$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/EBC23D9A041E11ECA959B779C4F9AE02.roa File: EBC23D9A041E11ECA959B779C4F9AE02.roa (raw, json) Hash identifier: gjGyoU6UehPX0w4evr1O57YIj1TJSqlSY6y93UsHPOc= Subject key identifier: AB:C0:F9:FD:8B:C4:12:F1:CA:7C:5C:0E:A0:CA:A2:72:EF:21:BE:84 Certificate issuer: /CN=A91B43F4/serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Certificate serial: 24F3 Authority key identifier: 0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/EBC23D9A041E11ECA959B779C4F9AE02.roa Signing time: Wed 08 Oct 2025 16:13:34 +0000 ROA not before: Wed 08 Oct 2025 16:13:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 49544 IP address blocks: 43.239.136.0/22 maxlen: 23 103.194.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9459 (0x24f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43F4, serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Validity Not Before: Oct 8 16:13:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e68dad-bce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:85:ff:7d:f3:94:33:77:80:ab:32:e8:89:ef: d0:d4:c4:2d:52:c9:24:b6:40:ab:a7:37:51:4e:7f: 41:e9:fe:db:c2:79:fe:31:26:5c:9e:87:ec:a4:6f: 90:0e:95:59:36:45:c3:1d:af:5e:0d:07:a9:79:f4: a1:cc:88:49:bf:55:de:ee:fb:a3:8c:3d:2b:6e:f7: 3c:ff:22:4f:7d:41:de:c3:ad:40:55:61:a2:7f:2e: 4f:6c:85:33:68:97:cc:5a:9b:99:1e:18:47:d1:38: 6c:5c:c1:a6:ff:54:75:2b:8d:9c:27:ec:e8:62:26: ab:86:e6:8e:da:dd:57:ca:8d:41:74:d0:63:c8:e8: 95:30:eb:de:0f:26:86:f4:61:c2:f5:c5:77:b1:4f: 1a:29:0c:e9:fb:44:dc:84:a3:26:28:89:07:37:61: 36:ba:4b:10:f8:5d:b5:5d:b5:b3:32:14:22:6e:ce: ce:e4:44:b2:16:98:fe:bb:12:6d:59:10:9b:fb:83: 8c:8f:2b:a4:94:82:b9:14:4a:2a:05:9f:3c:46:1a: d3:fa:03:55:c9:21:9d:a0:fc:16:a4:0e:3a:55:a2: bc:ef:f1:13:98:69:8a:e0:84:e3:5a:07:5c:3f:d1: df:ab:74:68:17:ef:b3:01:4e:c6:20:6d:ce:21:e2: f1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C0:F9:FD:8B:C4:12:F1:CA:7C:5C:0E:A0:CA:A2:72:EF:21:BE:84 X509v3 Authority Key Identifier: keyid:0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/EBC23D9A041E11ECA959B779C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.136.0/22 103.194.164.0/22 Signature Algorithm: sha256WithRSAEncryption a5:9d:58:7e:bf:12:6d:43:4a:2b:df:e2:06:e4:96:b5:a6:f5: 97:07:c9:a9:98:35:f3:41:09:14:b9:99:39:bf:b6:9c:c7:e7: 22:1a:ca:ad:9f:41:23:db:b0:68:ab:2b:f8:5f:46:f8:56:03: 60:99:78:cd:40:a0:29:95:1e:1c:4e:bd:72:28:26:bf:ce:e1: ef:d8:cf:d2:34:ab:74:52:fd:93:3b:16:90:cf:c8:02:9f:80: 46:f2:ef:b3:6c:ca:da:11:7e:2b:82:a0:a7:e3:e7:1e:7d:85: 28:35:c8:4a:d0:ae:c1:19:9d:59:d1:28:49:72:44:3d:12:0e: 5e:0f:35:c5:46:76:9d:eb:24:53:92:c5:e6:cf:16:4c:fa:b1: 64:10:08:5b:45:e4:7c:45:45:33:0f:8c:ac:47:ef:af:a1:f2: 29:0a:01:d1:d2:3d:af:9c:b7:3f:5a:80:f6:15:47:5e:8b:ff: 8c:d1:a9:66:46:92:4c:39:e4:53:7d:fc:9d:70:15:58:7e:6e: 1c:6c:b6:86:3b:58:a0:4f:ca:b3:15:9d:52:dd:31:91:a5:f4: 87:fd:d1:a5:5b:5c:ae:57:57:05:9d:94:00:64:10:8c:00:44: 0a:71:f8:a0:bd:ae:9b:74:8b:1d:bc:d7:27:76:41:50:a4:43: c0:cc:d0:43 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRjQxMTAvBgNVBAUTKDBCNjNFNjNBNUZBM0IyRTNDQ0I5OTMwRThGNkM4Q0VD QzI0NThCNDUwHhcNMjUxMDA4MTYxMzM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2OGRhZC1iY2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4X/ffOUM3eAqzLoie/Q1MQtUskktkCrpzdRTn9B6f7bwnn+MSZcnofspG+Q DpVZNkXDHa9eDQepefShzIhJv1Xe7vujjD0rbvc8/yJPfUHew61AVWGify5PbIUz aJfMWpuZHhhH0ThsXMGm/1R1K42cJ+zoYiarhuaO2t1Xyo1BdNBjyOiVMOveDyaG 9GHC9cV3sU8aKQzp+0TchKMmKIkHN2E2uksQ+F21XbWzMhQibs7O5ESyFpj+uxJt WRCb+4OMjyuklIK5FEoqBZ88RhrT+gNVySGdoPwWpA46VaK87/ETmGmK4ITjWgdc P9Hfq3RoF++zAU7GIG3OIeLxtwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKvA+f2L xBLxynxcDqDKonLvIb6EMB8GA1UdIwQYMBaAFAtj5jpfo7LjzLmTDo9sjOzCRYtF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNGNC8xN0FDMkE3MDQx OUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1UE11Wk1PajJ5TTdNSkZp MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyUG1PbC1qc3VQTXVaTU9qMnlNN01KRmkwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzRjQvMTdBQzJBNzA0MTlDMTFFNTgzNUZEMTgzQzRGOUFFMDIvRUJDMjNEOUEw NDFFMTFFQ0E5NTlCNzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr74gDBAJnwqQwDQYJKoZIhvcNAQELBQADggEBAKWdWH6/ Em1DSivf4gbklrWm9ZcHyamYNfNBCRS5mTm/tpzH5yIayq2fQSPbsGirK/hfRvhW A2CZeM1AoCmVHhxOvXIoJr/O4e/Yz9I0q3RS/ZM7FpDPyAKfgEby77NsytoRfiuC oKfj5x59hSg1yErQrsEZnVnRKElyRD0SDl4PNcVGdp3rJFOSxebPFkz6sWQQCFtF 5HxFRTMPjKxH76+h8ikKAdHSPa+ctz9agPYVR16L/4zRqWZGkkw55FN9/J1wFVh+ bhxstoY7WKBPyrMVnVLdMZGl9If90aVbXK5XVwWdlABkEIwARApx+KC9rpt0ix28 1yd2QVCkQ8DM0EM= -----END CERTIFICATE-----Generated at Mon Oct 20 05:47:22 2025 by rpki-client