$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa File: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (raw, json) Hash identifier: NxTIAEmzVEkhnPtaZCQQUJAnARHilUKNCFgj1AKD+gg= Subject key identifier: E4:E0:F8:28:27:23:1A:6B:CE:BD:38:A3:08:AF:EE:14:18:9F:83:41 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 0181 Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa Signing time: Fri 09 May 2025 03:32:54 +0000 ROA not before: Fri 09 May 2025 03:32:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151480 IP address blocks: 103.243.100.0/23 maxlen: 23 202.53.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C, serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: May 9 03:32:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681d7765-4a0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d0:e9:1f:35:7d:e6:1f:52:57:db:57:91:04: ee:b5:9b:38:92:0f:d4:54:b8:47:33:12:87:a9:03: 77:14:d4:10:80:25:54:c4:25:30:08:38:6c:cd:82: 0f:7f:20:aa:6d:f5:4c:12:6a:05:3e:cd:2e:7f:be: db:86:e7:9a:93:ad:70:53:6a:b6:ec:b3:b7:7c:80: 10:da:16:38:57:de:da:e1:31:3b:9f:a4:91:69:80: ca:3d:37:65:3f:2e:b0:1e:f5:b7:51:69:2e:f6:b7: 54:48:77:70:1c:bc:a8:0e:da:7b:65:ce:f9:e4:79: de:88:6e:62:47:ae:34:1a:49:84:42:e3:4e:b0:4d: 56:51:04:18:fd:9b:d2:37:97:6a:8c:32:c2:de:d1: c3:05:cd:e5:2a:50:a7:fb:4c:0a:89:c4:5e:cf:7d: 3c:bf:2d:a2:0b:35:ea:0e:e2:a5:2f:6d:63:34:a5: 82:03:62:09:9a:36:47:bf:00:ad:91:93:a9:af:b6: 14:35:c0:74:83:e8:9f:37:23:aa:1d:d9:cd:a1:e0: ee:0f:80:60:d9:03:df:0e:91:b6:1b:b7:b8:6e:bc: 86:c6:42:1d:61:01:dc:51:b5:64:a5:4b:c3:85:0d: dc:67:0e:d5:2a:6b:24:41:de:e8:bd:96:57:98:e2: ae:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E0:F8:28:27:23:1A:6B:CE:BD:38:A3:08:AF:EE:14:18:9F:83:41 X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/FFCE072E2B8111EE9BDEC079C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.100.0/23 202.53.0.0/22 Signature Algorithm: sha256WithRSAEncryption b9:8b:89:55:58:ac:56:04:1a:48:58:53:3e:46:ce:9d:8c:27: 81:55:ac:95:2d:cc:7e:29:f6:08:0d:ca:84:b6:12:22:72:5e: 7a:1b:e9:16:ab:29:27:f7:03:f7:c5:b7:8b:d3:ba:9c:8a:71: 5a:5d:48:d3:00:06:0f:8d:f1:af:4f:95:94:83:fb:86:13:e0: eb:19:13:01:f6:cf:8d:e3:2b:3d:a1:d8:da:c8:af:75:6d:55: e6:03:e7:a8:c2:e3:f2:79:3c:9d:35:17:55:48:82:a5:15:33: d8:7d:2e:d9:71:51:f2:27:d5:35:c9:5b:58:7e:9e:89:2e:0d: 72:76:76:fd:23:9b:26:7c:b1:bd:9d:3a:5e:02:4d:b3:6e:23: 8a:73:25:0a:81:3a:2a:02:cf:6d:88:60:cf:95:5a:be:31:a4: f9:ec:ab:34:0e:e8:ad:6d:e7:cf:70:3b:94:48:e4:ff:e2:4f: ab:fd:5d:98:3f:f5:dc:b6:41:fc:4a:44:5d:da:38:02:3a:f6: 1e:b0:5f:43:27:e5:02:57:66:5c:ee:ee:c8:c9:bb:14:b4:1f: bd:c6:3d:d2:b7:ad:4f:74:2d:c0:89:66:84:60:78:4e:c2:01: fb:ce:e8:de:0d:e5:c3:a5:af:a8:53:db:fe:06:0a:05:38:77: ee:85:0b:32 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjUwNTA5MDMzMjU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkNzc2NS00YTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdDpHzV95h9SV9tXkQTutZs4kg/UVLhHMxKHqQN3FNQQgCVUxCUwCDhszYIP fyCqbfVMEmoFPs0uf77bhueak61wU2q27LO3fIAQ2hY4V97a4TE7n6SRaYDKPTdl Py6wHvW3UWku9rdUSHdwHLyoDtp7Zc755HneiG5iR640GkmEQuNOsE1WUQQY/ZvS N5dqjDLC3tHDBc3lKlCn+0wKicRez308vy2iCzXqDuKlL21jNKWCA2IJmjZHvwCt kZOpr7YUNcB0g+ifNyOqHdnNoeDuD4Bg2QPfDpG2G7e4bryGxkIdYQHcUbVkpUvD hQ3cZw7VKmskQd7ovZZXmOKupQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOTg+Cgn Ixprzr04owiv7hQYn4NBMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE2NEMvRTFBNTQ2MjZGNzk4MTFFRDk2Nzc3MTI0QzRGOUFFMDIvRkZDRTA3MkUy QjgxMTFFRTlCREVDMDc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFn82QDBALKNQAwDQYJKoZIhvcNAQELBQADggEBALmLiVVY rFYEGkhYUz5Gzp2MJ4FVrJUtzH4p9ggNyoS2EiJyXnob6RarKSf3A/fFt4vTupyK cVpdSNMABg+N8a9PlZSD+4YT4OsZEwH2z43jKz2h2NrIr3VtVeYD56jC4/J5PJ01 F1VIgqUVM9h9LtlxUfIn1TXJW1h+nokuDXJ2dv0jmyZ8sb2dOl4CTbNuI4pzJQqB OioCz22IYM+VWr4xpPnsqzQO6K1t589wO5RI5P/iT6v9XZg/9dy2QfxKRF3aOAI6 9h6wX0Mn5QJXZlzu7sjJuxS0H73GPdK3rU90LcCJZoRgeE7CAfvO6N4N5cOlr6hT 2/4GCgU4d+6FCzI= -----END CERTIFICATE-----Generated at Tue Nov 4 16:43:34 2025 by rpki-client