$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/685DC124EC7B11EFAF014776C4F9AE02.roa File: 685DC124EC7B11EFAF014776C4F9AE02.roa (raw, json) Hash identifier: J8sHwaYejB5G8PGUwZTmh70H4k+WJ4SNlX35xQySLfY= Subject key identifier: 51:9A:49:94:4E:D9:BA:3F:A0:3E:22:25:1D:09:3F:49:DA:B1:7D:D6 Certificate issuer: /CN=A91D6F21/serialNumber=9CDDFAEABC64BCCD78882962910EC192A2D22838 Certificate serial: AC Authority key identifier: 9C:DD:FA:EA:BC:64:BC:CD:78:88:29:62:91:0E:C1:92:A2:D2:28:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN366rxkvM14iClikQ7BkqLSKDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/685DC124EC7B11EFAF014776C4F9AE02.roa Signing time: Fri 03 Oct 2025 06:33:47 +0000 ROA not before: Fri 03 Oct 2025 06:33:47 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 3356 IP address blocks: 103.129.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/nN366rxkvM14iClikQ7BkqLSKDg.crl rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/nN366rxkvM14iClikQ7BkqLSKDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN366rxkvM14iClikQ7BkqLSKDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6F21, serialNumber=9CDDFAEABC64BCCD78882962910EC192A2D22838 Validity Not Before: Oct 3 06:33:47 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68df6e4b-e2c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c0:d7:e8:f9:01:ef:d0:82:d7:a7:4a:06:27: 37:9c:51:53:da:6d:f0:8d:4c:38:c2:f7:e6:fa:d5: 1a:da:84:1f:20:de:e8:7c:d3:60:c8:28:89:3b:27: 2b:c3:d2:dc:39:d6:99:3c:37:54:d9:f7:16:e2:06: bc:a6:f2:13:29:14:3a:fd:4d:7d:f7:68:c0:3e:3b: 9b:09:78:8e:a3:b3:50:59:45:ef:d7:19:3c:64:29: 03:8a:9e:99:02:07:c9:6a:4b:1f:5c:35:5d:33:06: 14:9c:19:7e:23:47:05:8f:59:97:20:18:63:15:91: f9:f2:9f:c0:96:7f:2b:c1:36:ab:a7:c8:d0:ca:0c: 50:47:fb:59:df:63:dc:7f:99:e5:8a:50:f8:f9:50: 3c:db:f7:bf:45:4d:c8:69:61:31:fc:1f:bf:10:17: 08:40:2b:fc:4e:70:25:12:ab:1a:a2:8c:7a:25:0c: 4b:0c:38:11:0f:22:43:eb:cf:d8:c1:90:ca:bf:05: 22:41:d8:6c:c0:0c:19:09:28:5e:ac:5d:ff:11:88: 03:66:11:ee:4d:c4:46:d6:ed:2e:a7:d3:9c:a4:b3: 67:fa:67:e7:1e:b9:53:54:e5:61:ba:7c:7d:16:4b: 23:a6:06:c4:dc:29:ac:47:bb:b4:d0:1f:da:d1:9f: 5c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:9A:49:94:4E:D9:BA:3F:A0:3E:22:25:1D:09:3F:49:DA:B1:7D:D6 X509v3 Authority Key Identifier: keyid:9C:DD:FA:EA:BC:64:BC:CD:78:88:29:62:91:0E:C1:92:A2:D2:28:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/nN366rxkvM14iClikQ7BkqLSKDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nN366rxkvM14iClikQ7BkqLSKDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6F21/FE37E3ECA1AC11EFB6758548C4F9AE02/685DC124EC7B11EFAF014776C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.116.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:d7:3c:16:eb:a8:6c:7f:46:cf:a9:95:65:cd:43:15:b5:d3: dd:46:dc:ff:ec:e5:96:45:e5:17:fa:bb:73:96:60:74:fe:9c: 4d:2a:02:56:74:cf:c9:65:a6:88:54:19:9f:5f:f1:68:ed:48: 41:35:b3:39:ee:f4:65:e0:c8:d2:76:92:ff:c0:18:cb:50:f1: 8d:85:15:15:9d:65:4d:25:f2:22:5d:87:47:d3:fd:7e:ee:4c: b2:30:26:90:e4:b3:75:22:f2:75:2d:d9:54:b7:47:c8:f8:12: 96:db:13:e2:23:c9:e0:7b:f5:30:65:52:66:85:fd:58:8a:79: 5a:c4:aa:6e:92:eb:90:17:74:18:de:e9:f4:76:77:84:93:39: 4a:95:b1:4d:21:61:e2:b8:92:fc:8d:dc:15:be:db:57:4b:fc: 49:6a:4d:17:cf:fb:94:02:5e:9d:22:07:75:11:1e:7e:4d:e0: d3:c1:62:ca:15:e0:fd:33:3d:f8:6f:d6:69:d5:7e:e8:e4:41: b0:5c:c9:9e:79:be:79:f1:06:28:4f:a6:86:0d:a3:d9:b2:fd: 36:d2:4e:d8:d5:bf:62:05:1a:f5:c6:67:27:a7:1b:d6:e3:00: 32:b5:7c:e6:4e:92:fb:1d:e3:df:81:23:fe:b9:64:e8:84:4f: f3:39:15:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZGMjExMTAvBgNVBAUTKDlDRERGQUVBQkM2NEJDQ0Q3ODg4Mjk2MjkxMEVDMTky QTJEMjI4MzgwHhcNMjUxMDAzMDYzMzQ3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmNmU0Yi1lMmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28DX6PkB79CC16dKBic3nFFT2m3wjUw4wvfm+tUa2oQfIN7ofNNgyCiJOycr w9LcOdaZPDdU2fcW4ga8pvITKRQ6/U1992jAPjubCXiOo7NQWUXv1xk8ZCkDip6Z AgfJaksfXDVdMwYUnBl+I0cFj1mXIBhjFZH58p/Aln8rwTarp8jQygxQR/tZ32Pc f5nlilD4+VA82/e/RU3IaWEx/B+/EBcIQCv8TnAlEqsaoox6JQxLDDgRDyJD68/Y wZDKvwUiQdhswAwZCSherF3/EYgDZhHuTcRG1u0up9OcpLNn+mfnHrlTVOVhunx9 FksjpgbE3CmsR7u00B/a0Z9cRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFGaSZRO 2bo/oD4iJR0JP0nasX3WMB8GA1UdIwQYMBaAFJzd+uq8ZLzNeIgpYpEOwZKi0ig4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkYyMS9GRTM3RTNFQ0Ex QUMxMUVGQjY3NTg1NDhDNEY5QUUwMi9uTjM2NnJ4a3ZNMTRpQ2xpa1E3QmtxTFNL RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25OMzY2cnhrdk0xNGlDbGlrUTdCa3FMU0tEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZGMjEvRkUzN0UzRUNBMUFDMTFFRkI2NzU4NTQ4QzRGOUFFMDIvNjg1REMxMjRF QzdCMTFFRkFGMDE0Nzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFngXQwDQYJKoZIhvcNAQELBQADggEBAB3XPBbrqGx/Rs+p lWXNQxW1091G3P/s5ZZF5Rf6u3OWYHT+nE0qAlZ0z8llpohUGZ9f8WjtSEE1sznu 9GXgyNJ2kv/AGMtQ8Y2FFRWdZU0l8iJdh0fT/X7uTLIwJpDks3Ui8nUt2VS3R8j4 EpbbE+IjyeB79TBlUmaF/ViKeVrEqm6S65AXdBje6fR2d4STOUqVsU0hYeK4kvyN 3BW+21dL/ElqTRfP+5QCXp0iB3URHn5N4NPBYsoV4P0zPfhv1mnVfujkQbBcyZ55 vnnxBihPpoYNo9my/TbSTtjVv2IFGvXGZyenG9bjADK1fOZOkvsd49+BI/65ZOiE T/M5FXM= -----END CERTIFICATE-----Generated at Sun Oct 19 23:52:47 2025 by rpki-client