$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/6896A446318411F0BBC4F91DC4F9AE02.roa File: 6896A446318411F0BBC4F91DC4F9AE02.roa (raw, json) Hash identifier: Xrg0tE5OWYBtPUZ5NZncP6ifYaxEX/Vp4aRquzOzr2Y= Subject key identifier: AA:92:D2:45:66:C4:2B:04:85:A0:76:A8:28:48:B3:1F:47:C0:CF:B0 Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 28 Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/6896A446318411F0BBC4F91DC4F9AE02.roa Signing time: Thu 15 May 2025 12:02:01 +0000 ROA not before: Thu 15 May 2025 12:02:01 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 36652 IP address blocks: 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: May 15 12:02:01 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6825d7b9-108f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f1:a1:c3:15:6a:e3:d6:f4:39:47:26:39:ac: f4:c4:e1:f6:2f:91:22:ad:e8:77:f2:4e:30:e5:55: fe:36:62:bb:c8:55:ed:83:2b:0b:97:36:ce:0e:c4: 4e:c6:e7:20:a1:44:4a:e7:d1:50:7f:66:1f:84:42: 9a:57:76:75:24:29:26:0d:d6:eb:cf:07:f3:49:5c: 03:b2:f9:91:b4:9f:99:77:06:ba:e9:d3:41:0b:e8: 33:d2:fa:19:79:cd:30:a7:48:11:e7:5e:18:32:aa: 4f:99:d5:d1:14:c7:2a:e4:d7:9c:2e:95:9f:7a:7e: 03:9f:1c:67:e0:8c:a3:42:f9:1d:eb:c1:70:33:0f: 7e:8c:74:38:95:9c:1d:27:65:23:a9:73:20:53:46: 39:a0:80:39:90:44:79:ef:9e:8c:69:03:ab:ab:86: a0:02:f9:7a:cb:a8:c7:b9:d5:ae:80:90:cb:ad:d1: 29:9d:ce:b0:5f:e0:34:7f:1c:d3:4d:17:f9:b4:1c: 36:2d:8a:ef:10:b6:2e:d3:ef:50:93:90:1d:13:e5: 39:82:1c:16:0f:aa:53:e4:51:d5:d0:ca:ae:a8:0b: cf:2a:fd:18:e2:01:42:38:0e:1e:0e:aa:bf:cc:d9: fd:5b:64:65:8a:8e:5e:37:9a:da:b4:da:1c:fb:4c: dd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:92:D2:45:66:C4:2B:04:85:A0:76:A8:28:48:B3:1F:47:C0:CF:B0 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/6896A446318411F0BBC4F91DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:ac:ec:90:42:a0:15:0a:db:a2:e9:df:b8:45:96:9e:98:c0: fd:7e:4b:99:ec:c1:91:6b:6e:0e:40:c7:f0:4c:8b:1b:01:e4: 60:77:68:95:e3:83:8b:b9:5a:c9:ed:7b:25:3d:e7:cc:75:b0: 5e:1a:18:60:ee:a9:67:62:e0:72:e9:0b:49:15:49:0c:d4:f9: 71:dd:20:60:ff:1e:69:99:b0:45:9c:e2:f0:c4:e6:eb:95:09: ad:a3:bb:96:41:b6:91:6d:09:e0:60:42:66:1d:da:ba:76:40: 98:00:10:1a:00:8d:3a:e5:e4:60:2a:33:55:f9:fc:ce:e6:4b: 80:2f:1a:44:d6:4e:7f:b1:41:68:9d:59:cb:8d:0b:9f:30:9e: 78:8c:ca:43:3d:0d:f3:0f:ac:94:79:29:81:47:52:ef:9b:1b: 42:a0:e7:d8:a7:1e:69:c8:0c:5a:b5:65:fc:c1:e7:3b:0d:79: 0b:62:d2:8a:57:6b:8c:7c:6f:8e:4a:64:1d:6e:15:a9:c2:28: f9:ef:66:27:78:68:ea:7f:b1:d6:01:a4:b6:18:65:b3:6c:98: 37:04:72:a6:fd:17:3e:50:f3:54:da:69:46:d6:bd:84:da:ca: 14:70:5e:b9:34:ad:65:41:e4:62:fa:ac:46:cb:e7:63:36:92: af:bb:a1:90 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA1MTUxMjAyMDFaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjVkN2I5LTEwOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDH8aHDFWrj1vQ5RyY5rPTE4fYvkSKt6HfyTjDlVf42YrvIVe2DKwuXNs4OxE7G 5yChRErn0VB/Zh+EQppXdnUkKSYN1uvPB/NJXAOy+ZG0n5l3Brrp00EL6DPS+hl5 zTCnSBHnXhgyqk+Z1dEUxyrk15wulZ96fgOfHGfgjKNC+R3rwXAzD36MdDiVnB0n ZSOpcyBTRjmggDmQRHnvnoxpA6urhqAC+XrLqMe51a6AkMut0SmdzrBf4DR/HNNN F/m0HDYtiu8Qti7T71CTkB0T5TmCHBYPqlPkUdXQyq6oC88q/RjiAUI4Dh4Oqr/M 2f1bZGWKjl43mtq02hz7TN0jAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUqpLSRWbE KwSFoHaoKEizH0fAz7AwHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi82ODk2QTQ0NjMx ODQxMUYwQkJDNEY5MURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWe61jANBgkqhkiG9w0BAQsFAAOCAQEADKzskEKgFQrbounf uEWWnpjA/X5LmezBkWtuDkDH8EyLGwHkYHdoleODi7laye17JT3nzHWwXhoYYO6p Z2LgcukLSRVJDNT5cd0gYP8eaZmwRZzi8MTm65UJraO7lkG2kW0J4GBCZh3aunZA mAAQGgCNOuXkYCozVfn8zuZLgC8aRNZOf7FBaJ1Zy40LnzCeeIzKQz0N8w+slHkp gUdS75sbQqDn2KceacgMWrVl/MHnOw15C2LSildrjHxvjkpkHW4VqcIo+e9mJ3ho 6n+x1gGkthhls2yYNwRypv0XPlDzVNppRta9hNrKFHBeuTStZUHkYvqsRsvnYzaS r7uhkA== -----END CERTIFICATE-----Generated at Wed Nov 5 10:09:10 2025 by rpki-client