$ rpki-client -vvf rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/72E60DEA3CC911EDA5EBD21DC4F9AE02.roa File: 72E60DEA3CC911EDA5EBD21DC4F9AE02.roa (raw, json) Hash identifier: d9vZgZrOvFQ4TRJSBIsKc/8yFGao6z4V3n1WpvXvkS8= Subject key identifier: 0A:D7:62:56:05:DF:C2:9C:94:21:27:DE:1D:C3:DF:11:E1:5F:0D:87 Certificate issuer: /CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Certificate serial: 091F Authority key identifier: 36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/72E60DEA3CC911EDA5EBD21DC4F9AE02.roa Signing time: Tue 04 Nov 2025 20:39:33 +0000 ROA not before: Tue 04 Nov 2025 20:39:33 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133115 IP address blocks: 43.249.28.0/24 maxlen: 24 43.249.29.0/24 maxlen: 24 43.249.30.0/24 maxlen: 24 43.249.31.0/24 maxlen: 24 103.43.160.0/24 maxlen: 24 103.43.161.0/24 maxlen: 24 103.243.180.0/24 maxlen: 24 103.243.181.0/24 maxlen: 24 103.243.182.0/24 maxlen: 24 103.243.183.0/24 maxlen: 24 202.43.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2335 (0x91f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91452AC, serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Validity Not Before: Nov 4 20:39:33 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a6485-aca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:af:f1:7b:ff:1f:d6:df:f6:59:8f:bd:f4:43: 7c:00:88:fe:a1:49:e8:f1:2c:a3:12:ea:e9:99:b9: cf:11:2a:53:c1:54:7c:76:03:d0:be:53:57:23:08: 7e:10:a5:2c:0d:1c:50:48:83:66:4f:ae:23:6d:7d: 7b:b2:29:ea:99:28:b2:22:2b:e4:59:1d:e5:00:d6: d9:9d:67:de:9d:e3:6a:da:50:fa:80:72:1e:bf:68: 9c:ae:fc:a8:0d:10:0b:f7:6a:bc:5e:98:78:db:db: a8:e4:a5:30:43:d8:98:75:0e:69:42:d1:05:2a:b7: af:9c:c0:18:97:53:93:8b:c2:1c:e9:3e:58:37:17: 12:75:b1:85:9c:dc:c7:2a:40:78:a3:49:da:0d:36: 7e:8d:85:45:6b:cf:c6:07:01:ca:00:59:e9:40:17: 1e:f8:c3:9f:3c:b8:dc:6e:43:2c:42:6f:b1:cb:c9: 1e:89:5f:b1:a9:a0:80:ce:d2:ef:ae:80:e8:ae:ce: 97:6c:ea:0c:8a:54:5b:f1:ec:7b:37:1a:b7:ea:ab: 01:62:34:49:55:db:c9:99:ec:b2:a0:52:a6:c7:64: 89:63:51:c9:6f:1b:b3:c9:4c:8c:62:8e:ae:cc:c3: 83:80:4b:c7:7b:46:b6:fb:90:b9:cf:12:ea:37:d8: e6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D7:62:56:05:DF:C2:9C:94:21:27:DE:1D:C3:DF:11:E1:5F:0D:87 X509v3 Authority Key Identifier: keyid:36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/72E60DEA3CC911EDA5EBD21DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.28.0/22 103.43.160.0/23 103.243.180.0/22 202.43.238.0/24 Signature Algorithm: sha256WithRSAEncryption 50:5b:2b:3c:bd:d7:a4:21:77:71:dc:5c:17:e8:cd:8b:29:c0: 62:7d:ea:bf:a6:0e:b8:dd:8b:fb:cb:38:60:96:63:46:6c:de: 80:ce:35:db:8b:c5:fd:9a:17:00:74:9e:d6:d5:0f:38:c1:7a: 95:47:8a:7d:3f:ba:8b:24:8f:8d:05:b2:91:0f:fc:6e:dd:c7: 1b:e3:f3:5b:ae:aa:e2:dc:00:f7:20:dc:15:a8:98:01:4c:fa: da:b6:ff:86:d5:aa:4a:e6:b6:ff:e7:dc:f5:8e:83:52:4f:d4: d5:26:40:d9:4e:f7:23:e5:34:63:68:3b:5c:48:48:e0:2a:54: 53:b1:58:a5:df:8f:76:16:61:5e:67:1e:f0:16:55:af:ec:1c: bc:99:c0:89:ad:84:0a:5c:76:8e:6d:5d:a9:d7:03:9b:83:15: ca:b9:3a:53:ee:75:9c:ef:5e:39:c0:c6:7d:37:c1:d1:86:fd: 54:71:42:f3:bf:da:46:5d:9a:b2:d3:24:39:93:38:3c:3d:0b: 85:48:31:52:de:fc:2a:d0:46:ba:2e:cb:85:bc:9e:09:fa:4d: 40:a6:72:21:da:56:4f:ed:38:20:91:15:ca:a9:0b:c9:ff:8c: 7c:c9:02:c1:9c:e5:f6:3a:e0:9c:c2:ee:7d:ef:fc:8d:69:5d: f6:33:f9:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyQUMxMTAvBgNVBAUTKDM2RDc3RTkyNDNBQkJBMkZENTQ5NkEyOTE4MzBCN0Qz OEIwQkNCQzQwHhcNMjUxMTA0MjAzOTMzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNjQ4NS1hY2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36/xe/8f1t/2WY+99EN8AIj+oUno8SyjEurpmbnPESpTwVR8dgPQvlNXIwh+ EKUsDRxQSINmT64jbX17sinqmSiyIivkWR3lANbZnWfeneNq2lD6gHIev2icrvyo DRAL92q8Xph429uo5KUwQ9iYdQ5pQtEFKrevnMAYl1OTi8Ic6T5YNxcSdbGFnNzH KkB4o0naDTZ+jYVFa8/GBwHKAFnpQBce+MOfPLjcbkMsQm+xy8keiV+xqaCAztLv roDors6XbOoMilRb8ex7Nxq36qsBYjRJVdvJmeyyoFKmx2SJY1HJbxuzyUyMYo6u zMODgEvHe0a2+5C5zxLqN9jm2QIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFArXYlYF 38KclCEn3h3D3xHhXw2HMB8GA1UdIwQYMBaAFDbXfpJDq7ov1UlqKRgwt9OLC8vE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTJBQy9BNDhENTk2NkJC M0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVpX1ZTV29wR0RDMzA0c0x5 OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050ZC1ra09ydWlfVlNXb3BHREMzMDRzTHk4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUyQUMvQTQ4RDU5NjZCQjNFMTFFQUEyOUVFMzIxQzRGOUFFMDIvNzJFNjBERUEz Q0M5MTFFREE1RUJEMjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr+RwDBAFnK6ADBAJn87QDBADKK+4wDQYJKoZIhvcNAQEL BQADggEBAFBbKzy916Qhd3HcXBfozYspwGJ96r+mDrjdi/vLOGCWY0Zs3oDONduL xf2aFwB0ntbVDzjBepVHin0/uoskj40FspEP/G7dxxvj81uuquLcAPcg3BWomAFM +tq2/4bVqkrmtv/n3PWOg1JP1NUmQNlO9yPlNGNoO1xISOAqVFOxWKXfj3YWYV5n HvAWVa/sHLyZwImthApcdo5tXanXA5uDFcq5OlPudZzvXjnAxn03wdGG/VRxQvO/ 2kZdmrLTJDmTODw9C4VIMVLe/CrQRrouy4W8ngn6TUCmciHaVk/tOCCRFcqpC8n/ jHzJAsGc5fY64JzC7n3v/I1pXfYz+WE= -----END CERTIFICATE-----Generated at Wed Nov 5 21:41:40 2025 by rpki-client