$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/09F041C675FB11EAB470A130C4F9AE02.roa File: 09F041C675FB11EAB470A130C4F9AE02.roa (raw, json) Hash identifier: RMsg5QWeiEkRgPY6Tmmzu/lfOLCSCEngacbP0E3B76I= Subject key identifier: 1B:2A:93:30:78:FB:2C:C7:A0:B2:A0:86:48:A6:10:46:C2:FE:33:29 Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1221 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/09F041C675FB11EAB470A130C4F9AE02.roa Signing time: Tue 14 Oct 2025 18:16:15 +0000 ROA not before: Tue 14 Oct 2025 18:16:15 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 0 IP address blocks: 103.21.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4641 (0x1221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Oct 14 18:16:15 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ee936e-4636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d3:4f:bf:6c:65:2f:c9:fb:de:c8:f2:52:7d: bc:02:f0:f3:1e:59:08:6a:7e:82:ba:93:f0:ea:26: d0:1e:d9:49:2f:1b:08:1c:cf:e8:89:27:47:03:90: 8f:0a:17:5f:c3:71:32:12:06:85:60:e5:8c:1f:f1: ba:81:1b:7a:10:c7:9a:73:35:31:0d:dd:13:e8:3b: 8f:6a:12:f7:f7:93:c0:e5:f3:1b:b2:12:b7:cc:f6: 3a:be:cb:70:fc:c9:1e:37:13:a8:42:d7:98:31:52: ae:95:88:92:6c:45:04:55:40:a7:43:48:14:66:56: d4:a0:fb:ae:65:a0:e6:91:4c:3b:1b:49:57:b5:ec: 0a:16:c1:40:eb:dd:38:0f:9e:de:51:b5:23:4c:40: c3:3d:4e:f5:9e:1a:5e:05:3a:43:f5:3f:87:53:24: 9b:53:52:40:7f:a7:12:56:b3:ff:09:38:9d:84:bd: ef:d3:3a:fa:72:2d:80:2c:6e:08:2a:20:dd:67:06: 8e:60:cd:92:83:c3:e4:31:2c:ab:c5:03:7a:39:f2: 20:f9:2c:6f:b8:d8:a8:c4:ee:68:50:21:2a:25:4f: 2e:fb:37:d4:fa:2e:2b:15:f6:2c:e8:af:5b:6d:00: 48:e7:ac:0e:4b:c7:5a:70:57:db:9d:29:58:ce:47: 80:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2A:93:30:78:FB:2C:C7:A0:B2:A0:86:48:A6:10:46:C2:FE:33:29 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/09F041C675FB11EAB470A130C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.244.0/23 Signature Algorithm: sha256WithRSAEncryption 52:78:77:fb:14:2b:3d:89:8d:b9:57:00:db:66:f9:16:27:5f: d7:37:9e:0c:9c:10:a3:84:8c:e6:86:59:55:73:45:35:d0:4e: e6:6e:f7:06:19:dd:df:6f:21:f1:97:15:89:55:cb:25:53:5c: 67:fe:0d:2a:60:44:ba:a6:13:bc:58:03:9b:84:be:f9:53:06: 7d:74:4b:61:24:d7:f5:84:a8:f8:9b:97:27:c4:f8:28:3d:a3: e2:82:48:1f:ff:79:14:25:b2:6d:6b:89:7e:fe:df:fe:56:e9: 6f:03:32:2c:c9:88:da:84:f3:fd:5d:55:20:de:61:be:f2:42: 30:2f:d5:61:37:aa:8c:17:01:71:74:20:c6:97:77:5a:44:ce: 54:99:24:39:d2:d7:71:1d:d3:d8:65:ca:1f:51:f8:fd:01:20: de:d6:c5:a5:81:96:7b:1f:c6:3f:fd:5d:0d:f3:15:e2:6f:34: c1:26:db:0a:78:c3:eb:8b:5b:96:9c:e4:14:7a:a3:76:eb:13: b9:47:2b:78:36:1f:c6:bd:0c:c6:43:3c:7d:50:34:5a:a2:48: f4:70:2e:46:63:47:4b:63:cc:fe:90:33:ae:89:5f:63:3d:57: 40:07:12:a5:82:6e:60:9e:5f:1a:78:35:bd:cb:ef:c4:81:97: 83:4a:3b:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUxMDE0MTgxNjE1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlOTM2ZS00NjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtNPv2xlL8n73sjyUn28AvDzHlkIan6CupPw6ibQHtlJLxsIHM/oiSdHA5CP Chdfw3EyEgaFYOWMH/G6gRt6EMeaczUxDd0T6DuPahL395PA5fMbshK3zPY6vstw /MkeNxOoQteYMVKulYiSbEUEVUCnQ0gUZlbUoPuuZaDmkUw7G0lXtewKFsFA6904 D57eUbUjTEDDPU71nhpeBTpD9T+HUySbU1JAf6cSVrP/CTidhL3v0zr6ci2ALG4I KiDdZwaOYM2Sg8PkMSyrxQN6OfIg+SxvuNioxO5oUCEqJU8u+zfU+i4rFfYs6K9b bQBI56wOS8dacFfbnSlYzkeAfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBsqkzB4 +yzHoLKghkimEEbC/jMpMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvMDlGMDQxQzY3 NUZCMTFFQUI0NzBBMTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnFfQwDQYJKoZIhvcNAQELBQADggEBAFJ4d/sUKz2JjblX ANtm+RYnX9c3ngycEKOEjOaGWVVzRTXQTuZu9wYZ3d9vIfGXFYlVyyVTXGf+DSpg RLqmE7xYA5uEvvlTBn10S2Ek1/WEqPiblyfE+Cg9o+KCSB//eRQlsm1riX7+3/5W 6W8DMizJiNqE8/1dVSDeYb7yQjAv1WE3qowXAXF0IMaXd1pEzlSZJDnS13Ed09hl yh9R+P0BIN7WxaWBlnsfxj/9XQ3zFeJvNMEm2wp4w+uLW5ac5BR6o3brE7lHK3g2 H8a9DMZDPH1QNFqiSPRwLkZjR0tjzP6QM66JX2M9V0AHEqWCbmCeXxp4Nb3L78SB l4NKO4g= -----END CERTIFICATE-----Generated at Mon Oct 20 10:16:35 2025 by rpki-client