$ rpki-client -vvf rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/6FFF14F0695E11EFAF2AF785C4F9AE02.roa File: 6FFF14F0695E11EFAF2AF785C4F9AE02.roa (raw, json) Hash identifier: 0bN6aa9LmlwzevTlnntKDv/hy63nRIyDPNtf4oHkk54= Subject key identifier: 43:83:4C:7B:67:3F:92:CB:F4:D6:DB:ED:6F:B0:D4:64:03:A1:3D:D7 Certificate issuer: /CN=A91834AD/serialNumber=4D76F793E2B129F46F8FC90E21F9D0FEAF10D040 Certificate serial: 0C9C Authority key identifier: 4D:76:F7:93:E2:B1:29:F4:6F:8F:C9:0E:21:F9:D0:FE:AF:10:D0:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/6FFF14F0695E11EFAF2AF785C4F9AE02.roa Signing time: Fri 31 Oct 2025 10:43:01 +0000 ROA not before: Fri 31 Oct 2025 10:43:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136425 IP address blocks: 103.87.137.0/24 maxlen: 24 103.87.138.0/24 maxlen: 24 103.87.139.0/24 maxlen: 24 2400:d4c0::/32 maxlen: 32 2400:d4c0::/48 maxlen: 48 2400:d4c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.crl rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3228 (0xc9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91834AD, serialNumber=4D76F793E2B129F46F8FC90E21F9D0FEAF10D040 Validity Not Before: Oct 31 10:43:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=690492b5-2369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:81:25:75:7f:e5:cb:8c:e3:e3:d1:78:9a:87: 1f:ca:aa:11:e9:ba:9c:e4:f7:5b:d0:1f:01:bd:43: bc:d7:cd:ea:e3:0e:2b:36:ba:69:13:0b:51:87:05: 44:fe:e1:ce:ca:42:31:3c:cc:89:1e:9e:0f:12:d3: e9:f8:ed:a2:20:96:0e:5d:8d:df:21:17:3f:a2:88: 98:3c:7e:a2:a1:f7:cb:68:46:34:ab:1e:be:bc:e3: 2f:14:9a:26:51:f9:e2:17:f1:15:98:13:86:1c:b6: 83:bf:8d:47:77:25:a9:cb:ee:18:83:3e:ef:f0:8b: db:c1:a2:d2:5f:41:d2:81:e9:cf:39:a0:45:74:45: 3e:6d:8d:b9:e7:31:82:d7:db:a7:da:7d:13:83:ac: 0c:50:2f:93:43:79:8d:2e:20:72:64:2e:07:99:dd: ab:0a:95:cc:e2:61:52:c6:2f:bb:e5:c6:f4:c8:fe: e1:61:82:b1:61:aa:5f:b4:d7:33:c3:9b:a9:a1:62: bb:80:68:88:18:40:0e:34:a3:a3:64:c0:c2:27:a1: 3e:28:5e:26:b2:3a:0a:25:4f:24:6e:0f:43:55:a1: 71:f2:10:a7:91:9d:b0:a9:83:74:22:64:f1:25:0f: 9a:19:5c:7f:ff:1e:22:ce:b1:19:0d:79:35:7a:62: 1c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:83:4C:7B:67:3F:92:CB:F4:D6:DB:ED:6F:B0:D4:64:03:A1:3D:D7 X509v3 Authority Key Identifier: keyid:4D:76:F7:93:E2:B1:29:F4:6F:8F:C9:0E:21:F9:D0:FE:AF:10:D0:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXb3k-KxKfRvj8kOIfnQ_q8Q0EA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91834AD/0DE4AD0408FE11EA9833C578C4F9AE02/6FFF14F0695E11EFAF2AF785C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.137.0-103.87.139.255 IPv6: 2400:d4c0::/32 Signature Algorithm: sha256WithRSAEncryption 79:5a:03:a7:94:4b:7e:15:6a:04:30:84:17:57:04:57:e5:05: 45:12:94:1c:89:61:bd:fd:c1:01:f3:e0:54:ee:bb:21:df:56: 33:37:d3:a9:b6:ef:77:75:f7:0b:67:01:69:ef:bb:05:7e:00: f1:6b:64:56:38:62:b1:34:b4:7c:af:ae:af:fe:5b:2b:4a:a4: d4:c9:c4:89:ec:16:8d:8d:da:48:d0:d7:c1:4d:cf:7c:db:07: df:62:83:f5:fa:62:0a:fa:39:b7:e9:58:21:f3:0f:cd:1d:a3: e9:84:42:19:2e:43:19:ee:04:d5:c0:2c:09:18:e5:93:ac:2e: 2c:5d:1f:d7:ad:e3:d3:c8:2c:b1:60:35:34:a2:a1:4d:42:e4: 47:6d:19:48:40:c1:25:1d:14:05:ea:d0:29:7b:54:49:20:6b: 47:d1:f7:d5:b0:71:40:fb:e5:1a:24:6c:bd:fc:ab:81:1e:fc: d5:1c:e0:a9:d1:5a:1c:ce:03:5a:83:4a:3a:26:0a:37:28:ed: d9:40:34:9a:c8:c7:b4:4f:71:e4:b1:e8:cb:a1:a7:79:f8:70: 23:95:69:64:18:fe:82:66:33:89:a2:d2:65:18:c3:92:85:42: 4f:fb:e1:ba:79:b9:1f:4e:57:8d:9a:a7:65:00:9f:3c:db:fd: 52:d8:2a:f5 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM0QUQxMTAvBgNVBAUTKDRENzZGNzkzRTJCMTI5RjQ2RjhGQzkwRTIxRjlEMEZF QUYxMEQwNDAwHhcNMjUxMDMxMTA0MzAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0OTJiNS0yMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoEldX/ly4zj49F4mocfyqoR6bqc5Pdb0B8BvUO8183q4w4rNrppEwtRhwVE /uHOykIxPMyJHp4PEtPp+O2iIJYOXY3fIRc/ooiYPH6ioffLaEY0qx6+vOMvFJom UfniF/EVmBOGHLaDv41HdyWpy+4Ygz7v8IvbwaLSX0HSgenPOaBFdEU+bY255zGC 19un2n0Tg6wMUC+TQ3mNLiByZC4Hmd2rCpXM4mFSxi+75cb0yP7hYYKxYapftNcz w5upoWK7gGiIGEAONKOjZMDCJ6E+KF4msjoKJU8kbg9DVaFx8hCnkZ2wqYN0ImTx JQ+aGVx//x4izrEZDXk1emIcuwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEODTHtn P5LL9Nbb7W+w1GQDoT3XMB8GA1UdIwQYMBaAFE1295PisSn0b4/JDiH50P6vENBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzRBRC8wREU0QUQwNDA4 RkUxMUVBOTgzM0M1NzhDNEY5QUUwMi9UWGIzay1LeEtmUnZqOGtPSWZuUV9xOFEw RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RYYjNrLUt4S2ZSdmo4a09JZm5RX3E4UTBFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM0QUQvMERFNEFEMDQwOEZFMTFFQTk4MzNDNTc4QzRGOUFFMDIvNkZGRjE0RjA2 OTVFMTFFRkFGMkFGNzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAGdXiQMEAmdXiDANBAIAAjAHAwUAJADUwDANBgkqhkiG 9w0BAQsFAAOCAQEAeVoDp5RLfhVqBDCEF1cEV+UFRRKUHIlhvf3BAfPgVO67Id9W MzfTqbbvd3X3C2cBae+7BX4A8WtkVjhisTS0fK+ur/5bK0qk1MnEiewWjY3aSNDX wU3PfNsH32KD9fpiCvo5t+lYIfMPzR2j6YRCGS5DGe4E1cAsCRjlk6wuLF0f163j 08gssWA1NKKhTULkR20ZSEDBJR0UBerQKXtUSSBrR9H31bBxQPvlGiRsvfyrgR78 1RzgqdFaHM4DWoNKOiYKNyjt2UA0msjHtE9x5LHoy6GnefhwI5VpZBj+gmYziaLS ZRjDkoVCT/vhunm5H05XjZqnZQCfPNv9Utgq9Q== -----END CERTIFICATE-----Generated at Thu Nov 6 01:52:15 2025 by rpki-client