$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/B08503D8F8AA11EE91684140C4F9AE02.roa File: B08503D8F8AA11EE91684140C4F9AE02.roa (raw, json) Hash identifier: 18UQJbHGEGObYcZEjw5pF1Ha/JCm9Dtoy6BRpv3dt58= Subject key identifier: C0:B5:9C:B8:A7:25:FE:36:1C:CE:FC:A1:A6:A1:2C:09:95:0A:3D:7F Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 018F Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/B08503D8F8AA11EE91684140C4F9AE02.roa Signing time: Mon 03 Nov 2025 03:48:27 +0000 ROA not before: Mon 03 Nov 2025 03:48:27 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 10143 IP address blocks: 103.65.140.0/24 maxlen: 24 202.27.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Nov 3 03:48:27 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6908260a-565a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:11:c6:7f:52:b3:6c:cc:2d:45:31:b5:e5:81: 55:60:d0:af:2f:4b:1f:fc:5d:58:be:e9:f4:81:e4: 81:0b:64:cf:1b:c3:c1:03:e2:5a:63:36:ba:cc:26: 93:26:5b:2b:8e:6f:0a:ea:74:f4:c5:81:bc:66:31: a3:c5:12:17:7f:ab:76:ec:4d:5f:e8:12:f9:7c:1a: 3b:5b:a1:98:5a:5b:92:03:ca:8a:09:76:d2:9a:78: 4e:f5:39:1e:7f:0c:f8:cc:3d:11:e9:43:b5:6e:64: 17:c9:a8:95:63:cb:cd:26:cf:68:88:7f:7b:c7:06: 9a:87:ee:08:58:4d:a1:64:99:4a:08:a8:d3:38:90: a8:20:2c:1a:0b:15:7c:49:56:ae:6a:6c:7c:e4:e1: 47:77:d0:49:b3:ed:9b:3d:59:37:a7:b7:10:7a:3b: 47:44:da:70:13:24:26:ee:f0:a3:70:0b:59:2a:ba: 97:ce:73:f8:f0:48:de:a8:63:9d:af:50:14:3c:cd: 3a:e3:d3:00:af:e5:67:d4:59:52:c8:12:0d:96:27: 4b:9a:f4:04:42:46:ca:bc:4e:ad:f2:94:09:dd:79: c5:75:ee:01:6e:f6:29:a6:cc:f2:0f:dd:dd:30:15: b3:1e:b8:f8:59:97:22:41:ee:90:c9:7d:41:cd:be: b2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B5:9C:B8:A7:25:FE:36:1C:CE:FC:A1:A6:A1:2C:09:95:0A:3D:7F X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/B08503D8F8AA11EE91684140C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.140.0/24 202.27.229.0/24 Signature Algorithm: sha256WithRSAEncryption bd:ed:a0:74:c6:29:49:71:c8:48:2e:60:ba:33:93:4d:8d:fe: 3a:ac:06:6c:e1:31:88:fb:20:bc:e3:87:27:7f:4e:02:05:43: 07:84:68:42:cd:63:82:c0:26:94:2e:ed:f6:1a:45:21:4e:9a: 20:de:65:86:24:b5:53:6d:9c:00:2a:bf:47:73:d1:02:b2:ad: 4b:51:ca:73:fd:48:e5:ce:dd:43:84:93:b9:df:96:55:89:3f: 25:24:29:2a:69:f3:3e:54:9f:8d:a4:1a:c1:bc:db:db:7b:4f: 98:34:3c:c4:9f:07:66:94:83:eb:19:68:4c:98:b2:fa:ae:db: 56:fa:a0:88:ab:98:97:de:96:31:67:7a:1a:54:1e:eb:8a:7b: 6b:62:b3:c4:fc:49:1e:b2:13:f4:8f:6d:a4:63:cb:4b:6c:36: d2:49:d0:46:a4:4f:a3:1e:36:00:a3:09:a0:5e:c0:82:05:d8: a4:b8:2e:39:06:e4:ee:e4:50:d1:e7:11:ae:20:f2:bd:a2:71: 8f:24:d5:34:1c:f0:7c:fd:e6:72:d0:03:b0:d7:99:67:42:bf: 4f:cc:90:c5:e5:8c:a0:34:6a:4a:2b:86:f9:0a:ea:70:b9:3e: 5d:c4:f7:7a:43:cc:1d:1f:a4:ef:36:53:76:b3:b7:4e:9c:1a: f3:31:8b:41 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjUxMTAzMDM0ODI3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MjYwYS01NjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBHGf1KzbMwtRTG15YFVYNCvL0sf/F1Yvun0geSBC2TPG8PBA+JaYza6zCaT Jlsrjm8K6nT0xYG8ZjGjxRIXf6t27E1f6BL5fBo7W6GYWluSA8qKCXbSmnhO9Tke fwz4zD0R6UO1bmQXyaiVY8vNJs9oiH97xwaah+4IWE2hZJlKCKjTOJCoICwaCxV8 SVauamx85OFHd9BJs+2bPVk3p7cQejtHRNpwEyQm7vCjcAtZKrqXznP48EjeqGOd r1AUPM0649MAr+Vn1FlSyBINlidLmvQEQkbKvE6t8pQJ3XnFde4BbvYppszyD93d MBWzHrj4WZciQe6QyX1Bzb6ykwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMC1nLin Jf42HM78oaahLAmVCj1/MB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk3QTIvQjNERkM4ODQ2RDYyMTFFRUIzMDdDRTE5QzRGOUFFMDIvQjA4NTAzRDhG OEFBMTFFRTkxNjg0MTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnQYwDBADKG+UwDQYJKoZIhvcNAQELBQADggEBAL3toHTG KUlxyEguYLozk02N/jqsBmzhMYj7ILzjhyd/TgIFQweEaELNY4LAJpQu7fYaRSFO miDeZYYktVNtnAAqv0dz0QKyrUtRynP9SOXO3UOEk7nfllWJPyUkKSpp8z5Un42k GsG829t7T5g0PMSfB2aUg+sZaEyYsvqu21b6oIirmJfeljFnehpUHuuKe2tis8T8 SR6yE/SPbaRjy0tsNtJJ0EakT6MeNgCjCaBewIIF2KS4LjkG5O7kUNHnEa4g8r2i cY8k1TQc8Hz95nLQA7DXmWdCv0/MkMXljKA0akorhvkK6nC5Pl3E93pDzB0fpO82 U3azt06cGvMxi0E= -----END CERTIFICATE-----Generated at Wed Nov 5 21:41:32 2025 by rpki-client