$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa File: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (raw, json) Hash identifier: MvhHzk/9f8tTuJ4ji5wkdvYja5PdDGGnrgSYFLH3YU4= Subject key identifier: C4:BE:E4:DC:A9:5F:85:B8:F2:6E:24:0C:5A:05:BD:DF:A1:44:BD:16 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0A04 Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa Signing time: Tue 28 Oct 2025 20:09:03 +0000 ROA not before: Tue 28 Oct 2025 20:09:03 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 131340 IP address blocks: 103.74.228.0/24 maxlen: 24 103.74.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2564 (0xa04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Oct 28 20:09:03 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690122df-f96a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0c:b3:f0:46:ae:dd:db:06:aa:6e:d2:a0:dd: 81:b9:2a:1b:9a:85:dc:ed:d7:86:40:be:f2:29:41: 43:2c:27:99:63:6a:59:71:17:80:54:3c:b3:cf:e7: 98:6a:90:28:b7:44:cf:c9:80:d6:e0:37:61:6a:45: 57:a2:59:1d:53:74:13:a7:06:83:08:c8:70:73:0e: 8e:53:e4:65:bb:5c:37:12:0b:7d:47:1c:0c:a5:8c: 64:22:5d:a9:a4:90:46:b4:00:af:52:4e:61:16:ab: 39:ab:9c:51:78:25:25:f0:34:b9:ae:ec:3e:fe:13: 7a:66:5f:18:24:4d:fa:0e:a2:22:39:96:75:39:5d: aa:b1:bb:4f:73:d9:36:59:a2:6d:d8:e1:d1:0f:f9: b8:32:46:40:65:96:65:93:fd:3a:47:2b:80:d5:1f: c6:16:fb:de:4c:ad:09:39:0c:b7:c2:29:10:56:7b: 78:16:8e:b3:a8:45:f2:40:c5:54:c1:ab:d8:45:b8: b3:fc:30:35:66:45:4b:32:19:e1:36:ff:c5:a8:45: ad:40:de:99:00:90:f1:b0:6b:41:c7:e0:93:ac:c5: 8c:72:ea:ca:28:7c:15:30:55:83:77:49:46:2c:0d: 7a:b5:37:d8:99:06:b2:5b:ef:f8:d3:fe:f9:0e:54: a4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:BE:E4:DC:A9:5F:85:B8:F2:6E:24:0C:5A:05:BD:DF:A1:44:BD:16 X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.74.228.0/24 103.74.231.0/24 Signature Algorithm: sha256WithRSAEncryption 43:f3:1c:9f:44:49:9d:3a:b0:ea:96:73:a0:53:bf:f9:7f:34: d3:7c:0e:96:e3:ce:cd:41:3b:be:44:ca:b1:ac:1d:7c:2b:b0: 58:90:72:ea:9f:a7:00:8e:1f:be:d0:77:0d:4c:63:2a:82:aa: 57:da:0f:5a:22:97:90:99:d5:ff:c7:97:8f:5f:19:71:28:ea: 25:e7:db:31:24:c0:a4:ac:28:7f:89:1f:1b:0d:4c:6e:e9:cc: a4:e8:57:2d:54:b1:57:03:c5:0f:20:f2:2f:f0:59:36:c8:b7: 77:c0:e2:bb:b7:40:ab:fe:a6:ca:36:e3:97:f0:f6:29:c6:da: 4b:e3:a3:4d:18:1e:cd:8e:28:69:77:66:d5:d1:43:ab:32:1d: d7:c9:cb:10:89:4a:bb:0d:c2:bd:de:f1:9f:a8:f9:87:d8:07: ba:73:b6:1f:b7:d3:96:22:f3:7b:a0:38:78:f8:a1:0a:a0:c1: 53:8b:c3:75:85:ed:90:b2:44:c1:50:d3:e2:fe:b3:c9:96:dc: 5f:0c:51:19:6a:4a:5e:4f:15:d3:83:6f:42:3c:81:7b:40:0f: 34:af:36:fe:27:e2:83:76:de:4b:c2:44:16:d6:ca:cf:05:5a: 32:95:16:0e:89:80:14:96:14:a4:47:5d:15:6f:16:58:f2:9c: 90:48:e7:85 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUxMDI4MjAwOTAzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAxMjJkZi1mOTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQyz8Eau3dsGqm7SoN2BuSobmoXc7deGQL7yKUFDLCeZY2pZcReAVDyzz+eY apAot0TPyYDW4DdhakVXolkdU3QTpwaDCMhwcw6OU+Rlu1w3Egt9RxwMpYxkIl2p pJBGtACvUk5hFqs5q5xReCUl8DS5ruw+/hN6Zl8YJE36DqIiOZZ1OV2qsbtPc9k2 WaJt2OHRD/m4MkZAZZZlk/06RyuA1R/GFvveTK0JOQy3wikQVnt4Fo6zqEXyQMVU wavYRbiz/DA1ZkVLMhnhNv/FqEWtQN6ZAJDxsGtBx+CTrMWMcurKKHwVMFWDd0lG LA16tTfYmQayW+/40/75DlSk3wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMS+5Nyp X4W48m4kDFoFvd+hRL0WMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjIzQjMvRTY0NjVBMTA4RTk4MTFFQUFCNThCRDNBQzRGOUFFMDIvMjEwOURGRjJF RkJCMTFFQzk1QTFGRDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnSuQDBABnSucwDQYJKoZIhvcNAQELBQADggEBAEPzHJ9E SZ06sOqWc6BTv/l/NNN8Dpbjzs1BO75EyrGsHXwrsFiQcuqfpwCOH77Qdw1MYyqC qlfaD1oil5CZ1f/Hl49fGXEo6iXn2zEkwKSsKH+JHxsNTG7pzKToVy1UsVcDxQ8g 8i/wWTbIt3fA4ru3QKv+pso245fw9inG2kvjo00YHs2OKGl3ZtXRQ6syHdfJyxCJ SrsNwr3e8Z+o+YfYB7pzth+305Yi83ugOHj4oQqgwVOLw3WF7ZCyRMFQ0+L+s8mW 3F8MURlqSl5PFdODb0I8gXtADzSvNv4n4oN23kvCRBbWys8FWjKVFg6JgBSWFKRH XRVvFljynJBI54U= -----END CERTIFICATE-----Generated at Wed Nov 5 20:50:57 2025 by rpki-client