$ rpki-client -vvf rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa File: 6243075E653411EB98060C17C4F9AE02.roa (raw, json) Hash identifier: 1F9y90e8vUgBxzA3sbZHcMYz/rShgnfZZhG92OSZ8ag= Subject key identifier: 88:80:B3:7E:C4:D8:26:D6:3C:1D:F0:0F:C3:00:89:C1:C9:B7:51:70 Certificate issuer: /CN=A91B927E/serialNumber=2AC0AB4B5F3BB5B0EF79BD21A649CAFFE7F9C20A Certificate serial: 0754 Authority key identifier: 2A:C0:AB:4B:5F:3B:B5:B0:EF:79:BD:21:A6:49:CA:FF:E7:F9:C2:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa Signing time: Thu 30 Oct 2025 19:38:56 +0000 ROA not before: Thu 30 Oct 2025 19:38:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 135130 IP address blocks: 103.122.249.0/24 maxlen: 24 103.122.250.0/23 maxlen: 23 103.122.250.0/24 maxlen: 24 103.122.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.crl rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1876 (0x754) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B927E, serialNumber=2AC0AB4B5F3BB5B0EF79BD21A649CAFFE7F9C20A Validity Not Before: Oct 30 19:38:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6903bed0-1969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ed:30:b7:d2:78:32:ee:5a:ce:9a:5b:17:f1: 45:a2:69:15:36:91:c8:dc:ad:d1:9a:e6:ad:19:61: ab:85:a9:0d:e5:60:ce:36:4f:dd:87:1d:05:67:9a: a1:66:db:5f:52:db:85:6f:b9:8b:51:78:ac:33:1a: 44:ac:b4:4d:21:12:53:61:3a:22:7f:8a:cb:36:75: 5b:bf:28:36:47:4e:db:19:d8:89:f6:89:7c:69:8d: d7:b2:0b:7c:e6:5f:7c:6c:86:2a:c7:e8:7c:8b:8a: c5:40:5c:b6:5a:07:de:40:a1:06:aa:e6:bf:c1:46: 30:a5:e6:3c:71:c2:c5:e8:c7:0b:95:ec:2b:f8:28: 75:89:8a:80:b7:2c:d0:b2:c3:12:ab:94:f6:6e:9a: b3:54:2b:c4:74:82:13:2b:03:bb:2e:22:71:39:8f: d9:4c:74:bd:94:ee:06:0e:8e:ea:b0:20:06:03:6f: 8a:29:7d:df:13:45:35:f5:9f:ee:6a:96:7e:ba:fb: 30:c9:30:37:59:17:00:5f:22:0e:b5:7b:52:79:93: a6:e0:01:d8:ba:bf:1f:80:30:a9:d0:c1:88:f7:47: f4:d0:62:48:34:19:76:3a:c8:73:0a:71:9c:37:c7: 58:26:41:fc:5b:52:6c:15:e0:63:9c:eb:43:88:03: 9f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:80:B3:7E:C4:D8:26:D6:3C:1D:F0:0F:C3:00:89:C1:C9:B7:51:70 X509v3 Authority Key Identifier: keyid:2A:C0:AB:4B:5F:3B:B5:B0:EF:79:BD:21:A6:49:CA:FF:E7:F9:C2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.249.0-103.122.251.255 Signature Algorithm: sha256WithRSAEncryption 76:11:7d:14:b1:3f:2f:70:f2:b7:57:d6:50:16:a9:75:05:3e: c7:96:27:ac:41:bd:34:0e:9a:27:31:f8:05:fb:bb:d3:5d:eb: 87:7d:ce:74:12:89:46:e1:81:47:b8:82:c6:a6:01:2c:b7:e7: ee:cb:2d:09:83:57:ef:3b:4d:fb:cd:30:20:2c:2d:02:9e:02: 2b:be:be:7f:d4:e8:99:bb:88:1c:fa:a3:e6:19:e6:dc:cc:b5: 33:e1:35:3b:2f:01:ff:96:b9:15:6c:d8:af:8e:03:53:f7:57: a8:19:1a:a3:c9:c3:4b:9c:73:aa:dc:b4:62:f0:d7:bf:77:9b: 32:7d:78:a1:62:77:be:3e:d6:a9:94:06:3d:28:64:34:99:2b: ab:20:33:8c:27:98:52:59:8c:ea:e4:56:a8:92:fc:be:0a:ca: 13:76:a4:46:de:42:1f:f8:b9:07:f2:50:7b:0d:c4:05:bf:f1: b7:9c:c8:10:f6:a7:6c:66:bc:45:8a:e7:a3:a6:a2:f7:42:92: 96:5c:53:7e:67:1d:71:5d:d4:96:77:0d:1e:a7:fb:57:b0:8f: b5:c8:e9:ee:ef:eb:0c:8b:a3:30:e5:0b:db:59:10:bd:cc:22: 5b:d3:83:6a:78:74:e8:39:be:a6:bf:a3:b0:68:ce:05:e4:0e: 33:6e:dc:53 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICB1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyN0UxMTAvBgNVBAUTKDJBQzBBQjRCNUYzQkI1QjBFRjc5QkQyMUE2NDlDQUZG RTdGOUMyMEEwHhcNMjUxMDMwMTkzODU2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzYmVkMC0xOTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlu0wt9J4Mu5azppbF/FFomkVNpHI3K3RmuatGWGrhakN5WDONk/dhx0FZ5qh ZttfUtuFb7mLUXisMxpErLRNIRJTYToif4rLNnVbvyg2R07bGdiJ9ol8aY3Xsgt8 5l98bIYqx+h8i4rFQFy2WgfeQKEGqua/wUYwpeY8ccLF6McLlewr+Ch1iYqAtyzQ ssMSq5T2bpqzVCvEdIITKwO7LiJxOY/ZTHS9lO4GDo7qsCAGA2+KKX3fE0U19Z/u apZ+uvswyTA3WRcAXyIOtXtSeZOm4AHYur8fgDCp0MGI90f00GJINBl2OshzCnGc N8dYJkH8W1JsFeBjnOtDiAOfvwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFIiAs37E 2CbWPB3wD8MAicHJt1FwMB8GA1UdIwQYMBaAFCrAq0tfO7Ww73m9IaZJyv/n+cIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI3RS9DQ0Q2RUQxQzY4 REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9Lc0NyUzE4N3RiRHZlYjBocGtuS18tZjV3 Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tzQ3JTMTg3dGJEdmViMGhwa25LXy1mNXdnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyN0UvQ0NENkVEMUM2OERGMTFFQTk3QjE1NTI0QzRGOUFFMDIvNjI0MzA3NUU2 NTM0MTFFQjk4MDYwQzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGd6+QMEAmd6+DANBgkqhkiG9w0BAQsFAAOCAQEAdhF9 FLE/L3Dyt1fWUBapdQU+x5YnrEG9NA6aJzH4Bfu7013rh33OdBKJRuGBR7iCxqYB LLfn7sstCYNX7ztN+80wICwtAp4CK76+f9TombuIHPqj5hnm3My1M+E1Oy8B/5a5 FWzYr44DU/dXqBkao8nDS5xzqty0YvDXv3ebMn14oWJ3vj7WqZQGPShkNJkrqyAz jCeYUlmM6uRWqJL8vgrKE3akRt5CH/i5B/JQew3EBb/xt5zIEPanbGa8RYrno6ai 90KSllxTfmcdcV3UlncNHqf7V7CPtcjp7u/rDIujMOUL21kQvcwiW9ODanh06Dm+ pr+jsGjOBeQOM27cUw== -----END CERTIFICATE-----Generated at Tue Nov 4 19:10:57 2025 by rpki-client