$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/B987C6AAB7A311F095EF5E67C4F9AE02.roa File: B987C6AAB7A311F095EF5E67C4F9AE02.roa (raw, json) Hash identifier: o9bfnwoCTuetn0SRRGYX4ZpmTSdQG0cya1pWAww3M3c= Subject key identifier: 44:35:30:46:15:57:9C:E2:4C:E5:1E:50:7E:83:80:69:30:8D:2C:37 Certificate issuer: /CN=A91BF4A1/serialNumber=4FEE47943ABE13E38556A73C281B90E3549237DC Certificate serial: 0207 Authority key identifier: 4F:EE:47:94:3A:BE:13:E3:85:56:A7:3C:28:1B:90:E3:54:92:37:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-5HlDq-E-OFVqc8KBuQ41SSN9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/B987C6AAB7A311F095EF5E67C4F9AE02.roa Signing time: Sun 02 Nov 2025 04:23:47 +0000 ROA not before: Sun 02 Nov 2025 04:23:47 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136050 IP address blocks: 103.163.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/T-5HlDq-E-OFVqc8KBuQ41SSN9w.crl rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/T-5HlDq-E-OFVqc8KBuQ41SSN9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-5HlDq-E-OFVqc8KBuQ41SSN9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF4A1, serialNumber=4FEE47943ABE13E38556A73C281B90E3549237DC Validity Not Before: Nov 2 04:23:47 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6906dcd3-215b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:df:6d:4b:bc:41:e0:7b:93:d6:72:04:d0:57: 0d:9b:3c:c3:f7:89:d4:2b:1e:93:fb:ac:51:ef:bf: 2e:3d:5e:81:79:18:75:0e:7a:c1:55:4f:5d:12:6d: 4b:e0:be:94:83:9a:a1:8c:03:f4:67:00:c3:ca:1d: 3d:0c:ca:42:76:8e:8d:45:11:ad:ed:98:5d:2b:c5: 6f:fc:98:2e:b1:18:57:36:fd:70:70:a2:ae:2e:72: a2:d1:13:75:0e:f4:b9:5d:4a:e3:e0:06:ca:1b:9b: 9f:ef:fb:49:39:1c:9d:1f:fb:62:4c:be:66:bf:36: 57:f0:65:6b:e1:6c:73:a6:b0:4e:b7:2e:d3:a1:63: 64:5b:31:91:5c:11:25:f0:de:f7:98:f9:db:e9:05: 8e:27:3b:be:d1:70:3c:ea:89:62:b0:65:80:23:77: 18:d2:37:5f:a0:11:4f:ca:22:7d:4c:c8:88:7e:2f: 6b:04:3a:7a:78:20:c3:cd:bf:64:7b:96:f2:f4:72: 7c:b9:18:df:3b:de:23:d7:92:c0:01:b8:db:86:f1: 2f:21:ff:93:72:4d:2b:e1:47:4a:a7:6f:bb:09:bb: 29:8d:47:bf:5f:7b:02:8a:11:0b:b5:02:14:e5:bc: a3:ac:ba:b3:ac:b2:eb:08:58:0a:15:ec:0d:46:1c: 75:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:35:30:46:15:57:9C:E2:4C:E5:1E:50:7E:83:80:69:30:8D:2C:37 X509v3 Authority Key Identifier: keyid:4F:EE:47:94:3A:BE:13:E3:85:56:A7:3C:28:1B:90:E3:54:92:37:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/T-5HlDq-E-OFVqc8KBuQ41SSN9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-5HlDq-E-OFVqc8KBuQ41SSN9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/B987C6AAB7A311F095EF5E67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.209.0/24 Signature Algorithm: sha256WithRSAEncryption 53:ac:ea:35:12:6e:71:d0:40:fa:7a:74:82:88:bc:21:c1:6d: d0:d4:b1:8e:a0:c2:90:8d:68:fd:d5:d1:73:bb:74:77:24:5b: 4e:5e:62:5b:09:c9:8f:1d:20:af:6c:4a:1c:07:8b:13:98:34: b1:2a:e1:f5:5e:bc:9d:75:c7:88:e7:e6:4d:2a:56:9e:95:62: f0:06:3c:cc:af:8c:8b:15:91:9f:f7:aa:09:fa:d6:df:b8:4e: cb:7a:e0:bf:e5:6a:0d:7e:69:be:3e:6e:eb:2f:f6:e2:70:36: 43:24:41:f5:6f:01:96:c0:7d:f5:27:60:40:c7:2f:6e:b9:5f: b2:35:40:75:fc:3a:54:7f:a9:81:c5:f9:d4:21:c1:af:78:91: b3:97:da:c3:25:b7:32:1b:97:0d:87:34:01:96:57:f5:d4:75: 35:46:a8:6e:27:14:e3:bb:f7:39:c5:d3:65:e2:25:02:96:c3: 64:10:c6:74:22:d8:ba:ec:56:6b:7a:cc:f3:4e:26:d1:40:aa: 19:c5:da:3d:62:e3:1b:07:bd:9b:d0:4d:57:69:e1:3a:3a:d5: b3:95:53:be:c1:02:36:e2:d7:43:b4:94:16:e2:7b:7e:04:8a: 96:1c:87:38:f9:ea:ee:31:af:d7:66:cd:fa:2c:e0:03:51:6d: 13:ab:86:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY0QTExMTAvBgNVBAUTKDRGRUU0Nzk0M0FCRTEzRTM4NTU2QTczQzI4MUI5MEUz NTQ5MjM3REMwHhcNMjUxMTAyMDQyMzQ3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTA2ZGNkMy0yMTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0d9tS7xB4HuT1nIE0FcNmzzD94nUKx6T+6xR778uPV6BeRh1DnrBVU9dEm1L 4L6Ug5qhjAP0ZwDDyh09DMpCdo6NRRGt7ZhdK8Vv/JgusRhXNv1wcKKuLnKi0RN1 DvS5XUrj4AbKG5uf7/tJORydH/tiTL5mvzZX8GVr4WxzprBOty7ToWNkWzGRXBEl 8N73mPnb6QWOJzu+0XA86olisGWAI3cY0jdfoBFPyiJ9TMiIfi9rBDp6eCDDzb9k e5by9HJ8uRjfO94j15LAAbjbhvEvIf+Tck0r4UdKp2+7CbspjUe/X3sCihELtQIU 5byjrLqzrLLrCFgKFewNRhx1SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEQ1MEYV V5ziTOUeUH6DgGkwjSw3MB8GA1UdIwQYMBaAFE/uR5Q6vhPjhVanPCgbkONUkjfc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjRBMS8wRjU4N0E4OEIx Q0MxMUVEODVGMjVBM0RDNEY5QUUwMi9ULTVIbERxLUUtT0ZWcWM4S0J1UTQxU1NO OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1QtNUhsRHEtRS1PRlZxYzhLQnVRNDFTU045dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY0QTEvMEY1ODdBODhCMUNDMTFFRDg1RjI1QTNEQzRGOUFFMDIvQjk4N0M2QUFC N0EzMTFGMDk1RUY1RTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABno9EwDQYJKoZIhvcNAQELBQADggEBAFOs6jUSbnHQQPp6 dIKIvCHBbdDUsY6gwpCNaP3V0XO7dHckW05eYlsJyY8dIK9sShwHixOYNLEq4fVe vJ11x4jn5k0qVp6VYvAGPMyvjIsVkZ/3qgn61t+4Tst64L/lag1+ab4+busv9uJw NkMkQfVvAZbAffUnYEDHL265X7I1QHX8OlR/qYHF+dQhwa94kbOX2sMltzIblw2H NAGWV/XUdTVGqG4nFOO79znF02XiJQKWw2QQxnQi2LrsVmt6zPNOJtFAqhnF2j1i 4xsHvZvQTVdp4To61bOVU77BAjbi10O0lBbie34EipYchzj56u4xr9dmzfos4ANR bROrhvM= -----END CERTIFICATE-----Generated at Wed Nov 5 20:21:05 2025 by rpki-client