$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa File: 31A71E34407111EFAC14A640C4F9AE02.roa (raw, json) Hash identifier: qvhByE3oiLELsQTu9SaN/ARZ+azzx+zT+u1j1qLqciY= Subject key identifier: 59:55:FB:81:F3:C5:08:3A:49:E9:7D:EB:91:A0:50:68:A7:27:19:99 Certificate issuer: /CN=A91D1A9C/serialNumber=B59DFDB508A9BABDCF8DAAAFE3F3DE6959FB13AA Certificate serial: DA Authority key identifier: B5:9D:FD:B5:08:A9:BA:BD:CF:8D:AA:AF:E3:F3:DE:69:59:FB:13:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa Signing time: Mon 01 Sep 2025 05:54:45 +0000 ROA not before: Mon 01 Sep 2025 05:54:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45441 IP address blocks: 103.2.112.0/22 maxlen: 22 115.178.60.0/24 maxlen: 24 115.178.61.0/24 maxlen: 24 115.178.62.0/24 maxlen: 24 115.178.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.crl rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1A9C, serialNumber=B59DFDB508A9BABDCF8DAAAFE3F3DE6959FB13AA Validity Not Before: Sep 1 05:54:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b53525-ac4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3c:13:d6:8f:cc:67:0c:fe:67:fe:ef:c4:6c: 74:87:f1:d2:11:8f:61:db:66:99:41:ee:26:43:60: 6f:ed:a8:cd:7f:a2:56:4f:72:2f:ad:5d:3b:fe:73: 77:25:ef:63:59:db:88:cf:b9:a4:41:5c:b6:7e:b0: 23:fd:01:1c:15:a3:6f:b8:51:ad:7a:4c:b4:82:4a: bc:03:f4:7b:0a:ca:60:39:68:da:1e:63:57:f9:f6: 26:9b:7f:6a:12:dc:d7:44:a5:4b:64:b8:38:c6:32: 6b:76:ab:2c:02:ea:fa:a9:1f:c5:c1:e7:83:97:d9: c2:7c:53:6c:02:13:b4:21:71:39:6f:0f:0f:57:8b: 56:5c:59:cb:63:5e:87:82:fb:3d:99:fe:f4:68:7b: dd:39:67:b4:b6:d8:31:84:8c:cd:bd:06:aa:24:80: b7:f4:78:58:6c:09:5c:15:c9:e7:6f:ed:2c:83:0f: fd:7c:90:d1:41:70:65:ff:20:3a:f4:8c:06:3d:b7: b3:ff:4a:9c:ee:c5:fa:7c:87:c5:97:02:4d:02:0d: e3:6f:62:1b:1e:e0:c8:1d:c0:3b:bd:8c:c1:3a:d9: 55:e2:f4:f1:2c:27:ca:e0:a6:b9:6d:52:88:59:cf: b5:76:c8:de:98:4a:15:b1:90:a6:65:fc:8e:b8:d9: 0c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:55:FB:81:F3:C5:08:3A:49:E9:7D:EB:91:A0:50:68:A7:27:19:99 X509v3 Authority Key Identifier: keyid:B5:9D:FD:B5:08:A9:BA:BD:CF:8D:AA:AF:E3:F3:DE:69:59:FB:13:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/tZ39tQipur3Pjaqv4_PeaVn7E6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZ39tQipur3Pjaqv4_PeaVn7E6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1A9C/8E8B3E7E407011EFB4A1800AC4F9AE02/31A71E34407111EFAC14A640C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.112.0/22 115.178.60.0/22 Signature Algorithm: sha256WithRSAEncryption 34:80:7f:ee:a8:b0:0c:e9:4e:2e:41:c0:db:45:83:5d:ce:b7: 73:04:bb:25:2d:f7:cb:a8:37:5f:6f:f8:d2:1a:bb:b1:6a:2a: a0:47:b9:12:b1:74:e9:17:d3:7e:2f:51:ac:c6:c9:cd:1a:9d: da:92:6c:7f:55:85:66:46:e1:d7:db:50:da:9f:79:03:e5:93: 9b:b5:bc:a1:33:eb:d8:b1:82:84:a2:53:63:59:d5:b5:9a:30: 2d:b6:a3:e0:d9:35:4f:a4:9c:6c:99:80:97:ad:5b:88:c3:c2: e2:15:cf:66:a3:f6:20:17:6a:7d:47:e7:58:33:7d:83:50:91: 0b:1c:28:72:65:a9:85:7e:36:6b:04:99:b3:e0:1e:ad:2d:9f: 66:45:a6:9b:0e:28:0b:9f:97:96:44:59:d7:59:8e:db:ab:ee: 56:66:30:70:27:8a:5c:89:1d:b2:6c:b1:13:ad:71:a6:26:a2: 3d:c4:3a:42:a3:35:95:66:cb:49:f8:1a:59:7c:f5:d5:08:58: 5d:49:cc:9b:3f:25:56:c1:dc:13:cb:ce:62:3d:45:9c:82:60: 27:75:96:1a:a7:81:e3:56:10:19:be:ce:cd:c2:de:c5:4e:c6: cd:4c:3d:13:54:f0:03:b4:9a:b7:f6:e3:b7:07:f2:2a:35:cd: 80:bd:3d:f3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFBOUMxMTAvBgNVBAUTKEI1OURGREI1MDhBOUJBQkRDRjhEQUFBRkUzRjNERTY5 NTlGQjEzQUEwHhcNMjUwOTAxMDU1NDQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI1MzUyNS1hYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TwT1o/MZwz+Z/7vxGx0h/HSEY9h22aZQe4mQ2Bv7ajNf6JWT3IvrV07/nN3 Je9jWduIz7mkQVy2frAj/QEcFaNvuFGteky0gkq8A/R7CspgOWjaHmNX+fYmm39q EtzXRKVLZLg4xjJrdqssAur6qR/FweeDl9nCfFNsAhO0IXE5bw8PV4tWXFnLY16H gvs9mf70aHvdOWe0ttgxhIzNvQaqJIC39HhYbAlcFcnnb+0sgw/9fJDRQXBl/yA6 9IwGPbez/0qc7sX6fIfFlwJNAg3jb2IbHuDIHcA7vYzBOtlV4vTxLCfK4Ka5bVKI Wc+1dsjemEoVsZCmZfyOuNkM9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFlV+4Hz xQg6Sel965GgUGinJxmZMB8GA1UdIwQYMBaAFLWd/bUIqbq9z42qr+Pz3mlZ+xOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUE5Qy84RThCM0U3RTQw NzAxMUVGQjRBMTgwMEFDNEY5QUUwMi90WjM5dFFpcHVyM1BqYXF2NF9QZWFWbjdF Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RaMzl0UWlwdXIzUGphcXY0X1BlYVZuN0U2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFBOUMvOEU4QjNFN0U0MDcwMTFFRkI0QTE4MDBBQzRGOUFFMDIvMzFBNzFFMzQ0 MDcxMTFFRkFDMTRBNjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnAnADBAJzsjwwDQYJKoZIhvcNAQELBQADggEBADSAf+6o sAzpTi5BwNtFg13Ot3MEuyUt98uoN19v+NIau7FqKqBHuRKxdOkX034vUazGyc0a ndqSbH9VhWZG4dfbUNqfeQPlk5u1vKEz69ixgoSiU2NZ1bWaMC22o+DZNU+knGyZ gJetW4jDwuIVz2aj9iAXan1H51gzfYNQkQscKHJlqYV+NmsEmbPgHq0tn2ZFppsO KAufl5ZEWddZjtur7lZmMHAnilyJHbJssROtcaYmoj3EOkKjNZVmy0n4Gll89dUI WF1JzJs/JVbB3BPLzmI9RZyCYCd1lhqngeNWEBm+zs3C3sVOxs1MPRNU8AO0mrf2 47cH8io1zYC9PfM= -----END CERTIFICATE-----Generated at Mon Oct 20 19:59:29 2025 by rpki-client