$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/47E37F2AAB1A11F096B0EC5FC4F9AE02.roa File: 47E37F2AAB1A11F096B0EC5FC4F9AE02.roa (raw, json) Hash identifier: f31wkh4SmRezq8K+eaS7YGeeme+WhDVB3FqGjZlLVDI= Subject key identifier: B9:4A:E2:D6:C3:21:CC:8D:05:15:3D:6D:57:BC:FA:38:A9:B5:A5:E5 Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: 012B Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/47E37F2AAB1A11F096B0EC5FC4F9AE02.roa Signing time: Fri 17 Oct 2025 05:29:42 +0000 ROA not before: Fri 17 Oct 2025 05:29:42 +0000 ROA not after: Thu 30 Dec 2027 00:00:00 +0000 asID: 132384 IP address blocks: 103.76.232.0/22 maxlen: 24 116.206.144.0/23 maxlen: 24 116.206.146.0/23 maxlen: 24 2407:7a80::/42 maxlen: 42 2407:7a80:10::/45 maxlen: 45 2407:7a80:10::/46 maxlen: 46 2407:7a80:10::/47 maxlen: 47 2407:7a80:12::/48 maxlen: 48 2407:7a80:13::/48 maxlen: 48 2407:7a80:14::/48 maxlen: 48 2407:7a80:15::/48 maxlen: 48 2407:7a80:20::/44 maxlen: 44 2407:7a80:20::/45 maxlen: 45 2407:7a80:20::/48 maxlen: 48 2407:7a80:21::/48 maxlen: 48 2407:7a80:22::/48 maxlen: 48 2407:7a80:23::/48 maxlen: 48 2407:7a80:24::/46 maxlen: 46 2407:7a80:28::/48 maxlen: 48 2407:7a80:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: Oct 17 05:29:42 2025 GMT Not After : Dec 30 00:00:00 2027 GMT Subject: CN=68f1d445-7ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ed:65:a1:72:b4:7a:39:b0:83:9a:61:30:76: c8:49:80:ea:87:b3:ef:3f:6b:d6:28:10:56:aa:93: b6:62:6d:8b:b3:b4:49:d5:42:7a:a3:52:30:c3:26: ca:eb:f5:21:a7:a2:e0:9d:64:35:2c:50:fd:86:ec: 31:70:eb:4e:c8:9a:00:e4:64:a0:c0:3c:59:03:9d: dd:85:ab:bc:38:b5:06:05:12:67:0e:e9:a7:39:6a: f4:36:c7:96:8a:80:a0:ed:ef:bd:98:f5:30:45:15: 64:94:58:af:77:27:12:06:b5:b6:a9:bb:f8:54:bc: ba:63:fd:0e:f9:60:af:e3:51:fc:da:b8:04:7e:91: d6:38:19:f8:52:61:e8:4c:c7:6b:03:83:5d:95:52: 83:0a:42:d4:b6:9f:60:64:d7:7e:6c:cb:39:64:b8: 65:97:60:16:61:e4:6d:1d:48:96:06:6b:4e:7d:67: db:43:a8:d9:72:29:02:da:c1:36:f2:c1:5b:67:2f: 73:4a:f2:a4:4f:ad:ff:f9:38:6b:1f:16:42:ad:12: 57:8a:e3:46:a4:0b:fe:f5:35:6e:1a:42:00:40:2d: c0:be:da:35:33:0a:d1:31:e6:a2:07:7f:38:31:88: d9:51:6c:86:87:4d:1f:e5:7e:3c:e5:d1:6c:4a:aa: 23:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:4A:E2:D6:C3:21:CC:8D:05:15:3D:6D:57:BC:FA:38:A9:B5:A5:E5 X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/47E37F2AAB1A11F096B0EC5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.232.0/22 116.206.144.0/22 IPv6: 2407:7a80::/42 Signature Algorithm: sha256WithRSAEncryption 5a:02:91:8e:02:85:0a:28:b3:12:d8:f3:b3:64:30:b8:6e:79: f2:ae:70:f9:01:ec:cb:ea:25:08:71:8f:86:e7:b4:7b:df:a3: b8:0a:19:d5:04:84:4c:92:14:78:30:07:8b:6a:45:98:8a:b3: 7d:0a:0d:7a:63:35:0b:38:f7:b7:0a:1d:4b:74:63:2c:d2:66: 64:cf:86:b3:6e:2b:e5:b2:29:65:e7:d3:a8:26:0f:e6:eb:5c: ca:ad:9e:37:51:eb:51:ec:50:26:58:98:65:ab:5a:48:d8:cc: 5a:96:ef:9f:34:b6:82:30:f0:3a:2e:be:5e:f2:49:77:31:db: ad:95:c0:ed:bc:36:9b:53:de:ac:d7:fa:c4:b8:aa:56:da:34: 62:85:4b:2d:1c:b2:ef:a2:2f:b8:94:8d:c9:f0:7d:ca:b3:9c: e1:71:0a:9c:33:e3:9f:78:1d:ae:69:26:bd:5d:9c:c1:7e:45: 79:db:79:f0:96:06:10:38:5b:63:9a:75:5f:df:e0:ae:b1:6a: 5d:b7:4b:4a:7f:03:a9:79:98:ce:34:d3:79:fd:a3:3e:04:a8: 40:64:f1:64:cb:8d:6f:59:fb:06:a9:12:96:69:e6:39:ef:d1: e9:fa:95:63:cd:cc:89:7a:b8:85:69:58:d3:7f:01:12:f5:82: 0a:ec:c1:35 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUxMDE3MDUyOTQyWhcNMjcxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxZDQ0NS03YWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+1loXK0ejmwg5phMHbISYDqh7PvP2vWKBBWqpO2Ym2Ls7RJ1UJ6o1IwwybK 6/Uhp6LgnWQ1LFD9huwxcOtOyJoA5GSgwDxZA53dhau8OLUGBRJnDumnOWr0NseW ioCg7e+9mPUwRRVklFivdycSBrW2qbv4VLy6Y/0O+WCv41H82rgEfpHWOBn4UmHo TMdrA4NdlVKDCkLUtp9gZNd+bMs5ZLhll2AWYeRtHUiWBmtOfWfbQ6jZcikC2sE2 8sFbZy9zSvKkT63/+ThrHxZCrRJXiuNGpAv+9TVuGkIAQC3Avto1MwrRMeaiB384 MYjZUWyGh00f5X485dFsSqojYwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLlK4tbD IcyNBRU9bVe8+jiptaXlMB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURENjQvNTg0MEEwN0MxMzRCMTFFRjk0NDI0RDNEQzRGOUFFMDIvNDdFMzdGMkFB QjFBMTFGMDk2QjBFQzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJnTOgDBAJ0zpAwDwQCAAIwCQMHBiQHeoAAADANBgkqhkiG 9w0BAQsFAAOCAQEAWgKRjgKFCiizEtjzs2QwuG558q5w+QHsy+olCHGPhue0e9+j uAoZ1QSETJIUeDAHi2pFmIqzfQoNemM1Czj3twodS3RjLNJmZM+Gs24r5bIpZefT qCYP5utcyq2eN1HrUexQJliYZataSNjMWpbvnzS2gjDwOi6+XvJJdzHbrZXA7bw2 m1PerNf6xLiqVto0YoVLLRyy76IvuJSNyfB9yrOc4XEKnDPjn3gdrmkmvV2cwX5F edt58JYGEDhbY5p1X9/grrFqXbdLSn8DqXmYzjTTef2jPgSoQGTxZMuNb1n7BqkS lmnmOe/R6fqVY83MiXq4hWlY038BEvWCCuzBNQ== -----END CERTIFICATE-----Generated at Mon Oct 20 08:18:13 2025 by rpki-client