$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/F6722FA6822411F088762570C4F9AE02.roa File: F6722FA6822411F088762570C4F9AE02.roa (raw, json) Hash identifier: /8oBd85iag7D5Z9xxRzsLHAKy8s7sxUZj9Wiitj8q2w= Subject key identifier: D9:62:A8:64:B2:7D:97:BF:0F:57:6D:34:17:3F:F9:1F:E4:53:98:E3 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0BA6 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/F6722FA6822411F088762570C4F9AE02.roa Signing time: Mon 03 Nov 2025 10:54:47 +0000 ROA not before: Mon 03 Nov 2025 10:54:47 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 202736 IP address blocks: 45.124.204.0/24 maxlen: 24 45.124.205.0/24 maxlen: 24 45.124.206.0/24 maxlen: 24 45.124.207.0/24 maxlen: 24 103.25.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 08:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2982 (0xba6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Nov 3 10:54:47 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=690889f7-5091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c7:0a:6b:c9:a2:13:db:6e:a0:9c:4c:b0:66: 46:8b:6b:29:31:56:e4:bd:4e:1d:97:73:48:a4:2f: 49:ce:c4:94:f8:04:0a:f9:e1:cf:8c:5c:70:f1:28: ba:59:f0:ee:af:9d:ee:dd:a9:93:3b:b3:bc:a2:06: 0c:6b:8c:af:99:3c:07:d6:d3:dd:0d:4d:d5:48:40: 2e:5c:63:b2:72:0a:29:4e:0c:45:7a:1b:8d:98:a9: f9:84:7e:ea:31:f0:fa:8f:f2:05:39:67:2c:06:fb: 57:f9:b6:0e:38:f7:77:17:8d:4a:4e:91:23:40:e8: 89:51:11:60:c0:bf:e7:bb:05:6d:2f:e3:ed:53:71: b0:f5:92:fc:c9:d6:1a:b5:42:8f:15:64:3d:85:df: 3a:8a:ad:43:cd:a4:aa:ee:0e:83:1b:c4:54:b0:a9: 95:1c:1a:58:31:8a:44:db:64:08:3a:b9:a1:a2:c8: 4e:7e:98:1b:1e:58:12:ca:e5:e8:2b:3b:6b:59:e4: 1b:7a:e8:e1:02:ae:c7:81:e6:6d:2a:79:ef:73:d0: 8c:43:76:23:d1:19:fa:80:79:ca:05:59:3e:54:cc: 02:5e:90:ea:77:67:ac:92:73:d8:a9:95:5c:fa:e5: 0f:db:1c:b3:a2:30:5d:fb:d8:aa:9e:00:f4:24:55: 09:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:62:A8:64:B2:7D:97:BF:0F:57:6D:34:17:3F:F9:1F:E4:53:98:E3 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/F6722FA6822411F088762570C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.204.0/22 103.25.101.0/24 Signature Algorithm: sha256WithRSAEncryption 90:80:a2:82:78:43:eb:60:40:31:07:a2:d0:b7:66:a2:10:8c: 67:7a:39:4d:dd:ca:bc:07:94:59:bf:8f:53:dd:a4:a7:84:bc: 2c:fe:3d:8f:0b:b0:8a:5b:03:17:51:ae:50:2d:c0:f8:a4:ae: 12:55:f7:4b:e4:13:41:76:4b:89:07:aa:49:40:1c:79:99:d3: 8c:20:9c:b3:6e:0e:1d:9d:16:eb:63:bc:4c:7c:a7:db:8e:65: b6:35:5d:db:b4:71:9d:63:95:ce:7a:9c:23:7d:2b:4a:a0:df: 67:f7:db:b0:3c:ed:1a:e8:34:34:7b:12:72:46:e2:61:2e:23: d9:f5:e0:5e:a5:50:a7:c0:da:04:8d:8c:3c:9d:b8:0c:10:bf: 16:86:cf:c6:b2:4c:94:1f:58:f5:ca:ce:cc:be:dc:e5:6f:58: f0:01:6a:2f:b4:d6:40:e3:77:ad:cd:6d:7c:89:95:7b:5b:44: 9b:2e:57:71:82:3e:9f:3b:47:1f:5a:47:dd:99:e9:cb:26:21: bf:72:86:fa:96:f1:ce:4b:be:13:06:87:2f:f0:c2:b1:be:67: 2f:72:14:72:83:81:fa:2a:d5:86:e4:f3:75:d2:15:d1:da:70: 1d:4b:a5:89:83:8d:d6:8d:e0:3a:83:3e:8a:fe:80:e2:fb:11: d4:a6:a8:2a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUxMTAzMTA1NDQ3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4ODlmNy01MDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1McKa8miE9tuoJxMsGZGi2spMVbkvU4dl3NIpC9JzsSU+AQK+eHPjFxw8Si6 WfDur53u3amTO7O8ogYMa4yvmTwH1tPdDU3VSEAuXGOycgopTgxFehuNmKn5hH7q MfD6j/IFOWcsBvtX+bYOOPd3F41KTpEjQOiJURFgwL/nuwVtL+PtU3Gw9ZL8ydYa tUKPFWQ9hd86iq1DzaSq7g6DG8RUsKmVHBpYMYpE22QIOrmhoshOfpgbHlgSyuXo KztrWeQbeujhAq7HgeZtKnnvc9CMQ3Yj0Rn6gHnKBVk+VMwCXpDqd2esknPYqZVc +uUP2xyzojBd+9iqngD0JFUJ5QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNliqGSy fZe/D1dtNBc/+R/kU5jjMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvRjY3MjJGQTY4 MjI0MTFGMDg4NzYyNTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfMwDBABnGWUwDQYJKoZIhvcNAQELBQADggEBAJCAooJ4 Q+tgQDEHotC3ZqIQjGd6OU3dyrwHlFm/j1PdpKeEvCz+PY8LsIpbAxdRrlAtwPik rhJV90vkE0F2S4kHqklAHHmZ04wgnLNuDh2dFutjvEx8p9uOZbY1Xdu0cZ1jlc56 nCN9K0qg32f327A87RroNDR7EnJG4mEuI9n14F6lUKfA2gSNjDyduAwQvxaGz8ay TJQfWPXKzsy+3OVvWPABai+01kDjd63NbXyJlXtbRJsuV3GCPp87Rx9aR92Z6csm Ib9yhvqW8c5LvhMGhy/wwrG+Zy9yFHKDgfoq1Ybk83XSFdHacB1LpYmDjdaN4DqD Por+gOL7EdSmqCo= -----END CERTIFICATE-----Generated at Tue Nov 4 17:12:10 2025 by rpki-client