$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/35D9F1BE8A7C11E79774186BC4F9AE02.roa File: 35D9F1BE8A7C11E79774186BC4F9AE02.roa (raw, json) Hash identifier: yM+bb0tbw3lI4O8r0K9h632lO1j6QVkb8a+ZzJmYzqA= Subject key identifier: 75:73:1D:5A:58:9B:01:5B:21:B9:56:C9:8A:22:A8:BE:93:6C:94:66 Certificate issuer: /CN=A91DB0C1/serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Certificate serial: 191D Authority key identifier: C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/35D9F1BE8A7C11E79774186BC4F9AE02.roa Signing time: Sat 06 Sep 2025 16:55:28 +0000 ROA not before: Sat 06 Sep 2025 16:55:27 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 136937 IP address blocks: 103.99.128.0/22 maxlen: 24 2401:aec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6429 (0x191d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C1, serialNumber=C1080E661B0DFA620EB09AAB2DEAD6034B828EBC Validity Not Before: Sep 6 16:55:27 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68bc677f-0a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:79:80:15:22:6a:f7:e1:8e:cd:3b:d6:a5:c7: 7e:ab:7b:a0:08:65:62:dc:6e:03:a9:6c:98:34:62: 83:98:71:04:7f:b0:96:59:5c:0e:3e:21:56:c6:1f: f5:78:01:52:02:3f:28:41:25:e8:18:9f:c3:2f:58: 87:9d:a1:27:a5:60:1c:ff:ae:73:89:d5:34:46:73: be:fc:9a:1a:a4:d0:17:ae:fc:cd:cb:f9:54:80:ae: 77:91:bf:1a:29:b5:6b:b5:19:1e:b4:46:b7:02:67: 5f:ba:13:cd:49:29:53:9f:c9:44:d1:4f:ec:04:2c: d9:7c:12:09:08:f6:81:5c:bc:de:32:fc:c3:7f:63: 2c:dd:e2:48:bd:46:19:e4:07:64:02:f7:a4:5b:d1: 63:62:cb:c2:b2:f2:40:58:fb:52:cb:cc:6f:a3:f8: 88:ad:1a:f3:a4:4a:49:54:a0:8d:d8:d5:39:e9:00: 85:f9:ea:bf:08:88:8b:48:38:ba:bb:ca:b9:6a:ff: 0f:63:80:8c:b8:24:a9:7c:7a:fc:ce:73:74:7e:fd: d5:ad:7e:7a:90:cb:17:fd:13:f0:cb:30:80:af:6d: f8:26:08:45:1b:48:7b:9e:b0:99:19:df:fe:99:6a: 76:1a:6d:b0:70:61:96:31:95:88:cd:72:6b:ba:df: c6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:73:1D:5A:58:9B:01:5B:21:B9:56:C9:8A:22:A8:BE:93:6C:94:66 X509v3 Authority Key Identifier: keyid:C1:08:0E:66:1B:0D:FA:62:0E:B0:9A:AB:2D:EA:D6:03:4B:82:8E:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/wQgOZhsN-mIOsJqrLerWA0uCjrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wQgOZhsN-mIOsJqrLerWA0uCjrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C1/802C24328A7A11E799E9F764C4F9AE02/35D9F1BE8A7C11E79774186BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.128.0/22 IPv6: 2401:aec0::/32 Signature Algorithm: sha256WithRSAEncryption 92:4e:c5:3d:d4:68:2a:0d:a1:91:da:ca:55:1f:2b:ff:ec:36: 84:23:0d:e9:04:be:13:be:c9:52:e4:d0:ed:db:b0:ca:49:65: 30:0f:8d:7c:86:e9:57:b8:85:a5:43:99:42:fa:96:4d:31:56: 0f:55:96:d2:a3:62:a8:1a:f5:4c:20:12:82:bb:8b:ba:16:28: a8:44:d8:e7:b5:54:ee:01:23:2d:1c:d2:23:f1:b0:a7:3c:3c: 02:7a:7e:ab:ae:50:b6:c8:fc:f4:80:9a:df:a1:6b:ad:7e:59: 59:92:6a:fd:d2:68:96:72:4e:6a:68:9b:e2:b1:a3:5d:66:65: 3a:d6:4d:25:e1:db:69:8a:93:27:c6:5b:5e:cb:23:e9:87:0d: ad:0e:17:79:07:8d:16:72:8f:ae:ee:77:23:d2:86:f4:93:e8: b0:23:2b:ba:35:8c:26:7f:07:47:3b:3c:38:35:e2:d1:e6:b8: 28:70:f3:17:42:f9:67:fb:f1:07:6d:40:e9:08:3a:22:a8:ca: 15:95:9c:6e:11:28:25:8a:0e:f3:91:9c:75:cb:39:9b:e9:89: 09:86:ca:fd:aa:4c:39:a2:3d:e3:d5:ff:25:f6:55:ed:ea:ac: 14:05:85:eb:30:a6:5e:e5:cb:19:39:d9:de:93:15:b3:6c:39: ca:80:29:0c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICGR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzExMTAvBgNVBAUTKEMxMDgwRTY2MUIwREZBNjIwRUIwOUFBQjJERUFENjAz NEI4MjhFQkMwHhcNMjUwOTA2MTY1NTI3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJjNjc3Zi0wYTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnmAFSJq9+GOzTvWpcd+q3ugCGVi3G4DqWyYNGKDmHEEf7CWWVwOPiFWxh/1 eAFSAj8oQSXoGJ/DL1iHnaEnpWAc/65zidU0RnO+/JoapNAXrvzNy/lUgK53kb8a KbVrtRketEa3AmdfuhPNSSlTn8lE0U/sBCzZfBIJCPaBXLzeMvzDf2Ms3eJIvUYZ 5AdkAvekW9FjYsvCsvJAWPtSy8xvo/iIrRrzpEpJVKCN2NU56QCF+eq/CIiLSDi6 u8q5av8PY4CMuCSpfHr8znN0fv3VrX56kMsX/RPwyzCAr234JghFG0h7nrCZGd/+ mWp2Gm2wcGGWMZWIzXJrut/GKwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHVzHVpY mwFbIblWyYoiqL6TbJRmMB8GA1UdIwQYMBaAFMEIDmYbDfpiDrCaqy3q1gNLgo68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMS84MDJDMjQzMjhB N0ExMUU3OTlFOUY3NjRDNEY5QUUwMi93UWdPWmhzTi1tSU9zSnFyTGVyV0EwdUNq cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dRZ09aaHNOLW1JT3NKcXJMZXJXQTB1Q2pydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REIwQzEvODAyQzI0MzI4QTdBMTFFNzk5RTlGNzY0QzRGOUFFMDIvMzVEOUYxQkU4 QTdDMTFFNzk3NzQxODZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnY4AwDQQCAAIwBwMFACQBrsAwDQYJKoZIhvcNAQELBQAD ggEBAJJOxT3UaCoNoZHaylUfK//sNoQjDekEvhO+yVLk0O3bsMpJZTAPjXyG6Ve4 haVDmUL6lk0xVg9VltKjYqga9UwgEoK7i7oWKKhE2Oe1VO4BIy0c0iPxsKc8PAJ6 fquuULbI/PSAmt+ha61+WVmSav3SaJZyTmpom+Kxo11mZTrWTSXh22mKkyfGW17L I+mHDa0OF3kHjRZyj67udyPShvST6LAjK7o1jCZ/B0c7PDg14tHmuChw8xdC+Wf7 8QdtQOkIOiKoyhWVnG4RKCWKDvORnHXLOZvpiQmGyv2qTDmiPePV/yX2Ve3qrBQF heswpl7lyxk52d6TFbNsOcqAKQw= -----END CERTIFICATE-----Generated at Tue Oct 21 03:15:04 2025 by rpki-client