$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/E0E9B1966D8A11EEB33A1E83C4F9AE02.roa File: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (raw, json) Hash identifier: /Y8xFoBMkV8uPy89Axb0Y8yaa9CAWLFHVU01k7AfOCU= Subject key identifier: B0:10:69:8E:5D:75:74:F3:12:ED:61:7F:13:A3:C7:65:29:9C:5E:4D Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 017D Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/E0E9B1966D8A11EEB33A1E83C4F9AE02.roa Signing time: Thu 09 Oct 2025 04:32:51 +0000 ROA not before: Thu 09 Oct 2025 04:32:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.172.192.0/24 maxlen: 24 2001:df2:f8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD, serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Oct 9 04:32:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e73af2-6ddf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:aa:09:2c:a7:04:99:2d:2b:31:9e:a3:c4:b8: fa:bd:94:67:85:c3:3c:6f:ac:3a:cf:fd:99:d5:33: 4b:04:1b:25:4a:65:67:00:3d:d2:89:a2:a3:5d:5e: 5d:aa:b7:dd:79:58:11:1c:05:9e:bc:a5:0b:96:4c: c4:0c:85:e3:ad:73:45:72:5a:f7:62:24:8b:a4:09: 08:40:a4:31:9a:cf:d0:06:e1:0c:a0:1b:a3:46:99: ad:d0:11:ef:18:e0:c1:da:12:0b:2f:8a:c8:fa:b8: 70:21:da:3c:bc:f5:8c:f7:67:3a:16:06:c2:a6:fc: 2f:4d:c9:05:61:70:9c:b1:00:93:a6:47:4f:5a:e2: 76:78:94:b8:2e:f4:49:8d:1e:a7:82:e2:44:c4:54: 55:4f:d7:c9:4a:fe:4a:5d:12:4f:9a:17:73:b1:00: f2:b8:2a:b8:af:99:e0:ba:94:65:f2:e8:91:d7:c1: af:46:9a:57:1b:85:61:39:9d:a6:06:de:1f:ba:98: e5:e5:70:94:5f:79:9d:78:af:d5:8b:e8:2c:da:84: 1a:17:97:2b:28:57:df:d5:ac:bc:64:2b:f9:22:b9: 56:b7:c3:ec:03:43:8f:d3:22:49:d4:2b:62:4e:0f: b6:89:aa:c7:d9:70:48:51:c0:5f:00:f6:de:09:20: 60:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:10:69:8E:5D:75:74:F3:12:ED:61:7F:13:A3:C7:65:29:9C:5E:4D X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/E0E9B1966D8A11EEB33A1E83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.192.0/24 IPv6: 2001:df2:f8c0::/48 Signature Algorithm: sha256WithRSAEncryption 46:90:68:9d:53:58:cf:37:05:0b:9f:fb:41:6b:94:72:bb:2d: ac:67:8c:ac:70:da:1c:05:c2:04:69:04:8a:59:d4:29:d4:1c: 0d:96:23:db:4a:0b:7e:07:25:09:83:ed:4d:b1:a5:5f:1c:83: 1d:a3:cd:e7:f9:50:d0:9e:c5:d7:0b:1b:c8:3b:5b:f8:f8:c7: 2f:c1:43:2c:04:be:38:dc:8a:da:13:ac:14:54:75:7f:10:9f: 52:ba:81:dd:54:ff:64:15:be:f6:16:be:f7:af:b1:f9:ed:b4: 60:b6:82:0d:47:e0:52:aa:cd:13:35:c1:c5:10:a5:31:05:53: 4b:37:c4:c6:54:a5:87:e3:0f:7f:8c:75:46:a1:ba:3f:82:1f: 43:77:0d:82:14:16:e7:c5:1e:f5:5a:94:af:94:54:c5:e0:34: 8d:ad:1f:75:3a:8b:3f:98:1c:df:2a:cf:04:31:95:b6:06:69: f7:5d:f2:bd:dc:f6:2a:53:74:d6:66:ef:52:a3:d6:02:a0:3b: 45:d2:71:41:10:8c:82:63:ef:f2:14:11:27:d0:04:98:7c:ec: 5c:c4:4c:32:6a:b7:10:3f:45:14:af:18:68:2d:7e:62:22:3d: 66:4e:69:d8:fa:94:45:6d:70:26:aa:40:65:a1:05:ec:7a:45: 66:98:4e:f7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw RDQ5MTJFREQwHhcNMjUxMDA5MDQzMjUxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3M2FmMi02ZGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqoJLKcEmS0rMZ6jxLj6vZRnhcM8b6w6z/2Z1TNLBBslSmVnAD3SiaKjXV5d qrfdeVgRHAWevKULlkzEDIXjrXNFclr3YiSLpAkIQKQxms/QBuEMoBujRpmt0BHv GODB2hILL4rI+rhwIdo8vPWM92c6FgbCpvwvTckFYXCcsQCTpkdPWuJ2eJS4LvRJ jR6nguJExFRVT9fJSv5KXRJPmhdzsQDyuCq4r5ngupRl8uiR18GvRppXG4VhOZ2m Bt4fupjl5XCUX3mdeK/Vi+gs2oQaF5crKFff1ay8ZCv5IrlWt8PsA0OP0yJJ1Cti Tg+2iarH2XBIUcBfAPbeCSBg5QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLAQaY5d dXTzEu1hfxOjx2UpnF5NMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFCRkQvODk1QTQ5NTA2RDg5MTFFRTgyQTFGNjgwQzRGOUFFMDIvRTBFOUIxOTY2 RDhBMTFFRUIzM0ExRTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnrMAwDwQCAAIwCQMHACABDfL4wDANBgkqhkiG9w0BAQsF AAOCAQEARpBonVNYzzcFC5/7QWuUcrstrGeMrHDaHAXCBGkEilnUKdQcDZYj20oL fgclCYPtTbGlXxyDHaPN5/lQ0J7F1wsbyDtb+PjHL8FDLAS+ONyK2hOsFFR1fxCf UrqB3VT/ZBW+9ha+96+x+e20YLaCDUfgUqrNEzXBxRClMQVTSzfExlSlh+MPf4x1 RqG6P4IfQ3cNghQW58Ue9VqUr5RUxeA0ja0fdTqLP5gc3yrPBDGVtgZp913yvdz2 KlN01mbvUqPWAqA7RdJxQRCMgmPv8hQRJ9AEmHzsXMRMMmq3ED9FFK8YaC1+YiI9 Zk5p2PqURW1wJqpAZaEF7HpFZphO9w== -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:25 2025 by rpki-client