$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6A74/4C31FB449A8811F0A4779C10C4F9AE02/285C90D49A8911F0B2115222C4F9AE02.roa File: 285C90D49A8911F0B2115222C4F9AE02.roa (raw, json) Hash identifier: iL5Q8l5UWu94q64YaDJD+oexRS/HLLSzlzHuSDLmHTo= Subject key identifier: FC:B0:CF:67:01:54:0B:99:22:0A:6A:0C:29:05:FB:66:18:7C:34:57 Certificate issuer: /CN=A91A6A74/serialNumber=AD6534839FE6A7A87760A1ED0A39C310693FB9FF Certificate serial: 02 Authority key identifier: AD:65:34:83:9F:E6:A7:A8:77:60:A1:ED:0A:39:C3:10:69:3F:B9:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rWU0g5_mp6h3YKHtCjnDEGk_uf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6A74/4C31FB449A8811F0A4779C10C4F9AE02/285C90D49A8911F0B2115222C4F9AE02.roa Signing time: Fri 26 Sep 2025 03:30:33 +0000 ROA not before: Fri 26 Sep 2025 03:30:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149802 IP address blocks: 103.186.206.0/23 maxlen: 24 2001:df1:7fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6A74/4C31FB449A8811F0A4779C10C4F9AE02/rWU0g5_mp6h3YKHtCjnDEGk_uf8.crl rsync://rpki.apnic.net/member_repository/A91A6A74/4C31FB449A8811F0A4779C10C4F9AE02/rWU0g5_mp6h3YKHtCjnDEGk_uf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rWU0g5_mp6h3YKHtCjnDEGk_uf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6A74, serialNumber=AD6534839FE6A7A87760A1ED0A39C310693FB9FF Validity Not Before: Sep 26 03:30:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68d608d8-4a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fa:29:03:86:52:95:8d:69:75:37:72:d3:a1: 1e:7e:36:d6:08:a8:f8:8d:53:0e:f9:b2:41:ea:39: 99:a1:c2:06:f4:b2:db:83:28:04:70:ee:a6:24:91: 46:cd:e9:85:c9:81:86:f8:35:d6:67:e7:35:bf:1a: 7e:32:51:d0:62:1c:e7:ab:7d:68:d2:7a:3a:fb:77: 6d:c9:48:9e:69:7f:ac:b7:a8:ae:04:35:ae:93:2d: 50:5c:8f:a1:7d:86:7f:c3:96:a5:05:23:ad:86:33: 04:9e:cd:c9:49:64:ac:0a:b5:fa:8d:31:5d:82:24: b7:d9:dd:28:42:a8:41:49:1d:41:1c:47:6f:a8:6c: 3d:50:93:b9:5e:c4:a9:4f:5c:51:98:14:75:5e:d1: cb:c8:83:21:b5:8b:6e:46:b9:5c:3d:9e:59:1f:06: 84:c0:1f:17:77:25:82:15:cc:89:92:48:25:d7:0a: cf:c8:88:29:2c:00:f8:a3:8f:01:17:60:a4:9c:0b: ed:c3:e1:0e:23:a0:d4:c0:20:11:ed:d0:da:51:e7: 30:ae:62:3c:0d:d6:7d:54:87:a1:5a:fa:cb:d4:8c: 81:a2:9b:47:2b:f1:fe:a4:28:6e:33:f4:f6:9d:4c: fb:0f:75:02:88:d3:22:17:74:f4:00:78:1b:51:80: 7e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B0:CF:67:01:54:0B:99:22:0A:6A:0C:29:05:FB:66:18:7C:34:57 X509v3 Authority Key Identifier: keyid:AD:65:34:83:9F:E6:A7:A8:77:60:A1:ED:0A:39:C3:10:69:3F:B9:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6A74/4C31FB449A8811F0A4779C10C4F9AE02/rWU0g5_mp6h3YKHtCjnDEGk_uf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rWU0g5_mp6h3YKHtCjnDEGk_uf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6A74/4C31FB449A8811F0A4779C10C4F9AE02/285C90D49A8911F0B2115222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.206.0/23 IPv6: 2001:df1:7fc0::/48 Signature Algorithm: sha256WithRSAEncryption 1e:88:b4:a3:d2:14:99:29:d4:d4:ae:7c:3a:dd:ab:1b:fb:14: 69:61:72:83:2f:bd:b9:52:17:0d:8e:f4:32:54:a2:65:e6:15: 92:bd:b9:f0:8e:bb:bc:57:fe:ee:1a:b7:3d:c0:90:5b:58:a8: d6:4b:37:4f:bc:50:93:1e:6d:49:8b:5b:ee:5f:e8:0b:1c:9f: 09:f4:2c:18:e0:83:84:0d:f3:89:3a:e3:c2:bf:89:87:fd:b1: 74:f2:4c:62:bd:1e:d5:2b:32:99:55:d3:bc:cb:45:da:d3:66: ea:52:dc:05:1d:a0:9b:83:57:2d:21:87:17:c9:64:21:ea:89: 12:57:3b:33:f6:5f:2b:d6:44:d4:84:52:1e:55:3c:07:4c:fb: f3:da:b4:e1:55:75:1d:a4:15:a3:4e:d7:88:2c:a8:c5:f2:7b: 5a:54:5b:25:aa:d8:74:11:5b:41:75:0f:17:6c:dd:c1:25:e2: eb:01:0b:10:b8:e9:d5:21:8f:84:d8:1f:8d:02:94:6d:22:45: 8f:9f:2f:0a:5d:f9:9b:14:a0:a4:e2:6e:23:2e:33:5d:bd:55: 3a:07:90:95:d2:3e:4f:1d:15:26:31:43:e1:51:10:fb:f2:d7: 10:3c:ea:24:66:f6:4c:46:57:b5:33:78:51:ae:b2:af:39:40: 47:49:c4:dd -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkE3NDExMC8GA1UEBRMoQUQ2NTM0ODM5RkU2QTdBODc3NjBBMUVEMEEzOUMzMTA2 OTNGQjlGRjAeFw0yNTA5MjYwMzMwMzNaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDYwOGQ4LTRhNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ+ikDhlKVjWl1N3LToR5+NtYIqPiNUw75skHqOZmhwgb0stuDKARw7qYkkUbN 6YXJgYb4NdZn5zW/Gn4yUdBiHOerfWjSejr7d23JSJ5pf6y3qK4ENa6TLVBcj6F9 hn/DlqUFI62GMwSezclJZKwKtfqNMV2CJLfZ3ShCqEFJHUEcR2+obD1Qk7lexKlP XFGYFHVe0cvIgyG1i25GuVw9nlkfBoTAHxd3JYIVzImSSCXXCs/IiCksAPijjwEX YKScC+3D4Q4joNTAIBHt0NpR5zCuYjwN1n1Uh6Fa+svUjIGim0cr8f6kKG4z9Pad TPsPdQKI0yIXdPQAeBtRgH7xAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU/LDPZwFU C5kiCmoMKQX7Zhh8NFcwHwYDVR0jBBgwFoAUrWU0g5/mp6h3YKHtCjnDEGk/uf8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2QTc0LzRDMzFGQjQ0OUE4 ODExRjBBNDc3OUMxMEM0RjlBRTAyL3JXVTBnNV9tcDZoM1lLSHRDam5ERUdrX3Vm OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcldVMGc1X21wNmgzWUtIdENqbkRFR2tfdWY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkE3NC80QzMxRkI0NDlBODgxMUYwQTQ3NzlDMTBDNEY5QUUwMi8yODVDOTBENDlB ODkxMUYwQjIxMTUyMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWe6zjAPBAIAAjAJAwcAIAEN8X/AMA0GCSqGSIb3DQEBCwUA A4IBAQAeiLSj0hSZKdTUrnw63asb+xRpYXKDL725UhcNjvQyVKJl5hWSvbnwjru8 V/7uGrc9wJBbWKjWSzdPvFCTHm1Ji1vuX+gLHJ8J9CwY4IOEDfOJOuPCv4mH/bF0 8kxivR7VKzKZVdO8y0Xa02bqUtwFHaCbg1ctIYcXyWQh6okSVzsz9l8r1kTUhFIe VTwHTPvz2rThVXUdpBWjTteILKjF8ntaVFslqth0EVtBdQ8XbN3BJeLrAQsQuOnV IY+E2B+NApRtIkWPny8KXfmbFKCk4m4jLjNdvVU6B5CV0j5PHRUmMUPhURD78tcQ POokZvZMRle1M3hRrrKvOUBHScTd -----END CERTIFICATE-----Generated at Wed Nov 5 09:37:56 2025 by rpki-client