$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa File: 95DDE9D6909A11EF94AF3B26C4F9AE02.roa (raw, json) Hash identifier: CwtP2gwbfApArQJr3Z1hu1rrmy4N399m/4TAvngzADE= Subject key identifier: 9A:7C:4E:42:0D:C3:93:87:6D:EC:2B:80:A1:6A:B7:FA:3A:4F:56:10 Certificate issuer: /CN=A91A0D9C/serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Certificate serial: 14F1 Authority key identifier: FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa Signing time: Mon 16 Jun 2025 17:17:40 +0000 ROA not before: Mon 16 Jun 2025 17:17:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137491 IP address blocks: 103.110.96.0/22 maxlen: 24 2402:8640::/32 maxlen: 32 2402:8640::/48 maxlen: 48 2402:8640:1::/48 maxlen: 48 2402:8640:2::/48 maxlen: 48 2402:8640:3::/48 maxlen: 48 2402:8640:4::/48 maxlen: 48 2402:8640:5::/48 maxlen: 48 2402:8640:6::/48 maxlen: 48 2402:8640:7::/48 maxlen: 48 2402:8640:8::/48 maxlen: 48 2402:8640:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5361 (0x14f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0D9C, serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Validity Not Before: Jun 16 17:17:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=685051b3-cd1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:29:af:04:f2:7d:e7:07:e9:1b:d5:a5:75:2e: 26:86:f8:b4:70:1a:26:64:e9:07:33:8c:70:1b:9c: 46:e0:e6:da:b9:53:6d:2a:cc:0f:37:9c:e9:4a:78: 6e:db:c8:12:bc:f2:c7:c5:69:fd:59:13:15:af:d6: b6:6a:f7:d7:6a:35:f3:c2:5d:4d:e2:d0:e7:3e:13: 82:8d:61:10:47:8b:29:b9:d9:77:96:b6:b2:d6:f0: fd:96:cb:97:80:c1:5e:53:76:48:b8:c4:b7:8e:2b: c5:78:b4:ad:b4:9c:49:e6:e8:3a:05:bd:84:58:fb: 62:64:20:a4:bf:f9:97:bc:3a:d2:50:f5:56:5e:8c: b9:d4:08:ec:82:f3:d6:c4:f4:3a:e5:c2:a0:02:52: 42:a6:8a:b0:77:ac:53:f8:8e:4b:26:48:ed:6b:d6: 69:e1:0b:60:5e:24:66:50:2d:f8:26:37:a3:40:b3: b7:1e:1e:fb:a3:f1:f9:69:34:8c:d4:f9:61:ae:19: 65:a1:fe:d4:7c:6c:7a:a1:33:e6:40:0a:06:11:18: 7d:56:fa:7b:ae:68:5c:45:64:4b:63:2d:c9:a6:82: da:28:c1:2a:30:40:bc:64:fd:27:bc:64:29:dc:68: 99:8c:82:b2:ac:7d:14:b8:37:17:4c:b8:86:36:fb: 5b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:7C:4E:42:0D:C3:93:87:6D:EC:2B:80:A1:6A:B7:FA:3A:4F:56:10 X509v3 Authority Key Identifier: keyid:FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/95DDE9D6909A11EF94AF3B26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.96.0/22 IPv6: 2402:8640::/32 Signature Algorithm: sha256WithRSAEncryption 28:ca:d1:e7:92:4d:51:ad:ff:43:12:fa:a7:f3:a9:3b:b5:68: b2:6f:d0:94:cf:39:df:d0:b4:a2:b9:a2:71:ca:25:45:71:36: 84:3c:21:de:99:6e:6b:b4:b3:f2:02:f1:fe:2a:08:6d:de:95: a1:3a:c4:f5:4d:6a:93:c0:4b:af:ca:09:8f:43:f7:e7:47:26: 92:63:11:06:d1:ad:2d:1c:b8:a4:8d:96:bf:8b:a4:b4:85:c4: 31:13:75:6c:6d:b4:cf:71:fa:e5:96:10:e2:dd:b0:a5:78:73: 06:2a:cd:46:ba:09:4a:c0:31:79:23:e2:ee:4b:7d:e5:5e:f0: e0:e0:d7:e6:82:d8:90:9b:0f:fc:b8:64:da:44:d0:b6:16:76: c8:50:8b:69:6d:ff:57:74:6f:01:77:04:18:b8:5f:b7:cd:b0: 52:41:06:11:9f:35:03:b5:c9:0c:5d:0b:1c:3b:70:f3:58:f2: fa:8f:72:09:64:a8:58:e1:17:d3:03:ad:ec:ce:69:b5:cc:7b: 9f:79:8e:59:f8:13:44:8a:65:d9:20:cb:e9:ad:9f:d1:7d:bc: 94:66:73:c1:80:71:14:52:98:d3:ae:86:09:26:a7:5b:a6:13: 84:5e:fe:c1:f5:9f:9c:a3:24:a2:83:6a:99:93:94:a2:bb:3e: 86:d9:31:c9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBEOUMxMTAvBgNVBAUTKEZFM0U5OEM0QzFBNzkxMkI1QTkxNkQxNjMzNDc3OEM0 QUI3QTY1MzAwHhcNMjUwNjE2MTcxNzM5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwNTFiMy1jZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSmvBPJ95wfpG9WldS4mhvi0cBomZOkHM4xwG5xG4ObauVNtKswPN5zpSnhu 28gSvPLHxWn9WRMVr9a2avfXajXzwl1N4tDnPhOCjWEQR4spudl3lray1vD9lsuX gMFeU3ZIuMS3jivFeLSttJxJ5ug6Bb2EWPtiZCCkv/mXvDrSUPVWXoy51AjsgvPW xPQ65cKgAlJCpoqwd6xT+I5LJkjta9Zp4QtgXiRmUC34JjejQLO3Hh77o/H5aTSM 1Plhrhllof7UfGx6oTPmQAoGERh9Vvp7rmhcRWRLYy3JpoLaKMEqMEC8ZP0nvGQp 3GiZjIKyrH0UuDcXTLiGNvtbYQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJp8TkIN w5OHbewrgKFqt/o6T1YQMB8GA1UdIwQYMBaAFP4+mMTBp5ErWpFtFjNHeMSremUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEQ5Qy85RTI4MzAwNjU3 QTgxMUU4QjRBQzA4NzdDNEY5QUUwMi9fajZZeE1HbmtTdGFrVzBXTTBkNHhLdDZa VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qNll4TUdua1N0YWtXMFdNMGQ0eEt0NlpUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBEOUMvOUUyODMwMDY1N0E4MTFFOEI0QUMwODc3QzRGOUFFMDIvOTVEREU5RDY5 MDlBMTFFRjk0QUYzQjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbmAwDQQCAAIwBwMFACQChkAwDQYJKoZIhvcNAQELBQAD ggEBACjK0eeSTVGt/0MS+qfzqTu1aLJv0JTPOd/QtKK5onHKJUVxNoQ8Id6Zbmu0 s/IC8f4qCG3elaE6xPVNapPAS6/KCY9D9+dHJpJjEQbRrS0cuKSNlr+LpLSFxDET dWxttM9x+uWWEOLdsKV4cwYqzUa6CUrAMXkj4u5LfeVe8ODg1+aC2JCbD/y4ZNpE 0LYWdshQi2lt/1d0bwF3BBi4X7fNsFJBBhGfNQO1yQxdCxw7cPNY8vqPcglkqFjh F9MDrezOabXMe595jln4E0SKZdkgy+mtn9F9vJRmc8GAcRRSmNOuhgkmp1umE4Re /sH1n5yjJKKDapmTlKK7PobZMck= -----END CERTIFICATE-----Generated at Mon Oct 20 19:27:21 2025 by rpki-client