$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa File: 09182D38084E11EF89D29620C4F9AE02.roa (raw, json) Hash identifier: Mr4cvAF99YsJ9vM3bpplyr/XjV6Oh9dCkUlGWW3glRM= Subject key identifier: 66:6F:38:79:AA:01:6C:37:A6:A6:0E:18:4E:AB:C1:D6:33:69:5C:DB Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 05A8 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa Signing time: Tue 05 Aug 2025 03:57:31 +0000 ROA not before: Tue 05 Aug 2025 03:57:31 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 45577 IP address blocks: 103.82.109.0/24 maxlen: 24 111.125.176.0/24 maxlen: 24 111.125.180.0/24 maxlen: 24 111.125.184.0/24 maxlen: 24 111.125.185.0/24 maxlen: 24 223.25.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:10:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1448 (0x5a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Aug 5 03:57:31 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6891812b-7785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8d:a1:1f:5e:ff:b5:04:01:22:07:98:37:44: 52:c3:f9:e1:01:87:11:03:b4:90:5f:76:ae:e2:81: bb:b7:e8:2b:7e:63:88:6c:5c:f5:2d:66:3d:02:d8: 8d:e8:bb:5b:ca:b9:dc:6b:be:0c:09:59:0a:28:bf: 33:4c:f8:d5:0b:a5:0e:15:bc:d4:01:ee:ea:ac:75: a6:7b:87:72:a2:bf:72:97:21:91:34:bf:07:a0:04: ff:d3:69:2b:a9:de:b7:1f:63:ba:27:35:6c:3a:94: dc:79:a2:a3:85:32:36:11:74:4b:db:10:dd:b7:8e: 18:67:68:71:e7:ad:18:2e:a0:78:a3:a3:63:2e:e9: b4:39:88:67:fb:cd:f2:b8:73:11:78:ed:de:2f:60: 1f:80:c6:96:41:c7:85:69:12:e5:23:47:21:e0:a2: d3:ff:de:c7:b8:c5:9a:3f:a6:ff:8a:55:39:ef:83: 4c:0e:c7:62:c3:69:d4:1a:87:01:f2:1d:0d:50:c5: ea:93:d1:35:aa:df:83:5f:ea:e9:08:2b:f3:54:7d: 40:e9:8c:79:40:63:3e:e8:b0:7a:f6:62:70:47:4a: 33:28:ff:36:33:62:d8:53:28:77:66:40:05:48:27: 84:60:50:0b:f8:a4:87:26:42:a7:78:89:61:b0:73: 8c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:6F:38:79:AA:01:6C:37:A6:A6:0E:18:4E:AB:C1:D6:33:69:5C:DB X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.109.0/24 111.125.176.0/24 111.125.180.0/24 111.125.184.0/23 223.25.224.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:d4:3f:03:4e:e2:67:b6:58:34:59:e5:5d:5b:9c:40:3e:a0: 17:bd:dc:62:59:25:12:b0:8e:2c:3c:56:c6:4f:69:8e:df:8c: 64:5f:0a:aa:4e:63:73:d8:30:86:e4:87:70:d7:43:e3:70:e5: 0f:b3:34:cc:1f:2e:e0:01:6c:86:ac:02:d3:70:af:f4:d7:91: 4c:70:fc:b9:75:d6:13:0b:fc:6a:0c:72:cb:a3:95:24:fa:21: 42:e8:01:9a:42:d3:9d:14:5b:0a:64:0f:31:54:1c:94:ea:61: d6:c3:8f:75:ab:9b:32:fd:c1:b3:fb:a6:43:d9:cf:fb:61:bc: e2:7a:a4:29:11:35:8b:ba:41:49:82:4f:4e:9a:8e:66:51:b6: f7:59:ef:ef:a5:3f:54:29:9c:5b:41:01:bd:cf:01:a4:ab:39: 3d:4f:a4:ad:31:f1:95:ce:79:f4:09:83:22:ed:43:f3:7e:0a: 85:57:15:ea:6a:47:ab:40:0f:9f:17:99:a7:9a:5b:7f:27:34: 3d:ab:e6:68:45:e9:62:57:15:bc:38:29:f3:eb:b3:b5:a4:6e: fb:0a:ab:9d:be:80:ae:bb:34:9b:d2:7c:2b:95:c5:14:5b:21: 07:4b:5d:73:b5:4e:d7:85:20:7d:8f:19:c1:a6:ae:b9:f9:a3: a0:f7:e8:d7 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICBagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwODA1MDM1NzMxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxODEyYi03Nzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArY2hH17/tQQBIgeYN0RSw/nhAYcRA7SQX3au4oG7t+grfmOIbFz1LWY9AtiN 6Ltbyrnca74MCVkKKL8zTPjVC6UOFbzUAe7qrHWme4dyor9ylyGRNL8HoAT/02kr qd63H2O6JzVsOpTceaKjhTI2EXRL2xDdt44YZ2hx560YLqB4o6NjLum0OYhn+83y uHMReO3eL2AfgMaWQceFaRLlI0ch4KLT/97HuMWaP6b/ilU574NMDsdiw2nUGocB 8h0NUMXqk9E1qt+DX+rpCCvzVH1A6Yx5QGM+6LB69mJwR0ozKP82M2LYUyh3ZkAF SCeEYFAL+KSHJkKneIlhsHOMmQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFGZvOHmq AWw3pqYOGE6rwdYzaVzbMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY1RTQvRUQwNzlERkVFMzg0MTFFQkE4NTkzQjY1QzRGOUFFMDIvMDkxODJEMzgw ODRFMTFFRjg5RDI5NjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBABnUm0DBABvfbADBABvfbQDBAFvfbgDBALfGeAwDQYJKoZI hvcNAQELBQADggEBAFzUPwNO4me2WDRZ5V1bnEA+oBe93GJZJRKwjiw8VsZPaY7f jGRfCqpOY3PYMIbkh3DXQ+Nw5Q+zNMwfLuABbIasAtNwr/TXkUxw/Ll11hML/GoM csujlST6IULoAZpC050UWwpkDzFUHJTqYdbDj3WrmzL9wbP7pkPZz/thvOJ6pCkR NYu6QUmCT06ajmZRtvdZ7++lP1QpnFtBAb3PAaSrOT1PpK0x8ZXOefQJgyLtQ/N+ CoVXFepqR6tAD58XmaeaW38nND2r5mhF6WJXFbw4KfPrs7WkbvsKq52+gK67NJvS fCuVxRRbIQdLXXO1TteFIH2PGcGmrrn5o6D36Nc= -----END CERTIFICATE-----Generated at Wed Nov 5 08:57:30 2025 by rpki-client