$ rpki-client -vvf rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/5A0EFF08D55011EF9880B254C4F9AE02.roa File: 5A0EFF08D55011EF9880B254C4F9AE02.roa (raw, json) Hash identifier: dxa4kBT2lvl3oboOGNPEyKat95ik2LOjHGB6LQMSuIY= Subject key identifier: BB:33:CE:34:4C:93:12:3B:C3:D4:92:AB:4C:B4:5B:3A:98:03:99:61 Certificate issuer: /CN=A91400CC/serialNumber=2758C6CF8B528966D43713BB1BCE8E03DCA61B1C Certificate serial: 037C Authority key identifier: 27:58:C6:CF:8B:52:89:66:D4:37:13:BB:1B:CE:8E:03:DC:A6:1B:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J1jGz4tSiWbUNxO7G86OA9ymGxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/5A0EFF08D55011EF9880B254C4F9AE02.roa Signing time: Sat 11 Oct 2025 03:27:52 +0000 ROA not before: Sat 11 Oct 2025 03:27:52 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153494 IP address blocks: 43.248.60.0/22 maxlen: 24 103.39.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/J1jGz4tSiWbUNxO7G86OA9ymGxw.crl rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/J1jGz4tSiWbUNxO7G86OA9ymGxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J1jGz4tSiWbUNxO7G86OA9ymGxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 892 (0x37c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91400CC, serialNumber=2758C6CF8B528966D43713BB1BCE8E03DCA61B1C Validity Not Before: Oct 11 03:27:52 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e9ceb8-d854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:21:28:57:38:4d:d5:87:93:ae:8e:b6:eb:75: 60:f3:b7:5d:13:13:80:69:2f:34:f1:23:e4:8b:18: ee:78:32:45:14:c8:2a:0f:24:0f:9f:b4:23:7d:99: f7:5e:e9:10:85:d2:d9:7e:3b:79:05:9f:00:ec:e9: a5:db:0c:2e:59:b8:d5:99:08:d2:69:22:e0:3d:24: 42:01:0f:2e:e8:15:09:7d:f7:e7:11:71:44:d9:ee: cf:3d:de:9e:02:fa:a6:b5:28:08:cc:3d:e3:09:fb: 41:e9:dd:93:fd:05:cc:36:40:3f:03:4a:c1:ab:75: 5a:b1:ea:30:a1:62:8e:3c:70:b2:23:e3:65:51:f6: 65:79:44:ba:31:25:4d:93:58:ce:3a:b5:29:26:d8: 10:6b:ef:c3:68:ee:56:d4:ce:b8:58:02:c2:30:dc: c4:64:59:f8:ad:c9:3c:93:f9:f1:d0:be:64:01:81: bc:63:99:55:ce:10:fb:d2:51:c6:57:eb:fd:ad:27: 73:2d:74:5a:57:cf:fd:92:2b:5f:68:ce:0a:64:4a: f6:7c:73:74:ac:11:69:ee:ba:95:c0:4f:00:96:9e: fd:ac:d8:4f:ee:a1:ad:f2:a7:87:e6:15:9f:c5:f3: f8:67:36:c8:70:68:97:2a:6c:99:c6:3a:4c:30:03: ec:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:33:CE:34:4C:93:12:3B:C3:D4:92:AB:4C:B4:5B:3A:98:03:99:61 X509v3 Authority Key Identifier: keyid:27:58:C6:CF:8B:52:89:66:D4:37:13:BB:1B:CE:8E:03:DC:A6:1B:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/J1jGz4tSiWbUNxO7G86OA9ymGxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J1jGz4tSiWbUNxO7G86OA9ymGxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91400CC/B4A7CCE8C60211ECBEB9BF3AC4F9AE02/5A0EFF08D55011EF9880B254C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.60.0/22 103.39.148.0/22 Signature Algorithm: sha256WithRSAEncryption b1:fb:5b:67:37:4a:f3:a8:57:74:df:ec:04:93:d0:e0:79:8d: dc:89:4a:e6:ed:1c:fa:b4:ab:8d:fa:77:e4:fe:c4:ad:e9:74: c9:c0:4f:76:26:3a:b0:c4:8a:1b:7d:7a:59:e4:47:9b:ff:76: 3d:3e:1b:85:ff:09:af:89:d3:c7:73:db:3c:49:d0:ab:a9:69: 51:68:07:5b:a3:2b:bd:c5:eb:92:c5:01:80:9b:15:08:25:1e: 11:84:1b:f0:35:3a:fa:72:64:21:48:73:4e:60:be:4a:d5:d6: e3:ab:03:1b:8d:e4:28:df:ba:4e:81:4b:80:7f:42:49:e2:2c: 6d:c0:30:94:70:48:35:13:5d:d9:9f:1a:33:af:c5:9c:e3:0e: 23:8b:a5:0f:70:28:f4:f2:e7:be:8e:55:2f:58:bb:37:19:0a: ce:3b:49:72:fe:91:f4:ed:df:e6:14:5a:02:6b:bf:74:cf:4f: 9f:7d:70:18:f6:4d:e2:fd:3c:73:43:8a:b7:a8:e9:b4:05:7f: 49:fd:f0:19:7f:e7:7b:d6:ec:68:e8:84:44:ad:c8:86:40:1e: 24:cd:02:f8:ee:01:fd:2b:2e:22:4b:47:e1:85:4d:df:60:da: bb:97:e9:a9:c7:b8:07:6b:56:8a:be:84:a8:92:f2:b2:29:f1: 82:b5:fa:f2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAwQ0MxMTAvBgNVBAUTKDI3NThDNkNGOEI1Mjg5NjZENDM3MTNCQjFCQ0U4RTAz RENBNjFCMUMwHhcNMjUxMDExMDMyNzUyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU5Y2ViOC1kODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyEoVzhN1YeTro6263Vg87ddExOAaS808SPkixjueDJFFMgqDyQPn7QjfZn3 XukQhdLZfjt5BZ8A7Oml2wwuWbjVmQjSaSLgPSRCAQ8u6BUJfffnEXFE2e7PPd6e AvqmtSgIzD3jCftB6d2T/QXMNkA/A0rBq3VaseowoWKOPHCyI+NlUfZleUS6MSVN k1jOOrUpJtgQa+/DaO5W1M64WALCMNzEZFn4rck8k/nx0L5kAYG8Y5lVzhD70lHG V+v9rSdzLXRaV8/9kitfaM4KZEr2fHN0rBFp7rqVwE8Alp79rNhP7qGt8qeH5hWf xfP4ZzbIcGiXKmyZxjpMMAPsIwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLszzjRM kxI7w9SSq0y0WzqYA5lhMB8GA1UdIwQYMBaAFCdYxs+LUolm1DcTuxvOjgPcphsc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDBDQy9CNEE3Q0NFOEM2 MDIxMUVDQkVCOUJGM0FDNEY5QUUwMi9KMWpHejR0U2lXYlVOeE83Rzg2T0E5eW1H eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0oxakd6NHRTaVdiVU54TzdHODZPQTl5bUd4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAwQ0MvQjRBN0NDRThDNjAyMTFFQ0JFQjlCRjNBQzRGOUFFMDIvNUEwRUZGMDhE NTUwMTFFRjk4ODBCMjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+DwDBAJnJ5QwDQYJKoZIhvcNAQELBQADggEBALH7W2c3 SvOoV3Tf7AST0OB5jdyJSubtHPq0q436d+T+xK3pdMnAT3YmOrDEiht9elnkR5v/ dj0+G4X/Ca+J08dz2zxJ0KupaVFoB1ujK73F65LFAYCbFQglHhGEG/A1OvpyZCFI c05gvkrV1uOrAxuN5Cjfuk6BS4B/QkniLG3AMJRwSDUTXdmfGjOvxZzjDiOLpQ9w KPTy576OVS9YuzcZCs47SXL+kfTt3+YUWgJrv3TPT599cBj2TeL9PHNDireo6bQF f0n98Bl/53vW7GjohEStyIZAHiTNAvjuAf0rLiJLR+GFTd9g2ruX6anHuAdrVoq+ hKiS8rIp8YK1+vI= -----END CERTIFICATE-----Generated at Mon Oct 20 10:13:49 2025 by rpki-client