$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/96F26DD8E4A511EF8259C769C4F9AE02.roa File: 96F26DD8E4A511EF8259C769C4F9AE02.roa (raw, json) Hash identifier: 106BmLtTyVCv8aiEyQESyMsMUTUgBCG4YPN0EmuEMYs= Subject key identifier: 74:20:65:53:F9:FD:F9:24:14:C9:71:50:DE:E0:7B:2C:1A:62:60:1D Certificate issuer: /CN=A91CE6EC/serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Certificate serial: 25A6 Authority key identifier: A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/96F26DD8E4A511EF8259C769C4F9AE02.roa Signing time: Sat 02 Aug 2025 15:54:25 +0000 ROA not before: Sat 02 Aug 2025 15:54:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38887 IP address blocks: 103.60.216.0/24 maxlen: 24 2001:df3:a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:48:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9638 (0x25a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Validity Not Before: Aug 2 15:54:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688e34b1-3cc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c1:56:d0:69:fb:53:19:86:7d:b5:3a:1d:f9: c2:01:e3:eb:1f:3c:ce:0d:a7:8b:fe:aa:ab:32:0b: 4d:70:4b:08:50:39:0d:dc:1e:81:f4:dd:5c:f9:52: a8:d9:3f:c3:52:87:cb:df:38:fb:dc:1b:96:dd:5b: ac:4d:c6:25:99:b0:6f:c8:82:1c:af:7a:d2:91:5e: ba:f8:d6:f2:b8:de:16:d7:23:d4:bd:a3:6d:bb:e1: 42:db:a9:32:c8:73:46:23:6a:b7:60:b0:9e:0b:e2: 6d:87:26:36:93:e6:10:ed:ca:a0:e7:12:46:93:ba: ce:29:40:fe:18:2f:4f:ff:5c:61:6b:94:1e:97:b6: d1:aa:35:9f:69:00:ee:cd:bd:3e:1d:03:34:3e:a9: 02:e4:07:fa:20:37:4e:a5:ea:6a:57:d9:41:57:a9: ff:b0:76:ed:0d:d6:db:3f:f2:8c:1d:43:4a:55:7b: 6c:3a:9e:38:49:e8:10:57:06:7c:d8:c8:3c:ca:0c: bf:4b:43:a3:8e:df:2b:7d:25:eb:27:df:21:74:bc: 32:53:e0:5e:c6:ab:e7:4f:ac:3a:3d:29:cd:67:35: dc:e8:d3:d8:8c:e9:61:cf:97:65:93:91:d9:17:3f: 9a:e9:ef:36:b0:1f:f3:34:5f:4e:3c:69:2e:2a:de: 71:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:20:65:53:F9:FD:F9:24:14:C9:71:50:DE:E0:7B:2C:1A:62:60:1D X509v3 Authority Key Identifier: keyid:A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/96F26DD8E4A511EF8259C769C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.216.0/24 IPv6: 2001:df3:a00::/48 Signature Algorithm: sha256WithRSAEncryption 6b:fd:d8:6a:b6:3f:86:cd:15:e9:cf:81:f1:ca:60:5a:6f:11: 2d:57:c7:3a:e4:28:e8:bc:bd:9b:d6:d7:5d:c0:ea:be:e1:a3: 91:30:f0:51:b6:3e:f7:8b:e2:85:e9:47:3b:d8:dd:c6:a8:cc: 3c:05:ce:fa:42:ba:17:c7:0b:ff:d5:20:a5:45:96:70:de:61: c0:4c:ae:cf:53:b4:e6:14:84:37:bc:71:ee:fe:7a:87:e5:e3: 23:74:1b:4f:e8:89:49:52:4f:7c:8c:45:a0:73:eb:aa:da:7b: 76:4d:e1:af:a9:f9:b5:5a:1f:17:fb:e5:90:0a:11:6a:10:f4: 6f:d2:78:b9:b3:b4:9d:17:8a:ff:ae:e0:df:fb:f1:4f:02:1e: c0:55:5b:a1:9b:da:04:cd:e2:35:2d:95:fb:a1:9e:17:94:f0: 78:7b:f2:2f:31:c3:42:3e:05:ef:db:a1:eb:14:e2:7e:b6:9f: 51:68:5a:a3:5a:7c:e4:5a:57:01:cc:39:62:22:62:9f:73:e5: 36:25:3e:a3:87:65:b8:ee:1e:d0:9c:f4:ec:6f:4a:47:65:7a: 76:56:23:80:3d:f0:64:b3:c7:a5:58:7f:c0:02:92:94:29:68: 81:1e:6c:58:9b:45:00:c9:a0:d6:15:d8:3f:d2:2c:c7:5e:b5: 85:14:cb:67 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICJaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKEExQzIzOTY1NzA0MDE3NzI0MjlFQjhDQkIwREY2NjUz RjE2NzhDRjYwHhcNMjUwODAyMTU1NDI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlMzRiMS0zY2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cFW0Gn7UxmGfbU6HfnCAePrHzzODaeL/qqrMgtNcEsIUDkN3B6B9N1c+VKo 2T/DUofL3zj73BuW3VusTcYlmbBvyIIcr3rSkV66+NbyuN4W1yPUvaNtu+FC26ky yHNGI2q3YLCeC+JthyY2k+YQ7cqg5xJGk7rOKUD+GC9P/1xha5Qel7bRqjWfaQDu zb0+HQM0PqkC5Af6IDdOpepqV9lBV6n/sHbtDdbbP/KMHUNKVXtsOp44SegQVwZ8 2Mg8ygy/S0Ojjt8rfSXrJ98hdLwyU+BexqvnT6w6PSnNZzXc6NPYjOlhz5dlk5HZ Fz+a6e82sB/zNF9OPGkuKt5xVQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHQgZVP5 /fkkFMlxUN7geywaYmAdMB8GA1UdIwQYMBaAFKHCOWVwQBdyQp64y7DfZlPxZ4z2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy9EM0FCNjAxNjE0 QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYzSkNucmpMc045bVVfRm5q UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29jSTVaWEJBRjNKQ25yakxzTjltVV9GbmpQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U2RUMvRDNBQjYwMTYxNEM4MTFFNUEyRkNFRjE1QzRGOUFFMDIvOTZGMjZERDhF NEE1MTFFRjgyNTlDNzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnPNgwDwQCAAIwCQMHACABDfMKADANBgkqhkiG9w0BAQsF AAOCAQEAa/3YarY/hs0V6c+B8cpgWm8RLVfHOuQo6Ly9m9bXXcDqvuGjkTDwUbY+ 94vihelHO9jdxqjMPAXO+kK6F8cL/9UgpUWWcN5hwEyuz1O05hSEN7xx7v56h+Xj I3QbT+iJSVJPfIxFoHPrqtp7dk3hr6n5tVofF/vlkAoRahD0b9J4ubO0nReK/67g 3/vxTwIewFVboZvaBM3iNS2V+6GeF5TweHvyLzHDQj4F79uh6xTifrafUWhao1p8 5FpXAcw5YiJin3PlNiU+o4dluO4e0Jz07G9KR2V6dlYjgD3wZLPHpVh/wAKSlClo gR5sWJtFAMmg1hXYP9Isx161hRTLZw== -----END CERTIFICATE-----Generated at Wed Nov 5 20:53:20 2025 by rpki-client