$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/0FCEAD129CF111F0A76B5F3AC4F9AE02.roa File: 0FCEAD129CF111F0A76B5F3AC4F9AE02.roa (raw, json) Hash identifier: JHl7T/hUKLaY1UFwRDqsjEcFvOE7EYojRZktIev0/Ys= Subject key identifier: 30:73:65:06:D6:F6:0F:B0:66:41:4D:7A:B7:1C:94:FA:A7:05:40:B9 Certificate issuer: /CN=A91D3060/serialNumber=E48861A268A3E94D7B7E84BA74EEAF4772896709 Certificate serial: 02 Authority key identifier: E4:88:61:A2:68:A3:E9:4D:7B:7E:84:BA:74:EE:AF:47:72:89:67:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Ihhomij6U17foS6dO6vR3KJZwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/0FCEAD129CF111F0A76B5F3AC4F9AE02.roa Signing time: Mon 29 Sep 2025 04:59:22 +0000 ROA not before: Mon 29 Sep 2025 04:59:22 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139289 IP address blocks: 103.140.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.crl rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Ihhomij6U17foS6dO6vR3KJZwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3060, serialNumber=E48861A268A3E94D7B7E84BA74EEAF4772896709 Validity Not Before: Sep 29 04:59:22 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68da1229-8e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:82:10:98:13:20:95:e5:1c:48:6d:0d:6a:16: 7c:a0:fa:70:c1:df:ba:d6:c5:70:ab:0b:a5:e5:3a: f4:18:45:54:dd:83:b0:5d:ee:25:9d:90:35:1a:9b: fb:ad:c3:0d:f1:d2:4d:d5:f7:ea:4c:0d:fc:0e:1d: ff:4b:7a:f0:f7:e2:dc:f4:7f:c9:1f:9b:e8:17:0f: 9e:74:d6:11:53:76:9a:f6:40:3d:f8:54:7d:45:83: b8:0a:e2:13:8a:52:77:51:a2:0a:f2:bb:80:bf:9a: 98:1a:cc:80:1b:55:b5:6e:d7:9c:12:24:34:36:32: e8:12:31:82:b8:63:17:0b:bb:ff:76:e8:f3:5c:2c: ac:5c:49:f0:01:63:79:82:f1:74:0b:5e:f6:9e:dc: 9d:43:3c:46:92:99:a8:fc:03:68:00:1c:46:e5:8d: af:c9:d7:53:a1:50:27:df:38:bd:c2:61:1f:c2:f5: 54:a3:e1:53:d3:af:09:d3:8e:a3:c0:5c:35:c0:96: 20:b4:86:4b:8d:7e:58:07:1c:a2:65:e6:66:a1:ad: de:02:a9:db:59:03:04:0f:75:74:0a:e5:53:d3:3a: e0:26:a0:60:30:89:3a:70:96:ef:17:1a:1e:c9:0d: 7e:c7:84:4f:c8:da:d9:8a:27:94:9d:ec:4f:3f:f4: 34:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:73:65:06:D6:F6:0F:B0:66:41:4D:7A:B7:1C:94:FA:A7:05:40:B9 X509v3 Authority Key Identifier: keyid:E4:88:61:A2:68:A3:E9:4D:7B:7E:84:BA:74:EE:AF:47:72:89:67:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/5Ihhomij6U17foS6dO6vR3KJZwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Ihhomij6U17foS6dO6vR3KJZwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3060/EF941A109CEF11F096497C37C4F9AE02/0FCEAD129CF111F0A76B5F3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.218.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:14:e3:f6:e8:ee:9a:96:91:dd:12:1b:78:e1:78:15:c2:7a: cd:bd:af:69:eb:cf:a1:b7:35:f5:99:96:3b:86:56:ed:2c:59: 5f:bb:c1:48:f1:8a:6f:cb:51:25:80:21:96:45:83:c4:d3:cb: db:08:c7:07:78:93:0b:4e:c5:f3:05:11:d3:5c:34:9a:77:8a: 6e:45:67:52:09:e5:40:0f:90:72:ed:20:e4:83:a2:5e:95:08: 62:5a:d3:1e:0f:3e:50:ab:95:66:2f:af:e3:bf:b3:1e:eb:b9: 13:16:14:44:ac:bb:01:67:21:d0:dd:cf:94:54:bc:e2:e8:47: df:4f:17:14:25:b1:6b:4a:7f:70:22:ed:22:db:09:b6:a4:0a: cc:af:8d:65:74:f3:f1:55:41:c9:72:ad:dd:4e:90:41:b3:db: c6:f6:ed:8f:d8:d2:7e:0a:2c:bd:fe:7a:97:18:50:dd:fc:46: bd:5e:bf:2b:dc:bf:15:d7:01:85:1e:ab:69:1d:bb:a8:7f:16: c8:44:2a:9d:0d:6c:6b:68:ff:b7:14:73:81:52:0a:cf:82:7b: e0:ee:27:d6:4c:4a:b4:10:77:1d:8d:38:ff:bc:97:54:a8:cc: 0d:c7:22:d2:ce:db:0c:5b:6e:33:34:20:9f:ff:c5:32:36:82: 07:d2:71:12 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MzA2MDExMC8GA1UEBRMoRTQ4ODYxQTI2OEEzRTk0RDdCN0U4NEJBNzRFRUFGNDc3 Mjg5NjcwOTAeFw0yNTA5MjkwNDU5MjJaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGExMjI5LThlOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTghCYEyCV5RxIbQ1qFnyg+nDB37rWxXCrC6XlOvQYRVTdg7Bd7iWdkDUam/ut ww3x0k3V9+pMDfwOHf9LevD34tz0f8kfm+gXD5501hFTdpr2QD34VH1Fg7gK4hOK UndRogryu4C/mpgazIAbVbVu15wSJDQ2MugSMYK4YxcLu/926PNcLKxcSfABY3mC 8XQLXvae3J1DPEaSmaj8A2gAHEblja/J11OhUCffOL3CYR/C9VSj4VPTrwnTjqPA XDXAliC0hkuNflgHHKJl5mahrd4CqdtZAwQPdXQK5VPTOuAmoGAwiTpwlu8XGh7J DX7HhE/I2tmKJ5Sd7E8/9DQzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMHNlBtb2 D7BmQU16txyU+qcFQLkwHwYDVR0jBBgwFoAU5Ihhomij6U17foS6dO6vR3KJZwkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQzMDYwL0VGOTQxQTEwOUNF RjExRjA5NjQ5N0MzN0M0RjlBRTAyLzVJaGhvbWlqNlUxN2ZvUzZkTzZ2UjNLSlp3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUloaG9taWo2VTE3Zm9TNmRPNnZSM0tKWndrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzA2MC9FRjk0MUExMDlDRUYxMUYwOTY0OTdDMzdDNEY5QUUwMi8wRkNFQUQxMjlD RjExMUYwQTc2QjVGM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeM2jANBgkqhkiG9w0BAQsFAAOCAQEAjxTj9ujumpaR3RIb eOF4FcJ6zb2vaevPobc19ZmWO4ZW7SxZX7vBSPGKb8tRJYAhlkWDxNPL2wjHB3iT C07F8wUR01w0mneKbkVnUgnlQA+Qcu0g5IOiXpUIYlrTHg8+UKuVZi+v47+zHuu5 ExYURKy7AWch0N3PlFS84uhH308XFCWxa0p/cCLtItsJtqQKzK+NZXTz8VVByXKt 3U6QQbPbxvbtj9jSfgosvf56lxhQ3fxGvV6/K9y/FdcBhR6raR27qH8WyEQqnQ1s a2j/txRzgVIKz4J74O4n1kxKtBB3HY04/7yXVKjMDcci0s7bDFtuMzQgn//FMjaC B9JxEg== -----END CERTIFICATE-----Generated at Tue Oct 21 01:30:39 2025 by rpki-client