$ rpki-client -vvf rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa File: 4FCB21E6E05211EE8AEC805CC4F9AE02.roa (raw, json) Hash identifier: wmkDssXbtEkuG+Z3xdoaFG0tMpuTld+MRfVztfCufos= Subject key identifier: 08:29:98:34:F2:EC:CE:21:EB:6C:DE:E7:94:E9:16:A3:FD:73:BF:74 Certificate issuer: /CN=A91F378B/serialNumber=318553ED09C200958CB15DCCE277CC48AA42A388 Certificate serial: 0130 Authority key identifier: 31:85:53:ED:09:C2:00:95:8C:B1:5D:CC:E2:77:CC:48:AA:42:A3:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa Signing time: Thu 23 Oct 2025 06:48:35 +0000 ROA not before: Thu 23 Oct 2025 06:48:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9237 IP address blocks: 203.91.128.0/19 maxlen: 24 2406:af40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.crl rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F378B, serialNumber=318553ED09C200958CB15DCCE277CC48AA42A388 Validity Not Before: Oct 23 06:48:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f9cfc2-6cce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e8:17:0b:e0:ef:30:d7:02:e2:ac:27:c5:23: a9:ec:68:ba:98:8f:0e:e8:24:a2:54:87:d6:b9:c1: 74:cd:70:4b:26:a8:69:c4:16:bc:f7:3d:7d:df:33: 87:e4:48:a7:76:eb:55:3b:fa:1f:e7:9a:b7:16:44: 05:0f:40:da:dd:52:dc:3c:2e:6c:da:82:65:16:b8: 06:df:4b:e2:b0:2a:d9:1f:47:bb:99:19:80:25:8b: 64:05:0b:43:47:39:c2:0d:62:44:14:52:d5:ce:61: d0:ee:24:80:1a:4c:ff:d4:3c:db:b2:90:c8:2f:9f: 6b:05:c4:1f:98:5f:16:04:43:b2:ae:80:44:a5:a1: 7f:8c:6c:66:65:38:70:fa:de:95:d6:c6:c5:c4:43: ea:04:8d:b1:a3:2e:70:f9:6e:49:b0:bf:02:cd:39: 01:ff:8e:23:ea:2a:22:a8:fd:ed:0f:05:82:78:3d: b5:8d:3a:53:e7:da:98:19:a3:21:ac:dd:70:f5:d3: a2:96:e1:25:90:50:7a:70:8c:4d:77:09:87:26:88: 73:66:e4:32:05:21:d6:ab:6d:8b:10:6c:1e:60:ae: 6d:c4:dd:02:63:9b:f7:84:31:62:f1:db:48:20:52: e1:58:43:1f:d1:71:83:cd:69:b1:d7:70:30:ee:6d: 04:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:29:98:34:F2:EC:CE:21:EB:6C:DE:E7:94:E9:16:A3:FD:73:BF:74 X509v3 Authority Key Identifier: keyid:31:85:53:ED:09:C2:00:95:8C:B1:5D:CC:E2:77:CC:48:AA:42:A3:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.91.128.0/19 IPv6: 2406:af40::/32 Signature Algorithm: sha256WithRSAEncryption 96:4e:9b:b2:2a:a9:e9:48:55:de:aa:fd:76:6b:af:b7:e9:9f: ba:e4:01:87:41:cb:32:9b:bd:d0:01:4a:a4:b2:22:4f:c3:1f: d1:66:22:32:ed:57:8d:be:7b:9f:59:99:5d:68:4b:9c:1a:dc: ee:b9:5c:df:2d:e7:4f:79:13:5a:57:dd:eb:41:de:b9:d9:23: 56:96:25:67:d1:1f:69:81:29:b5:64:36:8d:c0:ce:1c:7d:ee: d5:16:3e:fe:ae:7e:f1:7c:6b:7a:2e:17:10:99:6e:bc:d0:98: 38:3d:6a:34:fd:2e:88:4d:ab:1e:14:bd:04:16:0c:e9:b1:fa: f9:3b:02:a4:cd:57:97:7e:67:aa:eb:01:88:35:78:66:33:9d: 14:fa:a9:ba:07:37:77:2b:08:14:8a:12:42:70:4a:ae:73:4b: 58:f5:a3:7a:0c:b5:ae:fa:24:b6:8c:b3:fe:db:96:cb:e6:79: a3:a4:23:d1:e4:2c:62:3b:a4:df:3b:ca:73:47:f1:1f:a8:c1: e0:7b:57:22:d1:8c:be:39:c3:ed:92:21:18:65:6a:25:95:27: bf:cb:e2:f6:ad:90:c1:09:8e:16:a8:20:7c:1d:6f:60:d6:0e: 09:10:ba:0f:9d:52:9d:c2:9c:17:83:ed:c2:5c:19:06:eb:51: ff:3b:ce:07 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM3OEIxMTAvBgNVBAUTKDMxODU1M0VEMDlDMjAwOTU4Q0IxNURDQ0UyNzdDQzQ4 QUE0MkEzODgwHhcNMjUxMDIzMDY0ODM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5Y2ZjMi02Y2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+gXC+DvMNcC4qwnxSOp7Gi6mI8O6CSiVIfWucF0zXBLJqhpxBa89z193zOH 5EindutVO/of55q3FkQFD0Da3VLcPC5s2oJlFrgG30visCrZH0e7mRmAJYtkBQtD RznCDWJEFFLVzmHQ7iSAGkz/1DzbspDIL59rBcQfmF8WBEOyroBEpaF/jGxmZThw +t6V1sbFxEPqBI2xoy5w+W5JsL8CzTkB/44j6ioiqP3tDwWCeD21jTpT59qYGaMh rN1w9dOiluElkFB6cIxNdwmHJohzZuQyBSHWq22LEGweYK5txN0CY5v3hDFi8dtI IFLhWEMf0XGDzWmx13Aw7m0EIwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAgpmDTy 7M4h62ze55TpFqP9c790MB8GA1UdIwQYMBaAFDGFU+0JwgCVjLFdzOJ3zEiqQqOI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzc4Qi9DMTNBQTc3NkUw NTExMUVFQjVCMDkyNUJDNEY5QUUwMi9NWVZUN1FuQ0FKV01zVjNNNG5mTVNLcENv NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01ZVlQ3UW5DQUpXTXNWM000bmZNU0twQ280Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM3OEIvQzEzQUE3NzZFMDUxMTFFRUI1QjA5MjVCQzRGOUFFMDIvNEZDQjIxRTZF MDUyMTFFRThBRUM4MDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXLW4AwDQQCAAIwBwMFACQGr0AwDQYJKoZIhvcNAQELBQAD ggEBAJZOm7IqqelIVd6q/XZrr7fpn7rkAYdByzKbvdABSqSyIk/DH9FmIjLtV42+ e59ZmV1oS5wa3O65XN8t5095E1pX3etB3rnZI1aWJWfRH2mBKbVkNo3Azhx97tUW Pv6ufvF8a3ouFxCZbrzQmDg9ajT9LohNqx4UvQQWDOmx+vk7AqTNV5d+Z6rrAYg1 eGYznRT6qboHN3crCBSKEkJwSq5zS1j1o3oMta76JLaMs/7blsvmeaOkI9HkLGI7 pN87ynNH8R+oweB7VyLRjL45w+2SIRhlaiWVJ7/L4vatkMEJjhaoIHwdb2DWDgkQ ug+dUp3CnBeD7cJcGQbrUf87zgc= -----END CERTIFICATE-----Generated at Wed Nov 5 12:44:45 2025 by rpki-client