$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/96A539C2278211EF902D8D85C4F9AE02.roa File: 96A539C2278211EF902D8D85C4F9AE02.roa (raw, json) Hash identifier: rYHOV+63ySve2lLbeG71M0SUbKfF20oOi9uas6YcF+A= Subject key identifier: 23:F7:8C:64:17:2E:10:32:85:7A:17:5B:B1:B6:B7:9C:31:85:DC:82 Certificate issuer: /CN=A91BC269/serialNumber=30E2061F7C20BD843BEE5372C1321C35FBB1D3EF Certificate serial: 03C1 Authority key identifier: 30:E2:06:1F:7C:20:BD:84:3B:EE:53:72:C1:32:1C:35:FB:B1:D3:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOIGH3wgvYQ77lNywTIcNfux0-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/96A539C2278211EF902D8D85C4F9AE02.roa Signing time: Wed 22 Oct 2025 04:16:08 +0000 ROA not before: Wed 22 Oct 2025 04:16:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9876 IP address blocks: 103.8.140.0/22 maxlen: 23 103.15.126.0/23 maxlen: 23 163.47.236.0/22 maxlen: 23 202.56.32.0/20 maxlen: 20 202.56.32.0/22 maxlen: 22 202.56.36.0/22 maxlen: 22 202.56.40.0/22 maxlen: 22 202.56.44.0/22 maxlen: 22 202.56.48.0/21 maxlen: 22 202.137.240.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/MOIGH3wgvYQ77lNywTIcNfux0-8.crl rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/MOIGH3wgvYQ77lNywTIcNfux0-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOIGH3wgvYQ77lNywTIcNfux0-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC269, serialNumber=30E2061F7C20BD843BEE5372C1321C35FBB1D3EF Validity Not Before: Oct 22 04:16:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f85a88-1db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:53:b9:1e:42:8e:59:ad:55:c8:27:65:7d:f3: a5:7c:e2:dc:80:22:84:65:4c:6c:5c:8b:bb:45:bc: 6b:ad:aa:0b:43:60:c5:90:34:bd:4d:38:5b:90:a4: 1f:13:e9:1e:0d:89:f2:91:df:3d:51:f8:70:da:ca: ca:07:fb:3c:81:76:ea:30:48:84:97:90:d5:ba:fb: bb:a1:7b:e9:d5:33:ca:6e:48:3c:54:3a:a9:3b:93: cf:4e:91:2d:bc:8f:d8:0b:80:34:df:c9:83:d8:35: 48:e8:84:4d:28:d8:a9:e1:8a:7f:66:57:ed:c2:3c: 42:bf:e5:cd:18:06:2a:14:5b:a2:ba:d7:80:4d:3f: 39:b2:df:9a:89:df:57:28:3e:2d:06:5b:73:78:8a: 4d:d4:59:56:d1:21:4a:a1:53:8e:c6:79:d8:ff:d0: 06:64:9b:25:4e:79:b8:da:e6:55:0c:99:c8:d4:0e: 91:73:cb:b3:13:c5:41:5d:3a:8a:1b:5a:ae:3f:30: ec:3c:40:33:92:06:6a:16:4c:5e:09:be:f7:ed:f2: d4:78:38:07:73:77:35:1a:51:f8:50:30:22:d3:c9: 0d:86:a1:06:fc:ec:a7:2b:5a:50:88:60:2e:4d:86: 27:f8:a9:69:18:36:dc:2b:72:e4:4f:1b:94:73:e6: b1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F7:8C:64:17:2E:10:32:85:7A:17:5B:B1:B6:B7:9C:31:85:DC:82 X509v3 Authority Key Identifier: keyid:30:E2:06:1F:7C:20:BD:84:3B:EE:53:72:C1:32:1C:35:FB:B1:D3:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/MOIGH3wgvYQ77lNywTIcNfux0-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOIGH3wgvYQ77lNywTIcNfux0-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC269/BA676E30CFE511EC94BBC75AC4F9AE02/96A539C2278211EF902D8D85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.140.0/22 103.15.126.0/23 163.47.236.0/22 202.56.32.0-202.56.55.255 202.137.240.0/21 Signature Algorithm: sha256WithRSAEncryption 48:76:4b:64:e5:a6:bf:5d:7a:04:3b:1d:e0:0d:4d:78:4e:a4: 49:75:3c:9d:9d:0b:de:15:27:4e:15:46:76:97:95:3c:bb:27: 7e:e7:f1:f0:0b:78:ae:e9:27:f1:93:db:7e:e6:d1:61:81:f5: 01:34:1f:44:ac:e4:41:95:ea:d2:01:95:2a:ab:d6:7a:42:1a: ba:69:a9:c0:95:e7:83:da:44:cf:0a:5b:bf:f0:d7:45:fd:cb: ab:91:44:92:a4:89:e4:6e:6b:ff:15:44:bb:fa:09:36:17:a2: 5a:c3:90:28:48:97:23:5d:3f:d5:4d:91:56:3a:9e:f3:61:92: d9:6a:64:24:8b:b7:3c:7a:f4:1e:68:a6:cd:b9:35:7b:36:fd: cf:cb:06:bf:57:f0:ad:2f:e8:3e:30:91:21:bb:41:ac:73:ca: 13:89:81:92:a3:e7:22:73:02:ad:dc:2f:7b:47:23:9e:b7:5d: 6e:88:ab:16:4d:21:ef:69:a5:fe:3c:2b:1b:c8:4c:09:4b:c8: 01:bf:66:c2:f6:c1:28:c6:22:28:ab:f8:88:7f:b1:cb:f3:02: c1:5b:d6:57:5e:a9:8b:ef:0e:9c:3c:dc:21:ed:26:42:fa:7b: 3e:9b:ef:41:03:4e:29:ed:6b:09:38:fd:25:a0:30:b4:e0:d6: 69:92:40:8a -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyNjkxMTAvBgNVBAUTKDMwRTIwNjFGN0MyMEJEODQzQkVFNTM3MkMxMzIxQzM1 RkJCMUQzRUYwHhcNMjUxMDIyMDQxNjA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY4NWE4OC0xZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVO5HkKOWa1VyCdlffOlfOLcgCKEZUxsXIu7RbxrraoLQ2DFkDS9TThbkKQf E+keDYnykd89Ufhw2srKB/s8gXbqMEiEl5DVuvu7oXvp1TPKbkg8VDqpO5PPTpEt vI/YC4A038mD2DVI6IRNKNip4Yp/ZlftwjxCv+XNGAYqFFuiuteATT85st+aid9X KD4tBltzeIpN1FlW0SFKoVOOxnnY/9AGZJslTnm42uZVDJnI1A6Rc8uzE8VBXTqK G1quPzDsPEAzkgZqFkxeCb737fLUeDgHc3c1GlH4UDAi08kNhqEG/OynK1pQiGAu TYYn+KlpGDbcK3LkTxuUc+ax4wIDAQABo4ICtTCCArEwHQYDVR0OBBYEFCP3jGQX LhAyhXoXW7G2t5wxhdyCMB8GA1UdIwQYMBaAFDDiBh98IL2EO+5TcsEyHDX7sdPv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzI2OS9CQTY3NkUzMENG RTUxMUVDOTRCQkM3NUFDNEY5QUUwMi9NT0lHSDN3Z3ZZUTc3bE55d1RJY05mdXgw LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSUdIM3dndllRNzdsTnl3VEljTmZ1eDAtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMyNjkvQkE2NzZFMzBDRkU1MTFFQzk0QkJDNzVBQzRGOUFFMDIvOTZBNTM5QzIy NzgyMTFFRjkwMkQ4RDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAJnCIwDBAFnD34DBAKjL+wwDAMEBco4IAMEA8o4MAMEA8qJ 8DANBgkqhkiG9w0BAQsFAAOCAQEASHZLZOWmv116BDsd4A1NeE6kSXU8nZ0L3hUn ThVGdpeVPLsnfufx8At4rukn8ZPbfubRYYH1ATQfRKzkQZXq0gGVKqvWekIaummp wJXng9pEzwpbv/DXRf3Lq5FEkqSJ5G5r/xVEu/oJNheiWsOQKEiXI10/1U2RVjqe 82GS2WpkJIu3PHr0Hmimzbk1ezb9z8sGv1fwrS/oPjCRIbtBrHPKE4mBkqPnInMC rdwve0cjnrddboirFk0h72ml/jwrG8hMCUvIAb9mwvbBKMYiKKv4iH+xy/MCwVvW V16pi+8OnDzcIe0mQvp7PpvvQQNOKe1rCTj9JaAwtODWaZJAig== -----END CERTIFICATE-----Generated at Tue Nov 4 18:35:39 2025 by rpki-client