$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/B4996A22AC3411E88623474BC4F9AE02.roa File: B4996A22AC3411E88623474BC4F9AE02.roa (raw, json) Hash identifier: 7JGYiU3kiC6kUGQIsQnoyjTh5wnU3N3mh36JHRhfnlU= Subject key identifier: F3:15:82:73:D1:F2:71:FE:F4:D3:97:89:6C:8A:D0:3B:FD:25:96:C7 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 1364 Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/B4996A22AC3411E88623474BC4F9AE02.roa Signing time: Fri 26 Sep 2025 17:16:53 +0000 ROA not before: Fri 26 Sep 2025 17:16:53 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138158 IP address blocks: 103.121.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:05:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4964 (0x1364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Sep 26 17:16:53 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d6ca84-3d1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2c:50:8c:be:65:a3:89:ff:67:a8:28:ae:fd: 51:be:37:2d:ab:b4:d5:01:9f:52:a0:ae:34:12:cf: d7:74:a7:0f:2e:9a:dc:0f:08:93:4a:93:2d:6b:2e: 5b:92:bd:b5:71:70:d1:d4:30:2d:b5:bd:d8:8e:0b: fb:08:93:ff:13:69:58:ba:9a:2d:11:d8:f4:34:0d: a9:1a:a7:bb:ec:ef:3d:00:3b:5c:ff:ae:36:95:05: a9:ea:ae:68:75:25:3c:e3:5e:50:7c:a3:12:2e:3b: cf:f3:f6:7b:8b:39:2c:b7:7b:56:30:54:14:e6:05: e7:ec:dc:6e:b9:68:96:98:c0:05:b8:7f:4e:80:1a: e4:91:44:1d:21:db:f7:d8:9f:b7:28:ab:6e:d0:c0: 9f:15:58:09:76:39:f5:c7:f1:25:db:1a:8b:8c:d7: b1:bc:bd:e3:29:0e:39:c8:1d:2c:48:33:bc:db:cd: 09:2d:2f:f6:13:5d:54:b3:0d:11:7e:69:3d:b3:26: f8:dc:c4:bb:23:9e:d5:e8:37:e7:0e:da:6f:2a:91: 39:37:f2:52:d0:38:25:07:6a:61:0d:b1:38:de:7e: 88:d8:e8:24:dd:88:b9:ea:22:59:7a:e9:05:02:32: b3:60:a7:e2:f3:74:39:41:03:03:8e:3c:4a:34:18: cd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:15:82:73:D1:F2:71:FE:F4:D3:97:89:6C:8A:D0:3B:FD:25:96:C7 X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/B4996A22AC3411E88623474BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.158.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:f8:30:cd:df:ca:fa:b4:3d:2d:b4:9a:e3:07:1a:4d:b3:5a: e0:db:10:a0:0e:98:e2:c0:8b:bc:68:9b:1c:67:9d:da:1d:ba: 20:e4:dc:42:8c:12:72:c2:0d:db:e8:d0:88:b3:07:f0:be:54: c8:1f:f2:23:3b:09:42:f0:5b:15:a9:84:18:da:87:0d:3c:f4: 26:c5:b4:8c:61:ec:81:a2:dd:8f:dd:2b:5d:b2:49:b0:6c:a6: 46:e6:d9:6d:8c:5d:da:4f:56:60:4b:20:17:9f:f7:54:04:a2: 03:68:3e:8e:24:47:d8:6d:97:d3:63:c2:7f:2d:55:b5:cf:9f: 8e:88:65:5d:e8:4b:02:40:be:30:8b:fe:f8:3c:c7:4c:bd:ec: 0b:62:18:c7:44:23:be:df:95:92:81:af:49:3c:26:51:de:b4: f0:c3:43:d9:7f:d7:81:37:22:03:58:bf:73:44:f0:5c:45:d9: 0f:18:61:7b:f0:3f:8e:6f:fb:7b:10:21:8d:7d:5f:f3:09:9a: f4:1f:38:f5:0c:aa:85:f8:ae:06:1a:58:a6:24:4f:d6:d7:04: ae:6b:d4:24:a6:0e:1a:ae:64:78:3d:85:52:66:54:10:d3:98: aa:13:75:83:d4:02:e2:63:34:c1:c8:28:5b:a7:a0:53:2d:a5: c1:e0:26:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICE2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUwOTI2MTcxNjUzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ2Y2E4NC0zZDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzixQjL5lo4n/Z6gorv1Rvjctq7TVAZ9SoK40Es/XdKcPLprcDwiTSpMtay5b kr21cXDR1DAttb3Yjgv7CJP/E2lYupotEdj0NA2pGqe77O89ADtc/642lQWp6q5o dSU8415QfKMSLjvP8/Z7izkst3tWMFQU5gXn7NxuuWiWmMAFuH9OgBrkkUQdIdv3 2J+3KKtu0MCfFVgJdjn1x/El2xqLjNexvL3jKQ45yB0sSDO8280JLS/2E11Usw0R fmk9syb43MS7I57V6DfnDtpvKpE5N/JS0DglB2phDbE43n6I2Ogk3Yi56iJZeukF AjKzYKfi83Q5QQMDjjxKNBjN4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPMVgnPR 8nH+9NOXiWyK0Dv9JZbHMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDExQkMvRTMxNzFCMDJBQzMzMTFFOEIyMDY5NDQ5QzRGOUFFMDIvQjQ5OTZBMjJB QzM0MTFFODg2MjM0NzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneZ4wDQYJKoZIhvcNAQELBQADggEBAIr4MM3fyvq0PS20 muMHGk2zWuDbEKAOmOLAi7xomxxnndoduiDk3EKMEnLCDdvo0IizB/C+VMgf8iM7 CULwWxWphBjahw089CbFtIxh7IGi3Y/dK12ySbBspkbm2W2MXdpPVmBLIBef91QE ogNoPo4kR9htl9Njwn8tVbXPn46IZV3oSwJAvjCL/vg8x0y97AtiGMdEI77flZKB r0k8JlHetPDDQ9l/14E3IgNYv3NE8FxF2Q8YYXvwP45v+3sQIY19X/MJmvQfOPUM qoX4rgYaWKYkT9bXBK5r1CSmDhquZHg9hVJmVBDTmKoTdYPUAuJjNMHIKFunoFMt pcHgJv0= -----END CERTIFICATE-----Generated at Wed Nov 5 17:34:48 2025 by rpki-client