$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/80F32E7C2C5511EF83ECC535C4F9AE02.roa File: 80F32E7C2C5511EF83ECC535C4F9AE02.roa (raw, json) Hash identifier: cjQ8z/DvzlqVIyc0XMrCXb6k6xXs+7KEwBIQYpqVtTw= Subject key identifier: A3:78:0B:9C:50:ED:74:44:33:88:DA:13:11:30:BF:09:7D:8D:78:64 Certificate issuer: /CN=A91A5EBA/serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Certificate serial: 0106 Authority key identifier: 15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/80F32E7C2C5511EF83ECC535C4F9AE02.roa Signing time: Mon 03 Nov 2025 05:20:38 +0000 ROA not before: Mon 03 Nov 2025 05:20:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136980 IP address blocks: 103.101.42.0/24 maxlen: 24 2001:df2:8f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EBA, serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Validity Not Before: Nov 3 05:20:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69083ba6-28d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b8:c7:99:a4:60:bf:62:92:e2:e3:39:ad:e7: 34:31:54:59:92:46:13:d6:18:2b:cf:35:4f:89:57: 1c:fa:3c:7c:b5:f0:63:23:e2:07:a1:a8:37:53:7e: d2:a4:80:e4:13:9b:7b:a8:81:0a:b6:14:4b:95:14: f5:e5:47:e4:d3:77:74:cd:14:4a:15:6c:e2:29:84: da:cf:48:71:7b:c4:02:6c:42:fd:2f:8d:4d:16:57: 01:ee:1f:b6:0b:60:02:f8:28:a9:47:9f:2e:5a:68: 49:97:6c:66:a8:ee:47:5f:8c:73:3c:50:83:77:73: 41:f9:bf:59:99:12:35:f2:14:88:34:6c:0b:e2:d3: 09:3b:90:52:d9:03:cb:5a:65:c2:7f:19:ff:f9:8b: db:21:a8:ee:81:e1:c0:81:44:f4:08:d3:1c:45:87: 51:f4:00:e0:5c:cf:98:48:d3:bf:74:cb:02:d0:ae: 98:a9:f6:59:08:db:c1:26:0b:81:62:c3:13:e5:48: b9:c3:df:61:06:c1:e6:b1:6c:f0:83:94:f5:e1:81: 0e:b1:b7:4d:49:38:e1:4c:58:a1:22:b0:07:61:d2: 5d:29:fe:50:61:1f:1e:67:c2:db:d5:25:f2:de:ea: 4b:07:d8:fc:92:8f:15:c3:3b:5f:ab:7c:92:7c:18: 62:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:78:0B:9C:50:ED:74:44:33:88:DA:13:11:30:BF:09:7D:8D:78:64 X509v3 Authority Key Identifier: keyid:15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/80F32E7C2C5511EF83ECC535C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.42.0/24 IPv6: 2001:df2:8f00::/48 Signature Algorithm: sha256WithRSAEncryption 3e:3d:aa:4b:0b:93:24:45:1e:6d:a7:ea:c9:ed:dc:ed:2c:e4: 6f:1b:df:4f:6a:fe:c1:57:65:9d:81:3c:93:eb:27:81:c0:34: 8d:d9:84:90:6b:6f:d2:db:98:e0:74:d6:27:22:42:77:1e:a4: 04:71:44:a1:c6:65:c7:44:31:a2:9b:73:39:29:94:1d:85:e5: fd:52:72:48:f3:62:25:3d:6c:4f:6e:58:fe:6a:1b:77:d7:fb: 30:09:16:b9:ca:92:d4:dc:67:33:64:88:12:ce:5d:aa:76:23: 4e:07:77:1a:55:cc:e0:ad:e8:a8:0f:a6:7f:42:ee:0d:0b:22: 16:92:85:e8:47:ea:20:c3:5c:c7:6f:e2:a5:c0:44:03:75:88: 1b:02:0e:30:6f:e5:f6:ae:9c:72:86:81:bc:5d:22:92:f9:ac: 34:7c:1c:8d:e2:5a:40:a4:95:14:f7:f5:74:7a:59:42:53:77: 05:10:a7:7a:b8:c0:96:a5:ce:a6:07:59:5e:9a:d4:d3:0e:3d: 18:25:6c:27:15:4b:ed:ef:ab:be:1f:48:cd:1c:a9:c2:c6:98: 80:e8:27:46:1c:1c:16:0d:9c:6d:7a:ad:f9:96:65:2d:fb:fa: 15:92:b5:02:c7:be:c6:1a:7b:3a:34:d1:65:c5:36:37:5d:c5: ad:5c:f3:79 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFQkExMTAvBgNVBAUTKDE1NkQ0QTlDNkYxNUVCMkI0QjNGMzY3RDY5RkFBMjUx MDEyODA3ODgwHhcNMjUxMTAzMDUyMDM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4M2JhNi0yOGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7jHmaRgv2KS4uM5rec0MVRZkkYT1hgrzzVPiVcc+jx8tfBjI+IHoag3U37S pIDkE5t7qIEKthRLlRT15Ufk03d0zRRKFWziKYTaz0hxe8QCbEL9L41NFlcB7h+2 C2AC+CipR58uWmhJl2xmqO5HX4xzPFCDd3NB+b9ZmRI18hSINGwL4tMJO5BS2QPL WmXCfxn/+YvbIajugeHAgUT0CNMcRYdR9ADgXM+YSNO/dMsC0K6YqfZZCNvBJguB YsMT5Ui5w99hBsHmsWzwg5T14YEOsbdNSTjhTFihIrAHYdJdKf5QYR8eZ8Lb1SXy 3upLB9j8ko8Vwztfq3ySfBhilQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKN4C5xQ 7XREM4jaExEwvwl9jXhkMB8GA1UdIwQYMBaAFBVtSpxvFesrSz82fWn6olEBKAeI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVCQS83MkU1NENGRTJD NTMxMUVGOTFCRjdDMzBDNEY5QUUwMi9GVzFLbkc4VjZ5dExQelo5YWZxaVVRRW9C NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZXMUtuRzhWNnl0TFB6WjlhZnFpVVFFb0I0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVFQkEvNzJFNTRDRkUyQzUzMTFFRjkxQkY3QzMwQzRGOUFFMDIvODBGMzJFN0My QzU1MTFFRjgzRUNDNTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnZSowDwQCAAIwCQMHACABDfKPADANBgkqhkiG9w0BAQsF AAOCAQEAPj2qSwuTJEUebafqye3c7SzkbxvfT2r+wVdlnYE8k+sngcA0jdmEkGtv 0tuY4HTWJyJCdx6kBHFEocZlx0QxoptzOSmUHYXl/VJySPNiJT1sT25Y/mobd9f7 MAkWucqS1NxnM2SIEs5dqnYjTgd3GlXM4K3oqA+mf0LuDQsiFpKF6EfqIMNcx2/i pcBEA3WIGwIOMG/l9q6ccoaBvF0ikvmsNHwcjeJaQKSVFPf1dHpZQlN3BRCnerjA lqXOpgdZXprU0w49GCVsJxVL7e+rvh9IzRypwsaYgOgnRhwcFg2cbXqt+ZZlLfv6 FZK1Ase+xhp7OjTRZcU2N13FrVzzeQ== -----END CERTIFICATE-----Generated at Wed Nov 5 18:10:10 2025 by rpki-client