$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa File: F3B716768F2F11EE86964D62C4F9AE02.roa (raw, json) Hash identifier: MPJcPtDS4/T3UppAe6encPh5IY9tUXaMAMvIPt7HvEE= Subject key identifier: 84:5D:14:8E:74:49:75:3E:71:E9:50:00:59:6B:0E:F4:59:E1:3C:E6 Certificate issuer: /CN=A91DE2AE/serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Certificate serial: 0237 Authority key identifier: 69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa Signing time: Fri 31 Oct 2025 02:17:00 +0000 ROA not before: Fri 31 Oct 2025 02:17:00 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 140721 IP address blocks: 103.152.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE2AE, serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Validity Not Before: Oct 31 02:17:00 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=69041c1c-58d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5a:a7:c7:a2:c6:7e:88:3d:a6:e6:f9:38:4b: 3a:cb:04:d2:de:89:d3:e3:79:52:4c:14:4e:42:f4: b0:ae:41:2d:8a:e7:86:e5:65:cd:eb:7b:ed:58:80: 7a:1b:f7:5e:bb:c7:fd:b5:3f:a5:e6:d7:17:c3:d9: 52:8f:62:07:3f:91:bf:17:c5:31:58:18:e4:ce:b8: 24:26:9e:06:66:67:3a:9c:3b:f2:55:85:86:20:8f: 95:23:9c:dd:93:47:d1:51:e5:30:1b:e0:43:ba:45: f9:f1:a1:84:91:84:a2:5a:7c:fc:2a:cf:3f:14:6d: ad:ee:8e:cf:b6:c8:65:30:9c:65:e4:87:fd:ce:0b: a9:d1:20:a4:b5:16:fc:c0:13:2c:6e:38:2d:e2:0e: e4:a1:02:91:c5:24:a9:9e:2c:fa:f6:fe:d0:b9:5d: 64:76:39:90:80:4a:8b:5f:0d:99:45:86:6a:ea:99: 58:6d:25:85:94:7e:da:d5:f3:7b:d0:44:c7:ed:f0: 0f:16:b6:2a:0b:b9:a4:19:7b:72:c6:d6:7c:07:52: ad:bf:1a:eb:ed:61:82:bf:a9:a4:e9:a7:7d:f0:5e: 80:80:6a:49:98:d4:54:ab:5e:f0:e2:77:8b:5c:75: c3:b2:94:f0:31:fb:34:2b:f7:6a:c4:d8:bd:4e:c2: 00:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5D:14:8E:74:49:75:3E:71:E9:50:00:59:6B:0E:F4:59:E1:3C:E6 X509v3 Authority Key Identifier: keyid:69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.43.0/24 Signature Algorithm: sha256WithRSAEncryption b6:b7:8e:1e:07:6e:fc:0d:4f:8b:c1:43:a8:ed:9e:60:e3:59: e2:da:fb:35:6f:9c:f6:d4:47:d3:fa:5c:db:26:b3:6f:02:81: d5:bb:6c:bc:75:f5:98:79:25:a9:1c:be:0a:74:2d:44:1d:ad: 04:fc:67:39:5b:e3:ec:79:ff:10:b1:1e:91:47:b3:14:36:e4: ed:61:3e:e3:be:fd:19:bc:3c:a8:45:f5:c0:45:ac:4d:65:d6: 0d:aa:36:04:dc:c3:42:9f:e2:38:74:91:8a:d5:7e:92:9a:33: 08:20:49:54:1b:45:b6:2e:54:66:55:3e:f5:34:89:d4:33:4c: 87:aa:9b:65:4a:1b:0e:3d:33:29:a1:b4:95:8f:5a:7b:6d:35: a4:14:0d:b2:75:30:fa:39:ba:72:78:fa:01:af:af:b9:15:cc: c7:08:2c:58:fb:be:5c:35:d8:52:94:d7:00:42:11:72:b3:46: e5:ae:84:6c:14:ad:ac:b9:51:e8:de:65:f4:54:61:59:64:44: ae:59:e6:0a:20:c0:48:bb:ef:ba:7c:f7:31:bf:e2:1d:fe:0f: d0:16:ef:57:56:60:17:4a:f8:40:02:82:11:64:7e:01:a2:8f: 95:c6:9f:de:68:a6:b7:97:4d:13:54:63:3d:34:ca:0e:b7:d8: 6a:3d:69:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUyQUUxMTAvBgNVBAUTKDY5NzYyMDUxNUU3QjFFRThBQzdGM0Y2RDEzQkVBRUJB NjJDNEVEQTkwHhcNMjUxMDMxMDIxNzAwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0MWMxYy01OGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Fqnx6LGfog9pub5OEs6ywTS3onT43lSTBROQvSwrkEtiueG5WXN63vtWIB6 G/deu8f9tT+l5tcXw9lSj2IHP5G/F8UxWBjkzrgkJp4GZmc6nDvyVYWGII+VI5zd k0fRUeUwG+BDukX58aGEkYSiWnz8Ks8/FG2t7o7PtshlMJxl5If9zgup0SCktRb8 wBMsbjgt4g7koQKRxSSpniz69v7QuV1kdjmQgEqLXw2ZRYZq6plYbSWFlH7a1fN7 0ETH7fAPFrYqC7mkGXtyxtZ8B1Ktvxrr7WGCv6mk6ad98F6AgGpJmNRUq17w4neL XHXDspTwMfs0K/dqxNi9TsIAdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIRdFI50 SXU+celQAFlrDvRZ4TzmMB8GA1UdIwQYMBaAFGl2IFFeex7orH8/bRO+rrpixO2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTJBRS9DNzBGRUEyQThD MjAxMUVEQURENUM4MDlDNEY5QUUwMi9hWFlnVVY1N0h1aXNmejl0RTc2dXVtTEU3 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FYWWdVVjU3SHVpc2Z6OXRFNzZ1dW1MRTdhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUyQUUvQzcwRkVBMkE4QzIwMTFFREFERDVDODA5QzRGOUFFMDIvRjNCNzE2NzY4 RjJGMTFFRTg2OTY0RDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmCswDQYJKoZIhvcNAQELBQADggEBALa3jh4HbvwNT4vB Q6jtnmDjWeLa+zVvnPbUR9P6XNsms28CgdW7bLx19Zh5Jakcvgp0LUQdrQT8Zzlb 4+x5/xCxHpFHsxQ25O1hPuO+/Rm8PKhF9cBFrE1l1g2qNgTcw0Kf4jh0kYrVfpKa MwggSVQbRbYuVGZVPvU0idQzTIeqm2VKGw49MymhtJWPWnttNaQUDbJ1MPo5unJ4 +gGvr7kVzMcILFj7vlw12FKU1wBCEXKzRuWuhGwUray5UejeZfRUYVlkRK5Z5gog wEi777p89zG/4h3+D9AW71dWYBdK+EACghFkfgGij5XGn95opreXTRNUYz00yg63 2Go9aeU= -----END CERTIFICATE-----Generated at Wed Nov 5 13:12:48 2025 by rpki-client