$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/3A4C99D49F7911F08FC08A7FC4F9AE02.roa File: 3A4C99D49F7911F08FC08A7FC4F9AE02.roa (raw, json) Hash identifier: hzN1fw40guW51CNb+UZLqljQGspAiSfGnAzMh1uOZu8= Subject key identifier: F0:08:6F:C2:0A:F0:97:D3:36:6A:82:27:88:7E:42:CE:BF:99:0A:B1 Certificate issuer: /CN=A91DFD4C/serialNumber=63833A241E3E4959EBA19C701D04887DB4B1FC74 Certificate serial: 17 Authority key identifier: 63:83:3A:24:1E:3E:49:59:EB:A1:9C:70:1D:04:88:7D:B4:B1:FC:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/3A4C99D49F7911F08FC08A7FC4F9AE02.roa Signing time: Thu 02 Oct 2025 10:19:07 +0000 ROA not before: Thu 02 Oct 2025 10:19:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154169 IP address blocks: 103.252.126.0/24 maxlen: 24 2001:df6:a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.crl rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFD4C, serialNumber=63833A241E3E4959EBA19C701D04887DB4B1FC74 Validity Not Before: Oct 2 10:19:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68de519a-8c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e4:3e:03:b1:ef:88:c1:5b:a4:8f:dc:eb:6e: b8:f4:04:7c:5e:93:94:c8:42:42:bf:3b:6c:9e:1a: 7e:34:4c:05:29:05:1b:98:e8:e9:3f:11:07:a2:4d: 72:8c:5f:72:a9:3b:cd:66:a4:49:ca:af:19:16:0f: b9:82:a1:3c:da:0b:6b:24:9a:61:f4:a7:ca:15:53: aa:60:ea:9e:75:88:48:60:cc:68:bf:1d:54:a2:9d: f1:42:30:63:8b:75:24:63:b4:21:73:48:40:c6:f6: 80:a0:4d:68:e8:43:2f:a5:24:c0:22:3c:7f:83:bf: 0a:d6:5a:79:5c:b5:47:5e:61:07:d5:3a:29:24:0a: 4b:f5:a0:26:e9:6d:55:52:09:3d:60:b3:2c:78:62: a4:13:a2:c2:a2:f5:eb:a5:7c:24:f2:06:5e:af:21: 85:e5:d7:dd:e1:b2:87:94:5d:6d:17:28:41:4c:a6: 63:8f:ec:5f:93:d5:74:86:cd:10:8d:33:c1:0e:b2: 6c:0a:d8:bb:ab:b8:d9:09:3e:62:67:85:b3:16:75: 4f:24:da:e7:40:bb:fb:c1:f8:69:2c:01:a6:89:5d: 79:96:2b:d5:bf:22:84:2a:63:b1:9c:c8:0a:5b:0e: f3:f9:1e:71:e5:83:cb:33:3b:d1:cb:bc:86:83:ed: 6d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:08:6F:C2:0A:F0:97:D3:36:6A:82:27:88:7E:42:CE:BF:99:0A:B1 X509v3 Authority Key Identifier: keyid:63:83:3A:24:1E:3E:49:59:EB:A1:9C:70:1D:04:88:7D:B4:B1:FC:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/3A4C99D49F7911F08FC08A7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.126.0/24 IPv6: 2001:df6:a40::/48 Signature Algorithm: sha256WithRSAEncryption 75:37:a3:fd:ef:ff:c3:4f:05:cb:ed:a2:39:7e:9b:27:1d:b8: 82:df:3b:b1:ea:00:89:a1:94:fa:58:44:f8:7b:d1:bd:90:ce: 09:ed:bd:39:0d:4f:9e:04:e0:21:1f:58:5d:ea:3b:49:34:4d: 03:a7:ee:05:39:d2:d9:79:f1:5b:79:24:fe:19:36:0e:d3:9d: 16:89:0b:29:1c:64:3d:41:75:5d:84:6d:1e:b4:fb:63:2c:5a: e4:24:58:74:51:9d:25:b3:12:da:0a:3c:5c:4f:4b:63:42:77: 5f:86:74:bb:f7:9d:22:6c:ba:4c:db:2b:6e:83:40:7b:3b:0c: 67:70:68:47:e7:17:4b:80:c3:72:41:ce:32:76:2a:fd:fd:b3: 70:fd:cc:c3:64:cb:10:df:f7:be:57:e1:39:02:33:bf:37:bd: c2:d5:d8:19:dd:4a:89:1f:36:11:e4:30:f8:d8:02:64:d3:f2: 53:eb:72:24:75:17:79:c0:17:28:f8:80:7c:5f:27:a3:c1:97: 92:98:c0:fa:1a:dc:e9:e4:b4:96:5b:ac:bf:2e:36:e4:12:2c: 22:21:f7:5e:72:2e:c5:dd:96:ea:78:93:7f:3b:c9:e1:a4:34: 35:5b:27:02:a3:cf:b6:2f:da:f8:bd:a0:41:8f:65:d5:bc:a9: 84:e3:83:4a -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RkQ0QzExMC8GA1UEBRMoNjM4MzNBMjQxRTNFNDk1OUVCQTE5QzcwMUQwNDg4N0RC NEIxRkM3NDAeFw0yNTEwMDIxMDE5MDdaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGU1MTlhLThjMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDr5D4Dse+IwVukj9zrbrj0BHxek5TIQkK/O2yeGn40TAUpBRuY6Ok/EQeiTXKM X3KpO81mpEnKrxkWD7mCoTzaC2skmmH0p8oVU6pg6p51iEhgzGi/HVSinfFCMGOL dSRjtCFzSEDG9oCgTWjoQy+lJMAiPH+DvwrWWnlctUdeYQfVOikkCkv1oCbpbVVS CT1gsyx4YqQTosKi9eulfCTyBl6vIYXl193hsoeUXW0XKEFMpmOP7F+T1XSGzRCN M8EOsmwK2LuruNkJPmJnhbMWdU8k2udAu/vB+GksAaaJXXmWK9W/IoQqY7GcyApb DvP5HnHlg8szO9HLvIaD7W19AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU8Ahvwgrw l9M2aoIniH5Czr+ZCrEwHwYDVR0jBBgwFoAUY4M6JB4+SVnroZxwHQSIfbSx/HQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGRDRDLzU2RUMzRDlDODM2 RDExRjA4ODE2MDA2QUM0RjlBRTAyL1k0TTZKQjQtU1Zucm9aeHdIUVNJZmJTeF9I US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTRNNkpCNC1TVm5yb1p4d0hRU0lmYlN4X0hRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkQ0Qy81NkVDM0Q5QzgzNkQxMUYwODgxNjAwNkFDNEY5QUUwMi8zQTRDOTlENDlG NzkxMUYwOEZDMDhBN0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGf8fjAPBAIAAjAJAwcAIAEN9gpAMA0GCSqGSIb3DQEBCwUA A4IBAQB1N6P97//DTwXL7aI5fpsnHbiC3zux6gCJoZT6WET4e9G9kM4J7b05DU+e BOAhH1hd6jtJNE0Dp+4FOdLZefFbeST+GTYO050WiQspHGQ9QXVdhG0etPtjLFrk JFh0UZ0lsxLaCjxcT0tjQndfhnS7950ibLpM2ytug0B7OwxncGhH5xdLgMNyQc4y dir9/bNw/czDZMsQ3/e+V+E5AjO/N73C1dgZ3UqJHzYR5DD42AJk0/JT63IkdRd5 wBco+IB8XyejwZeSmMD6Gtzp5LSWW6y/LjbkEiwiIfdeci7F3ZbqeJN/O8nhpDQ1 WycCo8+2L9r4vaBBj2XVvKmE44NK -----END CERTIFICATE-----Generated at Mon Oct 20 09:09:49 2025 by rpki-client