$ rpki-client -vvf rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/3F5C47A0531411F0B5969F4DC4F9AE02.roa File: 3F5C47A0531411F0B5969F4DC4F9AE02.roa (raw, json) Hash identifier: fRP3NJ69rLlQTm+x/tKrEfvNNM+dik3rM5J3rzquHdo= Subject key identifier: 9C:0A:02:E2:0B:6C:D4:81:E8:3B:9E:47:F8:BE:DD:29:33:DA:20:0A Certificate issuer: /CN=A91A54FE/serialNumber=6FC70906FBA6F4539452091932C45FFA4D8572B8 Certificate serial: 013A Authority key identifier: 6F:C7:09:06:FB:A6:F4:53:94:52:09:19:32:C4:5F:FA:4D:85:72:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8cJBvum9FOUUgkZMsRf-k2Fcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/3F5C47A0531411F0B5969F4DC4F9AE02.roa Signing time: Mon 03 Nov 2025 04:49:00 +0000 ROA not before: Mon 03 Nov 2025 04:49:00 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 2764 IP address blocks: 203.20.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/b8cJBvum9FOUUgkZMsRf-k2Fcrg.crl rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/b8cJBvum9FOUUgkZMsRf-k2Fcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8cJBvum9FOUUgkZMsRf-k2Fcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:49:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A54FE, serialNumber=6FC70906FBA6F4539452091932C45FFA4D8572B8 Validity Not Before: Nov 3 04:49:00 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6908343c-1a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:2a:40:57:f9:c7:79:b7:62:2a:40:55:30:bc: 3c:67:eb:16:3d:ff:d1:8d:31:28:60:4b:b8:7d:99: c9:0c:a2:8c:ce:a4:70:f4:64:a2:c5:ab:a5:3e:a4: 77:eb:6a:c7:cd:54:7e:6e:ce:bb:1b:54:ee:61:25: ea:cc:da:b4:04:1f:bf:48:eb:6a:3c:98:14:3e:d5: d4:50:98:33:e2:bd:8e:97:57:6c:fe:2c:d8:62:06: e0:19:9a:e0:a4:6f:44:b1:c7:e1:a1:c5:a5:69:f0: 6a:f1:06:0a:d0:e5:52:b9:2d:0d:f7:57:9c:29:78: b0:f2:5a:e7:7f:26:4c:bc:57:fd:65:f0:53:a3:d2: 1a:44:9a:d5:b8:3c:8c:f6:ac:ae:3d:6c:f3:d5:ee: 90:20:dc:e3:55:5a:22:eb:8b:a8:5f:11:ff:4b:b8: 61:7c:94:3e:64:cd:5f:56:d5:7a:c1:10:e8:e6:d0: 2b:1e:de:27:e8:70:31:99:85:21:46:70:2f:16:58: 46:5c:7a:39:9e:77:fd:5c:8e:c9:f0:b5:0a:59:b4: 46:2c:b3:76:db:0b:7d:8f:20:1d:f2:8f:40:55:27: c6:37:d7:07:5b:54:41:b7:7d:ac:5a:7f:46:6d:c8: 88:03:d5:cf:d3:eb:e0:41:d4:ad:bb:13:1a:fb:47: 94:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:0A:02:E2:0B:6C:D4:81:E8:3B:9E:47:F8:BE:DD:29:33:DA:20:0A X509v3 Authority Key Identifier: keyid:6F:C7:09:06:FB:A6:F4:53:94:52:09:19:32:C4:5F:FA:4D:85:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/b8cJBvum9FOUUgkZMsRf-k2Fcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8cJBvum9FOUUgkZMsRf-k2Fcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/3F5C47A0531411F0B5969F4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.114.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:a7:0b:39:c1:6f:46:ea:20:80:f9:15:d8:b9:1f:4a:5f:b0: 83:8e:8f:64:c5:e7:78:81:3e:e8:a4:84:10:7c:60:bf:ea:42: 95:12:6c:15:f6:9d:c4:55:6c:af:d5:f3:97:3d:b3:89:8c:07: 2a:e2:68:27:0f:0a:13:8c:4f:46:ad:33:9c:03:77:17:33:07: cc:5b:c5:ae:04:8b:28:d5:5b:bd:a5:1a:72:a0:18:6b:00:75: 51:3a:a5:25:6c:7a:e8:99:ce:39:ba:9a:82:5b:2b:7a:47:b9: 8a:9e:cd:82:0f:b8:07:86:01:9d:75:e6:98:46:5d:2a:cc:34: df:43:3e:81:1a:a4:21:6a:2c:19:b3:22:ed:ee:99:b8:95:e4: 54:9e:44:c0:fe:07:12:bf:15:41:c6:1b:40:8c:17:d2:a9:3d: 26:7e:ff:95:97:3a:a5:6b:11:6e:5d:31:30:cf:9f:30:03:ba: 4e:63:b5:d8:19:3b:63:c2:2a:78:24:c8:8b:11:64:35:a2:3c: 36:46:b1:27:b0:07:c2:49:0c:d5:df:69:46:09:8d:e4:09:fa: 14:9b:e4:ae:94:1d:78:47:b5:19:9f:33:e1:10:fe:dc:30:cf: 5b:8c:18:79:0a:dc:42:09:f0:b2:b5:d8:ce:2a:c8:2e:52:bf: a2:c0:9f:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0RkUxMTAvBgNVBAUTKDZGQzcwOTA2RkJBNkY0NTM5NDUyMDkxOTMyQzQ1RkZB NEQ4NTcyQjgwHhcNMjUxMTAzMDQ0OTAwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MzQzYy0xYTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+CpAV/nHebdiKkBVMLw8Z+sWPf/RjTEoYEu4fZnJDKKMzqRw9GSixaulPqR3 62rHzVR+bs67G1TuYSXqzNq0BB+/SOtqPJgUPtXUUJgz4r2Ol1ds/izYYgbgGZrg pG9EscfhocWlafBq8QYK0OVSuS0N91ecKXiw8lrnfyZMvFf9ZfBTo9IaRJrVuDyM 9qyuPWzz1e6QINzjVVoi64uoXxH/S7hhfJQ+ZM1fVtV6wRDo5tArHt4n6HAxmYUh RnAvFlhGXHo5nnf9XI7J8LUKWbRGLLN22wt9jyAd8o9AVSfGN9cHW1RBt32sWn9G bciIA9XP0+vgQdStuxMa+0eUowIDAQABo4IClTCCApEwHQYDVR0OBBYEFJwKAuIL bNSB6DueR/i+3Skz2iAKMB8GA1UdIwQYMBaAFG/HCQb7pvRTlFIJGTLEX/pNhXK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTRGRS9ENjExN0RGNkY2 RTkxMUVFQURCRkZCNTJDNEY5QUUwMi9iOGNKQnZ1bTlGT1VVZ2taTXNSZi1rMkZj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4Y0pCdnVtOUZPVVVna1pNc1JmLWsyRmNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU0RkUvRDYxMTdERjZGNkU5MTFFRUFEQkZGQjUyQzRGOUFFMDIvM0Y1QzQ3QTA1 MzE0MTFGMEI1OTY5RjREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFHIwDQYJKoZIhvcNAQELBQADggEBAG+nCznBb0bqIID5 Fdi5H0pfsIOOj2TF53iBPuikhBB8YL/qQpUSbBX2ncRVbK/V85c9s4mMByriaCcP ChOMT0atM5wDdxczB8xbxa4EiyjVW72lGnKgGGsAdVE6pSVseuiZzjm6moJbK3pH uYqezYIPuAeGAZ115phGXSrMNN9DPoEapCFqLBmzIu3umbiV5FSeRMD+BxK/FUHG G0CMF9KpPSZ+/5WXOqVrEW5dMTDPnzADuk5jtdgZO2PCKngkyIsRZDWiPDZGsSew B8JJDNXfaUYJjeQJ+hSb5K6UHXhHtRmfM+EQ/twwz1uMGHkK3EIJ8LK12M4qyC5S v6LAnzE= -----END CERTIFICATE-----Generated at Wed Nov 5 19:33:02 2025 by rpki-client