$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/834FFE88679911EEB8243436C4F9AE02.roa File: 834FFE88679911EEB8243436C4F9AE02.roa (raw, json) Hash identifier: 2l18e24CMiHud0NJE3O3nns7nMxFpBn60Kr5He67lRQ= Subject key identifier: 30:40:85:E5:2F:38:FF:14:EA:51:68:A0:A4:45:3D:E4:D4:39:A8:92 Certificate issuer: /CN=A91D1F95/serialNumber=D6F06724D0968707ED1DFAFDBB225802B3DAA194 Certificate serial: 02B3 Authority key identifier: D6:F0:67:24:D0:96:87:07:ED:1D:FA:FD:BB:22:58:02:B3:DA:A1:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vBnJNCWhwftHfr9uyJYArPaoZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/834FFE88679911EEB8243436C4F9AE02.roa Signing time: Wed 29 Oct 2025 01:45:29 +0000 ROA not before: Wed 29 Oct 2025 01:45:29 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147292 IP address blocks: 103.174.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/1vBnJNCWhwftHfr9uyJYArPaoZQ.crl rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/1vBnJNCWhwftHfr9uyJYArPaoZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vBnJNCWhwftHfr9uyJYArPaoZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 691 (0x2b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1F95, serialNumber=D6F06724D0968707ED1DFAFDBB225802B3DAA194 Validity Not Before: Oct 29 01:45:29 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690171b8-6d59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a2:dc:d3:33:42:32:70:01:9b:4f:cf:ca:64: a4:f6:e2:c8:9b:95:ab:f5:bc:72:22:7f:a6:c0:be: 3c:28:86:76:d6:f4:70:44:c2:ac:ea:5c:37:89:6b: 6a:dd:e4:a2:51:20:99:db:f4:68:2b:ed:a0:51:02: 0e:97:12:3f:28:28:ec:61:3a:7f:5e:9a:be:30:42: 7b:85:4a:8b:4f:da:7c:1e:93:dc:5d:ba:95:f5:81: c6:c4:9b:29:5f:a0:2a:83:c5:aa:c0:c8:a6:0c:2c: 2b:74:a4:89:01:31:5f:5f:0f:8d:7c:38:96:da:08: 9f:c5:5d:20:6b:0f:c6:c0:a1:be:ab:0c:66:59:62: 7a:87:88:45:b0:88:3e:d3:e0:a2:1a:82:9b:ff:8a: a4:75:8c:61:0e:e4:f2:fd:37:f7:84:73:5c:93:dd: 8f:52:a7:fd:c0:47:fc:d4:ec:2d:a4:eb:d6:d8:e2: fd:b1:32:48:fc:6e:a2:dc:fc:29:9d:c0:a9:1e:c8: 5e:5d:8b:df:f6:eb:f7:bf:5e:1d:bf:64:eb:44:1c: 9b:43:58:90:98:01:07:45:e5:02:98:25:49:13:09: 33:af:37:31:a0:6c:62:cb:0c:e2:ec:06:41:13:c8: 1d:0d:f1:ee:20:0d:b3:a9:9f:99:97:11:eb:af:a7: 7c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:40:85:E5:2F:38:FF:14:EA:51:68:A0:A4:45:3D:E4:D4:39:A8:92 X509v3 Authority Key Identifier: keyid:D6:F0:67:24:D0:96:87:07:ED:1D:FA:FD:BB:22:58:02:B3:DA:A1:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/1vBnJNCWhwftHfr9uyJYArPaoZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vBnJNCWhwftHfr9uyJYArPaoZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/834FFE88679911EEB8243436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.98.0/24 Signature Algorithm: sha256WithRSAEncryption 34:08:f6:4e:c2:25:e7:9c:98:25:7e:cb:7f:e1:3b:be:6c:41: ac:11:c1:5f:34:52:f4:63:ce:fb:18:1f:01:f6:92:da:19:9d: 93:47:ef:5b:be:c8:a1:fd:a4:9f:61:7f:7f:33:73:05:c6:a8: 2e:32:5d:b6:f4:c0:56:5b:33:08:c9:34:a5:69:6f:9f:6b:a0: f4:dc:19:bf:4e:66:81:8e:86:13:68:d2:32:3c:ca:65:db:ff: 58:34:b0:5e:e9:d7:9d:bf:a9:96:3c:f3:78:aa:18:cc:f3:ae: 51:ed:27:c5:95:ab:70:bd:52:28:b4:57:07:6e:3a:7e:91:02: a3:b1:02:ce:d6:95:7e:b3:62:07:ac:d1:7b:1c:9d:f9:36:81: fc:96:90:55:05:f8:48:ed:ed:9c:8b:11:de:74:12:12:cc:e6: 83:3c:29:35:db:db:71:d4:67:d0:65:68:0b:18:ae:02:64:b9: 76:e6:b5:51:fe:1e:1f:1f:6c:ad:da:e2:c1:1a:4e:6c:9a:fd: 87:ef:9c:3d:f4:e3:66:0d:e4:6f:7a:68:2f:6d:7f:e9:62:00: 39:6b:ee:31:73:47:8c:36:e4:c2:e6:a5:d9:ee:2e:5c:25:f4: 15:ec:5a:b1:95:64:04:ac:df:b2:99:39:bf:de:6c:e1:82:36: fd:2e:27:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFGOTUxMTAvBgNVBAUTKEQ2RjA2NzI0RDA5Njg3MDdFRDFERkFGREJCMjI1ODAy QjNEQUExOTQwHhcNMjUxMDI5MDE0NTI5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAxNzFiOC02ZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6Lc0zNCMnABm0/PymSk9uLIm5Wr9bxyIn+mwL48KIZ21vRwRMKs6lw3iWtq 3eSiUSCZ2/RoK+2gUQIOlxI/KCjsYTp/Xpq+MEJ7hUqLT9p8HpPcXbqV9YHGxJsp X6Aqg8WqwMimDCwrdKSJATFfXw+NfDiW2gifxV0gaw/GwKG+qwxmWWJ6h4hFsIg+ 0+CiGoKb/4qkdYxhDuTy/Tf3hHNck92PUqf9wEf81OwtpOvW2OL9sTJI/G6i3Pwp ncCpHsheXYvf9uv3v14dv2TrRBybQ1iQmAEHReUCmCVJEwkzrzcxoGxiywzi7AZB E8gdDfHuIA2zqZ+ZlxHrr6d8OwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDBAheUv OP8U6lFooKRFPeTUOaiSMB8GA1UdIwQYMBaAFNbwZyTQlocH7R36/bsiWAKz2qGU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUY5NS9GRjkzRUM3MjE5 NUYxMUVEQjJCREY5NUVDNEY5QUUwMi8xdkJuSk5DV2h3ZnRIZnI5dXlKWUFyUGFv WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF2Qm5KTkNXaHdmdEhmcjl1eUpZQXJQYW9aUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFGOTUvRkY5M0VDNzIxOTVGMTFFREIyQkRGOTVFQzRGOUFFMDIvODM0RkZFODg2 Nzk5MTFFRUI4MjQzNDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrmIwDQYJKoZIhvcNAQELBQADggEBADQI9k7CJeecmCV+ y3/hO75sQawRwV80UvRjzvsYHwH2ktoZnZNH71u+yKH9pJ9hf38zcwXGqC4yXbb0 wFZbMwjJNKVpb59roPTcGb9OZoGOhhNo0jI8ymXb/1g0sF7p152/qZY883iqGMzz rlHtJ8WVq3C9Uii0VwduOn6RAqOxAs7WlX6zYges0Xscnfk2gfyWkFUF+Ejt7ZyL Ed50EhLM5oM8KTXb23HUZ9BlaAsYrgJkuXbmtVH+Hh8fbK3a4sEaTmya/YfvnD30 42YN5G96aC9tf+liADlr7jFzR4w25MLmpdnuLlwl9BXsWrGVZASs37KZOb/ebOGC Nv0uJ/c= -----END CERTIFICATE-----Generated at Wed Nov 5 23:35:35 2025 by rpki-client