$ rpki-client -vvf rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/FEDDF63AE6FC11EE8AD61644C4F9AE02.roa File: FEDDF63AE6FC11EE8AD61644C4F9AE02.roa (raw, json) Hash identifier: nPDF1Ky8Z4ZJlPWH1PkLPctnsIih8GHSZ5cqXRTU56A= Subject key identifier: 70:FD:D2:3F:CE:7D:49:32:8F:7B:D8:76:93:3C:C5:13:A8:C0:7C:34 Certificate issuer: /CN=A91655EF/serialNumber=074E16CCA080D545FEF4F2D8ADCB909F0ECB20A2 Certificate serial: 1178 Authority key identifier: 07:4E:16:CC:A0:80:D5:45:FE:F4:F2:D8:AD:CB:90:9F:0E:CB:20:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/FEDDF63AE6FC11EE8AD61644C4F9AE02.roa Signing time: Thu 16 Jan 2025 17:25:19 +0000 ROA not before: Thu 16 Jan 2025 17:25:19 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138474 IP address blocks: 103.126.148.0/22 maxlen: 22 103.126.148.0/23 maxlen: 23 103.126.149.0/24 maxlen: 24 103.126.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.crl rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:15:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4472 (0x1178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91655EF, serialNumber=074E16CCA080D545FEF4F2D8ADCB909F0ECB20A2 Validity Not Before: Jan 16 17:25:19 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=678940fe-8fa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fc:4e:d6:6f:02:39:3b:5d:81:40:78:2a:76: f1:41:ff:04:67:d2:3a:47:03:62:49:d2:92:ff:71: 0c:5d:49:d9:fe:c6:1c:ea:80:00:e2:41:59:9c:db: 57:85:7a:0a:01:49:f9:f1:93:ab:6c:04:56:c7:1b: a6:5a:99:0a:00:4f:ef:69:ed:9d:c8:1f:59:4a:a0: 26:0a:44:3f:7b:02:70:dc:7d:21:21:7b:81:0d:d1: e1:43:29:1e:24:97:0d:95:18:44:72:d3:16:c3:05: f6:9e:fd:c2:51:8d:18:22:ee:4d:74:86:7c:a0:5e: b3:6d:1f:84:b8:a9:c4:c1:c9:27:4d:6c:59:eb:88: 14:aa:83:e5:cc:64:b1:da:58:83:52:57:67:fa:5c: 20:43:0f:66:18:f1:fb:ad:85:ad:8d:12:b2:db:89: 44:f7:01:c6:db:f7:fb:a1:ea:f4:e6:1e:33:99:cd: 60:2c:31:16:ad:09:cc:1c:e5:5b:2f:ac:63:4b:74: 3f:62:44:84:16:91:2d:77:f1:10:e9:0c:aa:cc:12: f3:09:76:8a:f0:b2:1f:f5:85:c2:ca:b6:06:97:e6: 3f:eb:d4:d2:ab:d6:21:81:97:1c:c5:f3:a8:ad:54: 11:e1:1a:fa:58:0b:4b:5c:2a:b6:ec:71:d0:35:8c: 08:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:FD:D2:3F:CE:7D:49:32:8F:7B:D8:76:93:3C:C5:13:A8:C0:7C:34 X509v3 Authority Key Identifier: keyid:07:4E:16:CC:A0:80:D5:45:FE:F4:F2:D8:AD:CB:90:9F:0E:CB:20:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/FEDDF63AE6FC11EE8AD61644C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.148.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:9e:1a:10:a5:29:d2:bf:6e:45:11:58:b8:7c:b8:f4:1e:7c: 05:42:df:0f:40:a4:47:48:79:f6:fb:39:32:33:0e:f4:a2:6a: 3f:85:fa:ec:55:74:0e:e3:5a:dc:96:1c:76:34:8d:64:aa:d4: 97:57:67:f0:ad:42:90:5c:f3:03:b4:62:3f:a5:23:a7:0c:bd: be:04:2d:84:ec:49:83:f1:69:e9:6e:d3:8d:a8:3f:82:9c:df: 77:be:c9:2f:3f:02:5b:f1:2b:cc:49:6b:0f:37:2a:ed:a9:11: ac:e9:98:9b:23:ae:71:9d:ca:bc:3d:aa:2d:9a:04:dd:48:71: bb:bc:53:8b:86:c1:ab:5f:7b:91:c9:81:16:e9:a8:3c:c3:46: 52:f8:6e:95:c8:71:24:9e:b0:04:83:1e:58:c2:7d:c4:d6:62: a2:10:a3:06:a7:8f:37:69:73:ff:eb:3c:f0:ad:52:96:50:01: 72:74:0c:a7:77:92:71:d5:ba:66:94:ad:94:b0:15:10:50:82: a4:8b:44:87:49:5d:f4:6f:5a:22:14:51:88:77:de:d0:e9:18: b2:4e:64:12:d8:79:2e:45:ff:04:e3:e5:ac:cd:5e:ba:fb:14: 4e:12:26:1e:ab:a6:23:1a:4e:29:e4:b4:ab:7c:9d:4e:54:54: 5e:a3:b5:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1RUYxMTAvBgNVBAUTKDA3NEUxNkNDQTA4MEQ1NDVGRUY0RjJEOEFEQ0I5MDlG MEVDQjIwQTIwHhcNMjUwMTE2MTcyNTE5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg5NDBmZS04ZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PxO1m8COTtdgUB4KnbxQf8EZ9I6RwNiSdKS/3EMXUnZ/sYc6oAA4kFZnNtX hXoKAUn58ZOrbARWxxumWpkKAE/vae2dyB9ZSqAmCkQ/ewJw3H0hIXuBDdHhQyke JJcNlRhEctMWwwX2nv3CUY0YIu5NdIZ8oF6zbR+EuKnEwcknTWxZ64gUqoPlzGSx 2liDUldn+lwgQw9mGPH7rYWtjRKy24lE9wHG2/f7oer05h4zmc1gLDEWrQnMHOVb L6xjS3Q/YkSEFpEtd/EQ6QyqzBLzCXaK8LIf9YXCyrYGl+Y/69TSq9YhgZccxfOo rVQR4Rr6WAtLXCq27HHQNYwIUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHD90j/O fUkyj3vYdpM8xROowHw0MB8GA1UdIwQYMBaAFAdOFsyggNVF/vTy2K3LkJ8OyyCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTVFRi82MDc3MjlEMEZB QzExMUU4QkM3NkQ2NzFDNEY5QUUwMi9CMDRXektDQTFVWC05UExZcmN1UW53N0xJ S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IwNFd6S0NBMVVYLTlQTFlyY3VRbnc3TElLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1RUYvNjA3NzI5RDBGQUMxMTFFOEJDNzZENjcxQzRGOUFFMDIvRkVEREY2M0FF NkZDMTFFRThBRDYxNjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfpQwDQYJKoZIhvcNAQELBQADggEBAFyeGhClKdK/bkUR WLh8uPQefAVC3w9ApEdIefb7OTIzDvSiaj+F+uxVdA7jWtyWHHY0jWSq1JdXZ/Ct QpBc8wO0Yj+lI6cMvb4ELYTsSYPxaelu042oP4Kc33e+yS8/AlvxK8xJaw83Ku2p EazpmJsjrnGdyrw9qi2aBN1Icbu8U4uGwatfe5HJgRbpqDzDRlL4bpXIcSSesASD HljCfcTWYqIQowanjzdpc//rPPCtUpZQAXJ0DKd3knHVumaUrZSwFRBQgqSLRIdJ XfRvWiIUUYh33tDpGLJOZBLYeS5F/wTj5azNXrr7FE4SJh6rpiMaTinktKt8nU5U VF6jtY4= -----END CERTIFICATE-----Generated at Wed Nov 5 10:05:49 2025 by rpki-client