$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/64DE26F6386011EC83DC2E23C4F9AE02.roa File: 64DE26F6386011EC83DC2E23C4F9AE02.roa (raw, json) Hash identifier: DMlimdEM70tJoVk9wmrJUFu8IwTQ/ffrCAdf/ZcjEXY= Subject key identifier: 96:93:7C:4D:A8:D8:DC:04:2D:E9:3F:AC:84:76:EB:70:C6:39:74:1F Certificate issuer: /CN=A91E6E96/serialNumber=C55CE78C45F485608B8243606003D80A8A16CCD6 Certificate serial: 04CC Authority key identifier: C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/64DE26F6386011EC83DC2E23C4F9AE02.roa Signing time: Sun 31 Aug 2025 00:46:11 +0000 ROA not before: Sun 31 Aug 2025 00:46:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 142581 IP address blocks: 103.170.18.0/23 maxlen: 23 103.170.18.0/24 maxlen: 24 103.170.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1228 (0x4cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6E96, serialNumber=C55CE78C45F485608B8243606003D80A8A16CCD6 Validity Not Before: Aug 31 00:46:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b39b53-9bde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:97:8f:15:2d:c0:fc:30:4c:de:82:3f:cb:41: b2:ea:69:0d:f0:cf:e7:f9:40:09:98:cd:01:de:42: 29:af:54:09:cd:dd:4d:88:9e:5f:ce:57:00:1c:22: a7:8b:59:85:70:14:d6:9d:40:c9:61:eb:ee:2c:f7: 7a:94:b9:0a:a4:40:cb:53:fc:6f:29:ed:49:69:74: 65:af:67:a7:ab:c2:37:fa:f4:b0:11:6d:ba:eb:18: 7e:a2:44:16:74:34:6d:67:d6:0b:c7:76:6e:b5:49: 0a:76:83:2f:ee:07:fc:d7:b7:e7:5a:fe:2c:1a:b1: 76:15:bb:30:68:fa:38:8b:bd:43:0c:66:f6:58:22: f4:9f:fc:07:3c:15:4b:1f:c9:4c:2c:d2:14:a1:91: 03:12:99:fa:5d:a2:ab:cf:21:d0:dd:0f:b8:5d:04: f6:a3:d3:56:f9:be:bb:92:80:28:2d:5a:2f:e7:0d: 26:47:bc:af:2e:ae:5a:d5:c0:9e:7b:48:d9:65:ff: 62:14:f1:e2:4e:7f:ee:3b:95:48:1b:d7:b9:d5:63: c3:e0:25:98:59:a8:c8:62:80:49:de:10:13:7a:fd: 2a:f3:a7:59:d8:2c:67:c9:ef:ad:0b:2e:e1:0b:b5: ad:4e:42:e0:c2:09:17:3f:83:30:b0:43:cd:ea:e9: 24:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:93:7C:4D:A8:D8:DC:04:2D:E9:3F:AC:84:76:EB:70:C6:39:74:1F X509v3 Authority Key Identifier: keyid:C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/64DE26F6386011EC83DC2E23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.18.0/23 Signature Algorithm: sha256WithRSAEncryption cf:9e:67:cb:5d:42:98:0f:56:48:16:f5:72:d8:2d:a0:85:47: e9:cf:5f:b1:75:66:87:19:ed:f7:3f:ce:26:d4:61:c0:a6:13: da:64:dc:4a:20:85:60:38:fb:59:42:34:be:f5:59:7c:4e:8a: ae:7d:f1:63:50:f4:08:1e:e4:ac:fd:5e:b4:f4:3f:fc:d5:2b: 91:15:ae:7a:5c:f9:fc:9c:dc:79:f1:8b:48:4d:b6:8b:fe:53: d1:1b:2f:6e:8a:59:ce:5a:34:b4:80:28:b4:ed:ac:2b:3a:03: b5:56:6d:4c:a8:f4:63:ce:5e:57:8b:e1:ea:a6:8e:26:81:25: 3d:74:bc:d5:65:38:ab:63:94:df:cd:ae:8f:65:c8:c8:75:1e: 4f:2d:4e:f8:18:6d:fe:4b:a3:e6:dc:b2:f8:4b:c2:63:bd:09: 3f:6c:a8:8e:41:c6:fc:d7:81:93:2e:4d:a7:8c:85:08:14:45: e6:0a:c5:bb:5a:ad:5a:cb:90:c0:e4:db:07:4a:a0:2f:91:76: 57:ac:2f:80:c1:1c:1a:f9:6c:af:f4:94:61:c0:68:84:1f:de: cb:0f:16:73:f2:a2:9f:a6:8e:56:95:4c:72:17:a5:1b:ab:6a: 70:89:40:5b:92:2e:09:78:7d:7d:68:ed:f1:3a:fd:d4:b7:e0: fe:6f:67:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZFOTYxMTAvBgNVBAUTKEM1NUNFNzhDNDVGNDg1NjA4QjgyNDM2MDYwMDNEODBB OEExNkNDRDYwHhcNMjUwODMxMDA0NjExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzOWI1My05YmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZePFS3A/DBM3oI/y0Gy6mkN8M/n+UAJmM0B3kIpr1QJzd1NiJ5fzlcAHCKn i1mFcBTWnUDJYevuLPd6lLkKpEDLU/xvKe1JaXRlr2enq8I3+vSwEW266xh+okQW dDRtZ9YLx3ZutUkKdoMv7gf817fnWv4sGrF2FbswaPo4i71DDGb2WCL0n/wHPBVL H8lMLNIUoZEDEpn6XaKrzyHQ3Q+4XQT2o9NW+b67koAoLVov5w0mR7yvLq5a1cCe e0jZZf9iFPHiTn/uO5VIG9e51WPD4CWYWajIYoBJ3hATev0q86dZ2Cxnye+tCy7h C7WtTkLgwgkXP4MwsEPN6ukk3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJaTfE2o 2NwELek/rIR263DGOXQfMB8GA1UdIwQYMBaAFMVc54xF9IVgi4JDYGAD2AqKFszW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkU5Ni83QjlEM0RFQTM4 NUMxMUVDOUMyNTg3NzhDNEY5QUUwMi94VnpuakVYMGhXQ0xna05nWUFQWUNvb1d6 TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWem5qRVgwaFdDTGdrTmdZQVBZQ29vV3pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZFOTYvN0I5RDNERUEzODVDMTFFQzlDMjU4Nzc4QzRGOUFFMDIvNjRERTI2RjYz ODYwMTFFQzgzREMyRTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqhIwDQYJKoZIhvcNAQELBQADggEBAM+eZ8tdQpgPVkgW 9XLYLaCFR+nPX7F1ZocZ7fc/zibUYcCmE9pk3EoghWA4+1lCNL71WXxOiq598WNQ 9Age5Kz9XrT0P/zVK5EVrnpc+fyc3Hnxi0hNtov+U9EbL26KWc5aNLSAKLTtrCs6 A7VWbUyo9GPOXleL4eqmjiaBJT10vNVlOKtjlN/Nro9lyMh1Hk8tTvgYbf5Lo+bc svhLwmO9CT9sqI5BxvzXgZMuTaeMhQgUReYKxbtarVrLkMDk2wdKoC+RdlesL4DB HBr5bK/0lGHAaIQf3ssPFnPyop+mjlaVTHIXpRuranCJQFuSLgl4fX1o7fE6/dS3 4P5vZ5c= -----END CERTIFICATE-----Generated at Mon Oct 20 05:46:49 2025 by rpki-client