$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6038/91E0C852AFFC11ECB0C3885DC4F9AE02/7ABCBB70AFFE11ECA52DBA5DC4F9AE02.roa File: 7ABCBB70AFFE11ECA52DBA5DC4F9AE02.roa (raw, json) Hash identifier: CeXuwP11Hlnq9QDEhsTJTE37eJqTRrnI7XzkFNsnOWc= Subject key identifier: D7:F7:BC:52:DA:80:E9:31:98:47:B4:18:4D:50:12:B7:AB:55:E9:05 Certificate issuer: /CN=A91E6038/serialNumber=7A98AB69B72BAAC6660E54DD1C6D8A062E2CD2FE Certificate serial: 03B5 Authority key identifier: 7A:98:AB:69:B7:2B:AA:C6:66:0E:54:DD:1C:6D:8A:06:2E:2C:D2:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epirabcrqsZmDlTdHG2KBi4s0v4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6038/91E0C852AFFC11ECB0C3885DC4F9AE02/7ABCBB70AFFE11ECA52DBA5DC4F9AE02.roa Signing time: Fri 17 Oct 2025 03:06:34 +0000 ROA not before: Fri 17 Oct 2025 03:06:34 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 137034 IP address blocks: 103.102.204.0/22 maxlen: 22 103.102.204.0/24 maxlen: 24 103.102.205.0/24 maxlen: 24 103.102.206.0/24 maxlen: 24 103.102.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6038/91E0C852AFFC11ECB0C3885DC4F9AE02/epirabcrqsZmDlTdHG2KBi4s0v4.crl rsync://rpki.apnic.net/member_repository/A91E6038/91E0C852AFFC11ECB0C3885DC4F9AE02/epirabcrqsZmDlTdHG2KBi4s0v4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epirabcrqsZmDlTdHG2KBi4s0v4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:41:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6038, serialNumber=7A98AB69B72BAAC6660E54DD1C6D8A062E2CD2FE Validity Not Before: Oct 17 03:06:34 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f1b2ba-5ac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:08:f4:e5:36:7b:49:49:fb:e5:00:e4:b8:c8: 42:ae:85:dc:18:09:73:eb:33:5a:44:d4:a8:30:90: dc:d7:04:57:b7:50:ef:2c:51:6d:b4:17:e5:ce:1f: 3f:30:75:48:15:ec:55:10:fb:45:1e:f3:5f:b9:98: 02:2e:6e:68:98:7f:31:b8:f3:55:1a:ea:dd:02:89: 56:2b:56:3f:67:4f:86:87:29:41:1f:4f:68:39:64: 10:35:7d:bf:da:38:f0:a1:9d:2d:75:da:58:44:2e: b6:a2:b1:fd:76:b3:cc:27:cd:95:b7:21:21:5f:9f: 5d:65:35:9d:49:51:cf:45:cd:df:10:60:75:1d:54: bc:8a:3f:9f:7f:3f:bd:48:c1:54:6c:b9:4c:36:42: 78:cf:b6:1e:06:b0:e3:97:95:ca:f5:e7:fb:e7:38: 7f:96:9a:76:d1:f1:0c:e3:4c:fc:02:16:ae:80:ee: 09:9e:0e:a7:82:35:9a:7f:2f:e6:6b:46:0d:c4:46: 0d:63:52:17:7b:0e:83:ec:20:17:f5:c5:e1:04:75: 32:02:9a:7b:94:0b:52:67:02:66:84:d6:7f:81:7e: e0:c7:93:f6:4f:06:e8:34:0b:79:1c:8a:fa:a7:a0: 08:a9:2d:fd:b0:c2:14:02:63:72:5a:f6:3a:30:7c: 1a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:F7:BC:52:DA:80:E9:31:98:47:B4:18:4D:50:12:B7:AB:55:E9:05 X509v3 Authority Key Identifier: keyid:7A:98:AB:69:B7:2B:AA:C6:66:0E:54:DD:1C:6D:8A:06:2E:2C:D2:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6038/91E0C852AFFC11ECB0C3885DC4F9AE02/epirabcrqsZmDlTdHG2KBi4s0v4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epirabcrqsZmDlTdHG2KBi4s0v4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6038/91E0C852AFFC11ECB0C3885DC4F9AE02/7ABCBB70AFFE11ECA52DBA5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.204.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:55:8c:ba:f9:94:ca:45:2a:7f:85:0a:66:da:2a:99:36:b1: bd:f0:5b:75:b3:e4:c7:fb:4e:14:bd:f3:9d:60:2a:04:d1:3b: ea:23:cc:0c:3e:26:38:9d:fe:0c:9c:ba:43:ba:95:8c:a9:62: 0e:7f:b5:30:86:2c:e1:1d:af:a0:9a:0c:bb:ac:bd:ef:63:ae: a3:2f:09:c8:cc:87:a8:1c:be:65:9a:9c:a1:38:90:b7:17:8f: 5b:e0:58:97:dc:55:05:38:51:b6:39:82:5c:c2:20:53:f2:c5: 9a:b0:37:79:14:ad:b2:48:6a:77:38:5d:41:7f:86:16:cc:2e: 84:24:2b:b2:66:a6:0f:33:82:5a:80:f5:34:e4:44:15:7e:1d: 72:02:3f:a7:17:8b:02:c9:77:6a:9a:1a:87:bb:f4:e9:0c:ea: 88:f6:57:0e:04:e9:59:ae:c8:85:cd:6e:fa:a7:61:f7:f2:6c: fa:e8:7f:ee:02:6f:ee:92:ea:1c:d8:7f:50:2f:d0:53:37:74: c4:d6:00:06:8a:26:fe:2c:fe:4d:bb:1d:cc:72:96:a5:d8:d8: d5:6b:c6:0c:76:77:42:e5:38:2c:7e:8b:ca:98:8c:bd:58:75: 3a:d3:fd:b3:6e:d3:8c:67:48:76:2f:96:08:89:dd:96:4e:32: 38:c6:42:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYwMzgxMTAvBgNVBAUTKDdBOThBQjY5QjcyQkFBQzY2NjBFNTRERDFDNkQ4QTA2 MkUyQ0QyRkUwHhcNMjUxMDE3MDMwNjM0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxYjJiYS01YWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwj05TZ7SUn75QDkuMhCroXcGAlz6zNaRNSoMJDc1wRXt1DvLFFttBflzh8/ MHVIFexVEPtFHvNfuZgCLm5omH8xuPNVGurdAolWK1Y/Z0+GhylBH09oOWQQNX2/ 2jjwoZ0tddpYRC62orH9drPMJ82VtyEhX59dZTWdSVHPRc3fEGB1HVS8ij+ffz+9 SMFUbLlMNkJ4z7YeBrDjl5XK9ef75zh/lpp20fEM40z8AhaugO4Jng6ngjWafy/m a0YNxEYNY1IXew6D7CAX9cXhBHUyApp7lAtSZwJmhNZ/gX7gx5P2TwboNAt5HIr6 p6AIqS39sMIUAmNyWvY6MHwamwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNf3vFLa gOkxmEe0GE1QErerVekFMB8GA1UdIwQYMBaAFHqYq2m3K6rGZg5U3RxtigYuLNL+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjAzOC85MUUwQzg1MkFG RkMxMUVDQjBDMzg4NURDNEY5QUUwMi9lcGlyYWJjcnFzWm1EbFRkSEcyS0JpNHMw djQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwaXJhYmNycXNabURsVGRIRzJLQmk0czB2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYwMzgvOTFFMEM4NTJBRkZDMTFFQ0IwQzM4ODVEQzRGOUFFMDIvN0FCQ0JCNzBB RkZFMTFFQ0E1MkRCQTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnZswwDQYJKoZIhvcNAQELBQADggEBAD9VjLr5lMpFKn+F CmbaKpk2sb3wW3Wz5Mf7ThS9851gKgTRO+ojzAw+Jjid/gycukO6lYypYg5/tTCG LOEdr6CaDLusve9jrqMvCcjMh6gcvmWanKE4kLcXj1vgWJfcVQU4UbY5glzCIFPy xZqwN3kUrbJIanc4XUF/hhbMLoQkK7Jmpg8zglqA9TTkRBV+HXICP6cXiwLJd2qa Goe79OkM6oj2Vw4E6VmuyIXNbvqnYffybProf+4Cb+6S6hzYf1Av0FM3dMTWAAaK Jv4s/k27HcxylqXY2NVrxgx2d0LlOCx+i8qYjL1YdTrT/bNu04xnSHYvlgiJ3ZZO MjjGQto= -----END CERTIFICATE-----Generated at Mon Oct 20 12:44:06 2025 by rpki-client