$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/7F64C44645A511ED93E3C45BC4F9AE02.roa File: 7F64C44645A511ED93E3C45BC4F9AE02.roa (raw, json) Hash identifier: vsUIy1tbHWL8V/egiXCJ22jgmvrNd5Q4mwZ6W3OeA1A= Subject key identifier: 6F:24:19:1C:DD:F0:1A:FC:BE:4D:F3:E5:50:B1:BC:C9:F7:A9:84:2E Certificate issuer: /CN=A91ABEAC/serialNumber=8F5D5E5879A75158F2CFFB32ADD94471F974183F Certificate serial: 02EB Authority key identifier: 8F:5D:5E:58:79:A7:51:58:F2:CF:FB:32:AD:D9:44:71:F9:74:18:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j11eWHmnUVjyz_syrdlEcfl0GD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/7F64C44645A511ED93E3C45BC4F9AE02.roa Signing time: Thu 09 Oct 2025 01:28:06 +0000 ROA not before: Thu 09 Oct 2025 01:28:06 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58704 IP address blocks: 103.20.140.0/22 maxlen: 24 2405:2f00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/j11eWHmnUVjyz_syrdlEcfl0GD8.crl rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/j11eWHmnUVjyz_syrdlEcfl0GD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j11eWHmnUVjyz_syrdlEcfl0GD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:21:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 747 (0x2eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABEAC, serialNumber=8F5D5E5879A75158F2CFFB32ADD94471F974183F Validity Not Before: Oct 9 01:28:06 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e70fa6-56a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:41:9d:ed:58:6b:61:24:46:8a:3c:25:2a:19: 7d:02:3c:b9:ed:dc:5e:a1:d2:a9:a9:fd:c9:a8:9f: 67:97:8d:78:7f:34:ca:dc:5e:02:33:79:a6:df:f0: 77:c3:66:03:1b:60:10:3a:bd:d1:c6:b0:35:0a:93: 7c:e4:7d:8b:6c:3b:95:a1:52:dd:fa:88:53:f5:7f: 20:5d:54:c7:43:40:90:b2:f5:44:90:72:9f:d9:24: 82:5f:ca:98:e0:d8:d6:5b:66:27:80:80:c3:2b:53: eb:46:44:cf:a5:7d:dc:ee:e7:84:b2:41:24:db:44: 00:b6:a2:09:82:f1:a2:ca:a1:60:a4:58:f6:e4:f1: e7:8e:a1:1d:24:fb:fb:d7:d7:3e:0a:a3:de:ae:d9: dd:3d:99:fe:b1:dd:40:ca:9a:30:f9:73:4b:62:f1: 08:2f:39:46:aa:05:58:19:e8:d4:01:15:26:f9:74: a9:d3:d4:08:be:5f:01:2c:40:a0:4d:29:93:cb:a9: 93:fd:d2:db:17:3a:b0:be:20:b4:cc:74:87:1c:96: e1:c0:21:4b:e7:fc:32:4f:b7:f8:a2:a4:aa:dd:90: 9b:58:0f:38:99:ee:2e:68:ba:d4:f1:cd:f3:7a:02: 6a:19:ec:5f:27:2f:8b:78:db:59:c4:f6:df:b8:e7: 03:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:24:19:1C:DD:F0:1A:FC:BE:4D:F3:E5:50:B1:BC:C9:F7:A9:84:2E X509v3 Authority Key Identifier: keyid:8F:5D:5E:58:79:A7:51:58:F2:CF:FB:32:AD:D9:44:71:F9:74:18:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/j11eWHmnUVjyz_syrdlEcfl0GD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j11eWHmnUVjyz_syrdlEcfl0GD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABEAC/1CD146B0FD1111ECAD8B5228C4F9AE02/7F64C44645A511ED93E3C45BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.140.0/22 IPv6: 2405:2f00::/32 Signature Algorithm: sha256WithRSAEncryption 50:cf:ca:34:e4:8b:96:d6:c4:42:2f:1c:74:f8:e3:5e:8c:35: 78:c7:66:20:e6:93:96:8b:39:6f:1d:aa:7b:77:2c:9c:98:9b: 59:7e:15:95:31:da:85:ff:66:18:8b:15:a9:e1:39:18:ba:75: 60:86:6d:03:3e:da:a8:a9:68:57:cf:41:7b:96:02:ae:65:4c: 0f:02:c9:de:b5:37:24:09:fd:0c:0e:77:9f:8a:fb:dd:2e:62: 2c:33:69:d8:1d:a1:5c:e9:6b:32:c0:90:1a:56:aa:dc:28:6b: eb:c4:fe:10:26:45:17:15:26:84:4f:fe:44:4e:89:56:61:16: 10:e0:f5:f2:64:dd:e7:ff:48:3d:b0:e3:8a:55:19:c1:80:5a: 22:9b:6a:87:99:6b:c0:65:93:a6:b7:e7:77:ab:e7:ac:88:54: 27:c5:7e:ca:03:4c:f6:26:b3:ac:1a:58:85:65:4e:06:73:99: 72:7f:93:25:b8:8c:18:3a:fe:e2:31:d8:c1:7b:ea:a2:de:91: 81:b0:90:21:51:ae:ea:16:68:e7:f4:d3:4f:36:64:dd:27:4c: 81:6f:22:3a:69:8a:d3:c8:44:42:ef:e6:d1:db:36:b2:49:c6: 99:32:3b:d6:28:3d:99:8a:9f:a9:0f:31:c3:4b:d7:6e:48:af: f3:84:35:db -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJFQUMxMTAvBgNVBAUTKDhGNUQ1RTU4NzlBNzUxNThGMkNGRkIzMkFERDk0NDcx Rjk3NDE4M0YwHhcNMjUxMDA5MDEyODA2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3MGZhNi01NmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUGd7VhrYSRGijwlKhl9Ajy57dxeodKpqf3JqJ9nl414fzTK3F4CM3mm3/B3 w2YDG2AQOr3RxrA1CpN85H2LbDuVoVLd+ohT9X8gXVTHQ0CQsvVEkHKf2SSCX8qY 4NjWW2YngIDDK1PrRkTPpX3c7ueEskEk20QAtqIJgvGiyqFgpFj25PHnjqEdJPv7 19c+CqPertndPZn+sd1Aypow+XNLYvEILzlGqgVYGejUARUm+XSp09QIvl8BLECg TSmTy6mT/dLbFzqwviC0zHSHHJbhwCFL5/wyT7f4oqSq3ZCbWA84me4uaLrU8c3z egJqGexfJy+LeNtZxPbfuOcDjQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG8kGRzd 8Br8vk3z5VCxvMn3qYQuMB8GA1UdIwQYMBaAFI9dXlh5p1FY8s/7Mq3ZRHH5dBg/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkVBQy8xQ0QxNDZCMEZE MTExMUVDQUQ4QjUyMjhDNEY5QUUwMi9qMTFlV0htblVWanl6X3N5cmRsRWNmbDBH RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2oxMWVXSG1uVVZqeXpfc3lyZGxFY2ZsMEdEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJFQUMvMUNEMTQ2QjBGRDExMTFFQ0FEOEI1MjI4QzRGOUFFMDIvN0Y2NEM0NDY0 NUE1MTFFRDkzRTNDNDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnFIwwDQQCAAIwBwMFACQFLwAwDQYJKoZIhvcNAQELBQAD ggEBAFDPyjTki5bWxEIvHHT4416MNXjHZiDmk5aLOW8dqnt3LJyYm1l+FZUx2oX/ ZhiLFanhORi6dWCGbQM+2qipaFfPQXuWAq5lTA8Cyd61NyQJ/QwOd5+K+90uYiwz adgdoVzpazLAkBpWqtwoa+vE/hAmRRcVJoRP/kROiVZhFhDg9fJk3ef/SD2w44pV GcGAWiKbaoeZa8Blk6a353er56yIVCfFfsoDTPYms6waWIVlTgZzmXJ/kyW4jBg6 /uIx2MF76qLekYGwkCFRruoWaOf00082ZN0nTIFvIjppitPIRELv5tHbNrJJxpky O9YoPZmKn6kPMcNL125Ir/OENds= -----END CERTIFICATE-----Generated at Mon Oct 20 10:20:05 2025 by rpki-client