$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/3728DA229A8611EFA824F73BC4F9AE02.roa File: 3728DA229A8611EFA824F73BC4F9AE02.roa (raw, json) Hash identifier: s/TAy9epcEKTC12lHA/WIlwW4b4QaIyA/jvIAJ5W4eQ= Subject key identifier: 48:DF:25:32:C5:D3:21:A3:CC:60:EF:B5:8C:5C:55:7C:25:E7:20:54 Certificate issuer: /CN=A91C0C73/serialNumber=E39369BA9DD8809987B236B477AD78E15C75AB1C Certificate serial: 021F Authority key identifier: E3:93:69:BA:9D:D8:80:99:87:B2:36:B4:77:AD:78:E1:5C:75:AB:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/3728DA229A8611EFA824F73BC4F9AE02.roa Signing time: Sat 17 May 2025 02:19:40 +0000 ROA not before: Sat 17 May 2025 02:19:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139041 IP address blocks: 103.138.226.0/24 maxlen: 24 103.138.227.0/24 maxlen: 24 2401:1c20::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.crl rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C73, serialNumber=E39369BA9DD8809987B236B477AD78E15C75AB1C Validity Not Before: May 17 02:19:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6827f23b-854e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ef:a5:c3:bb:53:83:71:e9:e2:65:b7:00:1d: d2:0d:e7:17:b4:77:87:63:fc:d2:93:3b:f0:67:d0: 98:7b:28:b0:1a:d5:69:10:6f:26:84:1c:86:47:49: b5:b5:41:87:e6:7c:d7:93:5c:e2:38:94:e6:ea:c6: ed:c0:7a:88:0b:fb:72:16:dd:dc:57:c0:ab:02:29: 64:ac:47:de:84:c9:9b:98:86:4c:39:cc:90:13:75: d2:46:e2:eb:1a:ff:5c:66:a1:3c:03:ec:3e:22:87: 88:61:a6:f2:74:2d:a9:af:c9:cd:50:cf:82:73:7e: 12:44:92:54:c7:8a:d4:89:30:5c:29:5c:5c:96:73: 83:52:fb:8e:3b:4c:74:a1:7c:d6:10:2b:39:b8:d3: ac:2b:41:75:c6:03:eb:34:70:47:2e:b7:2b:1a:57: 7f:97:11:da:f5:71:ad:41:27:4b:04:d6:01:75:42: fa:ca:d3:6e:e4:22:af:99:bd:bc:49:86:a9:d0:9e: f0:8e:f9:67:b1:3f:49:7a:9b:61:6d:97:b2:03:7e: 78:6b:11:c9:7f:e3:5d:30:ea:6b:06:60:dc:c0:fa: 28:3b:fc:cb:82:eb:87:72:3b:32:c9:48:36:a5:92: 20:84:e5:5c:8a:18:9e:d6:32:2f:39:7f:36:cd:22: 53:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:DF:25:32:C5:D3:21:A3:CC:60:EF:B5:8C:5C:55:7C:25:E7:20:54 X509v3 Authority Key Identifier: keyid:E3:93:69:BA:9D:D8:80:99:87:B2:36:B4:77:AD:78:E1:5C:75:AB:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/3728DA229A8611EFA824F73BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.226.0/23 IPv6: 2401:1c20::/33 Signature Algorithm: sha256WithRSAEncryption 60:a7:8e:c0:96:ba:ec:06:df:3d:fb:d1:cf:ca:3a:3f:cc:95: fd:2f:72:9b:0a:73:4b:b8:d6:4e:bd:43:34:2a:02:25:0d:22: 0b:eb:09:1f:eb:3d:e6:e1:56:43:cc:d1:1f:fa:cb:fe:4d:83: 82:13:d4:30:7c:fe:bf:42:dc:c2:3a:cc:bb:6c:c9:37:9c:c4: 8b:40:ed:14:65:d2:ae:79:14:a2:66:0b:0c:fd:dc:49:31:5d: bd:65:b3:71:86:05:ed:05:6e:31:29:61:0c:de:5c:d4:c3:ce: 08:74:4a:7c:3a:ea:c1:1e:7a:eb:a9:43:c0:bc:07:a1:aa:32: 5a:de:62:59:17:e4:5a:58:c9:c8:f7:33:60:91:60:46:41:da: 07:b3:49:3a:ef:88:83:c9:2a:76:ad:b1:cc:dd:72:f2:a5:a8: 77:37:85:a2:d1:65:94:40:3a:8b:6c:d2:34:62:ce:20:58:95: 6c:6d:db:8f:ab:01:68:e6:84:93:b3:d2:74:b1:98:be:a6:fe: 95:de:ae:88:15:7b:ed:c3:47:28:57:29:19:bf:4f:9b:9c:80: c3:55:83:5f:53:88:f8:db:de:85:a6:4f:8f:63:a9:3f:cd:82: cf:3c:47:f9:37:a5:fa:3e:f9:6d:43:20:9a:44:03:0f:f5:79: af:06:86:ea -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDNzMxMTAvBgNVBAUTKEUzOTM2OUJBOUREODgwOTk4N0IyMzZCNDc3QUQ3OEUx NUM3NUFCMUMwHhcNMjUwNTE3MDIxOTQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3ZjIzYi04NTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt++lw7tTg3Hp4mW3AB3SDecXtHeHY/zSkzvwZ9CYeyiwGtVpEG8mhByGR0m1 tUGH5nzXk1ziOJTm6sbtwHqIC/tyFt3cV8CrAilkrEfehMmbmIZMOcyQE3XSRuLr Gv9cZqE8A+w+IoeIYabydC2pr8nNUM+Cc34SRJJUx4rUiTBcKVxclnODUvuOO0x0 oXzWECs5uNOsK0F1xgPrNHBHLrcrGld/lxHa9XGtQSdLBNYBdUL6ytNu5CKvmb28 SYap0J7wjvlnsT9JepthbZeyA354axHJf+NdMOprBmDcwPooO/zLguuHcjsyyUg2 pZIghOVcihie1jIvOX82zSJTLwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEjfJTLF 0yGjzGDvtYxcVXwl5yBUMB8GA1UdIwQYMBaAFOOTabqd2ICZh7I2tHeteOFcdasc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM3My8yMTVFNUQzQTM2 NUExMUVEQUQxMEJBN0FDNEY5QUUwMi80NU5wdXAzWWdKbUhzamEwZDYxNDRWeDFx eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1TnB1cDNZZ0ptSHNqYTBkNjE0NFZ4MXF4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDNzMvMjE1RTVEM0EzNjVBMTFFREFEMTBCQTdBQzRGOUFFMDIvMzcyOERBMjI5 QTg2MTFFRkE4MjRGNzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFniuIwDgQCAAIwCAMGByQBHCAAMA0GCSqGSIb3DQEBCwUA A4IBAQBgp47AlrrsBt89+9HPyjo/zJX9L3KbCnNLuNZOvUM0KgIlDSIL6wkf6z3m 4VZDzNEf+sv+TYOCE9QwfP6/QtzCOsy7bMk3nMSLQO0UZdKueRSiZgsM/dxJMV29 ZbNxhgXtBW4xKWEM3lzUw84IdEp8OurBHnrrqUPAvAehqjJa3mJZF+RaWMnI9zNg kWBGQdoHs0k674iDySp2rbHM3XLypah3N4Wi0WWUQDqLbNI0Ys4gWJVsbduPqwFo 5oSTs9J0sZi+pv6V3q6IFXvtw0coVykZv0+bnIDDVYNfU4j4296Fpk+PY6k/zYLP PEf5N6X6PvltQyCaRAMP9XmvBobq -----END CERTIFICATE-----Generated at Wed Nov 5 13:46:29 2025 by rpki-client