$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/4F7B7728DD5D11EF9312601BC4F9AE02.roa File: 4F7B7728DD5D11EF9312601BC4F9AE02.roa (raw, json) Hash identifier: Ftg4ftCr2lGn4RvcA0VVEwLsH6nD0OpE3hi7kVlpjbs= Subject key identifier: 08:31:D1:98:74:C7:BC:5E:D9:A3:15:42:B4:4F:4E:64:CE:10:5F:38 Certificate issuer: /CN=A91EEC3B/serialNumber=B7667505BB2042E72B62AE05BE2D1A3B41B4D235 Certificate serial: 0789 Authority key identifier: B7:66:75:05:BB:20:42:E7:2B:62:AE:05:BE:2D:1A:3B:41:B4:D2:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t2Z1BbsgQucrYq4Fvi0aO0G00jU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/4F7B7728DD5D11EF9312601BC4F9AE02.roa Signing time: Mon 22 Sep 2025 16:35:43 +0000 ROA not before: Mon 22 Sep 2025 16:35:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136917 IP address blocks: 103.110.126.0/24 maxlen: 24 2401:a840::/32 maxlen: 32 2401:a840::/36 maxlen: 36 2401:a840::/40 maxlen: 40 2401:a840:100::/40 maxlen: 40 2401:a840:200::/40 maxlen: 40 2401:a840:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/t2Z1BbsgQucrYq4Fvi0aO0G00jU.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/t2Z1BbsgQucrYq4Fvi0aO0G00jU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t2Z1BbsgQucrYq4Fvi0aO0G00jU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1929 (0x789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=B7667505BB2042E72B62AE05BE2D1A3B41B4D235 Validity Not Before: Sep 22 16:35:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d17adf-4cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9c:d6:e6:73:d8:6b:04:3e:8a:7a:c1:db:19: 04:26:50:10:4d:aa:38:66:ef:83:3f:bc:6f:96:e8: 4a:ca:24:8d:b7:6d:1f:cf:09:6d:2d:a8:42:f4:98: 1c:b9:bf:10:98:99:a0:76:77:9b:00:1b:7f:eb:9a: 75:1d:3f:73:af:5e:b6:83:34:98:f8:fc:7a:47:e2: 3f:e5:91:40:76:b2:f5:e6:62:ff:1a:07:01:e7:39: cd:9e:4e:0a:2a:19:1c:80:18:67:78:8e:54:85:fd: 16:8a:41:f7:ae:e1:6f:40:78:a7:10:43:ca:9b:41: 55:53:a1:34:ed:b8:f7:df:a8:8b:48:57:3a:35:7d: a7:71:d6:b3:8c:2c:32:4f:ab:29:19:f0:bd:92:8a: 2e:66:4c:6d:f5:ca:32:d9:4c:b7:32:b8:ef:65:36: 4d:e2:09:5f:51:3a:35:d0:44:d1:98:72:e0:ac:21: c6:5c:db:c7:71:6a:4d:bf:39:2b:b7:59:27:9b:8e: e4:9c:c3:4d:4d:63:08:ed:78:e1:aa:69:17:83:62: 6d:c6:a3:2c:7c:5c:a2:0e:14:37:d1:6a:fb:5a:b5: 63:0d:f8:8c:fa:ad:e3:72:d6:8f:bb:b5:d4:77:40: a4:b4:54:78:f8:69:e4:2c:c6:22:3e:c7:b0:e5:ef: 8e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:31:D1:98:74:C7:BC:5E:D9:A3:15:42:B4:4F:4E:64:CE:10:5F:38 X509v3 Authority Key Identifier: keyid:B7:66:75:05:BB:20:42:E7:2B:62:AE:05:BE:2D:1A:3B:41:B4:D2:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/t2Z1BbsgQucrYq4Fvi0aO0G00jU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t2Z1BbsgQucrYq4Fvi0aO0G00jU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/4F7B7728DD5D11EF9312601BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.126.0/24 IPv6: 2401:a840::/32 Signature Algorithm: sha256WithRSAEncryption 14:59:5d:cc:e7:84:ce:51:81:71:6c:db:36:13:12:54:f1:1c: 21:e2:82:8f:db:4d:0e:7c:7f:b8:b6:39:74:1f:fa:8a:1e:b9: fe:98:57:68:6e:2d:ca:85:3e:22:e4:75:76:03:48:6f:5a:ed: 12:07:ca:5e:a1:80:ea:17:fc:66:39:23:74:9e:19:20:74:18: 23:a1:96:52:29:3b:cd:a1:36:2e:e9:b0:6d:4b:39:00:07:1e: 64:eb:8c:d8:38:f6:3f:f3:0f:da:89:5b:ae:50:98:27:8f:d9: d5:21:79:d4:2b:f3:dc:bb:a5:b8:27:b4:1a:af:ab:4e:bb:d5: c7:56:f2:07:22:7f:3b:8e:1b:a9:ad:b1:69:43:e7:43:3f:e5: 1d:06:1b:b1:4d:b2:87:4a:4d:83:d7:fc:28:de:97:29:ac:9d: 8c:a0:a6:8d:9e:a9:a6:b1:10:99:b6:0d:1f:e2:12:06:c8:23: 3e:17:6a:93:a6:3d:ba:40:af:9f:98:0c:d0:fe:fb:5d:e3:f4: e4:2a:1b:56:3c:e3:ed:d7:d9:6c:a7:4d:55:c4:97:78:e1:59: 77:9e:d0:76:4a:6d:70:70:db:6d:a2:d3:38:5c:bd:25:76:ab: 14:1d:ec:8e:cc:3e:5c:1c:10:67:16:ac:c6:d1:e7:28:9e:f0: d6:43:6c:98 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKEI3NjY3NTA1QkIyMDQyRTcyQjYyQUUwNUJFMkQxQTNC NDFCNEQyMzUwHhcNMjUwOTIyMTYzNTQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxN2FkZi00Y2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJzW5nPYawQ+inrB2xkEJlAQTao4Zu+DP7xvluhKyiSNt20fzwltLahC9Jgc ub8QmJmgdnebABt/65p1HT9zr162gzSY+Px6R+I/5ZFAdrL15mL/GgcB5znNnk4K KhkcgBhneI5Uhf0WikH3ruFvQHinEEPKm0FVU6E07bj336iLSFc6NX2ncdazjCwy T6spGfC9koouZkxt9coy2Uy3MrjvZTZN4glfUTo10ETRmHLgrCHGXNvHcWpNvzkr t1knm47knMNNTWMI7XjhqmkXg2JtxqMsfFyiDhQ30Wr7WrVjDfiM+q3jctaPu7XU d0CktFR4+GnkLMYiPsew5e+OtQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAgx0Zh0 x7xe2aMVQrRPTmTOEF84MB8GA1UdIwQYMBaAFLdmdQW7IELnK2KuBb4tGjtBtNI1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi90MloxQmJzZ1F1Y3JZcTRGdmkwYU8wRzAw alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QyWjFCYnNnUXVjcllxNEZ2aTBhTzBHMDBqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDM0IvNkIzN0UxOUM4NDE3MTFFNzg1RjE3MDgwQzRGOUFFMDIvNEY3Qjc3MjhE RDVEMTFFRjkzMTI2MDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnbn4wDQQCAAIwBwMFACQBqEAwDQYJKoZIhvcNAQELBQAD ggEBABRZXcznhM5RgXFs2zYTElTxHCHigo/bTQ58f7i2OXQf+ooeuf6YV2huLcqF PiLkdXYDSG9a7RIHyl6hgOoX/GY5I3SeGSB0GCOhllIpO82hNi7psG1LOQAHHmTr jNg49j/zD9qJW65QmCeP2dUhedQr89y7pbgntBqvq0671cdW8gcifzuOG6mtsWlD 50M/5R0GG7FNsodKTYPX/CjelymsnYygpo2eqaaxEJm2DR/iEgbIIz4XapOmPbpA r5+YDND++13j9OQqG1Y84+3X2WynTVXEl3jhWXee0HZKbXBw222i0zhcvSV2qxQd 7I7MPlwcEGcWrMbR5yie8NZDbJg= -----END CERTIFICATE-----Generated at Mon Oct 20 16:06:52 2025 by rpki-client