$ rpki-client -vvf rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/0235D930AE5011F0927AE62BC4F9AE02.roa File: 0235D930AE5011F0927AE62BC4F9AE02.roa (raw, json) Hash identifier: 5k0XibRJRAi1MAo51wXtFTLJ6nvUXfkdSDCq/B/6+Qs= Subject key identifier: 3D:B6:1C:2F:3A:95:3B:DB:A1:6E:0C:3A:9B:FF:F5:26:53:F5:60:AC Certificate issuer: /CN=A91C002D/serialNumber=654E020125C1B7507826F05FDDA924B5287408F9 Certificate serial: 03 Authority key identifier: 65:4E:02:01:25:C1:B7:50:78:26:F0:5F:DD:A9:24:B5:28:74:08:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZU4CASXBt1B4JvBf3akktSh0CPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/0235D930AE5011F0927AE62BC4F9AE02.roa Signing time: Tue 21 Oct 2025 07:31:51 +0000 ROA not before: Tue 21 Oct 2025 07:31:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154227 IP address blocks: 203.9.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/ZU4CASXBt1B4JvBf3akktSh0CPk.crl rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/ZU4CASXBt1B4JvBf3akktSh0CPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZU4CASXBt1B4JvBf3akktSh0CPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 08:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C002D, serialNumber=654E020125C1B7507826F05FDDA924B5287408F9 Validity Not Before: Oct 21 07:31:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f736e6-3b54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f8:d8:53:c8:cf:ab:f7:b1:70:da:d5:61:aa: 90:31:ea:e6:d4:5b:03:db:9a:15:a1:31:67:eb:1f: 26:f4:3f:f8:42:a8:28:2d:76:e5:27:b7:b1:5e:77: e6:c5:9e:8d:3c:15:bd:bc:8c:b4:79:9d:8a:eb:70: 0a:80:6f:fb:bf:09:e7:67:ba:79:41:c6:27:be:25: f0:ea:dc:3e:0f:18:e2:56:49:1b:f6:79:6a:de:b9: b5:0f:1c:9a:d7:8b:f7:7b:e9:b8:64:36:17:ac:79: 64:be:ce:16:7e:09:9c:34:d1:da:c8:61:f5:64:fa: a3:ac:02:b7:2e:8f:5e:85:ed:29:56:3b:28:77:e7: b6:6e:b5:06:4e:f3:1c:b0:d7:d6:ba:28:10:65:c7: 95:93:11:de:f5:b9:68:a3:ec:0f:b8:2c:09:f4:39: fc:7c:69:75:a8:3b:0d:91:c4:c7:07:fe:b8:9f:fc: dc:b6:5b:3a:63:a6:95:67:e7:8e:4e:69:08:76:06: 20:6c:56:81:b9:41:06:22:eb:46:67:96:f8:26:40: 5c:c0:aa:cc:70:96:26:ec:fa:82:d1:c3:72:65:87: 89:35:51:c9:c6:a0:e1:14:51:51:2b:4d:00:1b:c8: 04:2f:d2:3d:ea:a8:b2:87:1b:3a:e8:af:e9:3e:c3: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B6:1C:2F:3A:95:3B:DB:A1:6E:0C:3A:9B:FF:F5:26:53:F5:60:AC X509v3 Authority Key Identifier: keyid:65:4E:02:01:25:C1:B7:50:78:26:F0:5F:DD:A9:24:B5:28:74:08:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/ZU4CASXBt1B4JvBf3akktSh0CPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZU4CASXBt1B4JvBf3akktSh0CPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/0235D930AE5011F0927AE62BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.195.0/24 Signature Algorithm: sha256WithRSAEncryption 40:1f:21:32:6f:f8:5a:e4:e9:fd:0d:ae:de:f6:ea:ff:6b:6b: 3a:68:c7:08:c2:95:ae:6d:04:a7:64:c4:cb:fb:19:0e:80:a9: fa:46:4e:d9:eb:81:ba:b0:52:23:f4:4c:3b:80:98:b3:55:e3: 80:17:a9:be:07:fb:f8:a8:9f:d4:9b:99:62:06:7f:d3:8d:f2: 26:bf:d0:b2:30:ca:28:55:d0:c9:59:3c:a2:6d:3a:68:67:85: 1f:93:1e:63:6f:0c:63:1b:d7:3f:20:83:04:2e:ac:b4:cd:6a: 8c:20:84:ca:b1:c2:23:bf:ba:92:6c:81:ec:4c:b0:8f:c5:29: 0f:7f:5d:16:ae:ec:36:d9:e6:97:10:23:84:78:24:e8:58:99: 1e:dc:d5:21:a7:67:a5:d1:7c:15:c8:ac:c3:47:88:fe:9b:29: 29:9f:af:14:d8:2f:af:51:fd:cf:5e:d1:0c:e6:58:51:52:18: b4:67:c0:7e:8e:fb:c4:a3:ef:8d:11:0f:48:6f:a0:b2:e4:76: f1:59:11:b2:37:23:e8:5d:3e:7a:03:bf:4c:65:e1:c9:bc:70: b6:d3:b0:b5:44:b6:cc:a2:6a:61:87:d2:10:b5:1e:d9:b5:94: c6:f6:36:da:35:07:4e:2b:0d:b5:62:2b:2e:1e:70:bb:1d:91: b3:f4:ef:d1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDAyRDExMC8GA1UEBRMoNjU0RTAyMDEyNUMxQjc1MDc4MjZGMDVGRERBOTI0QjUy ODc0MDhGOTAeFw0yNTEwMjEwNzMxNTFaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjczNmU2LTNiNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDv+NhTyM+r97Fw2tVhqpAx6ubUWwPbmhWhMWfrHyb0P/hCqCgtduUnt7Fed+bF no08Fb28jLR5nYrrcAqAb/u/CednunlBxie+JfDq3D4PGOJWSRv2eWreubUPHJrX i/d76bhkNheseWS+zhZ+CZw00drIYfVk+qOsArcuj16F7SlWOyh357ZutQZO8xyw 19a6KBBlx5WTEd71uWij7A+4LAn0Ofx8aXWoOw2RxMcH/rif/Ny2WzpjppVn545O aQh2BiBsVoG5QQYi60ZnlvgmQFzAqsxwlibs+oLRw3Jlh4k1UcnGoOEUUVErTQAb yAQv0j3qqLKHGzror+k+wx3dAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUPbYcLzqV O9uhbgw6m//1JlP1YKwwHwYDVR0jBBgwFoAUZU4CASXBt1B4JvBf3akktSh0CPkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwMDJELzE0OUQ1QjUyQURB NjExRjA5QzRGNkI0RkM0RjlBRTAyL1pVNENBU1hCdDFCNEp2QmYzYWtrdFNoMENQ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWlU0Q0FTWEJ0MUI0SnZCZjNha2t0U2gwQ1BrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDAyRC8xNDlENUI1MkFEQTYxMUYwOUM0RjZCNEZDNEY5QUUwMi8wMjM1RDkzMEFF NTAxMUYwOTI3QUU2MkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsJwzANBgkqhkiG9w0BAQsFAAOCAQEAQB8hMm/4WuTp/Q2u 3vbq/2trOmjHCMKVrm0Ep2TEy/sZDoCp+kZO2euBurBSI/RMO4CYs1XjgBepvgf7 +Kif1JuZYgZ/043yJr/QsjDKKFXQyVk8om06aGeFH5MeY28MYxvXPyCDBC6stM1q jCCEyrHCI7+6kmyB7Eywj8UpD39dFq7sNtnmlxAjhHgk6FiZHtzVIadnpdF8Fcis w0eI/pspKZ+vFNgvr1H9z17RDOZYUVIYtGfAfo77xKPvjREPSG+gsuR28VkRsjcj 6F0+egO/TGXhybxwttOwtUS2zKJqYYfSELUe2bWUxvY22jUHTisNtWIrLh5wux2R s/Tv0Q== -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:56 2025 by rpki-client