$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/B856D46C3B9611F0B2363C74C4F9AE02.roa File: B856D46C3B9611F0B2363C74C4F9AE02.roa (raw, json) Hash identifier: vJol1krow8PdsEwu7JYV6FuoUKKSLBsRBwACaYSuWtU= Subject key identifier: 59:5C:05:F7:3A:A0:94:83:8D:EA:4A:E5:AB:EA:E4:E5:C7:0E:79:C3 Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 023B Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/B856D46C3B9611F0B2363C74C4F9AE02.roa Signing time: Mon 03 Nov 2025 02:17:24 +0000 ROA not before: Mon 03 Nov 2025 02:17:24 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 395793 IP address blocks: 103.101.222.0/24 maxlen: 24 103.101.223.0/24 maxlen: 24 113.212.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Nov 3 02:17:24 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690810b4-a14a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8f:74:36:c0:75:69:00:c0:73:ea:62:84:c4: 42:86:12:46:5f:67:7c:61:90:96:67:44:f4:e6:07: 13:7a:17:e6:11:cb:09:aa:07:6d:6b:06:35:58:ea: 24:22:ab:47:27:ff:dd:a1:69:f4:41:d2:be:ea:c3: 81:45:49:34:f7:d9:74:76:6d:ea:d5:3e:bf:f6:0e: 4f:f1:c2:61:8d:76:04:77:2a:e7:66:9f:82:0b:07: 10:45:b8:41:7a:f3:af:80:bb:86:50:f0:9e:26:c2: 6c:54:9c:32:d5:3f:51:b5:d2:b2:48:d9:cb:03:6d: da:ad:ff:b3:d2:b6:44:dd:46:1b:de:b6:17:cb:85: 9a:fe:8a:c0:b3:af:fc:b4:fb:87:44:5e:0c:e1:6c: 7f:41:29:29:68:99:c1:ee:57:44:90:83:0a:38:12: 97:23:cc:aa:ea:37:02:0b:98:a8:98:71:a7:f3:2c: 1c:39:cd:91:11:98:b3:3a:11:fd:88:e6:87:5f:32: 7b:62:d4:b9:87:fc:3d:a7:d9:1f:e7:b0:bb:bc:b7: 44:4d:ea:9d:e4:8c:61:7f:e9:54:89:ab:69:b2:cc: e4:31:87:9c:54:c7:47:c1:24:ce:20:b3:e3:c0:51: 3f:91:43:44:7d:57:11:bf:23:97:4a:ff:14:9d:7b: 25:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:5C:05:F7:3A:A0:94:83:8D:EA:4A:E5:AB:EA:E4:E5:C7:0E:79:C3 X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/B856D46C3B9611F0B2363C74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.222.0/23 113.212.89.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:b7:a4:86:c8:55:d6:20:ba:cb:07:a4:05:a4:89:65:f2:69: 23:5c:82:03:db:f1:99:40:80:97:46:24:6b:e0:9f:28:e9:f7: 7b:90:9a:c3:4c:09:e4:ca:6b:8e:af:8e:46:c0:cd:80:97:f3: 67:ce:a0:bf:93:04:5c:7b:55:13:02:74:14:38:7b:52:be:b1: 5c:52:e2:d5:5d:da:bb:f0:44:65:6f:ce:f0:a3:0f:87:cb:d2: 80:be:9a:28:c7:9d:54:1c:7b:89:aa:b5:3e:f1:1a:fc:c9:11: 3a:c5:81:82:8e:06:05:cc:aa:6a:d4:00:c0:a9:56:36:f5:a8: 14:64:c1:e3:42:56:6c:cb:42:2b:38:d9:b8:60:43:71:bc:df: 12:66:81:80:94:56:4d:3a:fb:fb:e6:59:a8:c6:69:2e:a6:10: 01:22:4f:81:37:0c:3c:04:46:f5:c8:ff:9d:6a:bc:9d:c5:a5: 8a:f4:bd:31:ca:9e:f0:53:cd:c3:33:42:5b:f1:3c:92:ab:0b: 0b:fd:d8:c5:f4:2c:80:01:29:c3:51:aa:db:ea:6c:cd:59:df: 52:26:8e:6a:ca:8f:87:b5:4f:ee:8c:3a:f4:f1:04:4a:16:49: a5:06:2a:b3:65:51:e0:3c:2f:03:03:d4:83:8f:b6:79:8b:fe: ab:17:a4:dc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUxMTAzMDIxNzI0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MTBiNC1hMTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuo90NsB1aQDAc+pihMRChhJGX2d8YZCWZ0T05gcTehfmEcsJqgdtawY1WOok IqtHJ//doWn0QdK+6sOBRUk099l0dm3q1T6/9g5P8cJhjXYEdyrnZp+CCwcQRbhB evOvgLuGUPCeJsJsVJwy1T9RtdKySNnLA23arf+z0rZE3UYb3rYXy4Wa/orAs6/8 tPuHRF4M4Wx/QSkpaJnB7ldEkIMKOBKXI8yq6jcCC5iomHGn8ywcOc2REZizOhH9 iOaHXzJ7YtS5h/w9p9kf57C7vLdETeqd5Ixhf+lUiatpsszkMYecVMdHwSTOILPj wFE/kUNEfVcRvyOXSv8UnXslZQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFlcBfc6 oJSDjepK5avq5OXHDnnDMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNUZBMzZFMzQ4OTIzMTFFREJDQTI5NjEzQzRGOUFFMDIvQjg1NkQ0NkMz Qjk2MTFGMEIyMzYzQzc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnZd4DBABx1FkwDQYJKoZIhvcNAQELBQADggEBAJ+3pIbI VdYgussHpAWkiWXyaSNcggPb8ZlAgJdGJGvgnyjp93uQmsNMCeTKa46vjkbAzYCX 82fOoL+TBFx7VRMCdBQ4e1K+sVxS4tVd2rvwRGVvzvCjD4fL0oC+mijHnVQce4mq tT7xGvzJETrFgYKOBgXMqmrUAMCpVjb1qBRkweNCVmzLQis42bhgQ3G83xJmgYCU Vk06+/vmWajGaS6mEAEiT4E3DDwERvXI/51qvJ3FpYr0vTHKnvBTzcMzQlvxPJKr Cwv92MX0LIABKcNRqtvqbM1Z31ImjmrKj4e1T+6MOvTxBEoWSaUGKrNlUeA8LwMD 1IOPtnmL/qsXpNw= -----END CERTIFICATE-----Generated at Wed Nov 5 12:03:28 2025 by rpki-client