$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/971B23D236EA11EE802E9246C4F9AE02.roa File: 971B23D236EA11EE802E9246C4F9AE02.roa (raw, json) Hash identifier: UyfMMb1+MxfY9sz24UI+SyQxwGOXE8nJHXlCf8yhy2I= Subject key identifier: D1:32:22:A1:7E:EF:57:EA:43:A2:5D:5F:83:2A:C7:43:93:43:2E:C4 Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 01B1 Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/971B23D236EA11EE802E9246C4F9AE02.roa Signing time: Wed 29 Oct 2025 03:17:54 +0000 ROA not before: Wed 29 Oct 2025 03:17:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141212 IP address blocks: 103.156.136.0/24 maxlen: 24 103.156.137.0/24 maxlen: 24 2001:df2:e1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145, serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: Oct 29 03:17:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69018761-7519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7a:af:8d:02:55:0b:3f:06:c4:a1:84:e0:c9: 8a:2d:7e:ad:75:e9:2c:fc:9c:37:35:af:22:c9:09: 8b:84:c3:dd:fe:2f:d1:f8:07:53:25:2a:b4:66:ea: f2:48:b8:3c:62:9c:ab:3c:e5:e6:54:71:42:3a:f0: ea:36:15:ff:3e:a9:8f:a0:5c:27:10:9a:e7:dc:de: 6e:ab:21:6e:5d:9c:9b:20:21:ee:61:a8:f5:7a:03: a3:d5:26:17:9c:c7:3f:4c:d9:ef:55:5e:e4:37:ef: ed:41:70:c8:6d:30:d3:fb:25:8a:fa:5e:4f:73:6b: 9f:e5:dc:6f:77:64:0c:81:22:b3:d0:a5:71:df:1e: 6d:30:e8:15:bd:fa:b7:73:71:07:d4:25:3c:2a:d0: 36:54:e9:ec:8d:4f:ad:d5:af:b0:68:ed:e2:85:23: 90:a2:4a:16:ae:71:27:ce:3c:e2:dd:fe:0f:4e:6b: a8:d6:29:ae:10:9b:46:e2:ed:93:cd:0f:99:d4:fe: ca:ba:73:c1:8a:29:02:c6:e2:82:6f:c4:1a:b7:e9: a3:c7:9f:be:09:31:21:75:4c:6b:ae:31:42:b5:51: f4:86:10:e7:65:56:b9:73:a8:c0:69:e2:b6:e3:4f: ff:50:21:d2:e0:c5:10:c6:fc:ca:86:11:db:14:3f: f8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:32:22:A1:7E:EF:57:EA:43:A2:5D:5F:83:2A:C7:43:93:43:2E:C4 X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/971B23D236EA11EE802E9246C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.136.0/23 IPv6: 2001:df2:e1c0::/48 Signature Algorithm: sha256WithRSAEncryption 28:dc:5d:5b:e5:df:02:32:33:a9:19:73:e2:38:f4:64:36:5a: 83:da:fa:aa:cf:d6:54:eb:4d:c9:83:af:80:4f:9f:4f:44:c4: bb:77:dc:f2:f1:27:e0:51:a5:ee:0e:f3:ae:7e:29:c9:a2:2c: b6:d8:6f:2e:c0:22:47:92:5f:cf:39:95:e3:54:e4:86:6e:7b: 5f:29:02:46:7a:a7:74:a3:0b:b0:cf:4e:8a:48:22:3d:ff:12: dc:e1:17:7d:f3:56:bf:cb:43:1b:be:0e:ca:86:ff:8c:6d:6e: a2:17:da:c5:fa:fd:70:b5:4b:a4:44:c3:10:4d:09:2d:65:77: f1:23:98:5c:40:b8:c9:2c:ab:fb:27:14:37:46:ba:82:c3:f8: 67:46:62:2b:2e:6e:ce:30:ce:c5:25:7c:64:b0:55:95:c2:56: 0c:c4:fa:0d:e3:20:12:09:43:bd:66:f1:b9:6b:36:23:8d:47: 3c:1d:79:0a:16:d7:5f:c9:17:76:d0:6b:25:55:9d:3c:b5:16: 61:6b:79:60:ae:9e:ac:a6:84:b2:75:0b:19:e0:9b:01:24:1a: 4e:64:b8:6d:a9:91:aa:cc:69:28:44:80:b0:6c:8f:2f:aa:1f: 56:c3:bb:a2:c3:8e:11:e6:67:24:35:97:8d:df:ad:ee:1c:86: af:86:00:61 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjUxMDI5MDMxNzU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAxODc2MS03NTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnqvjQJVCz8GxKGE4MmKLX6tdeks/Jw3Na8iyQmLhMPd/i/R+AdTJSq0Zury SLg8YpyrPOXmVHFCOvDqNhX/PqmPoFwnEJrn3N5uqyFuXZybICHuYaj1egOj1SYX nMc/TNnvVV7kN+/tQXDIbTDT+yWK+l5Pc2uf5dxvd2QMgSKz0KVx3x5tMOgVvfq3 c3EH1CU8KtA2VOnsjU+t1a+waO3ihSOQokoWrnEnzjzi3f4PTmuo1imuEJtG4u2T zQ+Z1P7KunPBiikCxuKCb8Qat+mjx5++CTEhdUxrrjFCtVH0hhDnZVa5c6jAaeK2 40//UCHS4MUQxvzKhhHbFD/4tQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNEyIqF+ 71fqQ6JdX4Mqx0OTQy7EMB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYxNDUvMjc4MDczQ0UzNkVBMTFFRUFFMTBBQTQ1QzRGOUFFMDIvOTcxQjIzRDIz NkVBMTFFRTgwMkU5MjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnIgwDwQCAAIwCQMHACABDfLhwDANBgkqhkiG9w0BAQsF AAOCAQEAKNxdW+XfAjIzqRlz4jj0ZDZag9r6qs/WVOtNyYOvgE+fT0TEu3fc8vEn 4FGl7g7zrn4pyaIstthvLsAiR5JfzzmV41Tkhm57XykCRnqndKMLsM9OikgiPf8S 3OEXffNWv8tDG74Oyob/jG1uohfaxfr9cLVLpETDEE0JLWV38SOYXEC4ySyr+ycU N0a6gsP4Z0ZiKy5uzjDOxSV8ZLBVlcJWDMT6DeMgEglDvWbxuWs2I41HPB15ChbX X8kXdtBrJVWdPLUWYWt5YK6erKaEsnULGeCbASQaTmS4bamRqsxpKESAsGyPL6of VsO7osOOEeZnJDWXjd+t7hyGr4YAYQ== -----END CERTIFICATE-----Generated at Wed Nov 5 16:46:11 2025 by rpki-client