$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/A3BE70CCD5AE11EE909D5C40C4F9AE02.roa File: A3BE70CCD5AE11EE909D5C40C4F9AE02.roa (raw, json) Hash identifier: pyQz1D6782Rt8rbYkLjsLImtzM5OVg/DTRlj4Kga3+Q= Subject key identifier: 54:EC:1E:FF:5A:42:FF:BA:D2:14:36:A9:37:89:ED:48:E9:12:20:1A Certificate issuer: /CN=A91E4F66/serialNumber=69C8198BDA3FD09053F42553D73EEA15121D241C Certificate serial: 0B93 Authority key identifier: 69:C8:19:8B:DA:3F:D0:90:53:F4:25:53:D7:3E:EA:15:12:1D:24:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acgZi9o_0JBT9CVT1z7qFRIdJBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/A3BE70CCD5AE11EE909D5C40C4F9AE02.roa Signing time: Tue 16 Sep 2025 19:29:34 +0000 ROA not before: Tue 16 Sep 2025 19:29:34 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137884 IP address blocks: 103.116.116.0/23 maxlen: 23 103.116.116.0/24 maxlen: 24 103.116.117.0/24 maxlen: 24 103.116.118.0/24 maxlen: 24 2402:f940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/acgZi9o_0JBT9CVT1z7qFRIdJBw.crl rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/acgZi9o_0JBT9CVT1z7qFRIdJBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acgZi9o_0JBT9CVT1z7qFRIdJBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2963 (0xb93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4F66, serialNumber=69C8198BDA3FD09053F42553D73EEA15121D241C Validity Not Before: Sep 16 19:29:34 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c9ba9e-0a72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e4:6f:5b:4c:3e:d1:80:e6:6c:5d:ad:8c:c5: e6:ae:a0:63:9b:48:33:1f:71:4c:31:1f:d2:12:66: 89:8e:bc:cd:48:95:b9:0e:60:f3:80:47:ee:ab:78: ec:82:07:fb:85:fb:fa:3a:40:00:8a:aa:8d:0c:2e: 55:c7:b6:9f:f9:3f:12:9a:d6:bf:46:94:07:64:de: 38:a3:a1:cc:21:e6:2a:7c:a1:58:56:d0:82:6a:53: 49:6a:34:dd:6b:a3:ad:98:b4:42:8d:ac:da:94:7c: 33:89:8a:d9:ef:32:cd:3d:72:67:97:1b:85:de:e3: 4b:2a:d4:17:24:c0:66:c9:b6:1e:15:25:4e:77:ce: 06:96:d9:e7:13:0f:99:f5:e6:f8:35:37:1a:26:ff: b0:31:64:1c:ca:55:19:df:b0:28:b1:68:8d:02:2c: 72:cb:fd:fa:bc:c2:6b:c8:ff:a9:45:de:9d:14:2d: 77:6f:bb:e3:fc:10:5f:b0:16:23:32:3e:a9:b3:63: 45:80:6a:a6:7d:f5:93:16:f9:f1:cb:36:2b:50:1e: e5:f3:79:5a:6f:7e:a7:c1:b7:5a:10:38:51:1f:53: ff:c5:c2:f2:5c:dd:0b:cf:4b:b5:cd:79:2a:d0:49: 6b:ed:00:5c:21:4e:d0:9e:f5:d9:0b:c8:99:8f:c8: 99:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:EC:1E:FF:5A:42:FF:BA:D2:14:36:A9:37:89:ED:48:E9:12:20:1A X509v3 Authority Key Identifier: keyid:69:C8:19:8B:DA:3F:D0:90:53:F4:25:53:D7:3E:EA:15:12:1D:24:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/acgZi9o_0JBT9CVT1z7qFRIdJBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acgZi9o_0JBT9CVT1z7qFRIdJBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4F66/E5F658AA368A11EAB5749272C4F9AE02/A3BE70CCD5AE11EE909D5C40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.116.0-103.116.118.255 IPv6: 2402:f940::/32 Signature Algorithm: sha256WithRSAEncryption 5a:13:fb:55:a6:3d:a0:df:05:a1:ca:e5:fd:21:fb:98:02:56: f8:b0:e2:67:18:46:dc:f7:16:ce:93:9b:80:66:e3:ea:42:e9: 05:36:62:4a:e1:f0:3a:77:9b:8a:7e:10:f0:9d:e0:9b:35:c9: d5:d9:cc:d0:9a:8b:f8:46:a1:c3:06:ed:02:bc:fd:e6:34:45: 9a:8a:d2:0a:08:b5:cc:28:0c:d6:62:b4:15:80:7c:9d:42:43: dd:4f:45:b5:d8:c8:0e:6e:df:d6:04:6b:39:67:7e:dc:87:df: fc:26:27:6f:0e:92:1d:76:6e:f5:d1:ca:1f:c3:22:02:28:58: 2e:04:58:1d:d7:db:7e:19:a5:22:23:c3:58:7a:20:60:4f:f7: d1:c9:9d:7d:7a:31:40:3a:41:ab:03:21:97:c0:68:d3:69:e5: b4:24:3b:8c:70:e7:8a:53:75:75:64:5f:92:ea:1c:89:23:0b: 9d:50:1b:89:2a:1d:89:b3:06:0f:4a:f8:38:6f:1d:1f:de:34: 58:d7:69:45:61:0e:05:86:81:5a:2e:b0:09:ee:88:0a:a8:c7: 92:98:e7:9a:9a:0b:7f:66:9b:73:3a:91:f7:d9:6f:4f:cc:aa: e7:15:3b:12:71:7d:d7:b0:b8:ea:17:f9:ba:a9:0c:90:7d:f7: 67:a9:b1:89 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICC5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRGNjYxMTAvBgNVBAUTKDY5QzgxOThCREEzRkQwOTA1M0Y0MjU1M0Q3M0VFQTE1 MTIxRDI0MUMwHhcNMjUwOTE2MTkyOTM0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5YmE5ZS0wYTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ORvW0w+0YDmbF2tjMXmrqBjm0gzH3FMMR/SEmaJjrzNSJW5DmDzgEfuq3js ggf7hfv6OkAAiqqNDC5Vx7af+T8Smta/RpQHZN44o6HMIeYqfKFYVtCCalNJajTd a6OtmLRCjazalHwziYrZ7zLNPXJnlxuF3uNLKtQXJMBmybYeFSVOd84GltnnEw+Z 9eb4NTcaJv+wMWQcylUZ37AosWiNAixyy/36vMJryP+pRd6dFC13b7vj/BBfsBYj Mj6ps2NFgGqmffWTFvnxyzYrUB7l83lab36nwbdaEDhRH1P/xcLyXN0Lz0u1zXkq 0Elr7QBcIU7QnvXZC8iZj8iZIwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFFTsHv9a Qv+60hQ2qTeJ7UjpEiAaMB8GA1UdIwQYMBaAFGnIGYvaP9CQU/QlU9c+6hUSHSQc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEY2Ni9FNUY2NThBQTM2 OEExMUVBQjU3NDkyNzJDNEY5QUUwMi9hY2daaTlvXzBKQlQ5Q1ZUMXo3cUZSSWRK QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FjZ1ppOW9fMEpCVDlDVlQxejdxRlJJZEpCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRGNjYvRTVGNjU4QUEzNjhBMTFFQUI1NzQ5MjcyQzRGOUFFMDIvQTNCRTcwQ0NE NUFFMTFFRTkwOUQ1QzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAmd0dAMEAGd0djANBAIAAjAHAwUAJAL5QDANBgkqhkiG 9w0BAQsFAAOCAQEAWhP7VaY9oN8Focrl/SH7mAJW+LDiZxhG3PcWzpObgGbj6kLp BTZiSuHwOnebin4Q8J3gmzXJ1dnM0JqL+EahwwbtArz95jRFmorSCgi1zCgM1mK0 FYB8nUJD3U9FtdjIDm7f1gRrOWd+3Iff/CYnbw6SHXZu9dHKH8MiAihYLgRYHdfb fhmlIiPDWHogYE/30cmdfXoxQDpBqwMhl8Bo02nltCQ7jHDnilN1dWRfkuociSML nVAbiSodibMGD0r4OG8dH940WNdpRWEOBYaBWi6wCe6ICqjHkpjnmpoLf2abczqR 99lvT8yq5xU7EnF917C46hf5uqkMkH33Z6mxiQ== -----END CERTIFICATE-----Generated at Wed Nov 5 05:16:33 2025 by rpki-client