$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa File: 5705E30EFC7A11E8BFCC760AC4F9AE02.roa (raw, json) Hash identifier: RcpE2NmElWenIIwpxF/vjS3o5Nvaagq1xWJPPP3ACe8= Subject key identifier: 8A:CE:2A:9D:3F:4E:BA:B3:77:68:23:FA:DF:7B:02:26:D8:31:6B:0E Certificate issuer: /CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Certificate serial: 1923 Authority key identifier: 93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa Signing time: Mon 27 Oct 2025 03:32:59 +0000 ROA not before: Mon 27 Oct 2025 03:32:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137962 IP address blocks: 103.99.50.0/24 maxlen: 24 103.99.51.0/24 maxlen: 24 103.118.81.0/24 maxlen: 24 2403:29c0:20::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6435 (0x1923) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDEB3, serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Validity Not Before: Oct 27 03:32:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68fee7ea-109a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:88:75:02:32:5a:5b:8b:80:d3:17:66:a8:36: 56:bc:10:24:15:62:c0:6e:80:12:a0:d0:f1:2c:e3: 40:6b:c4:ec:52:95:0f:c3:ad:e8:80:be:98:80:c6: a6:c4:2b:f0:ad:d7:42:b6:b0:92:f7:62:c1:b8:14: 14:5a:a5:dd:ed:31:d8:87:bb:37:19:c3:b4:c7:0a: 97:b4:bd:d9:0b:66:5e:14:94:90:db:70:3a:5b:db: 85:7b:00:c0:2c:4e:a9:53:9f:f0:0c:ae:af:52:36: c2:1a:13:64:33:a1:e4:50:e5:c4:df:17:57:64:44: c0:0a:13:b0:c3:5b:77:a6:96:98:bf:ac:22:19:ae: 2c:25:71:04:d8:26:b1:14:f7:af:9c:86:78:2c:22: f8:5b:18:43:b3:aa:fa:7d:9a:32:65:db:af:42:47: 06:d5:c0:bc:50:a3:01:ae:de:0c:63:9a:61:d0:3c: b5:70:bd:61:64:d8:2e:8e:1d:a4:ee:ec:3b:04:2b: 1f:fa:85:37:6f:4d:f7:3f:37:e8:35:7e:e5:e4:85: cd:c5:ec:45:da:20:a3:7b:cc:68:da:c8:03:18:89: eb:0d:f4:79:13:ae:d9:97:e1:f1:4c:0c:03:d9:62: b5:d2:c4:de:d9:8a:6d:6a:b9:15:6c:60:1b:8c:a3: c4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CE:2A:9D:3F:4E:BA:B3:77:68:23:FA:DF:7B:02:26:D8:31:6B:0E X509v3 Authority Key Identifier: keyid:93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.50.0/23 103.118.81.0/24 IPv6: 2403:29c0:20::/47 Signature Algorithm: sha256WithRSAEncryption 6b:c2:19:96:45:ce:d7:bb:f0:71:51:a7:95:59:2b:06:07:6d: 4f:71:aa:46:65:91:17:c9:f5:be:25:25:1f:a6:29:cf:9d:09: 50:b9:18:66:b2:a3:c1:ec:3f:1b:f6:28:f8:59:45:f5:28:81: 91:db:14:21:c8:9b:98:d8:99:77:d8:5d:92:89:e9:c8:b2:50: a2:75:a1:1d:83:24:55:4c:f1:d8:f3:9f:01:49:92:2a:a6:40: 88:be:79:7e:3f:49:1b:bc:d0:a3:de:44:e0:e0:fc:7c:5a:85: a4:31:6c:46:c3:53:98:6b:55:b1:43:b5:33:8f:24:77:15:43: 7b:08:97:58:86:2a:2d:42:f8:41:b9:99:bf:9a:ea:90:3d:fc: 61:97:fb:19:23:58:2c:3b:84:a3:6f:18:3d:88:f6:c1:c0:ea: 2d:b6:34:b7:fe:e1:8c:1d:da:e1:90:5f:7b:84:2e:f3:43:cb: 9b:34:73:94:27:17:c0:d2:83:59:94:3d:07:0e:9b:f8:51:1f: e7:0e:f7:11:3c:67:aa:02:bb:c5:8d:72:d5:32:99:e6:72:42: 68:e1:8d:6d:22:37:9e:e9:07:4f:b6:f6:21:42:19:52:4f:a6: 3e:28:96:c4:de:55:c9:24:f7:b5:3c:54:c2:32:ab:4c:4a:c5: 8f:d2:c5:10 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICGSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFQjMxMTAvBgNVBAUTKDkzOURCOEE3ODYwMDBDMjZCQUU0ODM3QjZFQ0RBRTBG OEFCQUQxQjAwHhcNMjUxMDI3MDMzMjU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZlZTdlYS0xMDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYh1AjJaW4uA0xdmqDZWvBAkFWLAboASoNDxLONAa8TsUpUPw63ogL6YgMam xCvwrddCtrCS92LBuBQUWqXd7THYh7s3GcO0xwqXtL3ZC2ZeFJSQ23A6W9uFewDA LE6pU5/wDK6vUjbCGhNkM6HkUOXE3xdXZETAChOww1t3ppaYv6wiGa4sJXEE2Cax FPevnIZ4LCL4WxhDs6r6fZoyZduvQkcG1cC8UKMBrt4MY5ph0Dy1cL1hZNgujh2k 7uw7BCsf+oU3b033PzfoNX7l5IXNxexF2iCje8xo2sgDGInrDfR5E67Zl+HxTAwD 2WK10sTe2YptarkVbGAbjKPE5wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFIrOKp0/ Trqzd2gj+t97AibYMWsOMB8GA1UdIwQYMBaAFJOduKeGAAwmuuSDe27Nrg+KutGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREVCMy81RDczNUQ0Njk2 REUxMUU3QkE3RDJBNzdDNEY5QUUwMi9rNTI0cDRZQURDYTY1SU43YnMydUQ0cTYw YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s1MjRwNFlBRENhNjVJTjdiczJ1RDRxNjBiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RFQjMvNUQ3MzVENDY5NkRFMTFFN0JBN0QyQTc3QzRGOUFFMDIvNTcwNUUzMEVG QzdBMTFFOEJGQ0M3NjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnYzIDBABndlEwDwQCAAIwCQMHASQDKcAAIDANBgkqhkiG 9w0BAQsFAAOCAQEAa8IZlkXO17vwcVGnlVkrBgdtT3GqRmWRF8n1viUlH6Ypz50J ULkYZrKjwew/G/Yo+FlF9SiBkdsUIcibmNiZd9hdkonpyLJQonWhHYMkVUzx2POf AUmSKqZAiL55fj9JG7zQo95E4OD8fFqFpDFsRsNTmGtVsUO1M48kdxVDewiXWIYq LUL4QbmZv5rqkD38YZf7GSNYLDuEo28YPYj2wcDqLbY0t/7hjB3a4ZBfe4Qu80PL mzRzlCcXwNKDWZQ9Bw6b+FEf5w73ETxnqgK7xY1y1TKZ5nJCaOGNbSI3nukHT7b2 IUIZUk+mPiiWxN5VyST3tTxUwjKrTErFj9LFEA== -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:24 2025 by rpki-client