$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa File: A38F041873C011EEB1A68245C4F9AE02.roa (raw, json) Hash identifier: 3QT9VgasquPbgXpBTFff0Gu2hJL8xTVrH9a//E9hWWo= Subject key identifier: 65:41:B7:AC:FD:BB:2A:82:BB:84:6D:E5:49:E4:FF:29:67:D0:66:41 Certificate issuer: /CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Certificate serial: 0162 Authority key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa Signing time: Wed 03 Sep 2025 04:52:30 +0000 ROA not before: Wed 03 Sep 2025 04:52:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151652 IP address blocks: 103.249.203.0/24 maxlen: 24 2001:df2:ca40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:43:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD2E3, serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Validity Not Before: Sep 3 04:52:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7c98e-b52a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:52:a3:0d:73:7c:8e:0a:49:ab:44:65:72:db: ef:9d:c2:07:68:bf:46:6c:c5:43:7c:5d:ee:1f:c0: e1:e3:66:43:7c:e0:6d:34:ae:7a:0c:f3:cb:78:62: f7:0b:e9:55:96:27:7d:53:ee:8c:68:1a:a0:ff:d4: 1a:00:1a:c7:b5:5a:7e:5b:2f:af:24:7f:88:2f:64: b1:52:f8:95:e6:6f:a1:b9:89:40:47:5a:e4:c5:44: 4c:7c:24:8c:de:7c:42:48:fd:94:c2:d9:a2:55:23: 42:20:b6:f5:22:51:37:61:e6:ce:b0:e0:31:49:bf: 35:92:db:e1:e7:29:3e:1f:9e:90:10:2c:a0:1f:ef: 4c:ff:3d:76:26:36:18:20:a8:ba:52:44:e2:95:1a: 3e:b3:02:92:32:c5:0a:28:67:44:7d:8b:b5:60:c0: e8:68:70:f5:52:84:c7:63:7d:55:7e:c9:4a:8a:fd: 2b:f8:04:f9:1f:36:de:87:5d:16:7a:c5:06:75:60: ae:c7:c0:50:13:a6:bd:36:aa:75:dc:a9:50:9b:ce: b1:de:95:28:60:5e:14:15:61:d7:85:6c:78:97:74: c7:02:c2:8c:53:e2:64:f0:c5:67:4e:b7:d9:c0:9c: 07:9d:75:d5:1e:fc:23:d4:ac:60:f6:71:02:00:a9: 8a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:41:B7:AC:FD:BB:2A:82:BB:84:6D:E5:49:E4:FF:29:67:D0:66:41 X509v3 Authority Key Identifier: keyid:48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.203.0/24 IPv6: 2001:df2:ca40::/48 Signature Algorithm: sha256WithRSAEncryption 0d:e4:be:26:2c:30:72:df:d5:c1:84:58:bd:ca:fb:6e:a1:6c: 04:ab:4f:93:ba:2f:2e:77:3f:a1:19:d0:2c:81:75:c4:58:e4: 1e:a7:eb:54:4e:b4:8b:f1:b4:e2:ee:88:3f:a1:48:ea:13:0f: 3b:16:a3:e3:fb:b6:c7:3e:ed:97:5c:81:7b:1b:14:4b:0e:6d: 82:b2:52:b3:43:84:c5:f0:a6:59:d5:35:4e:91:d9:6e:15:e5: 0d:c8:b2:b7:e1:5c:2a:50:57:81:21:7a:66:2e:7d:e1:01:81: 92:fe:4d:22:55:bb:d9:5a:36:23:5f:dd:53:2d:d6:05:6a:20: da:8f:20:ed:75:34:4c:13:40:95:c5:3c:9e:c9:c3:1c:05:40: 0d:64:be:38:79:5c:2e:c8:d0:60:8a:13:be:fb:7b:75:51:1f: 9b:d4:51:70:57:f4:eb:b7:9d:a8:37:34:37:fe:6f:b3:55:36: 09:61:e9:93:7a:bd:3b:84:27:d8:12:b1:30:ea:3b:0a:08:aa: 19:4a:cf:89:70:b4:fc:eb:e8:e9:83:5b:60:ac:23:5d:69:24: 93:17:57:c1:07:9a:34:94:45:70:9e:cf:eb:1e:c1:6c:a7:43: 77:07:b4:c5:58:72:fb:09:11:c6:ec:ac:a3:23:a0:81:51:94: 69:49:85:f8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQyRTMxMTAvBgNVBAUTKDQ4MTcyMEEyQzhFRTZDRUM5MjQ3Nzc2MTkzMjk5QzEw RkVCN0NBNDQwHhcNMjUwOTAzMDQ1MjMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Yzk4ZS1iNTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylKjDXN8jgpJq0RlctvvncIHaL9GbMVDfF3uH8Dh42ZDfOBtNK56DPPLeGL3 C+lVlid9U+6MaBqg/9QaABrHtVp+Wy+vJH+IL2SxUviV5m+huYlAR1rkxURMfCSM 3nxCSP2UwtmiVSNCILb1IlE3YebOsOAxSb81ktvh5yk+H56QECygH+9M/z12JjYY IKi6UkTilRo+swKSMsUKKGdEfYu1YMDoaHD1UoTHY31VfslKiv0r+AT5Hzbeh10W esUGdWCux8BQE6a9Nqp13KlQm86x3pUoYF4UFWHXhWx4l3THAsKMU+Jk8MVnTrfZ wJwHnXXVHvwj1Kxg9nECAKmKiQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGVBt6z9 uyqCu4Rt5Unk/yln0GZBMB8GA1UdIwQYMBaAFEgXIKLI7mzskkd3YZMpnBD+t8pE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDJFMy80RjQxNzlBNDcz QzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9TQmNnb3NqdWJPeVNSM2Roa3ltY0VQNjN5 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NCY2dvc2p1Yk95U1IzZGhreW1jRVA2M3lrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQyRTMvNEY0MTc5QTQ3M0MwMTFFRUI4MjdGNDQ0QzRGOUFFMDIvQTM4RjA0MTg3 M0MwMTFFRUIxQTY4MjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+cswDwQCAAIwCQMHACABDfLKQDANBgkqhkiG9w0BAQsF AAOCAQEADeS+Jiwwct/VwYRYvcr7bqFsBKtPk7ovLnc/oRnQLIF1xFjkHqfrVE60 i/G04u6IP6FI6hMPOxaj4/u2xz7tl1yBexsUSw5tgrJSs0OExfCmWdU1TpHZbhXl Dciyt+FcKlBXgSF6Zi594QGBkv5NIlW72Vo2I1/dUy3WBWog2o8g7XU0TBNAlcU8 nsnDHAVADWS+OHlcLsjQYIoTvvt7dVEfm9RRcFf067edqDc0N/5vs1U2CWHpk3q9 O4Qn2BKxMOo7CgiqGUrPiXC0/Ovo6YNbYKwjXWkkkxdXwQeaNJRFcJ7P6x7BbKdD dwe0xVhy+wkRxuysoyOggVGUaUmF+A== -----END CERTIFICATE-----Generated at Wed Nov 5 00:22:59 2025 by rpki-client