$ rpki-client -vvf rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa File: 8D3BB78A3AEA11EC84E6634EC4F9AE02.roa (raw, json) Hash identifier: gRIxBN9j2B92B3iu2n2M3gTz25kochUDwkxnUuXAmV0= Subject key identifier: 4B:8E:C8:80:79:32:68:0B:A8:FA:89:B7:E5:AC:B1:DC:5C:AE:43:84 Certificate issuer: /CN=A91B885C/serialNumber=5374C6E75F186052455A2D8DA5292FEF009CC9AF Certificate serial: 0D96 Authority key identifier: 53:74:C6:E7:5F:18:60:52:45:5A:2D:8D:A5:29:2F:EF:00:9C:C9:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa Signing time: Fri 31 Oct 2025 18:36:45 +0000 ROA not before: Fri 31 Oct 2025 18:36:45 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 45785 IP address blocks: 103.10.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.crl rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3478 (0xd96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B885C, serialNumber=5374C6E75F186052455A2D8DA5292FEF009CC9AF Validity Not Before: Oct 31 18:36:45 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=690501bd-3bd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:3e:d9:44:e0:b4:16:17:7b:4f:09:4a:a7: 0a:6f:ee:3f:4a:4e:72:90:85:f4:b9:34:e8:55:e6: 06:2f:33:de:48:c4:29:b7:80:d3:38:62:46:89:fa: 36:ba:53:43:c4:78:85:ba:d5:0c:cd:11:f8:2e:0c: da:04:03:17:f8:99:34:cd:f7:4b:34:7e:8f:f3:90: bc:26:65:f9:6e:9d:d5:6a:4e:3c:27:75:22:aa:87: 94:2e:cc:eb:96:90:e7:09:9c:8c:37:e0:ac:d1:0e: e5:97:61:5f:85:e8:ca:16:bc:1b:04:c4:19:68:e9: 04:0d:3e:fd:3d:a2:4e:14:1b:2f:3c:09:5b:bd:c8: 2f:0a:75:8d:6f:4d:b1:27:bf:4a:a7:0c:52:1d:d4: b5:67:93:85:e0:73:86:ba:c9:2f:ba:2d:89:c9:cb: 53:c7:06:a1:58:13:f9:25:43:c8:76:4c:b1:10:0f: 87:dc:24:f9:ec:c5:4e:1a:5a:03:43:c5:9c:0d:53: cc:28:3d:64:21:4a:89:92:26:f6:df:04:67:a4:39: 2e:c5:62:5b:13:40:94:b3:af:d0:3a:bd:0a:67:c9: 59:35:1e:4b:51:1f:d9:35:44:5d:0e:59:05:a5:f4: 5a:f5:b3:dc:43:69:9e:7d:fc:14:b1:d6:5a:4f:18: 44:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:8E:C8:80:79:32:68:0B:A8:FA:89:B7:E5:AC:B1:DC:5C:AE:43:84 X509v3 Authority Key Identifier: keyid:53:74:C6:E7:5F:18:60:52:45:5A:2D:8D:A5:29:2F:EF:00:9C:C9:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.196.0/24 Signature Algorithm: sha256WithRSAEncryption 25:e8:d5:ac:43:4a:20:13:5a:61:c5:f9:f9:97:f5:bc:6c:31: 55:a7:0f:3c:d5:fe:08:61:94:21:5e:af:77:cd:3e:dd:f5:70: 4e:ef:86:6b:db:79:f8:19:d7:df:c6:ee:ef:2c:3e:1b:8d:e9: 98:c1:d7:96:70:39:84:2c:5a:e7:11:fc:15:2a:01:7e:93:f3: 77:3d:3a:c6:1b:d5:ec:fd:f8:8e:e8:4a:33:24:59:3a:19:c1: 32:70:00:26:1a:a4:a5:49:31:f4:be:4f:c0:b0:60:98:4c:6f: 6c:0b:96:e4:49:f3:10:79:c8:8a:05:83:1f:a8:5f:48:55:5f: b2:1f:a3:2c:ff:3f:c7:4f:36:bb:68:6e:75:50:55:00:7f:02: aa:f9:a1:05:f1:d8:89:02:b7:a4:87:97:43:12:10:12:1c:2a: 0f:c8:45:82:dc:6d:c9:61:99:c3:ee:89:76:ed:12:d8:86:91: 7f:0c:5e:20:f3:f5:d0:51:a9:eb:20:8f:ea:03:1e:51:65:a7: 89:45:67:f9:0e:0a:e2:55:f1:50:79:1f:ef:ad:89:97:85:11: 35:38:09:5d:ed:65:5a:96:a6:f6:d7:a2:59:05:3f:7f:13:4a: 70:2d:b4:01:93:c1:9b:94:0a:a8:87:ce:5e:9a:59:ea:ea:24: 4d:7c:49:8f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg4NUMxMTAvBgNVBAUTKDUzNzRDNkU3NUYxODYwNTI0NTVBMkQ4REE1MjkyRkVG MDA5Q0M5QUYwHhcNMjUxMDMxMTgzNjQ1WhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA1MDFiZC0zYmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphY+2UTgtBYXe08JSqcKb+4/Sk5ykIX0uTToVeYGLzPeSMQpt4DTOGJGifo2 ulNDxHiFutUMzRH4LgzaBAMX+Jk0zfdLNH6P85C8JmX5bp3Vak48J3UiqoeULszr lpDnCZyMN+Cs0Q7ll2FfhejKFrwbBMQZaOkEDT79PaJOFBsvPAlbvcgvCnWNb02x J79KpwxSHdS1Z5OF4HOGuskvui2JyctTxwahWBP5JUPIdkyxEA+H3CT57MVOGloD Q8WcDVPMKD1kIUqJkib23wRnpDkuxWJbE0CUs6/QOr0KZ8lZNR5LUR/ZNURdDlkF pfRa9bPcQ2meffwUsdZaTxhE3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEuOyIB5 MmgLqPqJt+WssdxcrkOEMB8GA1UdIwQYMBaAFFN0xudfGGBSRVotjaUpL+8AnMmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODg1Qy81QzE5Rjg0MkYy NjcxMUU5ODdDNzEzMUZDNEY5QUUwMi9VM1RHNTE4WVlGSkZXaTJOcFNrdjd3Q2N5 YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzVEc1MThZWUZKRldpMk5wU2t2N3dDY3lhOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg4NUMvNUMxOUY4NDJGMjY3MTFFOTg3QzcxMzFGQzRGOUFFMDIvOEQzQkI3OEEz QUVBMTFFQzg0RTY2MzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCsQwDQYJKoZIhvcNAQELBQADggEBACXo1axDSiATWmHF +fmX9bxsMVWnDzzV/ghhlCFer3fNPt31cE7vhmvbefgZ19/G7u8sPhuN6ZjB15Zw OYQsWucR/BUqAX6T83c9OsYb1ez9+I7oSjMkWToZwTJwACYapKVJMfS+T8CwYJhM b2wLluRJ8xB5yIoFgx+oX0hVX7Ifoyz/P8dPNrtobnVQVQB/Aqr5oQXx2IkCt6SH l0MSEBIcKg/IRYLcbclhmcPuiXbtEtiGkX8MXiDz9dBRqesgj+oDHlFlp4lFZ/kO CuJV8VB5H++tiZeFETU4CV3tZVqWpvbXolkFP38TSnAttAGTwZuUCqiHzl6aWerq JE18SY8= -----END CERTIFICATE-----Generated at Wed Nov 5 19:26:58 2025 by rpki-client