$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/289652667B7511F0A2592A6EC4F9AE02.roa File: 289652667B7511F0A2592A6EC4F9AE02.roa (raw, json) Hash identifier: 74iex85dEjMYqsMC503dPAfze/x+8hBe6o6Qy42zmTM= Subject key identifier: F3:A2:F0:91:9B:6E:63:1A:8A:F4:0D:CA:A5:29:4A:72:8B:70:28:FB Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Certificate serial: 0176 Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/289652667B7511F0A2592A6EC4F9AE02.roa Signing time: Wed 15 Oct 2025 07:01:36 +0000 ROA not before: Wed 15 Oct 2025 07:01:36 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141209 IP address blocks: 103.252.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF2, serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Validity Not Before: Oct 15 07:01:36 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ef46cf-167c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:21:d8:82:c5:ce:aa:49:33:47:cd:b2:73:4e: 37:43:c6:ac:22:9e:09:55:b7:55:d0:94:e1:71:17: 55:89:cb:ac:a2:76:8e:76:1b:c6:1f:28:45:6c:c6: 8d:44:b6:30:fa:73:7a:20:3c:bf:a6:5b:a9:e3:3b: a7:33:b9:21:4d:e9:e0:47:9f:db:b5:73:39:d9:39: c4:c5:5f:fc:e1:f4:44:75:d4:5a:f6:e2:c2:f5:30: d0:83:51:4a:37:ca:bb:44:18:c0:7c:7c:9e:33:df: 4b:2a:d5:2b:92:12:b0:a5:5e:7a:fc:3d:dd:88:a9: 15:08:8f:a9:6f:57:22:0a:24:06:62:d4:9b:76:4d: ac:46:b0:28:a2:82:4f:da:e7:17:22:82:f9:48:25: 79:f0:7b:a5:b1:89:88:d7:fb:27:89:b9:de:7d:f1: a3:74:ee:cd:9a:cb:1b:47:09:5d:8e:8f:3f:7c:6a: 20:93:49:66:b9:98:50:0d:60:22:a0:57:6b:e0:e7: db:a5:2d:9c:c8:d6:87:11:be:c2:13:c2:70:ee:52: 22:2a:e7:ea:1f:6d:93:45:40:60:d8:5f:87:12:96: 6c:a8:d5:8c:77:6b:95:66:6b:1b:14:2a:6a:8c:6b: 6d:90:16:82:09:44:a2:22:f7:64:3d:2e:ea:fc:34: 06:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A2:F0:91:9B:6E:63:1A:8A:F4:0D:CA:A5:29:4A:72:8B:70:28:FB X509v3 Authority Key Identifier: keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/289652667B7511F0A2592A6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.121.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:f2:02:12:43:ea:89:7e:c9:96:3e:ff:d6:1c:95:0d:99:6d: 5c:71:02:df:e2:4a:68:7c:50:26:77:04:39:85:89:96:2b:c3: 0a:2e:f2:71:26:f7:be:97:d3:97:48:10:4d:90:dc:b8:0b:0e: f3:92:9b:63:0f:cb:e7:20:83:91:1b:e2:26:0f:3d:52:42:55: 09:2f:09:e7:3a:b0:74:41:53:05:36:e9:34:89:60:08:cd:1a: 84:a4:72:a7:77:bb:16:b9:8c:7e:ec:d1:b7:6c:c8:18:22:2c: 37:06:b2:e6:49:35:0e:b1:b8:14:7e:e3:46:c4:9d:be:81:2e: d9:ba:db:a6:a0:6f:9f:7b:e6:ca:68:70:87:89:a5:f1:37:de: 8d:05:ca:39:7d:df:5e:08:8a:5e:a1:63:6b:d7:47:48:e1:5a: 9b:c0:6d:9f:98:a3:66:80:e5:af:9f:e9:c0:76:21:16:f4:a9: 7f:a4:76:6f:00:72:f5:5e:55:8a:bc:17:d2:17:8f:07:05:48: 4d:71:95:b7:9e:5a:87:83:b9:00:b6:b5:20:84:55:15:6a:9f: 52:4c:4e:8f:b8:64:fb:03:10:42:c0:7f:37:d8:27:84:05:62: 03:5d:2b:ba:f5:8c:21:f6:a9:03:85:46:1c:e5:d3:1a:ca:f8: df:c6:d3:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjIxMTAvBgNVBAUTKDdDRDk1OEEwMDdGNEYwRTU2RTRBOEQyNDU3NjY4ODYy MkJBQjcyMjEwHhcNMjUxMDE1MDcwMTM2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVmNDZjZi0xNjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiHYgsXOqkkzR82yc043Q8asIp4JVbdV0JThcRdVicusonaOdhvGHyhFbMaN RLYw+nN6IDy/plup4zunM7khTengR5/btXM52TnExV/84fREddRa9uLC9TDQg1FK N8q7RBjAfHyeM99LKtUrkhKwpV56/D3diKkVCI+pb1ciCiQGYtSbdk2sRrAoooJP 2ucXIoL5SCV58HulsYmI1/snibneffGjdO7NmssbRwldjo8/fGogk0lmuZhQDWAi oFdr4OfbpS2cyNaHEb7CE8Jw7lIiKufqH22TRUBg2F+HEpZsqNWMd2uVZmsbFCpq jGttkBaCCUSiIvdkPS7q/DQGgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPOi8JGb bmMaivQNyqUpSnKLcCj7MB8GA1UdIwQYMBaAFHzZWKAH9PDlbkqNJFdmiGIrq3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGMi81NzMyQzgzODg0 NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhPVnVTbzBrVjJhSVlpdXJj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZObFlvQWYwOE9WdVNvMGtWMmFJWWl1cmNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThBRjIvNTczMkM4Mzg4NDRDMTFFRUIxRjJDQTI5QzRGOUFFMDIvMjg5NjUyNjY3 Qjc1MTFGMEEyNTkyQTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn/HkwDQYJKoZIhvcNAQELBQADggEBAA7yAhJD6ol+yZY+ /9YclQ2ZbVxxAt/iSmh8UCZ3BDmFiZYrwwou8nEm976X05dIEE2Q3LgLDvOSm2MP y+cgg5Eb4iYPPVJCVQkvCec6sHRBUwU26TSJYAjNGoSkcqd3uxa5jH7s0bdsyBgi LDcGsuZJNQ6xuBR+40bEnb6BLtm626agb5975spocIeJpfE33o0Fyjl9314Iil6h Y2vXR0jhWpvAbZ+Yo2aA5a+f6cB2IRb0qX+kdm8AcvVeVYq8F9IXjwcFSE1xlbee WoeDuQC2tSCEVRVqn1JMTo+4ZPsDEELAfzfYJ4QFYgNdK7r1jCH2qQOFRhzl0xrK +N/G00A= -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:17 2025 by rpki-client