$ rpki-client -vvf rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa File: ED49BD3C649A11ECBDAC9565C4F9AE02.roa (raw, json) Hash identifier: UjG7oDUQ214221eoKLkpu49JL/kh+6CSjcDdtuUyQv4= Subject key identifier: E1:68:02:B3:FE:19:C7:8B:A2:3B:01:5E:B7:B4:27:FC:B1:0C:93:DC Certificate issuer: /CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Certificate serial: 05E6 Authority key identifier: F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa Signing time: Thu 23 Oct 2025 00:13:55 +0000 ROA not before: Thu 23 Oct 2025 00:13:55 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 42960 IP address blocks: 43.248.8.0/22 maxlen: 24 103.39.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1510 (0x5e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E094D, serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Validity Not Before: Oct 23 00:13:55 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f97343-2440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:84:58:a3:fc:a9:98:d7:1a:d6:6d:3f:ef:55: 9e:af:1d:c5:27:d7:00:f8:88:ab:11:4c:a4:ea:fe: 5b:66:ce:d6:b3:c6:04:5f:d6:b7:2d:af:b7:78:48: 9b:35:56:71:72:7f:0e:98:f7:86:13:e8:49:eb:19: 23:7c:b3:34:2c:8d:7b:e7:62:23:4d:c7:f6:f3:d9: 01:0a:d1:54:11:33:ea:21:93:73:e0:70:54:ef:b0: 2d:5a:6d:25:81:e6:65:0c:37:58:d4:b4:fd:fd:66: da:0d:f5:75:29:5b:50:ce:ed:6c:8e:1f:89:35:41: 0e:57:bf:ba:4e:63:35:70:84:2b:3e:ed:87:ae:d7: 27:81:df:e7:9e:ea:39:7c:82:29:9f:36:37:02:fb: 9e:bd:05:eb:fd:e2:8f:57:37:20:29:b7:38:2b:20: ee:e2:be:09:79:27:d5:c9:ef:ea:98:6b:5d:ab:5c: 43:f0:07:ae:56:f0:05:d6:b0:01:8e:72:65:4e:fb: 79:96:03:75:9d:8e:74:32:46:87:ad:5a:7f:65:e3: 41:8f:eb:ef:f1:39:85:75:cd:20:5b:a3:02:d6:2c: c9:6a:5d:8a:c3:4b:af:77:e4:46:ba:9d:67:09:5e: df:f7:0c:60:49:2c:1e:a2:b9:7c:e9:11:d3:77:af: 8f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:68:02:B3:FE:19:C7:8B:A2:3B:01:5E:B7:B4:27:FC:B1:0C:93:DC X509v3 Authority Key Identifier: keyid:F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.8.0/22 103.39.78.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:19:e9:b9:c5:50:73:4e:4e:60:b7:64:f8:a8:ab:9a:bd:ca: 8d:8a:68:be:73:58:76:bd:cc:4a:c0:6d:8b:2e:24:b8:33:75: 0f:c3:69:4a:a9:bd:62:2a:58:31:bd:7b:a9:d6:22:75:9f:3a: e3:82:c3:94:82:15:28:1c:d7:89:b3:0d:64:66:59:c6:aa:77: 0e:2d:bc:79:71:8f:fc:bd:01:e5:46:a5:86:0a:56:e7:dd:c0: e2:91:da:c7:e6:41:4d:fc:91:95:86:96:bd:3c:a7:00:17:0a: a2:cd:02:f0:f8:8e:f4:ec:08:42:c2:ec:f5:eb:1f:33:04:18: 30:9a:65:2c:79:83:f1:05:81:d2:bc:ac:12:fa:03:bf:3b:b7: ee:a7:63:25:07:ff:eb:a7:b4:ff:b8:44:57:19:00:63:b4:6f: 1a:7e:d4:7f:88:1c:7a:31:b3:2b:a7:50:2b:f0:ea:a4:cb:3b: a1:db:cb:f9:61:4d:f9:28:11:47:32:f1:44:7f:08:e4:d8:bc: fe:cb:49:0c:bd:41:88:fb:40:5f:9d:ef:47:4f:7b:10:5a:09: 97:92:31:61:74:83:0c:e1:b9:df:88:e2:18:dc:17:34:b1:83: c2:b4:f0:f5:aa:c8:62:e8:98:08:4b:fa:e6:7e:47:54:ad:fb: 90:a5:76:11 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA5NEQxMTAvBgNVBAUTKEYzMTcwNUU4MThFQTQ4MDNCMDkzNDE5M0Y2MUZDNkUz MzcxNzcyRUQwHhcNMjUxMDIzMDAxMzU1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5NzM0My0yNDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoRYo/ypmNca1m0/71Werx3FJ9cA+IirEUyk6v5bZs7Ws8YEX9a3La+3eEib NVZxcn8OmPeGE+hJ6xkjfLM0LI1752IjTcf289kBCtFUETPqIZNz4HBU77AtWm0l geZlDDdY1LT9/WbaDfV1KVtQzu1sjh+JNUEOV7+6TmM1cIQrPu2Hrtcngd/nnuo5 fIIpnzY3AvuevQXr/eKPVzcgKbc4KyDu4r4JeSfVye/qmGtdq1xD8AeuVvAF1rAB jnJlTvt5lgN1nY50MkaHrVp/ZeNBj+vv8TmFdc0gW6MC1izJal2Kw0uvd+RGup1n CV7f9wxgSSweorl86RHTd6+PaQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOFoArP+ GceLojsBXre0J/yxDJPcMB8GA1UdIwQYMBaAFPMXBegY6kgDsJNBk/YfxuM3F3Lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDk0RC80MEI3Mzg2RURF ODExMUVCQTlGQzdENzJDNEY5QUUwMi84eGNGNkJqcVNBT3drMEdUOWhfRzR6Y1hj dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh4Y0Y2QmpxU0FPd2swR1Q5aF9HNHpjWGN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA5NEQvNDBCNzM4NkVERTgxMTFFQkE5RkM3RDcyQzRGOUFFMDIvRUQ0OUJEM0M2 NDlBMTFFQ0JEQUM5NTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+AgDBAFnJ04wDQYJKoZIhvcNAQELBQADggEBAHsZ6bnF UHNOTmC3ZPioq5q9yo2KaL5zWHa9zErAbYsuJLgzdQ/DaUqpvWIqWDG9e6nWInWf OuOCw5SCFSgc14mzDWRmWcaqdw4tvHlxj/y9AeVGpYYKVufdwOKR2sfmQU38kZWG lr08pwAXCqLNAvD4jvTsCELC7PXrHzMEGDCaZSx5g/EFgdK8rBL6A787t+6nYyUH /+untP+4RFcZAGO0bxp+1H+IHHoxsyunUCvw6qTLO6Hby/lhTfkoEUcy8UR/COTY vP7LSQy9QYj7QF+d70dPexBaCZeSMWF0gwzhud+I4hjcFzSxg8K08PWqyGLomAhL +uZ+R1St+5CldhE= -----END CERTIFICATE-----Generated at Wed Nov 5 14:29:29 2025 by rpki-client