$ rpki-client -vvf rpki.apnic.net/member_repository/A91983E5/7038386CF4AF11E9A51CF05AC4F9AE02/430E6130F4B011E99BB3425CC4F9AE02.roa File: 430E6130F4B011E99BB3425CC4F9AE02.roa (raw, json) Hash identifier: 7aBlRGKjzxRqNTE4/k88lfJou1zQvjo1o2zcrm10Xw0= Subject key identifier: 30:AB:59:17:4A:76:46:BE:81:3B:DA:50:43:EF:7F:83:A3:B0:0E:D5 Certificate issuer: /CN=A91983E5/serialNumber=7053FF81FECF059A3E8BD70F85D64943D114E536 Certificate serial: 0CE6 Authority key identifier: 70:53:FF:81:FE:CF:05:9A:3E:8B:D7:0F:85:D6:49:43:D1:14:E5:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFP_gf7PBZo-i9cPhdZJQ9EU5TY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91983E5/7038386CF4AF11E9A51CF05AC4F9AE02/430E6130F4B011E99BB3425CC4F9AE02.roa Signing time: Mon 20 Oct 2025 18:57:27 +0000 ROA not before: Mon 20 Oct 2025 18:57:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 139670 IP address blocks: 103.143.118.0/23 maxlen: 23 103.143.118.0/24 maxlen: 24 103.143.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91983E5/7038386CF4AF11E9A51CF05AC4F9AE02/cFP_gf7PBZo-i9cPhdZJQ9EU5TY.crl rsync://rpki.apnic.net/member_repository/A91983E5/7038386CF4AF11E9A51CF05AC4F9AE02/cFP_gf7PBZo-i9cPhdZJQ9EU5TY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFP_gf7PBZo-i9cPhdZJQ9EU5TY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3302 (0xce6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91983E5, serialNumber=7053FF81FECF059A3E8BD70F85D64943D114E536 Validity Not Before: Oct 20 18:57:27 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f68617-b604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:20:d5:f0:20:94:8c:75:b7:3d:bb:8a:5b:c8: b1:f8:eb:b1:cf:4d:9d:44:2f:75:72:ec:77:74:5c: c4:eb:a5:b1:b5:ed:66:32:c6:09:be:5b:76:d1:bf: 0a:ac:40:c6:1f:6c:2b:20:70:59:b2:0a:9b:2a:b1: bf:fc:95:44:37:fb:bb:01:47:0a:7a:4a:a7:b4:cc: 35:c4:6c:b8:3e:f5:fd:f9:e5:1a:a0:e2:03:e8:9c: f6:3b:07:a7:99:31:be:0f:ae:e4:74:d8:8a:6f:ca: 4c:0e:ef:5c:a3:40:5c:42:14:2b:37:63:74:6b:eb: 37:ae:ec:8d:ee:ed:d0:8e:1f:bc:c7:6c:b9:30:d8: 60:8d:74:8a:ee:c5:d0:05:92:7b:89:d5:71:44:e0: 6a:13:c3:ea:8e:a9:14:1d:9b:40:2b:b3:5c:11:c2: f9:0e:b4:41:24:f5:ee:a0:18:50:35:1d:a2:f7:bf: 16:72:16:5b:c4:50:21:23:b7:72:c9:11:a6:0e:11: fc:54:8b:82:65:46:48:b5:08:15:3c:ba:86:ec:82: 03:14:d7:8a:bf:22:d6:85:49:0d:0d:37:63:49:0f: 6c:6d:a8:d6:9e:26:1b:bd:e5:2b:3a:a0:83:82:bb: 14:38:09:69:02:be:81:e0:84:df:ba:34:f5:0f:81: 56:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:AB:59:17:4A:76:46:BE:81:3B:DA:50:43:EF:7F:83:A3:B0:0E:D5 X509v3 Authority Key Identifier: keyid:70:53:FF:81:FE:CF:05:9A:3E:8B:D7:0F:85:D6:49:43:D1:14:E5:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91983E5/7038386CF4AF11E9A51CF05AC4F9AE02/cFP_gf7PBZo-i9cPhdZJQ9EU5TY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFP_gf7PBZo-i9cPhdZJQ9EU5TY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91983E5/7038386CF4AF11E9A51CF05AC4F9AE02/430E6130F4B011E99BB3425CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.118.0/23 Signature Algorithm: sha256WithRSAEncryption 47:74:9a:03:d9:65:d2:ae:47:80:80:74:7a:82:0a:2c:c8:a7: 17:a3:07:10:44:9a:8e:46:c9:0a:ed:dd:7b:ee:40:85:af:90: 3a:62:f8:ce:da:d8:b4:d1:d6:50:6d:dd:1c:f3:5f:bb:df:a3: b9:eb:30:80:9f:69:b7:04:9a:2a:70:cc:a2:2e:f3:65:53:f5: 5c:0a:a0:36:7a:2a:d0:42:2a:a2:27:91:6e:e7:be:31:d7:8c: cb:f4:f4:b0:77:ec:60:44:3c:5d:83:99:73:d2:1a:64:4b:51: 07:90:88:27:e5:dc:e9:56:b8:ce:78:0d:2a:31:f9:fc:85:1c: bb:0e:a6:45:50:16:77:9f:12:8f:90:db:00:13:39:29:b8:88: 45:36:a7:8b:dc:7b:4b:dd:ed:88:54:2a:e9:5e:05:b6:bb:68: 07:50:91:e2:26:d6:cb:64:72:d9:c4:6e:31:79:f6:68:b6:ac: 28:53:13:3d:16:f1:b4:a7:6a:a6:17:41:95:1d:8e:64:8a:a7: 36:95:15:0a:4e:de:22:e2:73:e6:e3:64:78:68:76:48:1d:e7: 30:25:f8:f1:84:15:55:77:2f:de:0d:a5:2c:3f:b9:53:40:07: 2d:20:1b:c4:52:eb:27:0a:26:2d:9e:2a:be:36:4d:1d:89:83: 77:e0:bb:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgzRTUxMTAvBgNVBAUTKDcwNTNGRjgxRkVDRjA1OUEzRThCRDcwRjg1RDY0OTQz RDExNEU1MzYwHhcNMjUxMDIwMTg1NzI3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY2ODYxNy1iNjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCDV8CCUjHW3PbuKW8ix+Ouxz02dRC91cux3dFzE66Wxte1mMsYJvlt20b8K rEDGH2wrIHBZsgqbKrG//JVEN/u7AUcKekqntMw1xGy4PvX9+eUaoOID6Jz2Owen mTG+D67kdNiKb8pMDu9co0BcQhQrN2N0a+s3ruyN7u3Qjh+8x2y5MNhgjXSK7sXQ BZJ7idVxROBqE8PqjqkUHZtAK7NcEcL5DrRBJPXuoBhQNR2i978WchZbxFAhI7dy yRGmDhH8VIuCZUZItQgVPLqG7IIDFNeKvyLWhUkNDTdjSQ9sbajWniYbveUrOqCD grsUOAlpAr6B4ITfujT1D4FW9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDCrWRdK dka+gTvaUEPvf4OjsA7VMB8GA1UdIwQYMBaAFHBT/4H+zwWaPovXD4XWSUPRFOU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODNFNS83MDM4Mzg2Q0Y0 QUYxMUU5QTUxQ0YwNUFDNEY5QUUwMi9jRlBfZ2Y3UEJaby1pOWNQaGRaSlE5RVU1 VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGUF9nZjdQQlpvLWk5Y1BoZFpKUTlFVTVUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTgzRTUvNzAzODM4NkNGNEFGMTFFOUE1MUNGMDVBQzRGOUFFMDIvNDMwRTYxMzBG NEIwMTFFOTlCQjM0MjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnj3YwDQYJKoZIhvcNAQELBQADggEBAEd0mgPZZdKuR4CA dHqCCizIpxejBxBEmo5GyQrt3XvuQIWvkDpi+M7a2LTR1lBt3RzzX7vfo7nrMICf abcEmipwzKIu82VT9VwKoDZ6KtBCKqInkW7nvjHXjMv09LB37GBEPF2DmXPSGmRL UQeQiCfl3OlWuM54DSox+fyFHLsOpkVQFnefEo+Q2wATOSm4iEU2p4vce0vd7YhU KuleBba7aAdQkeIm1stkctnEbjF59mi2rChTEz0W8bSnaqYXQZUdjmSKpzaVFQpO 3iLic+bjZHhodkgd5zAl+PGEFVV3L94NpSw/uVNABy0gG8RS6ycKJi2eKr42TR2J g3fguzA= -----END CERTIFICATE-----Generated at Tue Nov 4 16:37:17 2025 by rpki-client