$ rpki-client -vvf rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/A58B9338AD4A11EBA6B48687C4F9AE02.roa File: A58B9338AD4A11EBA6B48687C4F9AE02.roa (raw, json) Hash identifier: LDyZCEh4lHkU/m1TvJhILb1LRL3feZ7tdaVfK9q/FJE= Subject key identifier: FE:7A:D3:CA:FD:F2:F7:D7:40:D4:16:F6:1A:EE:3A:45:16:FA:CC:9E Certificate issuer: /CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Certificate serial: 0920 Authority key identifier: 36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/A58B9338AD4A11EBA6B48687C4F9AE02.roa Signing time: Tue 04 Nov 2025 20:39:34 +0000 ROA not before: Tue 04 Nov 2025 20:39:34 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133744 IP address blocks: 103.43.162.0/24 maxlen: 24 202.43.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2336 (0x920) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91452AC, serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Validity Not Before: Nov 4 20:39:34 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a6486-b5a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:07:46:df:9b:ce:26:55:7e:00:c2:65:79:f0: b1:c2:e2:3f:9a:1b:b9:20:fa:fd:4a:46:53:bb:a4: b1:ae:d2:41:16:a6:14:dc:fa:7d:63:19:36:07:6d: d8:20:16:67:d5:ce:25:9b:49:07:52:4d:92:f2:03: 56:cb:a1:8d:aa:0f:47:f0:b9:66:64:f6:0f:82:d9: 53:19:00:9e:be:8a:2e:62:d2:21:b8:81:01:9c:49: 70:09:9d:40:23:c0:bd:c7:68:65:c0:b3:86:c7:ef: 35:5c:82:79:7d:78:e0:b6:91:a5:40:66:92:4f:1e: 80:f0:a5:f1:22:d8:79:a2:92:2b:f3:14:fd:dd:9a: ff:9b:1f:e5:10:8a:77:66:86:af:a7:04:d1:4e:9d: 77:af:ae:90:f6:a4:8e:17:97:8d:29:0c:75:97:b6: 8b:04:f0:88:dd:c8:27:6c:8c:27:af:23:9f:00:56: a5:70:1e:14:8f:4e:b6:6e:50:55:c8:ec:0f:1e:41: d2:07:78:ae:d2:78:3f:59:ac:a8:fa:39:00:7f:24: c8:b0:0a:be:71:3b:94:6e:b8:dc:04:c4:62:d0:52: 2d:e7:36:45:e2:c9:70:ac:21:fb:a8:08:a0:4c:f2: d7:df:71:79:f2:7d:36:c6:a2:d7:50:a8:03:d4:18: fe:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:7A:D3:CA:FD:F2:F7:D7:40:D4:16:F6:1A:EE:3A:45:16:FA:CC:9E X509v3 Authority Key Identifier: keyid:36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/A58B9338AD4A11EBA6B48687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.162.0/24 202.43.239.0/24 Signature Algorithm: sha256WithRSAEncryption 48:2f:02:d1:51:a4:9e:ec:b8:2c:0f:21:4e:71:43:a5:b9:45: 8c:1c:53:ca:db:f0:6a:9b:b7:25:64:8f:03:97:82:55:f9:36: 56:79:15:8a:63:a4:3d:07:bd:f0:e2:e1:e1:47:0b:68:b4:a6: d9:4c:2c:67:6e:e8:d5:2a:89:4f:1e:ee:71:00:2e:1c:64:d1: 7c:2d:15:e7:78:41:c3:ed:32:7a:f6:6e:4f:98:2c:b7:0d:ab: 2e:df:d7:4b:76:0e:84:33:f0:2d:82:0e:9d:bb:9c:e8:c5:66: 4e:e4:76:bd:0c:e3:cc:00:29:1f:d6:c1:17:f1:4b:b1:97:de: 1b:9b:e2:9c:9e:2b:05:d9:8d:c9:bc:65:38:15:a6:2c:4b:e4: 40:d9:36:11:fd:1c:37:a6:b3:e9:f7:86:f7:ce:86:77:01:da: b2:9b:a7:09:8f:17:b9:4f:52:31:a6:c4:ba:c7:8e:f6:43:a9: 01:99:63:09:99:11:c2:4c:e4:91:91:98:83:8a:de:d1:1c:7c: d1:12:a4:a6:1f:93:fc:21:2b:a6:09:0d:d8:07:0d:a1:3d:70: 70:41:6c:35:87:05:c8:ab:88:31:78:89:e6:be:8b:d2:dc:29: c4:e4:e6:38:10:d7:33:6a:df:4b:1d:a4:1a:ef:8a:4b:e8:70: b5:62:1c:ca -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyQUMxMTAvBgNVBAUTKDM2RDc3RTkyNDNBQkJBMkZENTQ5NkEyOTE4MzBCN0Qz OEIwQkNCQzQwHhcNMjUxMTA0MjAzOTM0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNjQ4Ni1iNWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAdG35vOJlV+AMJlefCxwuI/mhu5IPr9SkZTu6SxrtJBFqYU3Pp9Yxk2B23Y IBZn1c4lm0kHUk2S8gNWy6GNqg9H8LlmZPYPgtlTGQCevoouYtIhuIEBnElwCZ1A I8C9x2hlwLOGx+81XIJ5fXjgtpGlQGaSTx6A8KXxIth5opIr8xT93Zr/mx/lEIp3 ZoavpwTRTp13r66Q9qSOF5eNKQx1l7aLBPCI3cgnbIwnryOfAFalcB4Uj062blBV yOwPHkHSB3iu0ng/Wayo+jkAfyTIsAq+cTuUbrjcBMRi0FIt5zZF4slwrCH7qAig TPLX33F58n02xqLXUKgD1Bj+QwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFP5608r9 8vfXQNQW9hruOkUW+syeMB8GA1UdIwQYMBaAFDbXfpJDq7ov1UlqKRgwt9OLC8vE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTJBQy9BNDhENTk2NkJC M0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVpX1ZTV29wR0RDMzA0c0x5 OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050ZC1ra09ydWlfVlNXb3BHREMzMDRzTHk4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUyQUMvQTQ4RDU5NjZCQjNFMTFFQUEyOUVFMzIxQzRGOUFFMDIvQTU4QjkzMzhB RDRBMTFFQkE2QjQ4Njg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnK6IDBADKK+8wDQYJKoZIhvcNAQELBQADggEBAEgvAtFR pJ7suCwPIU5xQ6W5RYwcU8rb8GqbtyVkjwOXglX5NlZ5FYpjpD0HvfDi4eFHC2i0 ptlMLGdu6NUqiU8e7nEALhxk0XwtFed4QcPtMnr2bk+YLLcNqy7f10t2DoQz8C2C Dp27nOjFZk7kdr0M48wAKR/WwRfxS7GX3hub4pyeKwXZjcm8ZTgVpixL5EDZNhH9 HDems+n3hvfOhncB2rKbpwmPF7lPUjGmxLrHjvZDqQGZYwmZEcJM5JGRmIOK3tEc fNESpKYfk/whK6YJDdgHDaE9cHBBbDWHBciriDF4iea+i9LcKcTk5jgQ1zNq30sd pBrvikvocLViHMo= -----END CERTIFICATE-----Generated at Thu Nov 6 00:42:07 2025 by rpki-client