$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/C9763EB431D811EE89285A41C4F9AE02.roa File: C9763EB431D811EE89285A41C4F9AE02.roa (raw, json) Hash identifier: m1n+fMnb/ADNpdU1kcDXhgieJ7VTBfqDuhZU4DVN5dI= Subject key identifier: FF:43:E5:54:94:29:E7:71:4F:31:5B:3D:4C:7A:89:DF:29:0D:F5:33 Certificate issuer: /CN=A91FCB3B/serialNumber=FC8D51DA5352123DDAE6376564F8D5681DA4B31C Certificate serial: 0189 Authority key identifier: FC:8D:51:DA:53:52:12:3D:DA:E6:37:65:64:F8:D5:68:1D:A4:B3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_I1R2lNSEj3a5jdlZPjVaB2ksxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/C9763EB431D811EE89285A41C4F9AE02.roa Signing time: Fri 29 Aug 2025 04:22:47 +0000 ROA not before: Fri 29 Aug 2025 04:22:47 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135404 IP address blocks: 103.154.22.0/23 maxlen: 23 2406:5140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/_I1R2lNSEj3a5jdlZPjVaB2ksxw.crl rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/_I1R2lNSEj3a5jdlZPjVaB2ksxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_I1R2lNSEj3a5jdlZPjVaB2ksxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCB3B, serialNumber=FC8D51DA5352123DDAE6376564F8D5681DA4B31C Validity Not Before: Aug 29 04:22:47 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b12b17-d765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:1b:88:ee:ad:db:7c:8c:4e:0e:21:b4:e8:88: 81:12:61:ab:5e:f1:b3:d4:7d:dd:f2:fb:f7:4a:79: 6e:e7:2b:92:ee:27:ec:1e:ea:21:f0:4e:76:15:d9: 9d:c3:7b:7d:da:4b:6f:fa:d6:62:10:d9:71:5e:65: 02:af:ef:4e:e5:2d:75:10:41:db:58:43:8f:ed:76: 92:e5:1f:5f:d8:fa:af:a7:64:59:d8:83:59:f4:cb: 86:f0:43:3e:fc:b8:01:45:c6:d3:0c:62:c5:68:f6: 78:43:1e:24:87:3e:78:cd:02:31:41:3e:3c:94:c0: 0e:5c:b5:fc:f4:e5:6c:e7:d7:2b:b2:51:49:97:f6: 13:75:53:fa:a6:62:85:f7:cc:a8:5b:9d:83:53:d0: 21:a2:c4:05:e6:5a:ed:fa:ce:24:39:63:1b:98:3d: 37:c1:05:c8:4f:52:88:e7:39:e3:68:39:0b:94:59: 05:52:f6:5a:94:64:b5:30:67:59:3a:c9:c3:e5:12: 5b:59:68:16:23:0b:fe:73:dc:77:4c:07:39:99:5e: 28:ad:be:00:68:ac:61:7e:85:61:90:63:c8:2b:dd: 2f:f8:b6:ff:fb:c9:54:ae:8a:aa:05:47:40:40:03: fa:05:7d:30:30:e2:46:9c:b1:f1:7b:27:cd:f4:d2: 81:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:43:E5:54:94:29:E7:71:4F:31:5B:3D:4C:7A:89:DF:29:0D:F5:33 X509v3 Authority Key Identifier: keyid:FC:8D:51:DA:53:52:12:3D:DA:E6:37:65:64:F8:D5:68:1D:A4:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/_I1R2lNSEj3a5jdlZPjVaB2ksxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_I1R2lNSEj3a5jdlZPjVaB2ksxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCB3B/8629C43231D811EE8BE9C440C4F9AE02/C9763EB431D811EE89285A41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.22.0/23 IPv6: 2406:5140::/32 Signature Algorithm: sha256WithRSAEncryption 79:6d:e5:c0:bf:07:25:72:a4:e6:97:85:8e:e5:7f:32:85:3b: 54:f4:36:4a:ad:7e:e4:20:cb:4a:19:75:eb:d1:44:a5:b2:ab: 37:2e:6c:da:be:9f:72:dc:eb:dc:40:4d:0b:4d:20:86:8e:a0: 6b:81:ec:dd:90:b2:df:41:88:36:63:aa:0e:af:80:c6:73:c1: c7:cd:e2:ec:71:76:4e:f3:c1:94:5f:d5:ba:68:71:80:fe:88: 33:6c:93:fc:b9:80:df:f4:f8:5e:1f:80:2a:13:55:b5:e8:00: ee:66:c6:fd:c7:b4:c0:6e:31:72:ed:48:50:db:ea:cb:f7:9c: 35:72:60:b3:1e:22:01:31:df:f6:81:18:46:c1:40:2d:1f:18: ce:b0:0f:1e:dc:7e:27:c9:7b:5a:d8:14:f5:f8:d0:f7:fa:44: 1b:27:cb:fe:75:54:10:be:4f:e9:7a:f4:f3:67:4e:98:28:73: 1f:7f:58:6a:ac:55:7c:9b:62:8a:be:a9:2c:52:38:72:79:b8: 8d:87:9a:37:25:52:6f:78:ca:e7:5b:c7:b5:49:cf:fc:78:e2: 04:65:53:50:e5:21:25:5e:fd:45:6c:90:46:8e:83:ca:53:00: 91:9f:93:f4:fd:5b:ef:0f:22:92:2f:be:92:2d:ed:07:5c:fa: 70:6c:c1:e3 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNCM0IxMTAvBgNVBAUTKEZDOEQ1MURBNTM1MjEyM0REQUU2Mzc2NTY0RjhENTY4 MURBNEIzMUMwHhcNMjUwODI5MDQyMjQ3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMmIxNy1kNzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xuI7q3bfIxODiG06IiBEmGrXvGz1H3d8vv3Snlu5yuS7ifsHuoh8E52Fdmd w3t92ktv+tZiENlxXmUCr+9O5S11EEHbWEOP7XaS5R9f2Pqvp2RZ2INZ9MuG8EM+ /LgBRcbTDGLFaPZ4Qx4khz54zQIxQT48lMAOXLX89OVs59crslFJl/YTdVP6pmKF 98yoW52DU9AhosQF5lrt+s4kOWMbmD03wQXIT1KI5znjaDkLlFkFUvZalGS1MGdZ OsnD5RJbWWgWIwv+c9x3TAc5mV4orb4AaKxhfoVhkGPIK90v+Lb/+8lUroqqBUdA QAP6BX0wMOJGnLHxeyfN9NKBDwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP9D5VSU KedxTzFbPUx6id8pDfUzMB8GA1UdIwQYMBaAFPyNUdpTUhI92uY3ZWT41WgdpLMc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0IzQi84NjI5QzQzMjMx RDgxMUVFOEJFOUM0NDBDNEY5QUUwMi9fSTFSMmxOU0VqM2E1amRsWlBqVmFCMmtz eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JMVIybE5TRWozYTVqZGxaUGpWYUIya3N4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkNCM0IvODYyOUM0MzIzMUQ4MTFFRThCRTlDNDQwQzRGOUFFMDIvQzk3NjNFQjQz MUQ4MTFFRTg5Mjg1QTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnmhYwDQQCAAIwBwMFACQGUUAwDQYJKoZIhvcNAQELBQAD ggEBAHlt5cC/ByVypOaXhY7lfzKFO1T0NkqtfuQgy0oZdevRRKWyqzcubNq+n3Lc 69xATQtNIIaOoGuB7N2Qst9BiDZjqg6vgMZzwcfN4uxxdk7zwZRf1bpocYD+iDNs k/y5gN/0+F4fgCoTVbXoAO5mxv3HtMBuMXLtSFDb6sv3nDVyYLMeIgEx3/aBGEbB QC0fGM6wDx7cfifJe1rYFPX40Pf6RBsny/51VBC+T+l69PNnTpgocx9/WGqsVXyb Yoq+qSxSOHJ5uI2HmjclUm94yudbx7VJz/x44gRlU1DlISVe/UVskEaOg8pTAJGf k/T9W+8PIpIvvpIt7Qdc+nBsweM= -----END CERTIFICATE-----Generated at Wed Nov 5 17:59:56 2025 by rpki-client