$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/C9104DDAF63511EE9461F649C4F9AE02.roa File: C9104DDAF63511EE9461F649C4F9AE02.roa (raw, json) Hash identifier: 5yzlKlMAZKx7ZaDS6lxrvNLvX0b2HNK+sHE9yk3N0Zo= Subject key identifier: 60:68:B1:B2:B9:AD:F4:D2:01:90:60:3A:70:82:C6:F7:0A:6A:9B:28 Certificate issuer: /CN=A91FCA1E/serialNumber=8E650A712DC84F22B89B8F18B864C29F9DD713C5 Certificate serial: 013C Authority key identifier: 8E:65:0A:71:2D:C8:4F:22:B8:9B:8F:18:B8:64:C2:9F:9D:D7:13:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jmUKcS3ITyK4m48YuGTCn53XE8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/C9104DDAF63511EE9461F649C4F9AE02.roa Signing time: Fri 31 Oct 2025 06:06:44 +0000 ROA not before: Fri 31 Oct 2025 06:06:44 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 4797 IP address blocks: 202.81.133.0/24 maxlen: 24 202.81.136.0/24 maxlen: 24 202.81.139.0/24 maxlen: 24 202.81.145.0/24 maxlen: 24 202.81.147.0/24 maxlen: 24 202.81.148.0/24 maxlen: 24 202.81.149.0/24 maxlen: 24 202.81.150.0/24 maxlen: 24 202.81.152.0/24 maxlen: 24 202.81.155.0/24 maxlen: 24 202.81.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/jmUKcS3ITyK4m48YuGTCn53XE8U.crl rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/jmUKcS3ITyK4m48YuGTCn53XE8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jmUKcS3ITyK4m48YuGTCn53XE8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCA1E, serialNumber=8E650A712DC84F22B89B8F18B864C29F9DD713C5 Validity Not Before: Oct 31 06:06:44 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=690451f4-6215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d5:d8:dd:34:7b:8a:c7:7f:32:db:3e:1c:4d: 70:10:80:1e:0c:ba:e6:0a:5b:69:db:7f:90:da:1a: ef:af:87:4f:ba:61:51:9f:a7:7f:49:88:92:b2:35: d5:15:6f:8b:dc:2d:9d:6b:ca:f1:a2:16:5d:69:fd: 31:2c:30:29:a1:cb:50:77:39:e5:2b:cd:a1:65:68: d6:f1:7c:6c:f5:70:5d:12:c8:f8:69:25:59:66:c2: 2b:72:ad:31:a3:9a:86:73:8c:7b:3a:14:88:23:45: a2:63:e5:45:78:f7:fd:c4:b1:9b:9a:56:d6:96:1e: 17:66:a9:b5:f5:51:7b:a2:a2:c9:ff:22:0f:bc:c2: 44:12:8f:02:b2:78:99:4c:89:b5:05:9e:5d:6d:5f: 95:a0:62:c8:f9:50:35:83:ba:1a:91:8e:ca:e1:25: 3a:6a:c4:e6:b0:cb:6f:e5:9e:9f:da:a3:39:40:95: 90:a1:1f:6c:26:0a:8b:2e:3c:e7:ec:02:14:c4:89: 91:51:34:97:1a:59:59:75:78:ef:fa:83:42:20:72: 37:ac:6b:ce:1b:a5:aa:2f:1b:84:41:2c:61:c4:76: 16:b1:bd:e4:3d:98:2f:04:2c:fe:a2:e4:8c:a6:25: 9f:ae:e9:84:5f:04:ad:8d:2a:34:2b:e0:50:94:b3: 1d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:68:B1:B2:B9:AD:F4:D2:01:90:60:3A:70:82:C6:F7:0A:6A:9B:28 X509v3 Authority Key Identifier: keyid:8E:65:0A:71:2D:C8:4F:22:B8:9B:8F:18:B8:64:C2:9F:9D:D7:13:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/jmUKcS3ITyK4m48YuGTCn53XE8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jmUKcS3ITyK4m48YuGTCn53XE8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/C9104DDAF63511EE9461F649C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.81.133.0/24 202.81.136.0/24 202.81.139.0/24 202.81.145.0/24 202.81.147.0-202.81.150.255 202.81.152.0/24 202.81.155.0/24 202.81.157.0/24 Signature Algorithm: sha256WithRSAEncryption 55:95:1d:68:8e:3d:94:85:8c:e7:9a:31:45:5d:fd:fc:e2:ce: e1:0c:13:62:0c:cc:53:54:1a:2c:ad:0d:66:72:54:d4:20:ad: fe:3d:f9:b2:cd:37:0f:70:e7:22:d4:2f:bd:af:df:db:b3:d6: 25:2f:a7:6a:3a:ca:7e:ae:3f:a4:35:e2:63:d4:5e:c7:36:0a: 36:10:0d:e2:ac:0d:3b:44:f1:03:05:18:23:0b:78:b3:04:2a: 42:aa:4a:64:0d:d7:aa:db:d7:29:58:c9:cb:6e:18:2b:21:d2: 80:e3:f2:eb:1c:9c:d1:83:4f:0f:83:65:ca:b9:e8:33:a6:08: 39:40:dc:c5:27:80:9c:a7:98:a9:e2:8d:96:b3:a3:c0:d0:11: 75:59:42:40:3d:16:1c:55:18:45:02:3d:53:ab:44:bc:68:73: 39:61:bc:eb:d6:f8:77:56:d5:76:99:8d:64:4f:64:fd:55:92: ba:37:13:a5:f8:8f:69:c1:e2:39:d1:fb:73:4c:fe:9f:45:fe: 31:e1:5b:4f:7c:de:6d:3d:1b:85:49:73:fa:7b:68:77:1d:40: 63:59:e9:b0:ab:ea:90:e1:3e:a0:3b:5f:58:13:a0:dc:77:b4: 3e:e8:66:a2:13:4a:b0:50:1c:d1:58:5b:1e:b8:ea:26:fb:b7: 07:6e:55:15 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBMUUxMTAvBgNVBAUTKDhFNjUwQTcxMkRDODRGMjJCODlCOEYxOEI4NjRDMjlG OURENzEzQzUwHhcNMjUxMDMxMDYwNjQ0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0NTFmNC02MjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptXY3TR7isd/Mts+HE1wEIAeDLrmCltp23+Q2hrvr4dPumFRn6d/SYiSsjXV FW+L3C2da8rxohZdaf0xLDApoctQdznlK82hZWjW8Xxs9XBdEsj4aSVZZsIrcq0x o5qGc4x7OhSII0WiY+VFePf9xLGbmlbWlh4XZqm19VF7oqLJ/yIPvMJEEo8CsniZ TIm1BZ5dbV+VoGLI+VA1g7oakY7K4SU6asTmsMtv5Z6f2qM5QJWQoR9sJgqLLjzn 7AIUxImRUTSXGllZdXjv+oNCIHI3rGvOG6WqLxuEQSxhxHYWsb3kPZgvBCz+ouSM piWfrumEXwStjSo0K+BQlLMdKQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFGBosbK5 rfTSAZBgOnCCxvcKapsoMB8GA1UdIwQYMBaAFI5lCnEtyE8iuJuPGLhkwp+d1xPF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0ExRS9GMDA2MkYyOEY2 MzQxMUVFOEFFQUM3NDdDNEY5QUUwMi9qbVVLY1MzSVR5SzRtNDhZdUdUQ241M1hF OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ptVUtjUzNJVHlLNG00OFl1R1RDbjUzWEU4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkNBMUUvRjAwNjJGMjhGNjM0MTFFRThBRUFDNzQ3QzRGOUFFMDIvQzkxMDREREFG NjM1MTFFRTk0NjFGNjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMD4EAgABMDgDBADKUYUDBADKUYgDBADKUYsDBADKUZEwDAMEAMpRkwMEAMpR lgMEAMpRmAMEAMpRmwMEAMpRnTANBgkqhkiG9w0BAQsFAAOCAQEAVZUdaI49lIWM 55oxRV39/OLO4QwTYgzMU1QaLK0NZnJU1CCt/j35ss03D3DnItQvva/f27PWJS+n ajrKfq4/pDXiY9RexzYKNhAN4qwNO0TxAwUYIwt4swQqQqpKZA3XqtvXKVjJy24Y KyHSgOPy6xyc0YNPD4NlyrnoM6YIOUDcxSeAnKeYqeKNlrOjwNARdVlCQD0WHFUY RQI9U6tEvGhzOWG869b4d1bVdpmNZE9k/VWSujcTpfiPacHiOdH7c0z+n0X+MeFb T3zebT0bhUlz+ntodx1AY1npsKvqkOE+oDtfWBOg3He0PuhmohNKsFAc0VhbHrjq Jvu3B25VFQ== -----END CERTIFICATE-----Generated at Wed Nov 5 13:47:15 2025 by rpki-client