$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa File: E26173CE050611EAA0470B49C4F9AE02.roa (raw, json) Hash identifier: d9r/K3Z/+ZpfN6K0oGQ4V/Gvo2rBimX6eqfxYBr52AU= Subject key identifier: 1E:8A:5F:E0:D4:C5:2E:26:EE:4D:47:AE:FF:EA:1E:13:84:5A:1E:22 Certificate issuer: /CN=A91B3CB5/serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Certificate serial: 0CBE Authority key identifier: 13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa Signing time: Wed 22 Oct 2025 19:07:19 +0000 ROA not before: Wed 22 Oct 2025 19:07:19 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 56132 IP address blocks: 43.246.232.0/22 maxlen: 22 49.127.0.0/16 maxlen: 16 59.191.208.0/20 maxlen: 20 59.191.220.0/22 maxlen: 22 103.35.228.0/22 maxlen: 22 118.138.0.0/16 maxlen: 16 118.138.232.0/21 maxlen: 21 118.138.240.0/20 maxlen: 20 118.138.240.0/21 maxlen: 21 118.139.0.0/17 maxlen: 17 203.6.141.0/24 maxlen: 24 2404:2400::/32 maxlen: 32 2404:2400::/40 maxlen: 40 2404:2400::/44 maxlen: 44 2404:2400::/48 maxlen: 48 2404:2400:100::/40 maxlen: 40 2404:2400:100::/44 maxlen: 44 2404:2400:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5, serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Validity Not Before: Oct 22 19:07:19 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f92b66-5029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:78:b5:b5:be:a7:af:03:13:23:64:63:6c:c6: 84:0f:a1:b6:f6:fd:8e:b5:94:ec:fb:3c:e2:4a:79: 33:00:16:6e:14:aa:57:cf:d3:c2:e0:41:c1:2b:ab: c8:f7:e3:2a:56:53:8a:51:6a:86:a1:da:85:21:54: b2:87:9f:3a:cb:97:5a:30:43:2f:b2:d1:81:85:4f: 94:54:be:12:1b:8b:42:b5:26:2e:eb:a3:1c:34:61: 07:ee:08:de:78:10:4b:fa:20:18:a9:ae:ab:7a:70: 59:75:2a:4f:d1:9c:39:e9:44:ad:b0:13:c8:42:14: 56:6c:42:b6:64:1c:45:d1:62:55:b9:72:49:64:07: 0f:fd:6a:56:c5:0f:d8:c4:45:05:0f:99:51:b8:3a: 59:55:2d:a9:30:3b:1f:f5:10:dc:0f:90:76:c5:2b: 72:05:ec:3b:80:f9:5e:c0:a3:ab:7d:91:8b:6f:12: 0f:81:7e:ce:31:bd:00:c1:bd:87:5e:4b:a0:ec:41: 51:8f:d4:e8:d3:74:5d:e8:bb:13:6d:1d:60:4f:d4: 4b:d6:c0:59:ef:6e:d7:d9:d6:64:18:7d:0a:cb:9b: 3c:c1:69:5d:53:42:cf:a8:17:e4:7c:c3:bd:e7:db: c9:33:8b:df:b4:90:cf:76:24:d0:3a:a3:1d:d6:96: 68:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:8A:5F:E0:D4:C5:2E:26:EE:4D:47:AE:FF:EA:1E:13:84:5A:1E:22 X509v3 Authority Key Identifier: keyid:13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.232.0/22 49.127.0.0/16 59.191.208.0/20 103.35.228.0/22 118.138.0.0-118.139.127.255 203.6.141.0/24 IPv6: 2404:2400::/32 Signature Algorithm: sha256WithRSAEncryption c8:20:33:b8:ef:13:5c:3f:c7:ab:24:ba:f6:f9:9e:05:88:7f: 38:a2:17:1e:eb:3c:6d:b9:aa:2b:3b:60:29:e2:7a:50:df:18: 5a:bd:08:c5:09:78:d3:35:a8:0a:24:9e:39:f0:bf:fb:ee:df: a0:f6:c8:de:64:72:5d:68:3e:c6:95:4e:47:dc:25:c4:9d:b4: 45:b5:60:a7:7e:8c:b3:87:63:1f:23:66:ce:37:1a:ff:9d:83: c1:61:1b:ee:ee:7f:b4:3e:74:ea:e9:a0:33:c7:7b:2e:69:0f: 70:b6:0f:28:85:ea:15:d7:8f:ba:de:d3:d7:57:50:2d:13:e1: 14:4e:b6:07:c1:e3:39:47:59:b8:4e:2d:15:ed:96:d7:3b:32: 28:f7:72:5e:fa:96:00:ba:7c:cb:8f:0b:80:10:dc:fe:5a:d1: f3:4e:45:80:a9:b1:70:52:8d:8a:20:8b:b1:68:f4:66:4d:a2: 80:c2:70:1d:5c:17:e5:58:a8:e2:91:43:b9:a4:5a:38:3e:e4: 1c:52:0f:db:7d:be:ec:0c:e0:64:a3:53:74:8e:5d:a1:77:ad: 02:c5:07:4f:bf:16:06:11:7b:f2:ab:87:13:71:b1:0c:8a:c8: a3:64:b8:03:61:2b:0d:f0:a5:2e:a2:5d:6f:cc:44:7d:70:ea: 15:f9:68:2e -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQjUxMTAvBgNVBAUTKDEzNTVENTE4N0QyRTYzRDdFNkQ0OTA3OEQ4RTcxRkEw NTFDNDU2RTMwHhcNMjUxMDIyMTkwNzE5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5MmI2Ni01MDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtni1tb6nrwMTI2RjbMaED6G29v2OtZTs+zziSnkzABZuFKpXz9PC4EHBK6vI 9+MqVlOKUWqGodqFIVSyh586y5daMEMvstGBhU+UVL4SG4tCtSYu66McNGEH7gje eBBL+iAYqa6renBZdSpP0Zw56UStsBPIQhRWbEK2ZBxF0WJVuXJJZAcP/WpWxQ/Y xEUFD5lRuDpZVS2pMDsf9RDcD5B2xStyBew7gPlewKOrfZGLbxIPgX7OMb0Awb2H Xkug7EFRj9To03Rd6LsTbR1gT9RL1sBZ727X2dZkGH0Ky5s8wWldU0LPqBfkfMO9 59vJM4vftJDPdiTQOqMd1pZozwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFB6KX+DU xS4m7k1Hrv/qHhOEWh4iMB8GA1UdIwQYMBaAFBNV1Rh9LmPX5tSQeNjnH6BRxFbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NCNS82MzI2NTBGODA1 MDUxMUVBQUE5MzRDNDNDNEY5QUUwMi9FMVhWR0gwdVk5Zm0xSkI0Mk9jZm9GSEVW dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UxWFZHSDB1WTlmbTFKQjQyT2Nmb0ZIRVZ1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQjUvNjMyNjUwRjgwNTA1MTFFQUFBOTM0QzQzQzRGOUFFMDIvRTI2MTczQ0Uw NTA2MTFFQUEwNDcwQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIr9ugDAwAxfwMEBDu/0AMEAmcj5DALAwMBdooDBAd2iwAD BADLBo0wDQQCAAIwBwMFACQEJAAwDQYJKoZIhvcNAQELBQADggEBAMggM7jvE1w/ x6skuvb5ngWIfziiFx7rPG25qis7YCnielDfGFq9CMUJeNM1qAoknjnwv/vu36D2 yN5kcl1oPsaVTkfcJcSdtEW1YKd+jLOHYx8jZs43Gv+dg8FhG+7uf7Q+dOrpoDPH ey5pD3C2DyiF6hXXj7re09dXUC0T4RROtgfB4zlHWbhOLRXtltc7Mij3cl76lgC6 fMuPC4AQ3P5a0fNORYCpsXBSjYogi7Fo9GZNooDCcB1cF+VYqOKRQ7mkWjg+5BxS D9t9vuwM4GSjU3SOXaF3rQLFB0+/FgYRe/KrhxNxsQyKyKNkuANhKw3wpS6iXW/M RH1w6hX5aC4= -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:06 2025 by rpki-client