$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/B84B847AEF3911EBACC9E938C4F9AE02.roa File: B84B847AEF3911EBACC9E938C4F9AE02.roa (raw, json) Hash identifier: z4OD50JJqcb5eLqgxPYFpu+0WPLJOBG84/py9BkQ1lE= Subject key identifier: 07:9A:D7:74:BE:14:26:55:09:A4:63:A0:0A:66:8A:C0:EF:81:03:07 Certificate issuer: /CN=A91D3ED4/serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Certificate serial: 0582 Authority key identifier: C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/B84B847AEF3911EBACC9E938C4F9AE02.roa Signing time: Sat 16 Aug 2025 23:35:16 +0000 ROA not before: Sat 16 Aug 2025 23:35:16 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132849 IP address blocks: 103.170.102.0/23 maxlen: 23 103.170.102.0/24 maxlen: 24 103.170.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1410 (0x582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3ED4, serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Validity Not Before: Aug 16 23:35:16 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a115b4-52a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:59:df:b1:13:73:2c:8a:e5:fd:6e:5c:9b:7a: ed:d0:fb:8f:93:51:3a:f9:84:d6:a8:0b:32:1e:74: 4b:30:93:85:29:f0:e2:3b:3f:97:a3:4d:ea:0f:0c: b5:51:9f:31:42:a7:d8:a9:76:c4:b5:8d:d7:75:be: 70:03:dd:8d:54:2e:8a:39:f0:fd:51:04:82:2b:f4: df:02:9f:74:74:9a:b8:0f:6f:f9:c8:e4:5c:18:fb: 67:bf:12:aa:a5:45:bf:fa:1d:69:1a:cc:2f:28:c6: 56:63:e1:5f:0f:c7:6a:ef:9c:cb:3a:92:3c:99:0b: 9b:18:eb:5e:9d:60:86:5e:7e:a4:23:67:cb:8c:a6: 10:cd:0f:8f:55:ac:e8:84:02:74:40:be:bb:8b:39: 5a:7a:c6:9e:32:dc:a2:30:7b:04:69:aa:5b:c5:91: d2:df:79:05:56:a4:15:39:68:d0:b5:e9:6f:5d:b5: 6f:9e:f3:90:94:2e:96:37:66:be:f0:6e:81:f1:1c: b0:cc:9b:df:b2:83:d7:07:0e:5e:c1:7e:de:e6:94: e4:b8:59:0f:c8:42:46:ec:4b:85:3f:c5:e1:41:17: 40:be:cb:c4:58:a8:ca:13:d8:d7:5c:2b:76:3f:39: 62:01:aa:ba:0e:09:84:fc:1f:69:61:64:df:b3:7e: 1b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:9A:D7:74:BE:14:26:55:09:A4:63:A0:0A:66:8A:C0:EF:81:03:07 X509v3 Authority Key Identifier: keyid:C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/B84B847AEF3911EBACC9E938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.102.0/23 Signature Algorithm: sha256WithRSAEncryption 80:74:f1:c5:2c:23:f2:c0:85:13:40:24:84:9e:6f:44:68:2b: 14:d6:8d:5c:fb:47:2a:9e:4e:3d:65:21:6c:26:fc:97:ee:11: b6:57:5b:81:e6:52:66:5c:5a:93:ee:53:ea:7e:e3:e1:4f:65: b0:70:45:a1:d5:73:8f:33:ec:86:4f:e3:2a:e5:97:c2:f3:06: 08:24:b4:f5:d1:65:ab:3d:30:06:14:67:8b:c1:a2:a9:fd:57: 1d:db:50:c0:0b:3b:e9:a8:28:76:f6:11:8a:e6:ab:fa:d9:f5: bb:74:6e:d0:c3:29:62:6f:8c:11:ac:ac:84:0a:e1:c2:83:37: fa:73:a1:71:fc:39:9c:12:80:45:ef:15:d0:99:2e:01:ac:6b: 41:95:a7:06:43:8c:86:ec:99:d1:c4:4d:aa:8a:4d:13:e4:e2: 9e:ee:8a:68:f0:7e:88:7c:61:4a:cb:34:fd:33:44:3c:44:6e: eb:6b:44:78:96:8b:c6:71:31:9e:38:0d:8c:9e:03:ea:0e:9a: 48:08:f2:66:7c:7e:02:24:47:45:cb:0d:aa:cd:cb:a8:a0:91: 17:90:8b:38:82:81:27:c0:8c:01:05:89:96:28:6e:b2:f9:f7: c4:c8:03:d7:b5:a9:2c:e0:e2:ea:58:41:ab:94:d8:dd:5d:b0: 3f:b4:da:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNFRDQxMTAvBgNVBAUTKEMyQzNCQTg4MkVDM0RDRkMyN0YxM0NFODcyMjU2MDdE QUFBMTc4NEQwHhcNMjUwODE2MjMzNTE2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGExMTViNC01MmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAolnfsRNzLIrl/W5cm3rt0PuPk1E6+YTWqAsyHnRLMJOFKfDiOz+Xo03qDwy1 UZ8xQqfYqXbEtY3Xdb5wA92NVC6KOfD9UQSCK/TfAp90dJq4D2/5yORcGPtnvxKq pUW/+h1pGswvKMZWY+FfD8dq75zLOpI8mQubGOtenWCGXn6kI2fLjKYQzQ+PVazo hAJ0QL67izlaesaeMtyiMHsEaapbxZHS33kFVqQVOWjQtelvXbVvnvOQlC6WN2a+ 8G6B8RywzJvfsoPXBw5ewX7e5pTkuFkPyEJG7EuFP8XhQRdAvsvEWKjKE9jXXCt2 PzliAaq6DgmE/B9pYWTfs34bnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAea13S+ FCZVCaRjoApmisDvgQMHMB8GA1UdIwQYMBaAFMLDuoguw9z8J/E86HIlYH2qoXhN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0VENC8yOTA3OEE3MkVG MzcxMUVCOTE3NjhBMzZDNEY5QUUwMi93c082aUM3RDNQd244VHpvY2lWZ2ZhcWhl RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dzTzZpQzdEM1B3bjhUem9jaVZnZmFxaGVFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNFRDQvMjkwNzhBNzJFRjM3MTFFQjkxNzY4QTM2QzRGOUFFMDIvQjg0Qjg0N0FF RjM5MTFFQkFDQzlFOTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqmYwDQYJKoZIhvcNAQELBQADggEBAIB08cUsI/LAhRNA JISeb0RoKxTWjVz7RyqeTj1lIWwm/JfuEbZXW4HmUmZcWpPuU+p+4+FPZbBwRaHV c48z7IZP4yrll8LzBggktPXRZas9MAYUZ4vBoqn9Vx3bUMALO+moKHb2EYrmq/rZ 9bt0btDDKWJvjBGsrIQK4cKDN/pzoXH8OZwSgEXvFdCZLgGsa0GVpwZDjIbsmdHE TaqKTRPk4p7uimjwfoh8YUrLNP0zRDxEbutrRHiWi8ZxMZ44DYyeA+oOmkgI8mZ8 fgIkR0XLDarNy6igkReQiziCgSfAjAEFiZYobrL598TIA9e1qSzg4upYQauU2N1d sD+02rA= -----END CERTIFICATE-----Generated at Wed Nov 5 10:28:38 2025 by rpki-client