$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/94467BCE95EE11F0B275FA48C4F9AE02.roa File: 94467BCE95EE11F0B275FA48C4F9AE02.roa (raw, json) Hash identifier: di6M3jWKOmaxEhMQ/IxoKsnFZ1/UQ/LM6pZHtmuxUVI= Subject key identifier: 69:27:9E:EA:07:9E:9B:9D:F5:EC:7A:8E:F1:2E:57:D3:0C:04:D5:93 Certificate issuer: /CN=A91F39EC/serialNumber=E1B9A6EB0C8FAFF7F54C68C05624A28CFD3FADEC Certificate serial: 017D Authority key identifier: E1:B9:A6:EB:0C:8F:AF:F7:F5:4C:68:C0:56:24:A2:8C:FD:3F:AD:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bmm6wyPr_f1TGjAViSijP0_rew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/94467BCE95EE11F0B275FA48C4F9AE02.roa Signing time: Sat 20 Sep 2025 06:53:57 +0000 ROA not before: Sat 20 Sep 2025 06:53:57 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151832 IP address blocks: 103.213.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/4bmm6wyPr_f1TGjAViSijP0_rew.crl rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/4bmm6wyPr_f1TGjAViSijP0_rew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bmm6wyPr_f1TGjAViSijP0_rew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 14:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39EC, serialNumber=E1B9A6EB0C8FAFF7F54C68C05624A28CFD3FADEC Validity Not Before: Sep 20 06:53:57 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68ce4f85-baea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:23:dc:e5:c6:d5:13:09:1b:48:b1:01:76:57: 89:dd:fc:f2:c2:de:40:f4:2f:ff:a6:4f:27:2f:24: 88:1c:b0:61:4e:47:96:6c:d6:fc:d1:d5:15:e6:75: 02:36:67:2e:97:0e:50:74:cf:39:f3:62:6c:ea:20: 67:ab:b2:6d:d1:1b:70:f7:35:be:de:ff:67:23:4f: f1:7a:8c:e7:c3:0f:43:5c:15:e7:04:80:55:46:a8: 3c:51:5e:70:83:84:f5:35:57:ed:88:2f:96:ef:07: 6e:11:aa:0d:80:6f:d2:25:ec:7b:39:05:49:0c:ba: f5:d2:40:93:11:cf:78:30:db:54:b3:34:2f:70:6f: d1:20:c8:7c:9f:80:75:eb:89:aa:93:84:5e:17:42: 84:ee:12:1c:e4:89:45:3d:0e:0c:cd:99:80:d7:4d: d8:47:dd:8f:9c:b5:6a:c1:c8:e9:12:d5:53:e7:2c: e1:b7:61:1c:69:e2:73:95:b8:93:4f:38:55:de:3c: a0:27:04:f3:f4:72:16:63:c7:65:87:ef:10:c1:ce: f0:5b:54:eb:08:94:16:75:ea:d3:9d:a1:ad:65:6d: a4:ef:c7:78:fa:8b:04:ad:20:3d:c6:a8:b4:fb:35: cd:e1:74:92:ed:73:ed:67:40:a6:20:6d:10:0f:ec: 9e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:27:9E:EA:07:9E:9B:9D:F5:EC:7A:8E:F1:2E:57:D3:0C:04:D5:93 X509v3 Authority Key Identifier: keyid:E1:B9:A6:EB:0C:8F:AF:F7:F5:4C:68:C0:56:24:A2:8C:FD:3F:AD:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/4bmm6wyPr_f1TGjAViSijP0_rew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bmm6wyPr_f1TGjAViSijP0_rew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/94467BCE95EE11F0B275FA48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.220.0/24 Signature Algorithm: sha256WithRSAEncryption bd:50:65:34:95:cf:87:95:dc:f1:32:64:9f:be:ec:2a:03:83: e8:02:68:ac:b1:3a:d1:c9:1f:e3:70:f9:a7:37:24:6e:38:da: ce:84:34:aa:ce:7f:66:33:cc:13:85:0c:ff:43:6d:22:fc:36: 4c:10:8a:d7:f8:41:7f:6f:dc:f4:69:28:5e:b8:35:a7:2b:e1: bc:c5:c2:40:00:d3:b6:23:ef:3c:24:be:7a:54:3f:12:8c:6c: 3b:81:3e:d4:6f:b0:45:05:23:c6:61:41:94:ef:21:62:1c:5d: db:45:78:b7:b2:2f:34:46:dd:66:7a:9d:6c:72:e9:75:d1:dc: 35:f5:0a:44:b6:67:29:8a:d0:7c:0d:57:ca:7f:92:3c:19:43: e5:30:f3:d7:80:d5:2d:37:06:06:e2:6c:84:56:4f:e7:a1:ce: 2d:f9:80:94:a9:03:34:92:c2:a0:8c:23:17:6d:c4:ff:d7:5e: f6:26:d7:b1:fd:e0:fe:ab:84:87:b7:32:aa:10:f0:04:5d:e1: a4:a0:3b:e0:8a:4c:ae:c5:e0:40:37:7f:f2:4d:2d:dc:bb:ef: d0:f5:2d:92:01:e3:22:cc:d7:de:f3:eb:0a:fd:44:ee:b4:7d: c2:78:91:b2:55:69:fb:ea:1a:51:a8:f0:61:3c:3d:2d:31:63: 8d:51:a0:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5RUMxMTAvBgNVBAUTKEUxQjlBNkVCMEM4RkFGRjdGNTRDNjhDMDU2MjRBMjhD RkQzRkFERUMwHhcNMjUwOTIwMDY1MzU3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNlNGY4NS1iYWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yPc5cbVEwkbSLEBdleJ3fzywt5A9C//pk8nLySIHLBhTkeWbNb80dUV5nUC Nmculw5QdM8582Js6iBnq7Jt0Rtw9zW+3v9nI0/xeoznww9DXBXnBIBVRqg8UV5w g4T1NVftiC+W7wduEaoNgG/SJex7OQVJDLr10kCTEc94MNtUszQvcG/RIMh8n4B1 64mqk4ReF0KE7hIc5IlFPQ4MzZmA103YR92PnLVqwcjpEtVT5yzht2EcaeJzlbiT TzhV3jygJwTz9HIWY8dlh+8Qwc7wW1TrCJQWderTnaGtZW2k78d4+osErSA9xqi0 +zXN4XSS7XPtZ0CmIG0QD+ye7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGknnuoH npud9ex6jvEuV9MMBNWTMB8GA1UdIwQYMBaAFOG5pusMj6/39UxowFYkooz9P63s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzlFQy8xMzU1RTc1MjY2 QkIxMUVFODQ2MkVFODRDNEY5QUUwMi80Ym1tNnd5UHJfZjFUR2pBVmlTaWpQMF9y ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRibW02d3lQcl9mMVRHakFWaVNpalAwX3Jldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM5RUMvMTM1NUU3NTI2NkJCMTFFRTg0NjJFRTg0QzRGOUFFMDIvOTQ0NjdCQ0U5 NUVFMTFGMEIyNzVGQTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1dwwDQYJKoZIhvcNAQELBQADggEBAL1QZTSVz4eV3PEy ZJ++7CoDg+gCaKyxOtHJH+Nw+ac3JG442s6ENKrOf2YzzBOFDP9DbSL8NkwQitf4 QX9v3PRpKF64Nacr4bzFwkAA07Yj7zwkvnpUPxKMbDuBPtRvsEUFI8ZhQZTvIWIc XdtFeLeyLzRG3WZ6nWxy6XXR3DX1CkS2ZymK0HwNV8p/kjwZQ+Uw89eA1S03Bgbi bIRWT+ehzi35gJSpAzSSwqCMIxdtxP/XXvYm17H94P6rhIe3MqoQ8ARd4aSgO+CK TK7F4EA3f/JNLdy779D1LZIB4yLM197z6wr9RO60fcJ4kbJVafvqGlGo8GE8PS0x Y41RoME= -----END CERTIFICATE-----Generated at Mon Oct 20 22:19:42 2025 by rpki-client