$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/D956F03AAB0211F083CD7E11C4F9AE02.roa File: D956F03AAB0211F083CD7E11C4F9AE02.roa (raw, json) Hash identifier: qeoKnKi/L1qnb3FQ608yL9sJPnPOyw3KIsMI+MrC40Y= Subject key identifier: AE:54:B4:C7:F6:35:8F:E7:E5:45:DF:A2:62:12:40:A8:B0:4A:B9:E0 Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: E6 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/D956F03AAB0211F083CD7E11C4F9AE02.roa Signing time: Fri 17 Oct 2025 02:41:57 +0000 ROA not before: Fri 17 Oct 2025 02:41:57 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153494 IP address blocks: 103.202.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Oct 17 02:41:57 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68f1acf5-e88c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ec:a4:27:f0:ee:92:e0:6e:7a:26:87:e4:28: 44:ce:d2:0d:98:b1:ec:71:61:49:a8:ff:cd:7f:86: e1:36:87:44:40:4b:ca:b0:4d:79:c7:85:12:22:b9: 85:22:c5:38:91:f4:ea:12:b5:d2:af:ef:bd:1d:d8: 11:76:29:26:85:ac:d7:9f:d1:94:45:9b:47:a9:30: 79:b0:ba:98:5f:48:65:f6:a7:b2:32:b1:df:9b:53: f6:f6:e3:bd:f0:5e:6e:09:f2:6d:ac:80:9d:f4:c7: 33:88:eb:e8:89:5c:69:a7:33:5e:05:20:b3:d7:72: 91:52:1a:18:de:be:c6:e5:87:bb:69:54:f2:98:78: 6b:f5:db:a7:b9:45:09:6f:8c:7a:32:5c:65:c0:31: 68:53:b0:d4:ac:d8:3b:d3:3d:cd:c1:6d:c5:5c:65: 9b:31:22:bf:ef:b7:b4:38:12:66:9b:6c:a1:45:f2: 6f:9a:0c:ba:5f:8b:6c:e6:23:32:72:38:ff:dd:02: a4:ca:7b:50:01:35:5d:9b:a2:4d:eb:b6:fd:52:75: ab:9e:03:c6:33:cd:0e:3d:60:4a:8c:8c:64:8f:80: c5:e4:04:42:07:e2:f4:bc:80:e0:de:7f:b6:1d:d9: 95:8f:e7:1b:79:7b:f9:68:b8:b0:ec:67:da:e3:5b: a2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:54:B4:C7:F6:35:8F:E7:E5:45:DF:A2:62:12:40:A8:B0:4A:B9:E0 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/D956F03AAB0211F083CD7E11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.202.48.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:5d:85:0d:96:c3:0b:d4:f5:e6:c7:67:b0:ad:b1:39:7c:1d: 3a:78:52:50:0e:a4:a9:b6:40:7d:61:82:83:5b:5a:a1:5f:0c: 40:35:aa:80:e1:a4:be:e4:51:14:f1:52:fa:6d:13:80:9b:42: 70:d4:75:82:0c:3e:92:96:ff:87:e0:d5:db:21:14:82:dc:b4: 5e:b8:8e:9f:01:71:c1:7f:c5:95:8a:93:aa:90:9e:35:a4:a6: 93:9e:30:a6:d9:5c:f1:d9:f1:fc:94:97:46:df:fd:95:1a:2e: e0:e0:99:9a:69:c2:ae:46:49:67:e6:46:0c:71:90:3a:2d:4f: fa:ce:71:a7:3f:4b:29:5f:4b:a9:71:8a:86:f5:a8:4f:2f:f7: 49:84:ae:fe:b7:f4:ea:5b:53:f6:df:a4:14:4b:db:fb:33:b5: 4d:da:69:4a:e7:bc:a7:f6:a5:77:af:b8:78:46:f9:ac:52:1c: b1:f2:a5:88:20:03:77:39:a5:9c:e0:4a:b3:dc:c5:29:bf:c9: f3:f4:d7:eb:99:da:a5:d5:61:49:de:8e:9d:91:28:82:da:a3: 74:63:3b:93:19:f2:5d:5a:a7:3e:db:13:34:04:7f:31:3d:d8: 38:3a:a1:e7:06:29:6c:2c:5d:5c:5c:41:35:f7:58:83:b5:80: a1:09:9f:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUxMDE3MDI0MTU3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxYWNmNS1lODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveykJ/DukuBueiaH5ChEztINmLHscWFJqP/Nf4bhNodEQEvKsE15x4USIrmF IsU4kfTqErXSr++9HdgRdikmhazXn9GURZtHqTB5sLqYX0hl9qeyMrHfm1P29uO9 8F5uCfJtrICd9McziOvoiVxppzNeBSCz13KRUhoY3r7G5Ye7aVTymHhr9dunuUUJ b4x6MlxlwDFoU7DUrNg70z3NwW3FXGWbMSK/77e0OBJmm2yhRfJvmgy6X4ts5iMy cjj/3QKkyntQATVdm6JN67b9UnWrngPGM80OPWBKjIxkj4DF5ARCB+L0vIDg3n+2 HdmVj+cbeXv5aLiw7Gfa41uiqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK5UtMf2 NY/n5UXfomISQKiwSrngMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgyNEEvNEFERjMzRkM1QjlBMTFFRjgzMDdGNTQwQzRGOUFFMDIvRDk1NkYwM0FB QjAyMTFGMDgzQ0Q3RTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnyjAwDQYJKoZIhvcNAQELBQADggEBABtdhQ2WwwvU9ebH Z7CtsTl8HTp4UlAOpKm2QH1hgoNbWqFfDEA1qoDhpL7kURTxUvptE4CbQnDUdYIM PpKW/4fg1dshFILctF64jp8BccF/xZWKk6qQnjWkppOeMKbZXPHZ8fyUl0bf/ZUa LuDgmZppwq5GSWfmRgxxkDotT/rOcac/SylfS6lxiob1qE8v90mErv639OpbU/bf pBRL2/sztU3aaUrnvKf2pXevuHhG+axSHLHypYggA3c5pZzgSrPcxSm/yfP01+uZ 2qXVYUnejp2RKILao3RjO5MZ8l1apz7bEzQEfzE92Dg6oecGKWwsXVxcQTX3WIO1 gKEJn8o= -----END CERTIFICATE-----Generated at Mon Oct 20 07:18:40 2025 by rpki-client