$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/1DC0E5BC419811EAA268D964C4F9AE02.roa File: 1DC0E5BC419811EAA268D964C4F9AE02.roa (raw, json) Hash identifier: zl+a8vSD9MSTaMQoEXEh+bjKrxbAyrwmlDVNsBCrX70= Subject key identifier: 7C:2D:BD:40:D5:2A:08:2C:7F:D0:42:6C:99:D4:4E:B4:59:CE:4A:DA Certificate issuer: /CN=A91ED2BB/serialNumber=A6FF381A2AEBEA6DCCFE0DE65D4196040271FE94 Certificate serial: 0B57 Authority key identifier: A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/1DC0E5BC419811EAA268D964C4F9AE02.roa Signing time: Tue 02 Sep 2025 19:39:17 +0000 ROA not before: Tue 02 Sep 2025 19:39:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132827 IP address blocks: 103.246.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.crl rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2903 (0xb57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED2BB, serialNumber=A6FF381A2AEBEA6DCCFE0DE65D4196040271FE94 Validity Not Before: Sep 2 19:39:17 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b747e5-dea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2e:e5:cb:b2:35:b5:dd:eb:ca:3e:b8:41:fa: 76:bd:44:f9:36:3c:3a:39:ff:ba:93:f8:92:e7:b6: fb:f4:52:a7:5f:17:96:76:74:60:00:9e:78:57:c0: 35:1a:75:4e:d4:07:ca:09:f2:f1:aa:6a:bd:88:90: 3c:0e:3a:7c:95:b2:9d:81:8b:43:aa:e6:98:cd:da: 8b:35:6d:5f:38:ae:ce:14:e7:02:80:f7:f6:f8:fe: 46:61:54:52:69:ef:b8:32:fe:da:5b:4a:a3:1d:12: 74:0e:13:87:e4:d9:99:62:b7:a6:f2:68:aa:0e:b2: 6c:23:50:e4:38:fc:e0:2b:70:ac:b8:e0:83:15:d0: 0b:d2:9c:25:b1:fd:17:3e:e9:dd:97:a2:ec:74:06: 4c:8a:72:5e:e5:a4:37:3b:d3:54:c8:46:c6:e9:1f: 4c:91:a5:d4:1d:84:e2:5c:3c:53:27:44:54:41:35: fd:ae:55:f3:29:43:37:7b:0c:67:95:4e:a8:e7:d0: ef:75:6d:bf:cd:67:47:a4:54:fa:60:8b:9b:ba:49: b9:fe:c0:e5:21:6c:65:d5:4a:b3:c8:24:2b:f8:d1: 68:be:6e:11:91:49:fd:e5:18:d8:eb:3f:01:b3:66: 58:a2:be:e4:30:04:97:05:12:65:a4:f6:47:f2:d7: 84:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:2D:BD:40:D5:2A:08:2C:7F:D0:42:6C:99:D4:4E:B4:59:CE:4A:DA X509v3 Authority Key Identifier: keyid:A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/1DC0E5BC419811EAA268D964C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.178.0/23 Signature Algorithm: sha256WithRSAEncryption 79:01:eb:74:a9:d7:bb:26:79:72:e4:7b:cb:e1:25:6a:9a:26: c2:8b:34:05:24:59:3c:c0:04:44:00:b8:22:c4:03:85:e9:0a: 37:a6:ea:a6:9e:cc:2d:96:99:46:64:5f:d2:bc:09:7e:17:24: 6d:b3:26:bb:d5:aa:9f:d3:8a:57:09:03:68:08:42:72:d2:a1: f5:02:8f:15:6f:af:cf:a8:ef:e9:ab:84:8d:6f:4a:07:03:63: ca:a1:6a:07:b5:3c:f5:b6:98:c9:f1:bd:9e:cf:93:53:83:f0: d3:43:93:e7:c6:5a:29:12:0e:49:4c:21:fe:5c:61:1f:24:08: c3:09:f3:fc:ea:eb:08:74:ce:47:e1:85:c3:61:08:86:12:f8: b8:0e:e9:e7:5c:b8:c0:29:77:82:ba:5b:dc:e0:4d:2b:fe:05: 6a:d4:93:0f:73:5f:54:32:04:0c:dd:07:75:e4:cf:fd:96:00: 99:38:20:2f:41:1c:67:1c:69:bd:46:b4:57:53:65:f6:60:c2: f4:d6:bd:bd:48:a9:15:f0:ca:94:7c:8e:1e:71:d6:24:26:be: 76:bf:88:c8:10:5c:e9:60:82:62:b7:53:f0:a1:55:64:fb:0d: 14:85:55:d0:ac:bb:76:bd:1f:96:f9:3c:52:1b:a4:18:b7:cd: fe:53:36:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQyQkIxMTAvBgNVBAUTKEE2RkYzODFBMkFFQkVBNkRDQ0ZFMERFNjVENDE5NjA0 MDI3MUZFOTQwHhcNMjUwOTAyMTkzOTE3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NDdlNS1kZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4i7ly7I1td3ryj64Qfp2vUT5Njw6Of+6k/iS57b79FKnXxeWdnRgAJ54V8A1 GnVO1AfKCfLxqmq9iJA8Djp8lbKdgYtDquaYzdqLNW1fOK7OFOcCgPf2+P5GYVRS ae+4Mv7aW0qjHRJ0DhOH5NmZYrem8miqDrJsI1DkOPzgK3CsuOCDFdAL0pwlsf0X Pundl6LsdAZMinJe5aQ3O9NUyEbG6R9MkaXUHYTiXDxTJ0RUQTX9rlXzKUM3ewxn lU6o59DvdW2/zWdHpFT6YIubukm5/sDlIWxl1UqzyCQr+NFovm4RkUn95RjY6z8B s2ZYor7kMASXBRJlpPZH8teEwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHwtvUDV Kggsf9BCbJnUTrRZzkraMB8GA1UdIwQYMBaAFKb/OBoq6+ptzP4N5l1BlgQCcf6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDJCQi81N0Q2NDdGQTQx NzExMUVBOTE0OTVCNkJDNEY5QUUwMi9wdjg0R2lycjZtM01fZzNtWFVHV0JBSnhf cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B2ODRHaXJyNm0zTV9nM21YVUdXQkFKeF9wUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQyQkIvNTdENjQ3RkE0MTcxMTFFQTkxNDk1QjZCQzRGOUFFMDIvMURDMEU1QkM0 MTk4MTFFQUEyNjhEOTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn9rIwDQYJKoZIhvcNAQELBQADggEBAHkB63Sp17smeXLk e8vhJWqaJsKLNAUkWTzABEQAuCLEA4XpCjem6qaezC2WmUZkX9K8CX4XJG2zJrvV qp/TilcJA2gIQnLSofUCjxVvr8+o7+mrhI1vSgcDY8qhage1PPW2mMnxvZ7Pk1OD 8NNDk+fGWikSDklMIf5cYR8kCMMJ8/zq6wh0zkfhhcNhCIYS+LgO6edcuMApd4K6 W9zgTSv+BWrUkw9zX1QyBAzdB3Xkz/2WAJk4IC9BHGccab1GtFdTZfZgwvTWvb1I qRXwypR8jh5x1iQmvna/iMgQXOlggmK3U/ChVWT7DRSFVdCsu3a9H5b5PFIbpBi3 zf5TNrQ= -----END CERTIFICATE-----Generated at Tue Nov 4 12:35:03 2025 by rpki-client