$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/40FD5BBC9A9F11F0BDC8DE5EC4F9AE02.roa File: 40FD5BBC9A9F11F0BDC8DE5EC4F9AE02.roa (raw, json) Hash identifier: vxae5t2sQbtEtMchYbGO8cElyuQ+shCxDjmGVNX6+iE= Subject key identifier: 1D:18:AB:0B:0F:14:11:5D:BA:9E:DD:63:00:85:48:5C:41:0A:13:85 Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 036A Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/40FD5BBC9A9F11F0BDC8DE5EC4F9AE02.roa Signing time: Fri 26 Sep 2025 06:08:43 +0000 ROA not before: Fri 26 Sep 2025 06:08:43 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 400342 IP address blocks: 103.243.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32, serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: Sep 26 06:08:43 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68d62deb-71a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:dc:a2:55:5a:19:0a:8d:e6:6e:dc:b6:6b:1f: 2a:4c:04:08:3c:7f:5f:e8:be:1b:72:b4:92:d5:74: 7c:bf:79:0a:8f:e4:3a:15:76:60:8e:3c:60:0b:52: 1d:77:05:39:86:19:00:d5:b6:d2:d9:da:eb:39:5e: 72:68:26:1c:95:6b:6f:00:e1:bb:90:a0:fe:8c:05: 1d:85:b3:03:d2:4d:a8:2a:6c:1e:7d:9a:5a:c4:f7: 41:dd:f8:f9:bc:2a:45:89:34:2d:a5:3f:7f:f3:2e: 45:31:f3:4c:4d:9b:58:43:e4:55:56:65:cb:c3:65: 69:1a:f1:95:37:70:84:1e:b7:4f:84:19:b0:73:a1: 8f:72:48:95:80:3e:4b:c8:d1:8c:fc:d1:23:78:72: 23:f4:0e:9f:06:cc:79:69:a3:58:31:f7:bb:0f:e7: ec:15:c3:eb:c5:71:9e:17:6a:03:ce:58:b9:69:83: a6:bb:4e:ea:9e:ad:0e:a4:10:de:9c:5c:59:ef:39: b0:d2:39:98:c7:b5:50:95:c3:c4:a7:34:56:f0:98: 62:24:33:88:2a:60:1c:4c:39:ff:3d:e1:85:e1:4d: 38:5c:87:bf:36:19:04:c0:30:bd:81:c7:88:3d:2e: 87:46:b4:3d:60:02:c0:ab:1a:50:68:8d:46:3c:84: 7f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:18:AB:0B:0F:14:11:5D:BA:9E:DD:63:00:85:48:5C:41:0A:13:85 X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/40FD5BBC9A9F11F0BDC8DE5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.117.0/24 Signature Algorithm: sha256WithRSAEncryption 76:86:82:89:60:63:09:03:b2:96:a8:27:b2:72:a7:3b:e7:35: 4e:4f:e1:cb:af:a5:76:3b:64:38:52:4c:f2:18:90:07:c2:88: 90:5a:99:2b:b4:e5:5f:d2:b1:17:44:5b:e5:57:2d:a6:c5:5b: 5e:bf:a3:76:58:16:49:f5:bb:f8:72:d0:e1:4e:b3:d2:ca:27: ce:bd:59:d7:b0:6f:c5:7e:02:29:81:38:81:98:b0:90:f8:b1: c5:88:76:fd:47:62:e2:e9:45:88:ae:31:96:5d:61:41:c7:05: b2:e1:42:a1:46:4a:90:c1:d5:96:c3:98:36:8d:0d:aa:31:4d: 1a:ff:1c:6a:5c:e6:ab:e6:2b:89:ca:05:76:ab:cc:c7:1b:38: e2:a1:68:16:b9:33:e1:b7:27:a9:58:11:65:ac:31:24:a2:ce: a6:5a:04:ec:eb:3b:9d:54:32:30:97:cb:bb:05:ef:07:10:f1: f6:aa:b8:ea:7d:4a:c8:aa:d6:9a:ae:81:90:e5:59:2e:b2:19: ba:d2:0b:52:93:3e:5c:30:f6:4f:fb:4c:61:ed:7a:6d:f0:6b: 59:b5:bf:d2:25:74:98:f2:a3:89:a1:f3:ae:4f:ba:6e:71:25: d0:90:96:98:1d:67:05:6c:47:54:64:c9:26:3f:74:7a:f9:65: 19:3e:a0:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjUwOTI2MDYwODQzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ2MmRlYi03MWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19yiVVoZCo3mbty2ax8qTAQIPH9f6L4bcrSS1XR8v3kKj+Q6FXZgjjxgC1Id dwU5hhkA1bbS2drrOV5yaCYclWtvAOG7kKD+jAUdhbMD0k2oKmwefZpaxPdB3fj5 vCpFiTQtpT9/8y5FMfNMTZtYQ+RVVmXLw2VpGvGVN3CEHrdPhBmwc6GPckiVgD5L yNGM/NEjeHIj9A6fBsx5aaNYMfe7D+fsFcPrxXGeF2oDzli5aYOmu07qnq0OpBDe nFxZ7zmw0jmYx7VQlcPEpzRW8JhiJDOIKmAcTDn/PeGF4U04XIe/NhkEwDC9gceI PS6HRrQ9YALAqxpQaI1GPIR/VwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB0YqwsP FBFdup7dYwCFSFxBChOFMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFMzIvNzIwOTU5RkMwMUMwMTFFREJEN0M2RjU4QzRGOUFFMDIvNDBGRDVCQkM5 QTlGMTFGMEJEQzhERTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn83UwDQYJKoZIhvcNAQELBQADggEBAHaGgolgYwkDspao J7JypzvnNU5P4cuvpXY7ZDhSTPIYkAfCiJBamSu05V/SsRdEW+VXLabFW16/o3ZY Fkn1u/hy0OFOs9LKJ869Wdewb8V+AimBOIGYsJD4scWIdv1HYuLpRYiuMZZdYUHH BbLhQqFGSpDB1ZbDmDaNDaoxTRr/HGpc5qvmK4nKBXarzMcbOOKhaBa5M+G3J6lY EWWsMSSizqZaBOzrO51UMjCXy7sF7wcQ8faquOp9Ssiq1pqugZDlWS6yGbrSC1KT Plww9k/7TGHtem3wa1m1v9IldJjyo4mh865Pum5xJdCQlpgdZwVsR1RkySY/dHr5 ZRk+oOI= -----END CERTIFICATE-----Generated at Sun Oct 19 22:25:15 2025 by rpki-client