$ rpki-client -vvf rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/312DC5B8405E11E7A28FCE45C4F9AE02.roa File: 312DC5B8405E11E7A28FCE45C4F9AE02.roa (raw, json) Hash identifier: JDbo72SPqBZERT5W0ydUMhl3jfbjfWwgaMjrsH1k1kg= Subject key identifier: 39:5C:14:68:68:FC:5F:4F:E8:BE:C7:BA:3A:BB:24:98:98:58:F2:DE Certificate issuer: /CN=A91F644E/serialNumber=3266306A7038DC9B015327C72556405F39FCE60B Certificate serial: 1AAB Authority key identifier: 32:66:30:6A:70:38:DC:9B:01:53:27:C7:25:56:40:5F:39:FC:E6:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmYwanA43JsBUyfHJVZAXzn85gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/312DC5B8405E11E7A28FCE45C4F9AE02.roa Signing time: Mon 06 Oct 2025 16:45:23 +0000 ROA not before: Mon 06 Oct 2025 16:45:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134544 IP address blocks: 45.126.0.0/24 maxlen: 24 45.126.1.0/24 maxlen: 24 103.35.252.0/24 maxlen: 24 103.35.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/MmYwanA43JsBUyfHJVZAXzn85gs.crl rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/MmYwanA43JsBUyfHJVZAXzn85gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmYwanA43JsBUyfHJVZAXzn85gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6827 (0x1aab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F644E, serialNumber=3266306A7038DC9B015327C72556405F39FCE60B Validity Not Before: Oct 6 16:45:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e3f222-93d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:99:96:c9:c5:46:c1:92:3d:7c:f8:b8:06:68: 66:aa:76:51:5f:7f:b9:56:85:ab:91:f9:86:77:7f: f2:0f:9d:27:a0:90:6d:12:c6:1c:81:e4:84:9b:50: 3e:64:f2:71:a7:dc:38:60:a7:01:b3:fa:05:ec:4e: 2b:48:cf:05:95:69:27:5a:3c:a1:8b:a8:f3:e2:64: 45:ee:4e:ae:ad:5e:69:be:f1:36:40:59:47:ca:0d: ea:6b:8f:ab:74:18:55:27:da:62:04:1b:e3:5a:ce: 45:67:2f:d5:4b:a8:a7:d3:2d:87:bc:a0:2c:15:3b: 04:bd:d3:00:b5:14:97:91:8a:1f:e6:b6:1e:30:d9: 37:b5:20:e7:54:f6:95:31:cc:e7:a5:48:1b:a8:24: 6b:2e:38:78:0b:92:8f:08:60:a7:75:43:3d:1a:6e: cd:80:7c:6e:02:c5:69:d5:43:75:0f:5a:4c:12:1a: c9:34:ec:3e:5b:00:b1:af:1b:52:a1:6a:df:bd:b6: 33:2c:0f:a1:14:f2:51:ea:f6:e1:e0:8a:bb:0e:15: 6e:fe:a5:73:ce:7d:f1:65:8d:22:60:c8:06:5c:b9: 6c:5a:05:4a:6e:fa:93:25:7e:ce:d7:cb:ec:2f:41: d6:49:5f:fa:1c:80:15:05:6a:78:1b:85:12:b5:a5: ef:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5C:14:68:68:FC:5F:4F:E8:BE:C7:BA:3A:BB:24:98:98:58:F2:DE X509v3 Authority Key Identifier: keyid:32:66:30:6A:70:38:DC:9B:01:53:27:C7:25:56:40:5F:39:FC:E6:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/MmYwanA43JsBUyfHJVZAXzn85gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmYwanA43JsBUyfHJVZAXzn85gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F644E/E43B6E4A405D11E7B01BA145C4F9AE02/312DC5B8405E11E7A28FCE45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.0.0/23 103.35.252.0/23 Signature Algorithm: sha256WithRSAEncryption 03:79:51:f0:d7:57:f2:54:93:58:92:60:cc:e4:e7:57:38:39: 2e:cf:22:c6:04:89:fc:db:7b:a0:02:4e:ea:4e:e8:bc:fa:74: 7d:68:dd:7f:79:62:42:4c:ee:82:82:ae:0a:21:4f:ed:d0:03: 6c:e7:75:28:8d:5b:33:4e:5c:f9:e9:25:8c:d6:e4:1a:39:98: 27:b1:cc:eb:f2:22:6c:94:9f:f0:c9:2f:f4:cf:9a:3a:45:07: eb:ad:28:74:63:d4:0a:81:f1:31:48:92:02:75:70:99:88:df: fd:f9:68:62:ae:d3:a7:4e:6a:d4:27:eb:95:51:62:5b:fa:2b: 0b:48:1f:23:04:97:2c:40:3d:da:1d:4f:15:cd:84:bc:fa:57: 6f:00:8e:d0:76:93:a3:ad:97:ff:f4:de:9b:7e:39:80:47:4d: 7b:15:f3:1b:10:79:e4:f9:c8:0b:25:6c:36:47:1d:d0:8a:f3: d2:5a:14:4c:74:e0:28:e3:55:64:74:72:36:73:8e:33:f0:33: 66:73:25:ec:14:b2:7b:f7:7c:0a:d6:cf:5c:ef:80:24:f5:9e: 8c:1d:8f:e6:6c:4f:22:8d:bc:67:a3:1f:ac:cf:b8:af:11:f5: d8:4d:30:3d:a8:4a:79:80:4f:20:87:d4:ee:04:9e:d5:b9:28: c9:fc:9b:cb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY0NEUxMTAvBgNVBAUTKDMyNjYzMDZBNzAzOERDOUIwMTUzMjdDNzI1NTY0MDVG MzlGQ0U2MEIwHhcNMjUxMDA2MTY0NTIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUzZjIyMi05M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJmWycVGwZI9fPi4BmhmqnZRX3+5VoWrkfmGd3/yD50noJBtEsYcgeSEm1A+ ZPJxp9w4YKcBs/oF7E4rSM8FlWknWjyhi6jz4mRF7k6urV5pvvE2QFlHyg3qa4+r dBhVJ9piBBvjWs5FZy/VS6in0y2HvKAsFTsEvdMAtRSXkYof5rYeMNk3tSDnVPaV McznpUgbqCRrLjh4C5KPCGCndUM9Gm7NgHxuAsVp1UN1D1pMEhrJNOw+WwCxrxtS oWrfvbYzLA+hFPJR6vbh4Iq7DhVu/qVzzn3xZY0iYMgGXLlsWgVKbvqTJX7O18vs L0HWSV/6HIAVBWp4G4UStaXvGQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDlcFGho /F9P6L7Hujq7JJiYWPLeMB8GA1UdIwQYMBaAFDJmMGpwONybAVMnxyVWQF85/OYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjQ0RS9FNDNCNkU0QTQw NUQxMUU3QjAxQkExNDVDNEY5QUUwMi9NbVl3YW5BNDNKc0JVeWZISlZaQVh6bjg1 Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tWXdhbkE0M0pzQlV5ZkhKVlpBWHpuODVncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY0NEUvRTQzQjZFNEE0MDVEMTFFN0IwMUJBMTQ1QzRGOUFFMDIvMzEyREM1Qjg0 MDVFMTFFN0EyOEZDRTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEtfgADBAFnI/wwDQYJKoZIhvcNAQELBQADggEBAAN5UfDX V/JUk1iSYMzk51c4OS7PIsYEifzbe6ACTupO6Lz6dH1o3X95YkJM7oKCrgohT+3Q A2zndSiNWzNOXPnpJYzW5Bo5mCexzOvyImyUn/DJL/TPmjpFB+utKHRj1AqB8TFI kgJ1cJmI3/35aGKu06dOatQn65VRYlv6KwtIHyMElyxAPdodTxXNhLz6V28AjtB2 k6Otl//03pt+OYBHTXsV8xsQeeT5yAslbDZHHdCK89JaFEx04CjjVWR0cjZzjjPw M2ZzJewUsnv3fArWz1zvgCT1nowdj+ZsTyKNvGejH6zPuK8R9dhNMD2oSnmATyCH 1O4EntW5KMn8m8s= -----END CERTIFICATE-----Generated at Mon Oct 20 11:41:08 2025 by rpki-client