$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/62BA539C48ED11EDBC251337C4F9AE02.roa File: 62BA539C48ED11EDBC251337C4F9AE02.roa (raw, json) Hash identifier: +juOaIxrjQ6IhGwMB3Bm9h5unXUiB8xR+dHj1D1njhA= Subject key identifier: 5C:6B:D7:E2:7B:6B:2F:3C:4C:DA:44:37:29:A3:22:80:52:18:79:20 Certificate issuer: /CN=A91E3FD3/serialNumber=2C7333DBCD3FCA0787803837B6CBAE31AC0C4B65 Certificate serial: 0DA3 Authority key identifier: 2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/62BA539C48ED11EDBC251337C4F9AE02.roa Signing time: Thu 30 Oct 2025 18:06:51 +0000 ROA not before: Thu 30 Oct 2025 18:06:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138338 IP address blocks: 103.130.168.0/22 maxlen: 22 103.130.168.0/24 maxlen: 24 103.130.169.0/24 maxlen: 24 103.130.170.0/24 maxlen: 24 103.130.171.0/24 maxlen: 24 2403:bdc0::/32 maxlen: 32 2403:bdc0::/36 maxlen: 36 2403:bdc0:1000::/36 maxlen: 36 2403:bdc0:2000::/36 maxlen: 36 2403:bdc0:3000::/36 maxlen: 36 2403:bdc0:4000::/36 maxlen: 36 2403:bdc0:5000::/36 maxlen: 36 2403:bdc0:6000::/36 maxlen: 36 2403:bdc0:7000::/36 maxlen: 36 2403:bdc0:8000::/36 maxlen: 36 2403:bdc0:9000::/36 maxlen: 36 2403:bdc0:a000::/36 maxlen: 36 2403:bdc0:b000::/36 maxlen: 36 2403:bdc0:c000::/36 maxlen: 36 2403:bdc0:d000::/36 maxlen: 36 2403:bdc0:e000::/36 maxlen: 36 2403:bdc0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.crl rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3491 (0xda3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3FD3, serialNumber=2C7333DBCD3FCA0787803837B6CBAE31AC0C4B65 Validity Not Before: Oct 30 18:06:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6903a93b-5ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:76:a2:38:50:71:cb:b6:dc:cd:b2:c9:83:fe: 3f:04:14:84:9d:41:d8:03:fb:ef:74:c0:25:14:55: 91:84:3a:6a:1c:db:04:11:fa:ee:02:f3:69:ca:6d: df:1c:23:dc:a7:7e:b6:c3:e5:ac:4c:5b:af:3a:99: 89:4c:a0:eb:a8:70:1f:67:e0:e4:73:ab:e6:c5:b9: 08:87:28:6e:f1:b4:31:c1:80:3e:52:8d:00:9c:85: 0e:e8:80:d2:ed:2a:c7:2c:39:27:d3:c3:51:c6:69: 96:8b:8d:74:28:c0:80:7f:b8:8c:bf:79:e1:fb:c1: 92:02:eb:7a:d5:86:ed:1e:ec:b8:64:36:c9:52:eb: 06:a2:d7:a9:81:8c:78:0f:d4:a7:10:06:42:17:17: 0b:ac:71:7e:0e:b3:bd:1e:92:89:24:08:bf:5c:5f: 4a:09:12:6e:65:92:cc:a7:37:aa:7e:72:e6:cb:55: 7c:2a:8b:f6:62:fc:72:41:6d:93:eb:33:03:f8:75: bf:f4:6d:4f:fe:a0:f8:35:34:5d:75:eb:e6:76:6d: 94:8e:a7:c8:69:51:43:f4:26:7e:86:c0:0a:8e:cc: e4:9c:57:d4:a8:49:6d:d0:63:1d:ef:a8:e4:c1:4f: 00:19:8e:02:fc:a0:a1:ce:74:18:73:32:61:83:b1: d0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:6B:D7:E2:7B:6B:2F:3C:4C:DA:44:37:29:A3:22:80:52:18:79:20 X509v3 Authority Key Identifier: keyid:2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/62BA539C48ED11EDBC251337C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.168.0/22 IPv6: 2403:bdc0::/32 Signature Algorithm: sha256WithRSAEncryption a2:4f:74:fe:ef:70:8a:58:2f:de:a7:9b:e3:fb:36:cf:8c:d4: ce:e6:41:f9:a5:83:31:06:f6:03:e2:88:29:f9:c2:b0:05:45: f9:2a:43:fe:68:74:67:a2:6d:66:00:4b:3e:8d:47:cd:37:8c: 5b:f5:5a:4c:1d:01:c3:ce:16:6e:9e:cf:41:dc:df:1c:a3:87: 35:4b:41:0a:c0:b3:39:92:d7:3f:f7:9c:b4:b2:87:e8:9c:c9: 85:dc:be:ee:83:a0:b1:94:96:32:67:86:0a:c8:ff:a3:6c:c5: 61:5d:1d:57:3c:a8:21:5d:81:e5:cc:9a:d1:b8:1b:4c:18:65: 23:c9:86:14:a4:34:0f:ef:9d:bd:74:aa:7a:a4:7a:2b:8b:2d: 35:16:ad:42:ca:2d:7d:8d:a2:44:b1:57:c9:d1:82:56:e7:99: 6a:e0:c4:71:76:c6:f4:13:9f:0e:3b:a7:7d:c8:f5:ea:30:68: 7c:2e:f8:0c:9d:88:80:8f:5f:1f:b8:2f:4d:86:2f:f9:53:e8: 55:9c:dc:38:41:08:fd:b4:cd:c0:47:86:fc:f7:aa:d9:11:e0: e9:c4:eb:82:67:41:1b:77:69:68:67:6c:3f:57:31:ab:5a:83: 29:b3:b8:58:65:30:f2:10:f3:49:dc:ad:ce:81:cd:7a:41:b5: bc:67:2b:2a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGRDMxMTAvBgNVBAUTKDJDNzMzM0RCQ0QzRkNBMDc4NzgwMzgzN0I2Q0JBRTMx QUMwQzRCNjUwHhcNMjUxMDMwMTgwNjUxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzYTkzYi01ZWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHaiOFBxy7bczbLJg/4/BBSEnUHYA/vvdMAlFFWRhDpqHNsEEfruAvNpym3f HCPcp362w+WsTFuvOpmJTKDrqHAfZ+Dkc6vmxbkIhyhu8bQxwYA+Uo0AnIUO6IDS 7SrHLDkn08NRxmmWi410KMCAf7iMv3nh+8GSAut61YbtHuy4ZDbJUusGotepgYx4 D9SnEAZCFxcLrHF+DrO9HpKJJAi/XF9KCRJuZZLMpzeqfnLmy1V8Kov2YvxyQW2T 6zMD+HW/9G1P/qD4NTRddevmdm2UjqfIaVFD9CZ+hsAKjszknFfUqElt0GMd76jk wU8AGY4C/KChznQYczJhg7HQmwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFxr1+J7 ay88TNpENymjIoBSGHkgMB8GA1UdIwQYMBaAFCxzM9vNP8oHh4A4N7bLrjGsDEtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0ZEMy8yMURFNUI5QUQ0 OTUxMUU5QTI3REM5MkZDNEY5QUUwMi9MSE16MjgwX3lnZUhnRGczdHN1dU1hd01T MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xITXoyODBfeWdlSGdEZzN0c3V1TWF3TVMyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNGRDMvMjFERTVCOUFENDk1MTFFOUEyN0RDOTJGQzRGOUFFMDIvNjJCQTUzOUM0 OEVEMTFFREJDMjUxMzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJngqgwDQQCAAIwBwMFACQDvcAwDQYJKoZIhvcNAQELBQAD ggEBAKJPdP7vcIpYL96nm+P7Ns+M1M7mQfmlgzEG9gPiiCn5wrAFRfkqQ/5odGei bWYASz6NR803jFv1WkwdAcPOFm6ez0Hc3xyjhzVLQQrAszmS1z/3nLSyh+icyYXc vu6DoLGUljJnhgrI/6NsxWFdHVc8qCFdgeXMmtG4G0wYZSPJhhSkNA/vnb10qnqk eiuLLTUWrULKLX2NokSxV8nRglbnmWrgxHF2xvQTnw47p33I9eowaHwu+AydiICP Xx+4L02GL/lT6FWc3DhBCP20zcBHhvz3qtkR4OnE64JnQRt3aWhnbD9XMatagymz uFhlMPIQ80ncrc6BzXpBtbxnKyo= -----END CERTIFICATE-----Generated at Wed Nov 5 20:55:09 2025 by rpki-client