$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/3FF7C9468C9211ED8D052619C4F9AE02.roa File: 3FF7C9468C9211ED8D052619C4F9AE02.roa (raw, json) Hash identifier: ysct5SJFLL7r4JAj2CVHZLqepb6TuRQ99etQZMCmjWU= Subject key identifier: A2:C2:1E:B3:07:99:78:C3:8D:47:76:F9:4E:E7:27:89:69:E5:86:A6 Certificate issuer: /CN=A91DD468/serialNumber=ED39781E7CA2632C54B7FAE2254E21F01BA07687 Certificate serial: 0206 Authority key identifier: ED:39:78:1E:7C:A2:63:2C:54:B7:FA:E2:25:4E:21:F0:1B:A0:76:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/3FF7C9468C9211ED8D052619C4F9AE02.roa Signing time: Sun 05 Oct 2025 02:28:38 +0000 ROA not before: Sun 05 Oct 2025 02:28:38 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147037 IP address blocks: 103.173.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD468, serialNumber=ED39781E7CA2632C54B7FAE2254E21F01BA07687 Validity Not Before: Oct 5 02:28:38 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1d7d6-9df2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:79:07:4a:ba:33:b2:7b:33:aa:65:aa:d0:0f: ac:ae:c3:99:3c:d1:15:f1:a0:c1:c3:e0:53:8f:b7: 7b:3f:95:1b:3f:d9:a9:ab:61:7b:2f:52:0d:a4:47: 12:ca:bc:68:f3:fd:5d:1d:df:48:aa:dd:9c:40:2d: bc:a9:42:0a:3a:ad:42:13:e3:3b:10:ab:dc:b1:4e: 33:92:34:4d:9e:7e:2f:d2:36:4b:20:e8:68:11:11: 32:12:d8:f3:34:b1:7f:3e:a6:01:30:2f:b8:80:d2: 36:6b:ff:83:31:55:7b:57:7b:c1:ad:27:d9:d6:74: 63:3e:95:6b:e9:32:0c:e8:97:7d:4c:5a:92:32:1e: bc:53:2a:3c:ba:d4:f0:d1:83:f2:c0:a7:2f:ec:04: 6f:e0:06:da:c9:5b:79:fb:da:b5:39:d5:b5:f0:d6: e4:b1:50:df:13:96:f9:e3:43:06:a8:4e:99:40:55: 77:a8:21:55:30:78:05:e3:36:08:95:e4:c7:d1:f4: 7c:fb:54:c9:53:6e:41:e9:40:86:23:21:de:89:13: 03:21:ab:01:16:d6:2f:8c:98:b7:82:f1:52:1c:b7: a6:70:8a:43:e7:ba:a5:f1:62:8c:32:9f:08:88:f8: 0c:fc:14:a3:03:50:b0:73:9c:0a:60:d2:6c:19:bd: 80:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C2:1E:B3:07:99:78:C3:8D:47:76:F9:4E:E7:27:89:69:E5:86:A6 X509v3 Authority Key Identifier: keyid:ED:39:78:1E:7C:A2:63:2C:54:B7:FA:E2:25:4E:21:F0:1B:A0:76:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/3FF7C9468C9211ED8D052619C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.57.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:e7:fa:0f:ed:69:a8:c3:11:b2:45:7e:fb:47:0e:f1:d6:3b: 52:37:f7:02:b0:16:40:e6:be:14:bb:19:c3:fd:28:f0:8e:12: 0d:bc:d9:b7:45:84:81:f0:d0:4e:92:84:12:17:f5:23:4f:ba: 2d:67:5c:a9:ef:6f:94:0c:b3:ff:11:34:17:64:22:ef:81:18: d2:0d:57:d5:7c:2e:6d:4e:b7:a9:5c:fc:99:d4:03:ec:3e:82: 29:10:df:0c:86:08:3e:27:24:ad:ea:b9:16:9f:cc:0c:6e:59: 4f:93:eb:e8:63:27:9f:34:1b:04:e6:44:2f:69:6d:0b:62:61: da:1e:ec:37:db:c4:17:b9:fd:19:31:62:05:e1:41:d4:c7:cd: e6:9c:b5:9b:45:aa:27:28:ec:3a:83:75:8c:2a:2a:d7:5f:b2: cf:fa:8e:cb:31:cc:17:30:83:85:54:f3:86:4e:d7:76:40:07: f2:e5:9e:07:fa:42:58:00:71:7a:20:2a:e1:79:6c:58:87:87: 3e:92:e1:53:2c:d4:56:63:b1:33:92:3a:d3:ca:50:da:ac:f9: b4:1c:2e:b5:f4:d3:70:99:cb:12:a7:01:5a:6f:62:17:31:76: 48:74:85:dd:c9:45:27:e5:43:e7:8f:fe:c9:52:a2:6a:ce:3b: 86:a5:d7:6c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ0NjgxMTAvBgNVBAUTKEVEMzk3ODFFN0NBMjYzMkM1NEI3RkFFMjI1NEUyMUYw MUJBMDc2ODcwHhcNMjUxMDA1MDIyODM4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxZDdkNi05ZGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3kHSrozsnszqmWq0A+srsOZPNEV8aDBw+BTj7d7P5UbP9mpq2F7L1INpEcS yrxo8/1dHd9Iqt2cQC28qUIKOq1CE+M7EKvcsU4zkjRNnn4v0jZLIOhoEREyEtjz NLF/PqYBMC+4gNI2a/+DMVV7V3vBrSfZ1nRjPpVr6TIM6Jd9TFqSMh68Uyo8utTw 0YPywKcv7ARv4AbayVt5+9q1OdW18NbksVDfE5b540MGqE6ZQFV3qCFVMHgF4zYI leTH0fR8+1TJU25B6UCGIyHeiRMDIasBFtYvjJi3gvFSHLemcIpD57ql8WKMMp8I iPgM/BSjA1Cwc5wKYNJsGb2ALwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKLCHrMH mXjDjUd2+U7nJ4lp5YamMB8GA1UdIwQYMBaAFO05eB58omMsVLf64iVOIfAboHaH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDQ2OC81QjRBMzNDNjhD OEYxMUVEQkM4QTYxMTRDNEY5QUUwMi83VGw0SG55aVl5eFV0X3JpSlU0aDhCdWdk b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUbDRIbnlpWXl4VXRfcmlKVTRoOEJ1Z2RvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ0NjgvNUI0QTMzQzY4QzhGMTFFREJDOEE2MTE0QzRGOUFFMDIvM0ZGN0M5NDY4 QzkyMTFFRDhEMDUyNjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrTkwDQYJKoZIhvcNAQELBQADggEBAC3n+g/taajDEbJF fvtHDvHWO1I39wKwFkDmvhS7GcP9KPCOEg282bdFhIHw0E6ShBIX9SNPui1nXKnv b5QMs/8RNBdkIu+BGNINV9V8Lm1Ot6lc/JnUA+w+gikQ3wyGCD4nJK3quRafzAxu WU+T6+hjJ580GwTmRC9pbQtiYdoe7DfbxBe5/RkxYgXhQdTHzeactZtFqico7DqD dYwqKtdfss/6jssxzBcwg4VU84ZO13ZAB/Llngf6QlgAcXogKuF5bFiHhz6S4VMs 1FZjsTOSOtPKUNqs+bQcLrX003CZyxKnAVpvYhcxdkh0hd3JRSflQ+eP/slSomrO O4al12w= -----END CERTIFICATE-----Generated at Wed Nov 5 19:22:56 2025 by rpki-client