$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/3CC77D02EE8811EA9225690DC4F9AE02.roa File: 3CC77D02EE8811EA9225690DC4F9AE02.roa (raw, json) Hash identifier: OLDN/ETZEgU2Ia5DmtJOCvYxeDvefwm7Ut9VsY92Tg8= Subject key identifier: 3B:A1:ED:23:22:B3:33:73:AB:86:31:E7:73:82:24:1E:33:6D:46:FE Certificate issuer: /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Certificate serial: 081E Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/3CC77D02EE8811EA9225690DC4F9AE02.roa Signing time: Wed 24 Sep 2025 21:11:57 +0000 ROA not before: Wed 24 Sep 2025 21:11:57 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132890 IP address blocks: 103.38.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6503, serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Validity Not Before: Sep 24 21:11:57 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d45e9d-6cc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a1:99:1b:fc:93:26:77:8c:b2:bf:64:4a:21: 4c:e2:1e:8f:9f:f6:15:9a:33:ca:b5:94:ca:21:99: 17:fd:43:53:94:b9:2c:47:33:23:63:70:e1:c2:90: f5:7f:78:4a:d1:24:b9:ba:fd:a6:51:37:c5:9c:ab: e4:e7:1d:9d:26:d0:cf:84:65:1d:10:cf:5d:f0:ec: e0:64:5e:d9:bf:0f:22:9e:15:86:40:26:8b:05:16: a3:f3:c9:e9:64:a0:b0:fa:79:ef:86:df:5e:f5:b8: 94:de:4e:d8:b1:a9:59:2c:26:a9:7a:ed:8c:c1:0b: e1:77:0d:55:b7:e6:58:18:60:e6:6a:9b:b4:bb:bf: 4d:74:4f:32:f9:7e:6e:45:ca:c4:15:93:5b:eb:35: 1d:45:db:a1:ed:77:64:c3:7e:8a:eb:13:9d:24:77: 7f:0d:4a:8c:93:e1:ad:06:47:2d:85:ff:d5:0c:79: c6:58:04:83:d5:d6:bf:0e:d5:8b:59:3a:6a:83:8f: 57:81:4e:c6:a0:c6:51:bc:71:88:48:2e:02:47:c9: 16:a5:ca:d4:3c:c4:e9:31:fe:b8:68:21:08:46:19: 71:cf:0a:4c:9e:a5:17:83:25:15:1a:df:fc:34:3d: ce:dc:5c:3c:a1:6c:3b:50:0c:eb:56:41:1b:ff:ae: 99:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:A1:ED:23:22:B3:33:73:AB:86:31:E7:73:82:24:1E:33:6D:46:FE X509v3 Authority Key Identifier: keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/3CC77D02EE8811EA9225690DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.192.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:62:5b:67:65:6f:66:7c:68:94:96:3b:72:b1:1b:19:15:36: a9:24:a3:4c:12:3c:e4:2a:be:55:86:75:53:a5:e4:3e:d4:a5: e5:58:33:b6:7a:ba:d4:eb:88:1e:b7:b8:bf:e2:11:0c:7f:6f: b9:8d:6e:b3:da:23:a8:19:3f:46:8e:7b:19:48:d9:67:ee:95: 14:a1:02:5c:78:95:ae:b4:9e:fb:44:be:2d:cb:3e:b9:dd:31: df:ed:be:4d:c1:f6:51:b2:89:14:da:e6:14:af:99:d1:48:e6: 27:51:77:2a:b0:b7:21:7f:b6:c3:da:dd:5e:4c:5b:da:49:f9: 0a:1e:08:92:9a:04:cd:4d:be:44:09:1b:90:01:9c:2d:3b:bd: b1:3e:ac:6e:bf:c7:4f:df:d6:b7:e0:7d:7b:5c:8a:a2:45:64: 79:13:15:d1:29:bf:da:2d:22:60:3d:bc:9c:cc:9c:7b:14:09: cf:74:4e:61:d8:96:51:6d:08:b8:d2:88:9b:d7:0e:03:9e:65: 21:61:78:00:0b:c8:72:28:0f:c4:74:77:22:11:d1:e3:20:1a: bb:12:e0:93:2e:ae:00:6f:99:43:da:d9:83:aa:d8:30:80:ec: cd:0e:35:3a:43:cd:76:c4:c3:40:fb:0f:4d:6b:ab:88:cf:25: 68:df:07:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQxRjIwQzUyQjIw Q0FGNTU1QkEwHhcNMjUwOTI0MjExMTU3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0NWU5ZC02Y2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKGZG/yTJneMsr9kSiFM4h6Pn/YVmjPKtZTKIZkX/UNTlLksRzMjY3DhwpD1 f3hK0SS5uv2mUTfFnKvk5x2dJtDPhGUdEM9d8OzgZF7Zvw8inhWGQCaLBRaj88np ZKCw+nnvht9e9biU3k7YsalZLCapeu2MwQvhdw1Vt+ZYGGDmapu0u79NdE8y+X5u RcrEFZNb6zUdRduh7Xdkw36K6xOdJHd/DUqMk+GtBkcthf/VDHnGWASD1da/DtWL WTpqg49XgU7GoMZRvHGISC4CR8kWpcrUPMTpMf64aCEIRhlxzwpMnqUXgyUVGt/8 ND3O3Fw8oWw7UAzrVkEb/66ZSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDuh7SMi szNzq4Yx53OCJB4zbUb+MB8GA1UdIwQYMBaAFJM+9yYG2dWyn+OkHyDFKyDK9VW6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjUwMy8wMTU0QjRCNkVF ODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFiS2Y0NlFmSU1VcklNcjFW Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6NzNKZ2JaMWJLZjQ2UWZJTVVySU1yMVZiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY1MDMvMDE1NEI0QjZFRTg3MTFFQUI1MkE1QzA5QzRGOUFFMDIvM0NDNzdEMDJF RTg4MTFFQTkyMjU2OTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnJsAwDQYJKoZIhvcNAQELBQADggEBAG9iW2dlb2Z8aJSW O3KxGxkVNqkko0wSPOQqvlWGdVOl5D7UpeVYM7Z6utTriB63uL/iEQx/b7mNbrPa I6gZP0aOexlI2WfulRShAlx4la60nvtEvi3LPrndMd/tvk3B9lGyiRTa5hSvmdFI 5idRdyqwtyF/tsPa3V5MW9pJ+QoeCJKaBM1NvkQJG5ABnC07vbE+rG6/x0/f1rfg fXtciqJFZHkTFdEpv9otImA9vJzMnHsUCc90TmHYllFtCLjSiJvXDgOeZSFheAAL yHIoD8R0dyIR0eMgGrsS4JMurgBvmUPa2YOq2DCA7M0ONTpDzXbEw0D7D01rq4jP JWjfB20= -----END CERTIFICATE-----Generated at Mon Oct 20 19:27:19 2025 by rpki-client