$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/B67FD220B98A11F0AB76E244C4F9AE02.roa File: B67FD220B98A11F0AB76E244C4F9AE02.roa (raw, json) Hash identifier: HFrOvijyyqsRLcotTRRA/PGjBjIyClKOdRjQDsGlSHY= Subject key identifier: 1B:B4:83:5B:C9:64:41:6E:CB:CF:E1:3E:14:F7:07:01:15:33:53:8F Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 01BC Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/B67FD220B98A11F0AB76E244C4F9AE02.roa Signing time: Tue 04 Nov 2025 14:29:47 +0000 ROA not before: Tue 04 Nov 2025 14:29:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151421 IP address blocks: 103.228.10.0/24 maxlen: 24 2001:df2:9cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3, serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: Nov 4 14:29:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=690a0dda-f11f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e4:23:70:55:c9:b7:12:c1:12:8b:1f:ba:60: a1:59:d1:65:85:e2:2a:99:2b:3d:8f:f5:b5:54:cb: 50:cf:e0:8b:20:7b:e9:55:e9:c1:2e:9b:f0:fe:8b: a2:de:05:b0:56:38:06:e0:19:e0:f6:61:8f:d2:e0: f7:70:4a:47:2e:2f:ca:d9:1a:b5:7d:cc:c5:95:f0: d0:a7:3f:1f:0a:f1:46:7c:3a:41:8b:5d:48:9e:38: f8:03:32:b2:a7:86:b5:ad:c6:bf:e0:53:18:88:76: 11:79:c6:df:6d:75:07:99:79:78:76:d0:5c:49:c6: 2f:95:df:46:64:f7:91:98:04:45:5e:79:6d:47:cd: 0d:17:bd:ec:99:e8:8c:35:b4:f0:6f:3f:a6:41:cd: ab:44:4f:e9:e1:c3:b9:90:e3:c6:a7:f1:5b:34:a7: 4e:7f:59:5a:59:a2:f7:8b:d0:48:f7:1b:63:dd:39: b4:de:15:ce:6a:a2:6b:e0:63:56:16:37:54:3b:95: ca:fd:4e:87:0b:19:1f:5b:4d:83:3c:01:e3:5f:3c: af:28:d2:a7:ee:4d:b2:ba:35:52:c0:b5:44:64:c0: 4d:38:22:1a:bf:8e:1b:8b:31:0b:53:6f:d0:67:e4: 58:53:74:54:4d:d7:6f:25:1a:ee:fa:e4:40:b1:44: de:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B4:83:5B:C9:64:41:6E:CB:CF:E1:3E:14:F7:07:01:15:33:53:8F X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/B67FD220B98A11F0AB76E244C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.10.0/24 IPv6: 2001:df2:9cc0::/48 Signature Algorithm: sha256WithRSAEncryption 41:f8:ae:7b:3c:7b:8a:ab:5c:ef:d2:1c:40:00:1a:53:d1:8d: d7:66:45:a4:eb:24:de:d1:65:71:1c:85:20:b9:20:c4:9f:26: 86:b1:07:ba:15:cf:93:66:24:c0:c2:6a:3a:74:db:09:ed:e9: 34:8d:6c:eb:16:f5:8e:b6:9c:b6:f3:c2:2f:f0:23:c2:09:bc: ae:0f:33:3a:81:51:7b:e4:47:d1:7e:62:20:df:88:0b:7c:c4: 7b:34:87:90:73:ab:a9:e2:01:8d:cd:48:dd:27:aa:9d:2e:85: a2:80:8a:17:c2:43:3c:92:99:ed:ae:8a:35:be:fc:f2:44:04: bd:80:c9:22:26:21:57:20:06:48:8e:bb:a8:62:6b:3d:6b:af: 2d:8d:85:29:7e:53:82:93:5c:9d:07:ae:8a:5e:84:4f:8e:10: d2:0f:49:b8:c1:c4:54:73:07:55:db:c7:7d:f4:8b:e1:1b:85: 1b:be:62:fd:f1:09:00:4a:3d:26:36:c8:ae:8f:b7:79:fd:64: 2d:c2:dc:db:86:f8:fc:e8:42:37:39:95:f2:32:35:06:92:dc: 71:68:95:a8:30:c3:fe:1a:f5:b3:0b:d3:89:ba:e2:1a:5b:ca: 10:93:bd:5c:c5:a2:99:b8:ce:2a:88:57:a7:62:a6:8a:93:99: 14:06:0e:e9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjUxMTA0MTQyOTQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhMGRkYS1mMTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuQjcFXJtxLBEosfumChWdFlheIqmSs9j/W1VMtQz+CLIHvpVenBLpvw/oui 3gWwVjgG4Bng9mGP0uD3cEpHLi/K2Rq1fczFlfDQpz8fCvFGfDpBi11Injj4AzKy p4a1rca/4FMYiHYRecbfbXUHmXl4dtBcScYvld9GZPeRmARFXnltR80NF73smeiM NbTwbz+mQc2rRE/p4cO5kOPGp/FbNKdOf1laWaL3i9BI9xtj3Tm03hXOaqJr4GNW FjdUO5XK/U6HCxkfW02DPAHjXzyvKNKn7k2yujVSwLVEZMBNOCIav44bizELU2/Q Z+RYU3RUTddvJRru+uRAsUTeGwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBu0g1vJ ZEFuy8/hPhT3BwEVM1OPMB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVDQzMvNjQxNkQ4MzgxNEMwMTFFRTk2RUE1NDIxQzRGOUFFMDIvQjY3RkQyMjBC OThBMTFGMEFCNzZFMjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn5AowDwQCAAIwCQMHACABDfKcwDANBgkqhkiG9w0BAQsF AAOCAQEAQfiuezx7iqtc79IcQAAaU9GN12ZFpOsk3tFlcRyFILkgxJ8mhrEHuhXP k2YkwMJqOnTbCe3pNI1s6xb1jractvPCL/Ajwgm8rg8zOoFRe+RH0X5iIN+IC3zE ezSHkHOrqeIBjc1I3SeqnS6FooCKF8JDPJKZ7a6KNb788kQEvYDJIiYhVyAGSI67 qGJrPWuvLY2FKX5TgpNcnQeuil6ET44Q0g9JuMHEVHMHVdvHffSL4RuFG75i/fEJ AEo9JjbIro+3ef1kLcLc24b4/OhCNzmV8jI1BpLccWiVqDDD/hr1swvTibriGlvK EJO9XMWimbjOKohXp2KmipOZFAYO6Q== -----END CERTIFICATE-----Generated at Wed Nov 5 04:23:53 2025 by rpki-client