$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/4D942BCE08A011ED8AD21272C4F9AE02.roa File: 4D942BCE08A011ED8AD21272C4F9AE02.roa (raw, json) Hash identifier: Th4mKp6+0pNQJZ74KauM9+0p7vkvxGV4bsaH8ldZHTQ= Subject key identifier: DA:3C:58:BD:AE:B6:8A:95:EC:62:57:7A:8F:CF:3D:72:22:F8:EC:BE Certificate issuer: /CN=A91E9CE4/serialNumber=14588A4BE9EB8A4B9982D1B25DEB0C60738AEFBB Certificate serial: 02C1 Authority key identifier: 14:58:8A:4B:E9:EB:8A:4B:99:82:D1:B2:5D:EB:0C:60:73:8A:EF:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFiKS-nrikuZgtGyXesMYHOK77s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/4D942BCE08A011ED8AD21272C4F9AE02.roa Signing time: Wed 17 Sep 2025 02:08:48 +0000 ROA not before: Wed 17 Sep 2025 02:08:48 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147008 IP address blocks: 103.172.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/FFiKS-nrikuZgtGyXesMYHOK77s.crl rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/FFiKS-nrikuZgtGyXesMYHOK77s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFiKS-nrikuZgtGyXesMYHOK77s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9CE4, serialNumber=14588A4BE9EB8A4B9982D1B25DEB0C60738AEFBB Validity Not Before: Sep 17 02:08:48 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ca182f-962a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f8:10:49:88:14:40:e0:1c:6f:59:53:e0:d1: 95:e0:1c:f2:08:13:16:53:f4:68:08:52:28:cc:f5: 36:db:84:33:c2:ff:c3:38:56:83:c5:e2:d8:ca:72: 5d:96:ff:b5:eb:e5:ba:e4:55:0d:50:b9:fa:b1:9a: f6:fc:c3:e5:0a:3e:77:aa:b2:5f:80:71:f1:cb:07: 24:79:ea:41:1c:64:5b:dc:60:18:a4:19:6c:ba:21: 8f:ec:94:22:b2:c9:fe:d0:22:90:4b:1a:48:f3:42: df:8f:8d:fa:b6:c1:09:33:aa:f1:44:13:90:54:39: 8e:14:3d:e9:94:52:67:ab:e6:ef:de:41:ca:94:e5: 87:17:24:e1:aa:3c:0a:72:f7:f2:fc:4f:0b:72:38: 06:fe:f1:17:5d:1f:36:48:38:24:32:7e:ab:33:ed: 92:ae:2f:30:35:10:d5:08:68:bd:37:a8:92:62:e5: 4e:b1:eb:70:86:ae:b6:13:2a:3f:fa:61:cf:47:b7: 3b:fd:ac:89:b5:9e:fc:da:8c:68:4f:bf:a4:bf:78: 11:a1:a7:b6:37:10:e1:6a:91:89:83:72:d4:2f:f8: 52:91:e3:24:49:29:da:c5:21:2d:a7:96:1b:e4:ba: f7:40:21:ed:52:40:49:6f:dc:8e:12:ae:90:dd:b2: af:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3C:58:BD:AE:B6:8A:95:EC:62:57:7A:8F:CF:3D:72:22:F8:EC:BE X509v3 Authority Key Identifier: keyid:14:58:8A:4B:E9:EB:8A:4B:99:82:D1:B2:5D:EB:0C:60:73:8A:EF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/FFiKS-nrikuZgtGyXesMYHOK77s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFiKS-nrikuZgtGyXesMYHOK77s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/4D942BCE08A011ED8AD21272C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.191.0/24 Signature Algorithm: sha256WithRSAEncryption d6:03:5a:3f:5b:e0:63:97:dc:ef:46:3a:63:37:e1:77:d3:50: 80:ab:4a:0f:7f:f0:47:96:68:8b:f1:1b:bc:5a:e3:8e:d1:75: 18:03:21:e9:23:c6:c7:78:58:75:9d:5c:9d:eb:b3:01:92:7e: 68:b5:ea:d8:60:4c:97:77:cc:d8:16:45:1c:ad:5b:2e:78:3d: 64:cc:75:ad:9e:4d:87:b8:82:ee:a6:39:3b:75:e6:26:1c:60: ee:77:4a:4f:d4:3c:49:38:c9:c3:d7:23:96:e9:d4:37:6a:f6: 31:74:e5:db:37:df:cf:83:7a:6a:9a:8c:75:2d:91:e7:c7:69: bf:8e:a5:9b:72:e5:93:b8:8c:bf:48:b0:41:d1:0d:9d:3d:be: 73:ab:d9:84:6a:9f:fb:22:7f:fc:3e:d8:4a:6a:af:e9:bc:08: ab:12:48:61:6f:ef:06:41:7b:2f:83:a5:62:24:54:96:1e:32: 49:cf:ce:4f:a4:fb:0a:dd:15:e2:32:f8:16:67:8c:e7:ec:67: f4:a4:13:2e:2b:7c:1f:82:0c:20:22:35:46:f0:86:a0:b4:1c: f0:10:90:08:3b:bd:d7:f5:74:cc:8f:a7:03:29:19:06:49:ba: 24:0e:60:0e:42:8b:54:d9:da:7d:a5:bc:54:f5:ba:f4:ff:4c: d6:cc:8c:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlDRTQxMTAvBgNVBAUTKDE0NTg4QTRCRTlFQjhBNEI5OTgyRDFCMjVERUIwQzYw NzM4QUVGQkIwHhcNMjUwOTE3MDIwODQ4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNhMTgyZi05NjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fgQSYgUQOAcb1lT4NGV4BzyCBMWU/RoCFIozPU224Qzwv/DOFaDxeLYynJd lv+16+W65FUNULn6sZr2/MPlCj53qrJfgHHxywckeepBHGRb3GAYpBlsuiGP7JQi ssn+0CKQSxpI80Lfj436tsEJM6rxRBOQVDmOFD3plFJnq+bv3kHKlOWHFyThqjwK cvfy/E8LcjgG/vEXXR82SDgkMn6rM+2Sri8wNRDVCGi9N6iSYuVOsetwhq62Eyo/ +mHPR7c7/ayJtZ782oxoT7+kv3gRoae2NxDhapGJg3LUL/hSkeMkSSnaxSEtp5Yb 5Lr3QCHtUkBJb9yOEq6Q3bKvUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNo8WL2u toqV7GJXeo/PPXIi+Oy+MB8GA1UdIwQYMBaAFBRYikvp64pLmYLRsl3rDGBziu+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUNFNC82OUNDQjVCQzA4 OUMxMUVEQkZBMkZCNEJDNEY5QUUwMi9GRmlLUy1ucmlrdVpndEd5WGVzTVlIT0s3 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGaUtTLW5yaWt1Wmd0R3lYZXNNWUhPSzc3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlDRTQvNjlDQ0I1QkMwODlDMTFFREJGQTJGQjRCQzRGOUFFMDIvNEQ5NDJCQ0Uw OEEwMTFFRDhBRDIxMjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrL8wDQYJKoZIhvcNAQELBQADggEBANYDWj9b4GOX3O9G OmM34XfTUICrSg9/8EeWaIvxG7xa447RdRgDIekjxsd4WHWdXJ3rswGSfmi16thg TJd3zNgWRRytWy54PWTMda2eTYe4gu6mOTt15iYcYO53Sk/UPEk4ycPXI5bp1Ddq 9jF05ds338+DemqajHUtkefHab+OpZty5ZO4jL9IsEHRDZ09vnOr2YRqn/sif/w+ 2Epqr+m8CKsSSGFv7wZBey+DpWIkVJYeMknPzk+k+wrdFeIy+BZnjOfsZ/SkEy4r fB+CDCAiNUbwhqC0HPAQkAg7vdf1dMyPpwMpGQZJuiQOYA5Ci1TZ2n2lvFT1uvT/ TNbMjMk= -----END CERTIFICATE-----Generated at Mon Oct 20 22:06:35 2025 by rpki-client