$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/4A9F953EE29611EF8E06890AC4F9AE02.roa File: 4A9F953EE29611EF8E06890AC4F9AE02.roa (raw, json) Hash identifier: 5xxVenqDrTtB+LAX8MyCpAEyaZJVl5DXQjRG3qyTajU= Subject key identifier: 1E:BC:61:E5:1B:36:5B:68:8D:03:E4:CF:C5:2E:4F:BC:45:48:0F:2D Certificate issuer: /CN=A91E2176/serialNumber=C09D12C7CA2EB4D35CA50A939D3D9CBE817E39AD Certificate serial: 0895 Authority key identifier: C0:9D:12:C7:CA:2E:B4:D3:5C:A5:0A:93:9D:3D:9C:BE:81:7E:39:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/4A9F953EE29611EF8E06890AC4F9AE02.roa Signing time: Sat 30 Aug 2025 21:12:22 +0000 ROA not before: Sat 30 Aug 2025 21:12:22 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140999 IP address blocks: 103.153.18.0/23 maxlen: 23 103.207.29.0/24 maxlen: 24 2001:df4:2980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.crl rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 19:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2197 (0x895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2176, serialNumber=C09D12C7CA2EB4D35CA50A939D3D9CBE817E39AD Validity Not Before: Aug 30 21:12:22 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b36936-b0f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:94:df:b5:a7:d2:40:ef:86:aa:f4:8e:a6:da: b5:c7:81:b0:50:c9:0c:14:10:55:84:0d:cb:ad:bc: 17:f9:1f:d5:cb:34:a4:c4:bb:12:b8:ae:b2:70:28: e2:76:78:de:d1:96:58:64:b9:78:8c:d4:96:52:ea: 6b:15:cf:40:e4:02:6d:50:6b:10:27:ad:45:c6:59: d5:8b:79:a9:05:41:83:17:d4:d2:8b:bb:f4:66:4a: 0d:c5:29:f4:d5:fb:08:67:bd:68:0e:d1:92:f1:18: f9:65:d5:1c:17:c4:05:6d:e4:40:d9:0b:9e:fa:7e: d7:31:1d:40:a2:e3:6b:1f:7d:d3:c0:b8:e6:66:b8: de:db:5d:30:91:d7:cb:e5:76:55:bf:f9:0d:6e:83: 3a:4b:92:f9:d2:12:e9:77:47:2e:b8:9b:ce:ce:b5: 1f:f9:1c:85:fe:64:1c:70:35:98:e7:f9:04:19:05: b5:52:32:ff:f3:ea:11:12:11:1a:a6:a1:6a:ed:43: 20:ca:f2:a9:46:33:dd:e0:21:e4:87:f1:46:7a:97: 9b:ab:fb:a1:23:51:66:69:42:8b:59:a5:a9:68:3e: 95:bc:81:eb:52:27:a8:b3:5f:08:bc:be:93:a4:4c: f4:ce:de:5e:4d:92:cd:b7:bc:76:2f:31:33:b6:c4: 51:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:BC:61:E5:1B:36:5B:68:8D:03:E4:CF:C5:2E:4F:BC:45:48:0F:2D X509v3 Authority Key Identifier: keyid:C0:9D:12:C7:CA:2E:B4:D3:5C:A5:0A:93:9D:3D:9C:BE:81:7E:39:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/4A9F953EE29611EF8E06890AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.18.0/23 103.207.29.0/24 IPv6: 2001:df4:2980::/48 Signature Algorithm: sha256WithRSAEncryption bb:32:0d:3b:94:43:9f:ee:8a:dc:58:0c:69:07:77:dd:45:54: 98:9b:35:64:85:7a:5b:64:5c:13:66:b1:98:88:c1:47:16:c3: dd:2f:67:90:ef:95:6c:e1:e1:61:6c:3a:64:15:19:c9:3d:f8: 55:83:39:e9:84:27:55:7b:02:a2:fd:a1:ae:17:73:13:6d:1d: ce:6c:9c:c0:db:4f:06:2a:0e:98:95:4d:b9:29:fb:9c:6f:40: 51:a7:c1:cb:9b:69:b1:ba:66:74:64:2e:66:57:b3:cd:74:c2: 0a:f7:54:ac:df:c1:0f:f2:d0:9f:f8:b3:9b:51:a3:a2:6c:68: fc:bf:65:d3:a0:03:ff:aa:32:f9:e1:bf:75:77:a4:41:5c:d1: d0:cb:65:61:45:bd:c0:1d:f7:5c:25:3e:96:8d:dc:6a:50:af: b8:4f:4e:48:f2:2c:22:77:27:b4:9e:44:3b:07:c9:94:b9:f3: fd:c7:7c:8e:8a:79:fc:15:16:18:f9:30:8a:9b:5f:97:de:da: 9c:df:d3:f1:c9:f2:e4:2c:ef:b5:66:53:b4:9d:9d:e4:83:ea: 5c:a8:ee:1e:7e:c0:83:69:66:47:58:c1:3b:9c:a7:39:12:82: db:72:4a:3c:78:a5:4e:82:56:24:c9:c0:cd:d5:02:13:19:53: ec:a8:64:03 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIxNzYxMTAvBgNVBAUTKEMwOUQxMkM3Q0EyRUI0RDM1Q0E1MEE5MzlEM0Q5Q0JF ODE3RTM5QUQwHhcNMjUwODMwMjExMjIyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzNjkzNi1iMGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pTftafSQO+GqvSOptq1x4GwUMkMFBBVhA3LrbwX+R/VyzSkxLsSuK6ycCji dnje0ZZYZLl4jNSWUuprFc9A5AJtUGsQJ61FxlnVi3mpBUGDF9TSi7v0ZkoNxSn0 1fsIZ71oDtGS8Rj5ZdUcF8QFbeRA2Que+n7XMR1AouNrH33TwLjmZrje210wkdfL 5XZVv/kNboM6S5L50hLpd0cuuJvOzrUf+RyF/mQccDWY5/kEGQW1UjL/8+oREhEa pqFq7UMgyvKpRjPd4CHkh/FGepebq/uhI1FmaUKLWaWpaD6VvIHrUieos18IvL6T pEz0zt5eTZLNt7x2LzEztsRRsQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFB68YeUb NltojQPkz8UuT7xFSA8tMB8GA1UdIwQYMBaAFMCdEsfKLrTTXKUKk509nL6Bfjmt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjE3Ni84OEFCOEU5NEM2 RkYxMUVBODI1MkUxMDlDNEY5QUUwMi93SjBTeDhvdXROTmNwUXFUblQyY3ZvRi1P YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dKMFN4OG91dE5OY3BRcVRuVDJjdm9GLU9hMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIxNzYvODhBQjhFOTRDNkZGMTFFQTgyNTJFMTA5QzRGOUFFMDIvNEE5Rjk1M0VF Mjk2MTFFRjhFMDY4OTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnmRIDBABnzx0wDwQCAAIwCQMHACABDfQpgDANBgkqhkiG 9w0BAQsFAAOCAQEAuzINO5RDn+6K3FgMaQd33UVUmJs1ZIV6W2RcE2axmIjBRxbD 3S9nkO+VbOHhYWw6ZBUZyT34VYM56YQnVXsCov2hrhdzE20dzmycwNtPBioOmJVN uSn7nG9AUafBy5tpsbpmdGQuZlezzXTCCvdUrN/BD/LQn/izm1Gjomxo/L9l06AD /6oy+eG/dXekQVzR0MtlYUW9wB33XCU+lo3calCvuE9OSPIsIncntJ5EOwfJlLnz /cd8jop5/BUWGPkwiptfl97anN/T8cny5CzvtWZTtJ2d5IPqXKjuHn7Ag2lmR1jB O5ynORKC23JKPHilToJWJMnAzdUCExlT7KhkAw== -----END CERTIFICATE-----Generated at Fri Nov 7 11:51:31 2025 by rpki-client