$ rpki-client -vvf rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/8E412748A33311EDA2CB2420C4F9AE02.roa File: 8E412748A33311EDA2CB2420C4F9AE02.roa (raw, json) Hash identifier: 3fAULkE6ttb330SWu8NuIByl/YALdaeco2VwvKvVPGY= Subject key identifier: F2:30:06:BA:89:0D:64:47:57:E7:F9:4A:88:A5:2B:E1:33:D7:66:99 Certificate issuer: /CN=A91262F0/serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Certificate serial: 0206 Authority key identifier: FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/8E412748A33311EDA2CB2420C4F9AE02.roa Signing time: Fri 31 Oct 2025 02:46:27 +0000 ROA not before: Fri 31 Oct 2025 02:46:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 17539 IP address blocks: 58.84.28.0/24 maxlen: 24 58.84.29.0/24 maxlen: 24 58.84.30.0/24 maxlen: 24 58.84.31.0/24 maxlen: 24 103.197.44.0/24 maxlen: 24 103.197.45.0/24 maxlen: 24 103.197.46.0/24 maxlen: 24 103.197.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:28:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262F0, serialNumber=FC4AE7D9E3F419A7D204A54C79D1F3EFA9A7D6C8 Validity Not Before: Oct 31 02:46:27 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69042302-0c7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e2:7c:b3:e1:8e:48:4e:bb:97:96:aa:a5:5b: 9c:74:e9:17:1b:a1:4e:66:22:55:f5:a3:90:3a:5e: ba:45:35:73:d4:75:13:67:cb:95:d9:4b:d6:46:17: 14:32:f8:88:3f:4d:27:69:e1:63:ac:32:e0:8d:26: be:08:12:51:67:92:fa:d5:9d:f1:ba:fc:01:68:dc: 8b:01:cb:7f:9f:ee:44:cf:70:36:fa:c9:ab:06:38: b1:ff:ab:1a:74:12:e6:31:bf:91:f7:bd:a2:ea:06: d5:12:59:b1:9b:87:9b:c8:c8:e9:66:3b:b4:80:46: da:b0:c2:43:99:dd:44:b2:f2:4d:e7:48:2d:0b:a4: 9f:02:8f:8b:f9:81:3b:c8:61:81:5d:e2:13:3a:54: fa:f4:26:47:0f:a2:76:18:a8:df:2f:25:49:80:c3: 1d:6e:a5:8a:3e:da:fc:af:19:6e:9a:6a:23:85:bf: 95:fc:e0:98:92:bc:12:4e:20:ec:29:d5:64:65:eb: 83:9c:65:f5:13:b5:ea:f4:eb:e5:99:65:6a:cc:df: 79:da:66:ca:1d:81:2e:96:c1:bf:f6:db:c4:c4:a8: 5d:cc:9e:b0:2d:2b:e0:eb:3d:17:2c:4d:48:4d:f0: 08:26:71:4a:3e:1e:9f:2c:c9:3e:3f:57:ef:2e:4c: c8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:30:06:BA:89:0D:64:47:57:E7:F9:4A:88:A5:2B:E1:33:D7:66:99 X509v3 Authority Key Identifier: keyid:FC:4A:E7:D9:E3:F4:19:A7:D2:04:A5:4C:79:D1:F3:EF:A9:A7:D6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/_Ern2eP0GafSBKVMedHz76mn1sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Ern2eP0GafSBKVMedHz76mn1sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262F0/33AD0A62A30C11EDB3388C0CC4F9AE02/8E412748A33311EDA2CB2420C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.84.28.0/22 103.197.44.0/22 Signature Algorithm: sha256WithRSAEncryption 93:d1:c7:30:78:1a:ab:34:5a:a5:d9:22:3e:c2:b6:48:70:bb: 5f:11:77:ef:a4:2f:fb:f7:c6:d1:b0:ea:e9:61:2d:f1:9b:0d: ef:aa:ce:33:af:0f:05:ee:74:15:7d:ed:b7:67:3b:21:c4:df: 4b:22:59:81:74:88:a0:dc:fe:9d:fc:df:af:0d:c4:89:f4:05: 34:ca:a0:0c:f9:01:de:03:ad:c5:d7:f3:83:ac:1d:06:26:76: 2f:84:32:a9:d0:a5:33:61:8d:ef:89:21:a8:b4:3b:92:ff:f6: 90:a2:51:c6:7b:2b:e0:e5:29:1f:a2:ee:32:5b:82:b0:18:a3: 74:45:04:74:47:79:41:46:e4:f0:b4:95:ed:ce:f2:18:66:32: 85:78:aa:e4:4a:89:28:4e:b4:47:3b:79:52:29:59:91:cc:bd: 86:0a:06:56:43:5b:49:6f:fd:77:62:07:56:dc:cb:00:c2:52: 2c:49:79:a3:7b:2b:f3:ef:b4:02:ba:bb:be:70:1d:4f:9e:5f: ff:e3:ba:17:54:e4:7b:b1:63:3d:fa:ca:f7:a2:cb:20:7d:87: 12:ea:8a:79:2c:4a:b5:e4:0e:4d:3e:bc:e4:24:d5:eb:6e:d6: fe:17:cc:63:fb:4c:ba:cc:fe:b9:d7:18:d3:53:1b:b9:9d:c0: 68:1b:d9:ae -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyRjAxMTAvBgNVBAUTKEZDNEFFN0Q5RTNGNDE5QTdEMjA0QTU0Qzc5RDFGM0VG QTlBN0Q2QzgwHhcNMjUxMDMxMDI0NjI3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0MjMwMi0wYzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuJ8s+GOSE67l5aqpVucdOkXG6FOZiJV9aOQOl66RTVz1HUTZ8uV2UvWRhcU MviIP00naeFjrDLgjSa+CBJRZ5L61Z3xuvwBaNyLAct/n+5Ez3A2+smrBjix/6sa dBLmMb+R972i6gbVElmxm4ebyMjpZju0gEbasMJDmd1EsvJN50gtC6SfAo+L+YE7 yGGBXeITOlT69CZHD6J2GKjfLyVJgMMdbqWKPtr8rxlummojhb+V/OCYkrwSTiDs KdVkZeuDnGX1E7Xq9OvlmWVqzN952mbKHYEulsG/9tvExKhdzJ6wLSvg6z0XLE1I TfAIJnFKPh6fLMk+P1fvLkzI4QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPIwBrqJ DWRHV+f5SoilK+Ez12aZMB8GA1UdIwQYMBaAFPxK59nj9Bmn0gSlTHnR8++pp9bI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJGMC8zM0FEMEE2MkEz MEMxMUVEQjMzODhDMENDNEY5QUUwMi9fRXJuMmVQMEdhZlNCS1ZNZWRIejc2bW4x c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Fcm4yZVAwR2FmU0JLVk1lZEh6NzZtbjFzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyRjAvMzNBRDBBNjJBMzBDMTFFREIzMzg4QzBDQzRGOUFFMDIvOEU0MTI3NDhB MzMzMTFFREEyQ0IyNDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAI6VBwDBAJnxSwwDQYJKoZIhvcNAQELBQADggEBAJPRxzB4 Gqs0WqXZIj7Ctkhwu18Rd++kL/v3xtGw6ulhLfGbDe+qzjOvDwXudBV97bdnOyHE 30siWYF0iKDc/p38368NxIn0BTTKoAz5Ad4DrcXX84OsHQYmdi+EMqnQpTNhje+J Iai0O5L/9pCiUcZ7K+DlKR+i7jJbgrAYo3RFBHRHeUFG5PC0le3O8hhmMoV4quRK iShOtEc7eVIpWZHMvYYKBlZDW0lv/XdiB1bcywDCUixJeaN7K/PvtAK6u75wHU+e X//juhdU5HuxYz36yveiyyB9hxLqinksSrXkDk0+vOQk1etu1v4XzGP7TLrM/rnX GNNTG7mdwGgb2a4= -----END CERTIFICATE-----Generated at Wed Nov 5 16:44:23 2025 by rpki-client