$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/5BC42F286E9F11EC90A66E2BC4F9AE02.roa File: 5BC42F286E9F11EC90A66E2BC4F9AE02.roa (raw, json) Hash identifier: Q9vZhAG6Yamyb12YqcE4KK4DdQNWSpjDAHBVo8AWp24= Subject key identifier: 2F:77:E9:F5:FF:BB:0C:FC:AF:AF:D1:65:3E:00:36:D5:81:7F:18:30 Certificate issuer: /CN=A91C7AC5/serialNumber=BF3FBC0DA96E2E513AAA58812C694BCD07B8DD77 Certificate serial: 08E4 Authority key identifier: BF:3F:BC:0D:A9:6E:2E:51:3A:AA:58:81:2C:69:4B:CD:07:B8:DD:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vz-8DaluLlE6qliBLGlLzQe43Xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/5BC42F286E9F11EC90A66E2BC4F9AE02.roa Signing time: Thu 30 Oct 2025 20:40:01 +0000 ROA not before: Thu 30 Oct 2025 20:40:01 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 55822 IP address blocks: 103.214.196.0/22 maxlen: 24 144.48.144.0/22 maxlen: 24 218.100.44.0/24 maxlen: 24 218.100.75.0/24 maxlen: 24 2001:de8:10::/48 maxlen: 48 2001:de8:13::/48 maxlen: 48 2001:de8:13:1::/64 maxlen: 64 2001:de8:13:2::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/vz-8DaluLlE6qliBLGlLzQe43Xc.crl rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/vz-8DaluLlE6qliBLGlLzQe43Xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vz-8DaluLlE6qliBLGlLzQe43Xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2276 (0x8e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AC5, serialNumber=BF3FBC0DA96E2E513AAA58812C694BCD07B8DD77 Validity Not Before: Oct 30 20:40:01 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6903cd21-ec9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c9:9d:37:0c:9d:49:4d:39:74:ee:e3:31:51: 5c:a1:fe:96:97:38:99:21:4f:6b:ee:5e:99:1a:e1: d3:68:cb:a5:54:db:8e:91:5b:b1:8d:97:cd:5d:8a: 34:6f:e5:31:70:03:b6:99:29:80:f1:fb:de:b9:36: c2:b2:57:54:15:41:31:3a:d1:d3:6f:3d:a5:dc:ef: a3:97:05:e8:a7:3a:82:cc:36:e3:fd:27:ef:66:03: 2c:02:a5:e0:fd:f7:38:6d:1b:a2:e5:0f:a0:dc:95: d2:be:e3:4a:76:a3:92:3c:f5:b5:4c:83:31:6f:0c: 56:3a:21:3e:4a:a6:d7:19:ca:d3:86:4f:48:11:fc: 6f:67:b9:4d:67:6f:14:29:42:9a:95:21:a6:61:77: e1:bf:19:87:a9:7f:56:87:eb:bc:83:fe:a8:6b:90: 35:76:4a:83:8d:00:0c:25:a7:bd:84:21:00:8b:1f: ba:a3:3e:35:37:fe:3e:1e:a8:3c:8b:50:00:cd:7d: f2:7b:f8:5f:76:52:8d:30:d8:72:df:fe:66:45:d4: 17:71:e2:c9:8a:a4:25:e2:63:30:69:ed:b6:f3:b5: 0e:15:8f:66:fd:99:98:1b:54:42:b8:a9:e9:c0:9b: 08:aa:ff:25:a0:79:6a:9d:aa:55:48:25:40:e5:bf: 14:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:77:E9:F5:FF:BB:0C:FC:AF:AF:D1:65:3E:00:36:D5:81:7F:18:30 X509v3 Authority Key Identifier: keyid:BF:3F:BC:0D:A9:6E:2E:51:3A:AA:58:81:2C:69:4B:CD:07:B8:DD:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/vz-8DaluLlE6qliBLGlLzQe43Xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vz-8DaluLlE6qliBLGlLzQe43Xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/5BC42F286E9F11EC90A66E2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.196.0/22 144.48.144.0/22 218.100.44.0/24 218.100.75.0/24 IPv6: 2001:de8:10::/48 2001:de8:13::/48 Signature Algorithm: sha256WithRSAEncryption c4:62:b0:27:a1:bb:e3:c9:e7:5a:c6:dc:0f:77:2f:9b:82:9a: 0f:32:4d:d3:77:aa:0b:fa:7f:d3:d1:6a:70:c5:83:df:77:84: 55:f4:76:5d:d1:07:e8:d1:98:02:42:cb:a2:8f:84:1c:05:78: 67:d2:49:d5:99:ae:e3:3e:b6:71:87:fb:23:a7:e9:a0:1a:32: 82:73:a8:ab:e3:e9:47:c7:8a:7e:a7:81:ac:eb:16:e6:0e:42: 04:0a:73:39:b0:f7:f5:da:c7:24:1b:71:6b:43:6f:6b:2d:93: 9e:a5:bc:da:26:aa:21:75:1e:d9:3d:a7:c6:36:54:0e:6d:fd: ef:5a:fd:4c:fe:32:f1:a3:81:64:bc:35:39:a3:4c:66:9b:75: 17:13:41:59:3e:cc:4d:20:0b:8d:04:bb:17:81:e5:60:cb:1f: 6c:9d:47:e6:57:85:c3:ff:c1:ab:79:3e:b2:3f:9b:10:b9:87: 5b:41:2f:30:eb:dd:57:26:7e:1f:eb:2d:96:2d:c8:a4:af:ce: 1f:c2:f3:44:e7:1e:e9:99:d1:d6:4b:cb:34:56:4c:23:8a:39: 86:80:63:af:19:84:22:cb:63:0a:c7:60:21:7d:b9:d9:38:90: e9:78:2f:80:63:a8:22:f5:42:5a:6e:5a:e8:ff:28:43:57:91: ab:fc:12:1e -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICCOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQzUxMTAvBgNVBAUTKEJGM0ZCQzBEQTk2RTJFNTEzQUFBNTg4MTJDNjk0QkNE MDdCOERENzcwHhcNMjUxMDMwMjA0MDAxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzY2QyMS1lYzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsmdNwydSU05dO7jMVFcof6WlziZIU9r7l6ZGuHTaMulVNuOkVuxjZfNXYo0 b+UxcAO2mSmA8fveuTbCsldUFUExOtHTbz2l3O+jlwXopzqCzDbj/SfvZgMsAqXg /fc4bRui5Q+g3JXSvuNKdqOSPPW1TIMxbwxWOiE+SqbXGcrThk9IEfxvZ7lNZ28U KUKalSGmYXfhvxmHqX9Wh+u8g/6oa5A1dkqDjQAMJae9hCEAix+6oz41N/4+Hqg8 i1AAzX3ye/hfdlKNMNhy3/5mRdQXceLJiqQl4mMwae2287UOFY9m/ZmYG1RCuKnp wJsIqv8loHlqnapVSCVA5b8UIwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFC936fX/ uwz8r6/RZT4ANtWBfxgwMB8GA1UdIwQYMBaAFL8/vA2pbi5ROqpYgSxpS80HuN13 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FDNS9BM0VCNUMwMEMw RDUxMUVBOTA4QzAxNzhDNEY5QUUwMi92ei04RGFsdUxsRTZxbGlCTEdsTHpRZTQz WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z6LThEYWx1TGxFNnFsaUJMR2xMelFlNDNYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdBQzUvQTNFQjVDMDBDMEQ1MTFFQTkwOEMwMTc4QzRGOUFFMDIvNUJDNDJGMjg2 RTlGMTFFQzkwQTY2RTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MB4EAgABMBgDBAJn1sQDBAKQMJADBADaZCwDBADaZEswGAQCAAIwEgMHACAB DegAEAMHACABDegAEzANBgkqhkiG9w0BAQsFAAOCAQEAxGKwJ6G748nnWsbcD3cv m4KaDzJN03eqC/p/09FqcMWD33eEVfR2XdEH6NGYAkLLoo+EHAV4Z9JJ1Zmu4z62 cYf7I6fpoBoygnOoq+PpR8eKfqeBrOsW5g5CBApzObD39drHJBtxa0Nvay2TnqW8 2iaqIXUe2T2nxjZUDm3971r9TP4y8aOBZLw1OaNMZpt1FxNBWT7MTSALjQS7F4Hl YMsfbJ1H5leFw//Bq3k+sj+bELmHW0EvMOvdVyZ+H+stli3IpK/OH8LzROce6ZnR 1kvLNFZMI4o5hoBjrxmEIstjCsdgIX252TiQ6XgvgGOoIvVCWm5a6P8oQ1eRq/wS Hg== -----END CERTIFICATE-----Generated at Tue Nov 4 16:27:35 2025 by rpki-client