$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/884C5FB8E60411EFBF5A7957C4F9AE02.roa File: 884C5FB8E60411EFBF5A7957C4F9AE02.roa (raw, json) Hash identifier: X2T86WPoFoEyZcogT1ndr7RJyh96AHdCumJauzM/7xw= Subject key identifier: AE:55:31:99:10:2E:EC:F8:EF:33:07:D4:BD:9E:15:5D:0E:28:77:14 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0C81 Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/884C5FB8E60411EFBF5A7957C4F9AE02.roa Signing time: Wed 08 Oct 2025 18:48:36 +0000 ROA not before: Wed 08 Oct 2025 18:48:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139013 IP address blocks: 103.100.232.0/22 maxlen: 22 103.100.232.0/23 maxlen: 23 103.100.232.0/24 maxlen: 24 103.100.234.0/23 maxlen: 23 103.100.234.0/24 maxlen: 24 103.100.235.0/24 maxlen: 24 2404:cec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3201 (0xc81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Oct 8 18:48:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6b204-8f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8c:04:49:ba:55:7e:53:10:48:de:f1:aa:93: e1:60:33:79:52:31:e4:63:18:a5:26:36:04:23:ca: 79:99:8d:d4:97:a3:c9:97:14:41:41:e4:b4:a3:8d: 79:3a:40:c1:70:6e:d2:13:2f:75:c7:96:c2:d9:58: 4c:0f:1e:0d:b9:ed:c1:3b:dd:1f:55:2d:5d:c5:24: ba:56:19:a6:32:a3:a3:aa:ba:f7:c8:27:41:06:de: b2:65:a1:78:a1:01:81:fa:cc:e9:ca:a9:4c:39:b2: f7:e2:22:2a:e8:69:33:ef:59:12:0a:dd:14:1b:2a: 83:70:1d:89:0b:09:c6:9c:30:0e:82:51:7a:82:c7: 63:8d:43:d0:48:49:18:7f:46:62:7e:06:40:67:09: 77:03:7b:3b:88:85:21:6f:e8:58:92:e1:66:15:62: c2:6e:53:b4:bf:86:8d:f0:ec:c6:b1:3b:cf:36:ed: cf:1d:6e:8c:8b:b8:ac:01:2d:30:6c:98:11:a5:69: 6b:a1:b3:23:42:c4:a0:9d:f1:fd:29:23:4a:65:c3: b2:cb:91:33:25:a9:86:f4:e0:22:96:75:8b:4c:4a: 17:28:57:98:c3:09:bc:61:cd:26:2a:4f:bb:90:f8: da:46:cb:50:3e:45:96:4a:dd:5c:93:c3:2a:73:d3: 0a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:55:31:99:10:2E:EC:F8:EF:33:07:D4:BD:9E:15:5D:0E:28:77:14 X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/884C5FB8E60411EFBF5A7957C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.232.0/22 IPv6: 2404:cec0::/32 Signature Algorithm: sha256WithRSAEncryption 11:c3:52:d4:c6:1a:ee:a8:cc:ca:f4:77:0f:d0:15:ed:8b:f8: 0d:b4:18:91:07:d5:2b:0a:05:19:77:d1:0e:a3:44:18:32:21: 1a:e8:28:34:a8:bf:27:7f:51:a9:c4:90:98:cf:e1:e4:c7:0f: 87:d6:16:b8:e3:cf:f5:78:37:5f:3d:8e:18:6e:7d:f5:60:61: c5:58:52:67:47:f5:72:ce:2c:07:49:f4:2c:08:8d:7e:c3:e0: 9c:06:a9:98:db:7c:15:e5:c1:80:50:f7:a5:43:d7:43:6d:58: 5d:32:36:ed:8b:b8:18:2e:a5:09:27:fc:81:8c:90:4b:af:33: 47:23:6e:5b:b3:32:a9:3c:3c:43:cf:3d:4c:a5:08:32:5a:56: cc:2c:c5:86:76:5e:fa:ba:21:30:70:ad:21:83:d3:26:f8:12: 7a:40:ba:65:69:20:3f:c9:ec:40:e3:e0:83:a7:37:9e:ec:3c: a4:3a:d2:d1:b3:b2:24:8c:05:02:cf:46:ad:14:a3:93:92:34: 3c:70:90:2d:fe:04:ce:75:18:04:96:ef:48:46:d5:a5:ac:3c: 0b:3c:d1:d9:cc:ae:97:81:dd:1f:8a:1b:75:ed:bc:71:ec:0e: 44:d0:ff:fc:7e:92:9a:58:ea:74:a0:e7:16:e9:cb:80:21:cf: cf:33:6b:09 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjUxMDA4MTg0ODM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2YjIwNC04ZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYwESbpVflMQSN7xqpPhYDN5UjHkYxilJjYEI8p5mY3Ul6PJlxRBQeS0o415 OkDBcG7SEy91x5bC2VhMDx4Nue3BO90fVS1dxSS6VhmmMqOjqrr3yCdBBt6yZaF4 oQGB+szpyqlMObL34iIq6Gkz71kSCt0UGyqDcB2JCwnGnDAOglF6gsdjjUPQSEkY f0ZifgZAZwl3A3s7iIUhb+hYkuFmFWLCblO0v4aN8OzGsTvPNu3PHW6Mi7isAS0w bJgRpWlrobMjQsSgnfH9KSNKZcOyy5EzJamG9OAilnWLTEoXKFeYwwm8Yc0mKk+7 kPjaRstQPkWWSt1ck8Mqc9MKQQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK5VMZkQ Luz47zMH1L2eFV0OKHcUMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1RTAvMjNCRjJGMjYxMTNFMTFFQTg4RTg3ODc2QzRGOUFFMDIvODg0QzVGQjhF NjA0MTFFRkJGNUE3OTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZOgwDQQCAAIwBwMFACQEzsAwDQYJKoZIhvcNAQELBQAD ggEBABHDUtTGGu6ozMr0dw/QFe2L+A20GJEH1SsKBRl30Q6jRBgyIRroKDSovyd/ UanEkJjP4eTHD4fWFrjjz/V4N189jhhuffVgYcVYUmdH9XLOLAdJ9CwIjX7D4JwG qZjbfBXlwYBQ96VD10NtWF0yNu2LuBgupQkn/IGMkEuvM0cjbluzMqk8PEPPPUyl CDJaVswsxYZ2Xvq6ITBwrSGD0yb4EnpAumVpID/J7EDj4IOnN57sPKQ60tGzsiSM BQLPRq0Uo5OSNDxwkC3+BM51GASW70hG1aWsPAs80dnMrpeB3R+KG3XtvHHsDkTQ //x+kppY6nSg5xbpy4Ahz88zawk= -----END CERTIFICATE-----Generated at Mon Oct 20 18:25:22 2025 by rpki-client