$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/2BA240AC994111F096074C40C4F9AE02.roa File: 2BA240AC994111F096074C40C4F9AE02.roa (raw, json) Hash identifier: muY8FRyGGtKORkz0DPbnMxy7K5goG6Kn9e6MVRZPVic= Subject key identifier: C9:32:1E:30:0F:CF:DA:F2:A3:EA:37:B4:3C:DE:55:3D:2D:36:DB:B4 Certificate issuer: /CN=A91BBED0/serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Certificate serial: 0180 Authority key identifier: 60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/2BA240AC994111F096074C40C4F9AE02.roa Signing time: Mon 03 Nov 2025 03:48:38 +0000 ROA not before: Mon 03 Nov 2025 03:48:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147040 IP address blocks: 103.218.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBED0, serialNumber=609FEC2594380FC7639694173C3CFE5F2B596204 Validity Not Before: Nov 3 03:48:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69082616-495f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4c:9d:cf:f6:c4:ac:39:56:7f:fe:aa:46:d2: c7:cc:a1:8b:ac:b0:ac:d5:d6:5c:72:12:16:3d:ea: bc:e8:4b:7b:11:f1:96:0a:51:d9:fd:ba:21:77:0e: 8d:7e:53:85:3a:f6:f6:3a:0a:b7:2e:d8:83:6c:0a: f3:d7:7d:65:38:7f:d0:0c:92:3a:4c:19:cb:2d:21: 0b:ce:0c:95:4d:ee:2f:20:9b:11:b8:9b:03:45:16: 7c:4c:ae:35:85:e4:25:08:e1:e9:e8:5f:95:00:fc: d7:22:19:34:3d:81:c9:b2:55:49:1c:8c:81:f3:3c: 23:a8:17:8b:8d:a5:78:06:fa:9a:53:b8:b8:eb:6a: 63:6e:b7:e5:83:25:96:d8:ba:71:73:d0:32:df:79: 81:62:c8:1a:b8:e7:99:31:b7:81:06:c7:15:ee:5b: dd:ae:b1:39:c7:b9:ef:b6:39:f2:cd:cb:b9:33:a9: 1a:d8:5e:ac:32:81:13:58:98:f1:b2:1f:dd:50:97: 25:ee:ce:05:b8:e0:b5:85:2e:de:d2:e5:55:63:41: 29:db:d9:78:67:c3:9f:75:12:ae:a1:4b:de:c2:ce: 7f:3a:9b:86:1a:c5:58:6d:83:a0:39:37:8a:bf:09: 4b:43:8d:c6:41:c5:40:cf:30:9f:4a:ec:29:5f:38: e6:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:32:1E:30:0F:CF:DA:F2:A3:EA:37:B4:3C:DE:55:3D:2D:36:DB:B4 X509v3 Authority Key Identifier: keyid:60:9F:EC:25:94:38:0F:C7:63:96:94:17:3C:3C:FE:5F:2B:59:62:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJ_sJZQ4D8djlpQXPDz-XytZYgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBED0/4C17A04E77E111EEAB4AEF53C4F9AE02/2BA240AC994111F096074C40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.218.224.0/23 Signature Algorithm: sha256WithRSAEncryption a2:e1:0f:50:60:bd:d0:2b:8f:42:96:c7:ad:52:ce:90:16:0e: 89:a9:aa:c1:fe:02:25:ba:d6:8e:d8:43:71:d0:9a:42:cd:f5: 6c:76:a3:8b:e0:4c:a9:01:ec:dc:ce:e4:07:e7:1d:35:15:65: ab:83:08:24:b0:54:d5:63:d5:aa:d2:5d:71:00:07:10:2d:67: d4:2f:23:23:cb:a2:d0:c2:4f:77:d0:a9:cd:b5:6b:22:0f:70: 09:8e:f3:c4:35:9d:60:13:2f:a7:9c:0d:0c:a4:34:c3:1e:7b: 52:db:b1:21:a4:74:84:d0:aa:30:a2:41:de:e9:0e:ca:c7:9f: e0:13:28:3b:e1:d7:84:53:34:6b:2c:40:c5:1e:46:6b:1d:32: 30:6e:71:06:bf:17:ea:e3:7c:67:49:a9:e7:8a:a1:5c:8e:23: 12:3d:a4:b2:3b:a2:bf:e2:1a:d8:5e:8d:3d:91:48:71:dc:ab: a2:9c:ed:18:5f:d2:70:7a:20:63:d7:32:0e:e5:a5:f7:87:f1: c1:26:ff:79:b3:94:cf:f5:8f:fd:5c:01:bb:ac:5e:bb:90:0e: d4:95:58:52:e7:5a:d1:ab:48:91:5b:98:37:20:eb:46:1b:5f: 11:99:ba:11:83:24:19:2b:bf:6b:02:f2:74:98:61:75:92:95: be:d9:eb:80 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJFRDAxMTAvBgNVBAUTKDYwOUZFQzI1OTQzODBGQzc2Mzk2OTQxNzNDM0NGRTVG MkI1OTYyMDQwHhcNMjUxMTAzMDM0ODM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MjYxNi00OTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEydz/bErDlWf/6qRtLHzKGLrLCs1dZcchIWPeq86Et7EfGWClHZ/bohdw6N flOFOvb2Ogq3LtiDbArz131lOH/QDJI6TBnLLSELzgyVTe4vIJsRuJsDRRZ8TK41 heQlCOHp6F+VAPzXIhk0PYHJslVJHIyB8zwjqBeLjaV4BvqaU7i462pjbrflgyWW 2Lpxc9Ay33mBYsgauOeZMbeBBscV7lvdrrE5x7nvtjnyzcu5M6ka2F6sMoETWJjx sh/dUJcl7s4FuOC1hS7e0uVVY0Ep29l4Z8OfdRKuoUvews5/OpuGGsVYbYOgOTeK vwlLQ43GQcVAzzCfSuwpXzjm5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMkyHjAP z9ryo+o3tDzeVT0tNtu0MB8GA1UdIwQYMBaAFGCf7CWUOA/HY5aUFzw8/l8rWWIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkVEMC80QzE3QTA0RTc3 RTExMUVFQUI0QUVGNTNDNEY5QUUwMi9ZSl9zSlpRNEQ4ZGpscFFYUER6LVh5dFpZ Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKX3NKWlE0RDhkamxwUVhQRHotWHl0WllnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJFRDAvNEMxN0EwNEU3N0UxMTFFRUFCNEFFRjUzQzRGOUFFMDIvMkJBMjQwQUM5 OTQxMTFGMDk2MDc0QzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn2uAwDQYJKoZIhvcNAQELBQADggEBAKLhD1BgvdArj0KW x61SzpAWDompqsH+AiW61o7YQ3HQmkLN9Wx2o4vgTKkB7NzO5AfnHTUVZauDCCSw VNVj1arSXXEABxAtZ9QvIyPLotDCT3fQqc21ayIPcAmO88Q1nWATL6ecDQykNMMe e1LbsSGkdITQqjCiQd7pDsrHn+ATKDvh14RTNGssQMUeRmsdMjBucQa/F+rjfGdJ qeeKoVyOIxI9pLI7or/iGthejT2RSHHcq6Kc7Rhf0nB6IGPXMg7lpfeH8cEm/3mz lM/1j/1cAbusXruQDtSVWFLnWtGrSJFbmDcg60YbXxGZuhGDJBkrv2sC8nSYYXWS lb7Z64A= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:20 2025 by rpki-client