$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/3CB103648C2511EDB64DB410C4F9AE02.roa File: 3CB103648C2511EDB64DB410C4F9AE02.roa (raw, json) Hash identifier: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA= Subject key identifier: EC:61:0F:C1:F7:23:1B:23:AC:77:CE:6F:1E:C7:FE:DA:D7:17:8D:A9 Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 0199 Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/3CB103648C2511EDB64DB410C4F9AE02.roa Signing time: Sun 23 Feb 2025 04:36:15 +0000 ROA not before: Sun 23 Feb 2025 04:36:15 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 131471 IP address blocks: 103.178.78.0/24 maxlen: 24 103.178.79.0/24 maxlen: 24 2001:df0:3740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Feb 23 04:36:15 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67baa5bf-8f36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ac:58:14:da:94:dd:ec:46:2c:a1:de:38:33: d5:e0:51:0b:98:ef:8b:50:6c:e3:da:75:f6:e4:e2: d9:13:20:47:fe:e7:9e:e6:1f:89:ab:e0:8c:f3:27: 16:87:3d:d1:93:29:be:0b:8b:18:a1:6a:cc:40:75: 03:5e:8b:cf:f0:59:49:3d:e2:59:7a:a3:69:e6:a9: cd:d3:e5:fb:ff:90:24:75:96:06:08:62:59:84:90: 60:bd:ef:19:c3:a9:55:f8:5a:b0:af:97:4a:a0:eb: 33:17:2f:01:b8:c8:ac:27:08:ab:60:86:a8:8e:b9: b5:25:77:56:84:6f:1a:ea:0e:33:66:36:7e:52:cc: d0:55:22:f5:91:48:f8:ac:53:b3:83:89:94:2b:3d: fa:09:ca:fd:d4:4b:d0:2c:2e:f6:a4:45:7c:6c:38: 47:68:bb:4a:3a:0b:df:4e:d4:9a:49:62:a8:64:a4: c5:eb:5d:ef:b8:02:06:21:cf:2f:fa:4f:a8:e7:ac: d5:03:f3:19:ff:05:62:1a:74:d6:ea:49:d3:26:32: 6f:2a:bd:69:ea:60:82:c6:75:e0:ab:de:fe:93:e6: 77:b3:ca:66:11:30:8c:44:d4:c7:49:05:71:c9:85: 4c:70:e5:0c:29:e2:0d:65:92:aa:ce:fe:17:f8:b7: de:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:61:0F:C1:F7:23:1B:23:AC:77:CE:6F:1E:C7:FE:DA:D7:17:8D:A9 X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/3CB103648C2511EDB64DB410C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.78.0/23 IPv6: 2001:df0:3740::/48 Signature Algorithm: sha256WithRSAEncryption 13:5f:f4:75:9f:44:92:0c:ec:02:08:5b:e4:53:22:6d:7c:13: 3d:07:4a:a5:ce:c0:fd:7a:01:94:26:7e:82:3d:ee:10:e2:91: 02:33:cb:9f:16:e1:e6:87:1a:3a:0c:12:fc:b1:f1:b8:8f:99: 7f:54:81:8f:75:22:94:d8:29:62:28:07:5e:c3:e6:ae:43:71: a3:50:67:d4:2e:d5:e4:c4:73:73:74:63:88:34:4c:f3:67:fb: c6:69:2e:92:41:73:f5:42:bc:03:16:d5:52:a7:cf:dd:74:53: 30:7e:17:f2:32:ca:8b:bf:0a:1b:71:9a:46:e9:e7:dc:a3:3d: cc:c2:95:9c:f5:23:bc:1c:12:2a:8d:90:47:eb:bc:1e:8b:27: db:7d:31:8e:7c:89:75:a9:57:e6:a3:57:1f:ae:d8:da:b3:90: d7:c5:4b:23:e6:52:2b:58:9b:80:5d:5d:0a:6d:2a:9a:67:fd: 90:b0:1a:9a:ca:b8:b3:56:6f:91:fc:8c:dc:a7:16:c0:e3:27: 29:24:a7:83:db:d2:0d:82:75:78:c6:83:81:e3:42:15:da:d4: ef:2c:81:81:d6:79:e6:03:e7:0a:9b:37:36:c2:9b:4b:18:1a: 41:bf:09:e2:43:92:73:b7:0c:6c:12:e6:0e:93:cf:c3:dd:22: 9c:16:4d:e7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwMjIzMDQzNjE1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JhYTViZi04ZjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA56xYFNqU3exGLKHeODPV4FELmO+LUGzj2nX25OLZEyBH/uee5h+Jq+CM8ycW hz3Rkym+C4sYoWrMQHUDXovP8FlJPeJZeqNp5qnN0+X7/5AkdZYGCGJZhJBgve8Z w6lV+Fqwr5dKoOszFy8BuMisJwirYIaojrm1JXdWhG8a6g4zZjZ+UszQVSL1kUj4 rFOzg4mUKz36Ccr91EvQLC72pEV8bDhHaLtKOgvfTtSaSWKoZKTF613vuAIGIc8v +k+o56zVA/MZ/wViGnTW6knTJjJvKr1p6mCCxnXgq97+k+Z3s8pmETCMRNTHSQVx yYVMcOUMKeINZZKqzv4X+LfeEQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOxhD8H3 IxsjrHfObx7H/trXF42pMB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCMkUvNkZDOEJGREU4QzIxMTFFREIyQjJGMzBBQzRGOUFFMDIvM0NCMTAzNjQ4 QzI1MTFFREI2NERCNDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsk4wDwQCAAIwCQMHACABDfA3QDANBgkqhkiG9w0BAQsF AAOCAQEAE1/0dZ9EkgzsAghb5FMibXwTPQdKpc7A/XoBlCZ+gj3uEOKRAjPLnxbh 5ocaOgwS/LHxuI+Zf1SBj3UilNgpYigHXsPmrkNxo1Bn1C7V5MRzc3RjiDRM82f7 xmkukkFz9UK8AxbVUqfP3XRTMH4X8jLKi78KG3GaRunn3KM9zMKVnPUjvBwSKo2Q R+u8Hosn230xjnyJdalX5qNXH67Y2rOQ18VLI+ZSK1ibgF1dCm0qmmf9kLAamsq4 s1ZvkfyM3KcWwOMnKSSng9vSDYJ1eMaDgeNCFdrU7yyBgdZ55gPnCps3NsKbSxga Qb8J4kOSc7cMbBLmDpPPw90inBZN5w== -----END CERTIFICATE-----Generated at Wed Nov 5 05:11:51 2025 by rpki-client