52:20:02:91:30:f3:0b:e9:b4:73:94:30:6b:68:46:bf:47:e9: 90:73:7f:e0:e9:64:e3:77:14:e9:2c:e3:b5:3b:ec:9a:5f:e1: 97:ce:c8:37:11:20:6e:0a:54:bf:0a:77:14:48:f2:70:da:dc: 9c:5b:33:69:68:f4:ff:47:71:d8:b1:cb:32:13:3b:e7:63:a3: 27:03:8e:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QkYxMTAvBgNVBAUTKEY3NzE4MTRDRjZCRjBEMTlCNjMyNDkwOEQwN0UxRTQw QUJCRUY3NkUwHhcNMjUwOTAzMDExNjUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3OTcwNS01MzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3b8/qG2KzdD0qijDDvjIjubLaSXVfXNLcrOcFpvpBGzJP6ZwcjWZzQwGWH7Q 1O4+dgDsq9Zu6Ajf7Ra9nZ2NaG0yrAAIhiOcAgaOYmCUhZVRcDBH/cunUb6vrnVY ChNJv4+7nuto+zrF7+PiRW/5ak9HGip4N5/oOALhnX2hTGS1imvYma5gGymrAvlD 1pFmOarkFhoLE/Bdq25VlTSpoRBk0mKYed4keLCxgE33C6K45sEaGGb7zDq0RMSq o6u/MfR8q6j3d5tatBnX91CfhVc1QO1F6Y0vnpmHhksWHE1cLz/uqj9IFGC71x3r Jt0EXSF1kqA4XjjVUg0/PD7qNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBzi3Udo z/c0/9FhQkTPVbZTByDwMB8GA1UdIwQYMBaAFPdxgUz2vw0ZtjJJCNB+HkCrvvdu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVCRi8zREIwRjlDQTlG ODgxMUVDQURBMEM5MERDNEY5QUUwMi85M0dCVFBhX0RSbTJNa2tJMEg0ZVFLdS05 MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkzR0JUUGFfRFJtMk1ra0kwSDRlUUt1LTkyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE1QkYvM0RCMEY5Q0E5Rjg4MTFFQ0FEQTBDOTBEQzRGOUFFMDIvMkE0MjU1NTBB RENBMTFFQzlBRDE4MDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndxQwDQYJKoZIhvcNAQELBQADggEBAL2gJKrrg5z9bBHt +ED55xw/o9JGB6PGTPFcylxO6ODJDZQrei7etkGNcI6A/FpheYJP6Y2k4C8ThUgA zsf8U9rmm0pTHrK/K2UOfAy9za6V20t4ieRAaC/9RT9zbtyY+01qItcj66OUZRtH QPdhsc5aN9c37OJuBqRgHzl7JCv9iXGbw7+/1+ScTBH+oTW5kQC+QgP1N7Nq0Uya G6X3zASdwc9UhkiEQOrSL5nfBLZ6LaJk3FIgApEw8wvptHOUMGtoRr9H6ZBzf+Dp ZON3FOks47U77Jpf4ZfOyDcRIG4KVL8KdxRI8nDa3JxbM2lo9P9HcdixyzITO+dj oycDjr4= -----END CERTIFICATE-----Generated at Tue Oct 21 09:29:56 2025 by rpki-client