$ rpki-client -vvf rpki.apnic.net/member_repository/A91D73FD/DCB25B967B4311EB83533666C4F9AE02/2E9F8D4A08F911ED8F90BA78C4F9AE02.roa File: 2E9F8D4A08F911ED8F90BA78C4F9AE02.roa (raw, json) Hash identifier: NxEcxn/akrW+vm2Z/ZPAl6UxKcvJlhSrSKjiAprfZig= Subject key identifier: 89:9F:7A:FF:2D:85:E6:5D:9F:2E:A7:22:5B:C5:44:69:56:AD:42:36 Certificate issuer: /CN=A91D73FD/serialNumber=B04BBA1F18C0E70831F354F7455EE15D322941B3 Certificate serial: 06C1 Authority key identifier: B0:4B:BA:1F:18:C0:E7:08:31:F3:54:F7:45:5E:E1:5D:32:29:41:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sEu6HxjA5wgx81T3RV7hXTIpQbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D73FD/DCB25B967B4311EB83533666C4F9AE02/2E9F8D4A08F911ED8F90BA78C4F9AE02.roa Signing time: Wed 24 Sep 2025 22:43:59 +0000 ROA not before: Wed 24 Sep 2025 22:43:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141004 IP address blocks: 103.120.176.0/24 maxlen: 24 103.120.177.0/24 maxlen: 24 103.120.178.0/24 maxlen: 24 103.120.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D73FD/DCB25B967B4311EB83533666C4F9AE02/sEu6HxjA5wgx81T3RV7hXTIpQbM.crl rsync://rpki.apnic.net/member_repository/A91D73FD/DCB25B967B4311EB83533666C4F9AE02/sEu6HxjA5wgx81T3RV7hXTIpQbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sEu6HxjA5wgx81T3RV7hXTIpQbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:34:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1729 (0x6c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D73FD, serialNumber=B04BBA1F18C0E70831F354F7455EE15D322941B3 Validity Not Before: Sep 24 22:43:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d4742e-5d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:09:be:28:2c:3d:05:de:10:e2:3d:11:db:b7: 56:5f:ca:61:b5:37:5f:56:02:96:79:6c:52:f2:b1: 15:6b:de:8e:eb:da:c6:04:18:cd:7a:ee:c8:1b:42: 4b:3f:f7:f1:58:80:a6:09:c4:52:42:93:ae:b0:46: ce:26:15:62:39:9e:d2:21:75:88:9a:2c:5f:24:e9: 71:71:87:1a:35:bf:d7:e5:1c:de:90:c0:dc:18:f9: e4:53:ac:a6:c3:d9:b7:fc:97:9b:03:16:cf:0e:f5: 06:d7:88:27:fb:d3:42:df:68:c8:2a:86:d5:ce:3e: 4c:5c:5f:31:0a:a1:95:d3:75:0a:38:3e:fd:96:16: 13:31:84:8e:b1:08:ab:62:72:c5:41:ca:61:d2:62: e7:74:ae:2c:ab:6a:de:fd:09:c4:21:0c:15:52:06: 55:f2:00:2a:93:9f:57:31:bc:3b:48:9a:04:d5:42: 9f:03:ca:b8:dd:8e:5b:8b:45:5c:03:0b:64:9f:be: 2e:d8:b5:75:19:ef:44:d5:02:ba:ee:e7:2a:8a:62: b2:2e:44:a0:b8:5d:ba:de:e4:6a:6f:ab:e7:9a:0e: e7:a5:57:f5:1c:aa:84:1d:f3:7d:22:28:36:e0:e0: ba:0b:1e:80:37:3d:ff:b5:22:5e:a9:24:41:6d:ff: 1c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:9F:7A:FF:2D:85:E6:5D:9F:2E:A7:22:5B:C5:44:69:56:AD:42:36 X509v3 Authority Key Identifier: keyid:B0:4B:BA:1F:18:C0:E7:08:31:F3:54:F7:45:5E:E1:5D:32:29:41:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D73FD/DCB25B967B4311EB83533666C4F9AE02/sEu6HxjA5wgx81T3RV7hXTIpQbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sEu6HxjA5wgx81T3RV7hXTIpQbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D73FD/DCB25B967B4311EB83533666C4F9AE02/2E9F8D4A08F911ED8F90BA78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.176.0/22 Signature Algorithm: sha256WithRSAEncryption 84:10:48:6c:84:a8:0c:b1:3c:fe:9a:18:07:f1:c2:ec:bb:01: 4c:33:1c:61:a4:6b:42:e5:08:72:b3:18:7f:fc:b0:4b:e5:d9: 87:ff:62:6f:b6:7f:b6:4d:ab:88:9c:e2:34:97:aa:5e:f0:25: af:1f:3e:f2:b0:6c:9f:58:00:03:f3:e1:df:f8:4e:f1:35:07: ed:a1:72:ab:56:7a:17:d8:31:de:9b:1c:dd:ea:84:7b:74:4a: 58:b7:73:c2:c9:6e:aa:85:f3:9c:e4:86:5f:76:c3:07:2b:e9: 5c:38:b7:54:b8:be:98:50:45:bd:b6:f8:89:c7:93:f8:8d:2c: 44:2d:6e:c5:90:9c:af:d4:9f:e9:fa:76:d0:31:93:f8:ba:37: 5e:91:b9:52:43:6e:8a:d8:e4:b9:3a:4c:42:34:e4:07:ba:71: 8d:39:db:13:f0:49:dc:f6:91:34:ef:61:45:f0:cd:4a:28:e8: c4:f2:6d:41:b9:fc:47:25:71:4c:90:3a:e1:12:ee:87:e5:0f: 24:b1:a1:3c:75:2f:2e:9d:8b:52:55:a7:e6:d6:6b:62:2e:4b: f4:cc:39:02:04:a2:cc:fc:87:94:7e:c8:38:15:e7:6d:18:98: 82:53:56:90:4c:fe:39:b5:2e:df:f3:07:0f:d5:b3:68:77:47: 5b:06:ea:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDczRkQxMTAvBgNVBAUTKEIwNEJCQTFGMThDMEU3MDgzMUYzNTRGNzQ1NUVFMTVE MzIyOTQxQjMwHhcNMjUwOTI0MjI0MzU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0NzQyZS01ZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gm+KCw9Bd4Q4j0R27dWX8phtTdfVgKWeWxS8rEVa96O69rGBBjNeu7IG0JL P/fxWICmCcRSQpOusEbOJhViOZ7SIXWImixfJOlxcYcaNb/X5RzekMDcGPnkU6ym w9m3/JebAxbPDvUG14gn+9NC32jIKobVzj5MXF8xCqGV03UKOD79lhYTMYSOsQir YnLFQcph0mLndK4sq2re/QnEIQwVUgZV8gAqk59XMbw7SJoE1UKfA8q43Y5bi0Vc Awtkn74u2LV1Ge9E1QK67ucqimKyLkSguF263uRqb6vnmg7npVf1HKqEHfN9Iig2 4OC6Cx6ANz3/tSJeqSRBbf8cCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFImfev8t heZdny6nIlvFRGlWrUI2MB8GA1UdIwQYMBaAFLBLuh8YwOcIMfNU90Ve4V0yKUGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzNGRC9EQ0IyNUI5NjdC NDMxMUVCODM1MzM2NjZDNEY5QUUwMi9zRXU2SHhqQTV3Z3g4MVQzUlY3aFhUSXBR Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NFdTZIeGpBNXdneDgxVDNSVjdoWFRJcFFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDczRkQvRENCMjVCOTY3QjQzMTFFQjgzNTMzNjY2QzRGOUFFMDIvMkU5RjhENEEw OEY5MTFFRDhGOTBCQTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneLAwDQYJKoZIhvcNAQELBQADggEBAIQQSGyEqAyxPP6a GAfxwuy7AUwzHGGka0LlCHKzGH/8sEvl2Yf/Ym+2f7ZNq4ic4jSXql7wJa8fPvKw bJ9YAAPz4d/4TvE1B+2hcqtWehfYMd6bHN3qhHt0Sli3c8LJbqqF85zkhl92wwcr 6Vw4t1S4vphQRb22+InHk/iNLEQtbsWQnK/Un+n6dtAxk/i6N16RuVJDborY5Lk6 TEI05Ae6cY052xPwSdz2kTTvYUXwzUoo6MTybUG5/EclcUyQOuES7oflDySxoTx1 Ly6di1JVp+bWa2IuS/TMOQIEosz8h5R+yDgV520YmIJTVpBM/jm1Lt/zBw/Vs2h3 R1sG6t4= -----END CERTIFICATE-----Generated at Mon Oct 20 08:45:07 2025 by rpki-client