$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/A8D327E4BBC711ED8DF23C40C4F9AE02.roa File: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (raw, json) Hash identifier: m/OLPsM6ynBix8nuh4bjX0QKg8+81tb5WXXf1UHLuyg= Subject key identifier: E7:21:20:0B:85:86:95:C1:68:44:0F:A1:E4:36:C2:24:B2:74:BE:31 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 01FA Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/A8D327E4BBC711ED8DF23C40C4F9AE02.roa Signing time: Sat 01 Nov 2025 03:17:39 +0000 ROA not before: Sat 01 Nov 2025 03:17:39 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136000 IP address blocks: 103.79.104.0/22 maxlen: 22 103.156.156.0/23 maxlen: 23 202.91.44.0/22 maxlen: 22 2400:3740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Nov 1 03:17:39 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69057bd2-bf08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:28:86:fa:82:bb:59:a3:0c:b8:2f:f0:d4:ed: a3:35:d6:d4:93:b7:81:2a:34:60:84:58:38:5a:14: 4d:0d:45:80:d5:3b:1a:cc:32:d9:dc:f0:20:74:e2: 8c:15:d2:ae:7d:0b:1e:7b:42:2d:0a:cc:fa:ea:23: 7f:86:f8:e5:f1:dc:36:16:cc:82:8b:50:4f:ff:eb: 1f:4f:7f:17:c9:21:b1:2b:5a:27:a9:44:39:e8:14: ae:05:54:7e:0a:8d:6f:92:ab:08:2e:e0:8e:b6:01: e0:df:63:38:9e:60:42:de:35:1f:df:d1:48:8e:a5: 4a:bc:34:23:20:9c:29:97:b2:a5:31:f2:64:4f:c3: bf:07:d8:b8:5b:10:8c:a1:fd:65:18:d1:45:61:89: ae:d5:cd:3b:96:4c:1d:f1:70:c3:48:84:29:1b:09: 83:75:a4:ac:34:5d:f1:d6:d6:21:1e:e6:d1:90:a4: 67:12:58:50:b5:e7:c0:0d:2c:59:10:ed:b4:b5:e4: 22:aa:55:a9:00:f1:39:9c:4c:55:b2:6d:48:4e:64: ab:b4:e1:d8:5b:68:db:d5:2a:41:20:a9:3b:ca:0f: fd:69:09:ab:44:0e:99:1e:cf:57:66:70:7a:98:36: a7:d3:a1:cd:6e:94:75:b7:41:d2:6e:d5:66:cb:42: 45:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:21:20:0B:85:86:95:C1:68:44:0F:A1:E4:36:C2:24:B2:74:BE:31 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/A8D327E4BBC711ED8DF23C40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.104.0/22 103.156.156.0/23 202.91.44.0/22 IPv6: 2400:3740::/32 Signature Algorithm: sha256WithRSAEncryption c1:eb:17:65:a5:42:64:db:49:3c:85:47:43:5d:22:cb:69:33: 40:4b:0b:32:28:23:c9:40:8f:5a:3d:d2:dc:80:79:9a:e9:84: 7e:9f:da:6c:a1:27:71:23:0a:e1:17:82:b2:41:47:c4:c1:3f: d1:ad:9e:b3:03:7e:4e:6b:66:ad:72:78:14:1b:28:44:63:1f: ff:8b:1a:80:4a:88:d8:56:61:c1:56:2f:90:95:b7:69:f6:7a: 3f:f2:54:30:5e:c8:0d:ad:bc:d4:e8:95:5c:c9:86:c4:54:74: e5:b9:22:32:46:3f:e9:83:cc:07:dc:6d:7b:7d:91:7a:60:ab: 4c:14:af:20:7e:0a:fd:81:56:5d:d1:23:6a:66:50:de:b5:48: 44:b9:2e:1b:b9:bd:35:c5:ef:27:d4:a4:2e:fd:e4:c8:4b:44: 35:11:49:33:06:a2:83:a7:21:43:d2:21:b3:ee:09:b6:95:61: 5d:66:ae:32:a8:ce:f8:2a:8b:f0:b0:c6:d2:a5:5c:05:33:24: e1:8d:dc:58:40:d8:60:ee:f0:ee:30:fc:33:3a:43:f3:be:84: e4:f1:d6:aa:3c:ba:51:8d:81:2c:6e:fc:8a:31:09:c0:06:b9: a7:55:9b:5b:73:ca:07:41:db:b3:5d:a8:5d:7a:52:6c:43:9e: 09:ee:eb:62 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjUxMTAxMDMxNzM5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA1N2JkMi1iZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiiG+oK7WaMMuC/w1O2jNdbUk7eBKjRghFg4WhRNDUWA1TsazDLZ3PAgdOKM FdKufQsee0ItCsz66iN/hvjl8dw2FsyCi1BP/+sfT38XySGxK1onqUQ56BSuBVR+ Co1vkqsILuCOtgHg32M4nmBC3jUf39FIjqVKvDQjIJwpl7KlMfJkT8O/B9i4WxCM of1lGNFFYYmu1c07lkwd8XDDSIQpGwmDdaSsNF3x1tYhHubRkKRnElhQtefADSxZ EO20teQiqlWpAPE5nExVsm1ITmSrtOHYW2jb1SpBIKk7yg/9aQmrRA6ZHs9XZnB6 mDan06HNbpR1t0HSbtVmy0JFMwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFOchIAuF hpXBaEQPoeQ2wiSydL4xMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRBMTMvQkI2QzlCNTRCOTgwMTFFREEzN0IxQjY1QzRGOUFFMDIvQThEMzI3RTRC QkM3MTFFRDhERjIzQzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnT2gDBAFnnJwDBALKWywwDQQCAAIwBwMFACQAN0AwDQYJ KoZIhvcNAQELBQADggEBAMHrF2WlQmTbSTyFR0NdIstpM0BLCzIoI8lAj1o90tyA eZrphH6f2myhJ3EjCuEXgrJBR8TBP9GtnrMDfk5rZq1yeBQbKERjH/+LGoBKiNhW YcFWL5CVt2n2ej/yVDBeyA2tvNTolVzJhsRUdOW5IjJGP+mDzAfcbXt9kXpgq0wU ryB+Cv2BVl3RI2pmUN61SES5Lhu5vTXF7yfUpC795MhLRDURSTMGooOnIUPSIbPu CbaVYV1mrjKozvgqi/CwxtKlXAUzJOGN3FhA2GDu8O4w/DM6Q/O+hOTx1qo8ulGN gSxu/IoxCcAGuadVm1tzygdB27NdqF16UmxDngnu62I= -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:18 2025 by rpki-client