$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/234205EA327A11E8A1143B79C4F9AE02.roa File: 234205EA327A11E8A1143B79C4F9AE02.roa (raw, json) Hash identifier: byvxwIxUmbdh0bP7R33Ns0I16OD6QTEmSRLJ7M5XZ6s= Subject key identifier: A7:68:34:F0:1D:52:EB:12:0F:83:75:4F:A2:06:E8:AF:B8:11:61:C3 Certificate issuer: /CN=A91DCD09/serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Certificate serial: 1A5F Authority key identifier: 18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/234205EA327A11E8A1143B79C4F9AE02.roa Signing time: Mon 22 Sep 2025 16:35:18 +0000 ROA not before: Mon 22 Sep 2025 16:35:18 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 19905 IP address blocks: 103.241.84.0/24 maxlen: 24 103.241.85.0/24 maxlen: 24 103.241.86.0/24 maxlen: 24 103.241.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6751 (0x1a5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09, serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Validity Not Before: Sep 22 16:35:18 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d17ac6-3b79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:38:c4:53:9e:d5:1b:c3:4f:f7:69:87:18:9a: 0d:87:2b:7f:33:2e:3f:be:8f:5f:07:a6:ad:50:d7: 91:45:67:dc:af:32:62:ce:b1:5d:78:ec:e7:f7:53: 17:b6:20:10:ef:f1:55:4d:38:75:56:7f:1a:7c:96: bb:a1:9e:50:fa:b5:11:22:5e:71:0b:e4:17:e0:e4: 73:24:ec:34:09:4a:f6:03:48:7c:12:e5:84:68:fd: d2:45:83:9b:40:b9:e0:28:a1:79:bb:14:b1:40:a1: 35:41:60:05:2f:4a:ad:3b:a1:f6:78:58:90:88:08: 72:01:f8:46:57:df:12:75:fa:42:f1:08:6a:d6:d8: 7c:98:a0:88:19:27:96:3a:ce:79:8b:62:3a:d7:68: 20:30:d1:df:e2:3c:76:ac:f7:a2:a6:5a:89:63:3e: fe:93:be:fb:78:82:4c:66:51:41:4a:bf:47:32:52: ae:69:0f:47:ee:84:cc:eb:c2:aa:5a:e4:9a:48:26: 59:be:9b:cd:d8:dd:b2:84:07:e2:43:b4:ac:a6:4d: d7:75:cc:f2:c4:79:a7:87:32:d1:63:cf:23:10:83: cc:af:3a:3d:83:3a:99:23:eb:f0:eb:f2:e2:1c:f9: c9:73:58:1f:e6:9e:fb:79:53:01:7e:fa:ff:5e:8f: 9a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:68:34:F0:1D:52:EB:12:0F:83:75:4F:A2:06:E8:AF:B8:11:61:C3 X509v3 Authority Key Identifier: keyid:18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/234205EA327A11E8A1143B79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.84.0/22 Signature Algorithm: sha256WithRSAEncryption 92:3c:88:07:55:a3:91:44:28:8d:7f:6b:1c:72:9a:63:4f:6b: b8:78:83:a6:fe:30:29:2b:9e:16:30:6f:62:59:6b:cf:1d:11: ea:ec:53:a4:8c:9a:05:1f:98:73:a2:25:4e:9a:a6:6a:de:35: 68:6d:02:b7:a0:59:b8:1b:92:22:e9:21:61:c6:58:76:b7:15: aa:09:90:8a:29:a8:c9:89:f2:ec:5f:10:38:04:47:3b:ee:37: b0:38:06:b5:00:1d:e5:e9:62:87:21:81:07:9e:d1:34:79:a9: de:f3:61:5e:3c:67:d9:97:c1:89:8f:e1:08:25:01:89:a6:19: f7:ec:26:95:37:4c:7e:32:42:6f:af:24:88:91:41:18:fa:75: 2c:39:86:67:99:db:9a:75:09:0f:78:a0:ff:34:15:47:68:7b: 9e:ce:8a:d7:2d:42:9d:00:b8:cc:65:29:28:7b:d3:2d:b8:4e: a4:18:ca:57:e8:65:ec:f1:42:11:21:0a:42:ee:83:9d:0c:0b: 98:f5:ee:e5:eb:a4:5c:39:33:f0:02:b4:f3:fc:ef:4d:f9:81: 76:4b:f0:9e:28:0b:4e:b6:1e:db:1c:1c:56:59:7b:7d:b0:94: a6:f4:9f:29:b2:4b:bd:a3:52:be:ed:8a:c3:d2:48:cd:dd:b9: 72:0c:1d:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKDE4Rjk3RDA5OEU0RUJEMDYxMEQ1NEY0OEQ1QjNFMUFB NzQzQTIwMjkwHhcNMjUwOTIyMTYzNTE4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxN2FjNi0zYjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzjEU57VG8NP92mHGJoNhyt/My4/vo9fB6atUNeRRWfcrzJizrFdeOzn91MX tiAQ7/FVTTh1Vn8afJa7oZ5Q+rURIl5xC+QX4ORzJOw0CUr2A0h8EuWEaP3SRYOb QLngKKF5uxSxQKE1QWAFL0qtO6H2eFiQiAhyAfhGV98SdfpC8Qhq1th8mKCIGSeW Os55i2I612ggMNHf4jx2rPeiplqJYz7+k777eIJMZlFBSr9HMlKuaQ9H7oTM68Kq WuSaSCZZvpvN2N2yhAfiQ7Sspk3XdczyxHmnhzLRY88jEIPMrzo9gzqZI+vw6/Li HPnJc1gf5p77eVMBfvr/Xo+a9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKdoNPAd UusSD4N1T6IG6K+4EWHDMB8GA1UdIwQYMBaAFBj5fQmOTr0GENVPSNWz4ap0OiAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS8yRjhCODU1MjU0 ODUxMUU3QjFEODQ3MTNDNEY5QUUwMi9HUGw5Q1k1T3ZRWVExVTlJMWJQaHFuUTZJ Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dQbDlDWTVPdlFZUTFVOUkxYlBocW5RNklDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvMkY4Qjg1NTI1NDg1MTFFN0IxRDg0NzEzQzRGOUFFMDIvMjM0MjA1RUEz MjdBMTFFOEExMTQzQjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8VQwDQYJKoZIhvcNAQELBQADggEBAJI8iAdVo5FEKI1/ axxymmNPa7h4g6b+MCkrnhYwb2JZa88dEersU6SMmgUfmHOiJU6apmreNWhtAreg WbgbkiLpIWHGWHa3FaoJkIopqMmJ8uxfEDgERzvuN7A4BrUAHeXpYochgQee0TR5 qd7zYV48Z9mXwYmP4QglAYmmGffsJpU3TH4yQm+vJIiRQRj6dSw5hmeZ25p1CQ94 oP80FUdoe57OitctQp0AuMxlKSh70y24TqQYylfoZezxQhEhCkLug50MC5j17uXr pFw5M/ACtPP87035gXZL8J4oC062HtscHFZZe32wlKb0nymyS72jUr7tisPSSM3d uXIMHd0= -----END CERTIFICATE-----Generated at Sun Oct 19 21:03:47 2025 by rpki-client