$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/A216EC4E3C7911F0B25C0585C4F9AE02.roa File: A216EC4E3C7911F0B25C0585C4F9AE02.roa (raw, json) Hash identifier: nquT/09oC9y86UpS1NG8mkzcK6ZGDlvejeWLZuLguFA= Subject key identifier: 44:68:01:EE:41:78:8D:1C:44:0D:A7:C7:66:8C:2D:DE:C6:EF:D6:E5 Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 023A Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/A216EC4E3C7911F0B25C0585C4F9AE02.roa Signing time: Mon 03 Nov 2025 02:17:24 +0000 ROA not before: Mon 03 Nov 2025 02:17:24 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 34985 IP address blocks: 103.96.0.0/24 maxlen: 24 103.96.2.0/24 maxlen: 24 103.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Nov 3 02:17:24 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690810b3-f980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:98:3f:cb:c0:a8:18:dc:9e:c7:59:63:60:3b: ab:6e:3b:39:d6:7c:95:27:2a:22:f3:2d:ba:22:4f: 4e:f7:aa:a7:ca:9c:53:ae:c9:9f:a6:e4:11:0b:3e: b3:6c:7f:b9:71:b9:9b:8f:f2:24:9c:d4:12:3c:cb: 23:c6:5b:05:ed:3e:98:e7:94:f4:bd:7b:63:dd:97: 97:de:cd:48:17:bf:70:df:45:9e:ae:04:fd:17:fa: 89:38:79:e2:ec:64:39:d7:f2:a1:a1:df:b7:58:00: 24:36:cc:23:36:df:77:e7:7e:40:ca:96:f5:6b:7f: 9e:d9:b8:a9:58:34:47:64:51:2b:00:df:58:19:02: 0e:09:39:0b:01:b3:6b:cd:d3:eb:8c:42:55:92:1a: 09:16:d2:ea:88:2f:a0:35:62:3a:4f:79:4d:12:d1: ea:79:9d:6c:a4:64:16:d2:75:b1:9a:64:fa:6d:4b: 45:43:44:9e:47:d8:7b:8e:cb:16:ea:44:d5:fa:4e: 8e:5b:0f:46:50:18:00:cc:38:ae:5a:0b:4a:40:41: 08:7c:a7:f5:83:5d:52:39:64:10:ee:98:ec:4d:6b: 5a:02:a9:df:eb:54:bc:20:92:fe:c2:26:70:22:dc: 4c:59:13:c8:23:64:85:ea:8c:f0:66:e1:1b:0b:7a: 92:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:68:01:EE:41:78:8D:1C:44:0D:A7:C7:66:8C:2D:DE:C6:EF:D6:E5 X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/A216EC4E3C7911F0B25C0585C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.0.0/24 103.96.2.0/23 Signature Algorithm: sha256WithRSAEncryption b0:d2:2d:49:7e:f0:61:52:fc:73:89:17:5a:59:7c:f1:00:9e: 7b:e8:04:db:66:1d:86:58:e5:20:3b:cf:c2:05:60:87:b8:30: dd:92:77:a2:1e:49:80:fb:0d:05:ca:7c:eb:d6:17:aa:20:f0: c7:8f:9d:37:6f:46:6e:bf:46:bf:ec:69:26:92:94:1d:c4:56: b2:8f:2c:01:1d:cb:7c:cd:30:00:aa:62:22:5c:d1:3a:cf:5a: 12:1a:a3:88:d3:0a:96:c6:82:d8:cb:05:c8:88:8f:a3:5a:77: 04:5b:15:fd:70:18:e8:4c:04:17:6e:ca:72:e6:9a:ee:72:4b: e2:1e:d7:02:c3:d3:66:54:61:fd:24:8f:a0:56:b1:bc:3a:37: 77:c0:5f:39:45:85:fe:7d:5b:12:8c:d3:49:69:aa:b6:5d:75: 8b:93:2d:8f:10:79:c3:52:87:f1:1c:ac:c2:34:e4:14:f6:2f: 0e:94:2c:d6:1c:71:af:a1:64:f3:9a:bc:bb:0c:78:a1:c1:4a: e8:d2:73:a4:88:d5:72:cb:9e:dd:2f:ce:a1:2e:43:34:19:c4: b3:b4:f5:fe:b3:8e:93:0e:2c:92:7c:52:58:74:3a:6d:98:f4: 4e:a1:af:02:25:ba:88:3f:aa:bc:d4:c3:43:b9:27:43:c2:0b: a9:46:23:41 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUxMTAzMDIxNzI0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MTBiMy1mOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpg/y8CoGNyex1ljYDurbjs51nyVJyoi8y26Ik9O96qnypxTrsmfpuQRCz6z bH+5cbmbj/IknNQSPMsjxlsF7T6Y55T0vXtj3ZeX3s1IF79w30WergT9F/qJOHni 7GQ51/Khod+3WAAkNswjNt93535Aypb1a3+e2bipWDRHZFErAN9YGQIOCTkLAbNr zdPrjEJVkhoJFtLqiC+gNWI6T3lNEtHqeZ1spGQW0nWxmmT6bUtFQ0SeR9h7jssW 6kTV+k6OWw9GUBgAzDiuWgtKQEEIfKf1g11SOWQQ7pjsTWtaAqnf61S8IJL+wiZw ItxMWRPII2SF6ozwZuEbC3qSPQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFERoAe5B eI0cRA2nx2aMLd7G79blMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNUZBMzZFMzQ4OTIzMTFFREJDQTI5NjEzQzRGOUFFMDIvQTIxNkVDNEUz Qzc5MTFGMEIyNUMwNTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnYAADBAFnYAIwDQYJKoZIhvcNAQELBQADggEBALDSLUl+ 8GFS/HOJF1pZfPEAnnvoBNtmHYZY5SA7z8IFYIe4MN2Sd6IeSYD7DQXKfOvWF6og 8MePnTdvRm6/Rr/saSaSlB3EVrKPLAEdy3zNMACqYiJc0TrPWhIao4jTCpbGgtjL BciIj6NadwRbFf1wGOhMBBduynLmmu5yS+Ie1wLD02ZUYf0kj6BWsbw6N3fAXzlF hf59WxKM00lpqrZddYuTLY8QecNSh/EcrMI05BT2Lw6ULNYcca+hZPOavLsMeKHB SujSc6SI1XLLnt0vzqEuQzQZxLO09f6zjpMOLJJ8Ulh0Om2Y9E6hrwIluog/qrzU w0O5J0PCC6lGI0E= -----END CERTIFICATE-----Generated at Wed Nov 5 19:26:51 2025 by rpki-client