$ rpki-client -vvf rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/E24E0BA8B31111F098769D68C4F9AE02.roa File: E24E0BA8B31111F098769D68C4F9AE02.roa (raw, json) Hash identifier: kwww6Zf2XAzpV547bdO7fhpyjkzf3Q/IJDMRGCGiFyY= Subject key identifier: 97:56:97:57:A6:62:86:C3:2F:82:37:71:28:3B:B3:49:E1:01:31:F8 Certificate issuer: /CN=A91128AE/serialNumber=7E3B9BDDA50E8DA7D50FF3A7C3329CF483D517E9 Certificate serial: 01DD Authority key identifier: 7E:3B:9B:DD:A5:0E:8D:A7:D5:0F:F3:A7:C3:32:9C:F4:83:D5:17:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjub3aUOjafVD_OnwzKc9IPVF-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/E24E0BA8B31111F098769D68C4F9AE02.roa Signing time: Mon 27 Oct 2025 08:49:44 +0000 ROA not before: Mon 27 Oct 2025 08:49:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137498 IP address blocks: 103.82.200.0/24 maxlen: 24 2001:df1:ebc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/fjub3aUOjafVD_OnwzKc9IPVF-k.crl rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/fjub3aUOjafVD_OnwzKc9IPVF-k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjub3aUOjafVD_OnwzKc9IPVF-k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:45:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128AE, serialNumber=7E3B9BDDA50E8DA7D50FF3A7C3329CF483D517E9 Validity Not Before: Oct 27 08:49:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68ff3228-5b22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ca:ba:8d:a4:c1:11:69:cf:84:f7:4c:6c:e6: b8:0a:8d:04:50:d7:18:c6:39:c9:da:51:c3:64:e0: 95:97:00:21:dc:07:b4:fd:ea:cc:85:c6:b0:52:92: b1:2b:6c:a7:a6:93:71:7b:14:c3:d2:75:8d:69:7d: ec:85:e7:b1:2b:a8:92:a0:52:72:73:b8:c0:8a:49: c3:a4:88:0f:05:48:ef:ff:07:f4:f2:a1:59:83:11: a7:78:59:bb:63:12:88:f3:d1:6b:e9:4b:65:9d:d5: 77:de:89:a9:03:e6:05:55:f4:84:de:9d:13:64:07: 0e:de:7d:73:c9:df:e5:64:90:f1:a8:5a:ac:7d:c0: 84:55:92:90:a4:73:77:f7:ab:20:94:d9:e9:38:0b: 23:24:66:5c:00:36:fe:f8:ad:d8:15:8e:d2:11:54: 2c:62:a6:51:e1:d4:d7:cb:6b:db:8c:92:da:6f:86: 6d:39:35:e5:1e:1e:52:82:ff:04:cd:48:0d:0e:ec: 03:98:6b:b4:27:47:b1:6c:4a:9d:90:a7:1b:f8:e3: 62:e5:ff:92:e6:d9:7a:a3:1a:20:3f:ee:c1:ad:d4: b1:6c:d1:ed:60:0b:de:bc:13:80:e8:d0:33:20:1c: b3:d9:02:bc:96:35:1b:93:0e:44:1c:aa:f6:e2:1e: 8b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:56:97:57:A6:62:86:C3:2F:82:37:71:28:3B:B3:49:E1:01:31:F8 X509v3 Authority Key Identifier: keyid:7E:3B:9B:DD:A5:0E:8D:A7:D5:0F:F3:A7:C3:32:9C:F4:83:D5:17:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/fjub3aUOjafVD_OnwzKc9IPVF-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjub3aUOjafVD_OnwzKc9IPVF-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/E24E0BA8B31111F098769D68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.200.0/24 IPv6: 2001:df1:ebc0::/48 Signature Algorithm: sha256WithRSAEncryption 04:cb:c0:5a:c8:ce:26:35:a9:7c:15:40:84:18:77:32:66:4c: 3c:38:d3:e9:a7:0c:ee:f4:a9:f7:5d:cf:e7:19:9e:f8:0b:3d: eb:aa:1d:05:59:0f:31:35:b8:78:57:26:56:c3:79:53:36:f9: 0e:d2:57:ac:dd:8f:40:07:14:be:70:e3:fc:d1:a4:d1:a1:dd: d8:76:ee:4a:eb:dd:03:d3:18:66:a2:00:00:15:9c:13:27:06: 52:d9:fb:9a:85:64:be:63:08:ce:57:8b:77:68:1e:71:5b:fa: 42:f0:ea:16:53:c7:81:56:b3:6c:06:bb:44:d1:a0:48:90:89: 84:42:98:a1:73:3d:57:5d:bf:04:b1:72:b7:a4:33:2f:37:31: cb:d7:d9:b3:46:80:06:01:10:3f:04:62:3f:4b:8f:8c:ea:c8: 6d:96:6f:06:db:69:e0:bd:f8:b7:a6:62:99:04:49:98:fa:99: 48:8f:92:12:2a:83:52:9b:00:f8:8f:2f:81:08:09:3f:46:fc: 29:d9:05:ab:44:5d:86:03:1a:00:dc:f2:35:95:e5:9d:bd:cc: d4:00:e3:63:66:fe:19:96:61:89:90:87:5b:12:8a:cd:36:0a: 3f:40:37:af:82:81:f8:f2:49:fe:4a:7f:f8:64:93:32:44:0c: 5a:1f:8b:1c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QUUxMTAvBgNVBAUTKDdFM0I5QkREQTUwRThEQTdENTBGRjNBN0MzMzI5Q0Y0 ODNENTE3RTkwHhcNMjUxMDI3MDg0OTQ0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZmMzIyOC01YjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8q6jaTBEWnPhPdMbOa4Co0EUNcYxjnJ2lHDZOCVlwAh3Ae0/erMhcawUpKx K2ynppNxexTD0nWNaX3sheexK6iSoFJyc7jAiknDpIgPBUjv/wf08qFZgxGneFm7 YxKI89Fr6UtlndV33ompA+YFVfSE3p0TZAcO3n1zyd/lZJDxqFqsfcCEVZKQpHN3 96sglNnpOAsjJGZcADb++K3YFY7SEVQsYqZR4dTXy2vbjJLab4ZtOTXlHh5Sgv8E zUgNDuwDmGu0J0exbEqdkKcb+ONi5f+S5tl6oxogP+7BrdSxbNHtYAvevBOA6NAz IByz2QK8ljUbkw5EHKr24h6LnQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJdWl1em YobDL4I3cSg7s0nhATH4MB8GA1UdIwQYMBaAFH47m92lDo2n1Q/zp8MynPSD1Rfp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhBRS81M0VFMzE4RUVE QUQxMUVEOTE2NkZBNTNDNEY5QUUwMi9manViM2FVT2phZlZEX09ud3pLYzlJUFZG LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqdWIzYVVPamFmVkRfT253ektjOUlQVkYtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4QUUvNTNFRTMxOEVFREFEMTFFRDkxNjZGQTUzQzRGOUFFMDIvRTI0RTBCQThC MzExMTFGMDk4NzY5RDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnUsgwDwQCAAIwCQMHACABDfHrwDANBgkqhkiG9w0BAQsF AAOCAQEABMvAWsjOJjWpfBVAhBh3MmZMPDjT6acM7vSp913P5xme+As966odBVkP MTW4eFcmVsN5Uzb5DtJXrN2PQAcUvnDj/NGk0aHd2HbuSuvdA9MYZqIAABWcEycG Utn7moVkvmMIzleLd2gecVv6QvDqFlPHgVazbAa7RNGgSJCJhEKYoXM9V12/BLFy t6QzLzcxy9fZs0aABgEQPwRiP0uPjOrIbZZvBttp4L34t6ZimQRJmPqZSI+SEiqD UpsA+I8vgQgJP0b8KdkFq0RdhgMaANzyNZXlnb3M1ADjY2b+GZZhiZCHWxKKzTYK P0A3r4KB+PJJ/kp/+GSTMkQMWh+LHA== -----END CERTIFICATE-----Generated at Tue Nov 4 21:45:47 2025 by rpki-client