$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/FC3B9966A80F11F083B2493AC4F9AE02.roa File: FC3B9966A80F11F083B2493AC4F9AE02.roa (raw, json) Hash identifier: b0wxpwf8/vaYEOZtGJIbQgPEprx6ejeXyxzSbeJ8WVc= Subject key identifier: B1:5C:C5:6D:7E:3B:C0:F6:C3:ED:A5:7F:C2:D6:FF:DF:D2:AE:88:C6 Certificate issuer: /CN=A91F4288/serialNumber=314F55AE5244C4CDB10F784DFF15D022D3896848 Certificate serial: 1E02 Authority key identifier: 31:4F:55:AE:52:44:C4:CD:B1:0F:78:4D:FF:15:D0:22:D3:89:68:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/FC3B9966A80F11F083B2493AC4F9AE02.roa Signing time: Mon 13 Oct 2025 08:44:44 +0000 ROA not before: Mon 13 Oct 2025 08:44:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55501 IP address blocks: 103.249.155.0/24 maxlen: 24 203.170.66.0/24 maxlen: 24 203.170.67.0/24 maxlen: 24 203.170.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.crl rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:24:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7682 (0x1e02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4288, serialNumber=314F55AE5244C4CDB10F784DFF15D022D3896848 Validity Not Before: Oct 13 08:44:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68ecbbfb-6de6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b8:18:24:7e:be:27:b9:fd:30:c4:6d:c9:0a: db:3e:67:39:49:55:4a:21:eb:10:07:3a:87:5e:59: d9:f6:f4:2c:f7:ff:07:4f:81:05:eb:fb:3c:7a:3a: 72:20:50:6d:07:76:02:24:58:b3:5a:58:d8:27:11: 62:7d:43:99:62:4a:5b:32:25:34:57:aa:cd:4e:de: 76:9a:54:c5:0b:c8:9b:65:a9:0e:c9:f2:40:ac:c3: 87:c7:44:6e:ec:fe:d9:e1:1c:68:c9:15:7b:d6:ec: 4c:0d:2d:64:55:00:bd:6c:95:70:5f:c1:3b:9e:dd: a8:4c:58:9a:85:ae:7d:ba:cc:6f:74:12:ea:25:d2: 54:df:4a:a2:fa:48:c1:08:f0:84:d9:40:b5:6f:7c: 77:99:80:ff:c4:e4:2e:bb:bd:00:c6:98:d7:f1:8a: 7e:f9:a3:f7:a5:ed:06:2e:2c:64:d9:66:ce:fe:aa: 5b:f1:64:f2:d7:61:5b:d5:7c:c2:74:e9:e4:3d:07: 79:43:bc:7c:8f:16:0e:b5:10:86:91:ac:c8:03:90: 66:ff:e5:56:25:c9:e0:4b:63:a0:43:9a:6a:a0:2f: 2c:42:93:67:5e:30:a0:33:22:98:3c:8e:57:c5:d7: e4:39:ec:a3:5e:10:62:ae:28:71:db:55:4b:32:da: a1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5C:C5:6D:7E:3B:C0:F6:C3:ED:A5:7F:C2:D6:FF:DF:D2:AE:88:C6 X509v3 Authority Key Identifier: keyid:31:4F:55:AE:52:44:C4:CD:B1:0F:78:4D:FF:15:D0:22:D3:89:68:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/MU9VrlJExM2xD3hN_xXQItOJaEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MU9VrlJExM2xD3hN_xXQItOJaEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4288/A93AA880A27211E6B8BC996AC4F9AE02/FC3B9966A80F11F083B2493AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.155.0/24 203.170.66.0-203.170.68.255 Signature Algorithm: sha256WithRSAEncryption 5a:50:d2:e6:45:66:af:b7:86:b7:d4:5e:9b:96:ce:dc:a1:a1: 51:e4:67:a6:f2:3d:d4:7f:49:72:6e:a6:86:4b:c9:5b:e6:5c: 24:ec:62:30:24:b3:4c:a0:0f:66:c4:38:ff:ed:cf:d1:f8:ee: 91:d1:b2:bd:9a:6d:6e:66:4a:97:3b:a5:bd:59:8d:99:df:2a: dd:7c:1b:55:64:35:86:35:17:37:0e:e0:6c:93:0f:b6:79:2f: a4:04:9f:c8:a8:45:3c:9d:b6:0c:b6:1e:73:61:88:8c:99:f4: 18:4d:a4:52:73:05:6e:de:b0:79:57:13:b8:d4:d2:95:ed:ca: 38:aa:9b:7a:1b:b5:e3:2e:4d:4d:7f:fa:ae:de:97:e5:f9:11: 6f:4a:51:d8:02:ba:bf:57:8a:7a:0e:b6:88:20:40:93:80:4c: 3d:07:5c:7f:5a:9e:d2:86:cf:d6:12:56:ad:fd:d7:0b:7a:d4: 8b:8c:a5:bf:87:37:80:a7:20:52:3f:8f:91:d4:f1:ef:c3:1b: cd:7b:95:38:50:4f:a7:fe:94:f6:59:5d:a3:89:19:e8:cd:fe: df:37:9b:29:c6:fc:73:ce:a8:21:7e:51:c4:cb:e4:10:4f:66: 0a:65:cd:ec:72:96:17:7f:42:0f:e3:79:4c:f5:d2:ba:f8:66: 7e:f1:95:7e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICHgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyODgxMTAvBgNVBAUTKDMxNEY1NUFFNTI0NEM0Q0RCMTBGNzg0REZGMTVEMDIy RDM4OTY4NDgwHhcNMjUxMDEzMDg0NDQ0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVjYmJmYi02ZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7gYJH6+J7n9MMRtyQrbPmc5SVVKIesQBzqHXlnZ9vQs9/8HT4EF6/s8ejpy IFBtB3YCJFizWljYJxFifUOZYkpbMiU0V6rNTt52mlTFC8ibZakOyfJArMOHx0Ru 7P7Z4RxoyRV71uxMDS1kVQC9bJVwX8E7nt2oTFiaha59usxvdBLqJdJU30qi+kjB CPCE2UC1b3x3mYD/xOQuu70AxpjX8Yp++aP3pe0GLixk2WbO/qpb8WTy12Fb1XzC dOnkPQd5Q7x8jxYOtRCGkazIA5Bm/+VWJcngS2OgQ5pqoC8sQpNnXjCgMyKYPI5X xdfkOeyjXhBirihx21VLMtqhDQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFLFcxW1+ O8D2w+2lf8LW/9/SrojGMB8GA1UdIwQYMBaAFDFPVa5SRMTNsQ94Tf8V0CLTiWhI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4OC9BOTNBQTg4MEEy NzIxMUU2QjhCQzk5NkFDNEY5QUUwMi9NVTlWcmxKRXhNMnhEM2hOX3hYUUl0T0ph RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01VOVZybEpFeE0yeEQzaE5feFhRSXRPSmFFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyODgvQTkzQUE4ODBBMjcyMTFFNkI4QkM5OTZBQzRGOUFFMDIvRkMzQjk5NjZB ODBGMTFGMDgzQjI0OTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABn+ZswDAMEAcuqQgMEAMuqRDANBgkqhkiG9w0BAQsFAAOC AQEAWlDS5kVmr7eGt9Rem5bO3KGhUeRnpvI91H9Jcm6mhkvJW+ZcJOxiMCSzTKAP ZsQ4/+3P0fjukdGyvZptbmZKlzulvVmNmd8q3XwbVWQ1hjUXNw7gbJMPtnkvpASf yKhFPJ22DLYec2GIjJn0GE2kUnMFbt6weVcTuNTSle3KOKqbehu14y5NTX/6rt6X 5fkRb0pR2AK6v1eKeg62iCBAk4BMPQdcf1qe0obP1hJWrf3XC3rUi4ylv4c3gKcg Uj+PkdTx78MbzXuVOFBPp/6U9lldo4kZ6M3+3zebKcb8c86oIX5RxMvkEE9mCmXN 7HKWF39CD+N5TPXSuvhmfvGVfg== -----END CERTIFICATE-----Generated at Mon Oct 20 10:10:12 2025 by rpki-client