$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/9995A38CFADC11EF87E86958C4F9AE02.roa File: 9995A38CFADC11EF87E86958C4F9AE02.roa (raw, json) Hash identifier: lPLi48Hcf9N1auMQ0fWenp3rORwIoz4fywb8Qz85E7E= Subject key identifier: E8:5D:D9:52:F4:0B:F7:95:A9:B4:1A:EA:A9:64:1C:AD:10:ED:2D:76 Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 123A Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/9995A38CFADC11EF87E86958C4F9AE02.roa Signing time: Sat 18 Oct 2025 17:55:54 +0000 ROA not before: Sat 18 Oct 2025 17:55:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 58750 IP address blocks: 103.21.48.0/22 maxlen: 22 202.74.61.0/24 maxlen: 24 2403:ecc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4666 (0x123a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0, serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: Oct 18 17:55:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f3d4aa-b64c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:89:93:47:e1:6f:7d:02:c6:db:80:85:92:a1: 5f:e4:38:3c:4d:f7:10:1a:91:5f:d1:69:f9:58:ff: 49:ba:57:e3:61:88:96:c7:f4:95:ef:b2:2a:6d:b8: 6f:5e:a5:4c:5a:89:3b:40:53:21:a1:6c:fb:4f:05: e1:16:b0:67:67:de:43:e7:70:ac:f1:01:c2:40:da: 22:6e:be:4d:1c:a2:b5:b7:d7:0d:98:1f:05:33:2b: dc:d1:d6:57:1e:7f:2b:5f:cb:be:85:08:58:b9:92: 96:e8:65:e8:a4:2c:1b:13:30:52:c3:5f:c6:ae:76: 5a:2f:aa:2a:87:2f:8f:eb:e4:2a:75:d3:8c:be:e4: 65:68:28:11:83:78:bc:cc:e1:49:1c:d0:63:a1:e0: af:44:87:4c:eb:91:d8:37:10:75:7e:90:49:1a:aa: 1b:5d:65:40:32:1a:eb:50:59:c1:3f:5b:aa:c6:2e: d0:35:a7:a7:f7:0d:2b:75:b3:e1:80:dd:6b:fe:66: 54:6c:8e:3b:4b:69:69:85:28:9c:17:44:8d:0f:a3: 36:30:3d:59:d4:88:3e:9e:f2:1b:90:db:6a:67:02: da:5f:f2:fb:c3:79:fe:31:39:f8:e3:74:99:f3:0e: 11:00:53:28:56:73:d7:44:bf:c7:c1:3f:dc:f5:94: 0e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5D:D9:52:F4:0B:F7:95:A9:B4:1A:EA:A9:64:1C:AD:10:ED:2D:76 X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/9995A38CFADC11EF87E86958C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.48.0/22 202.74.61.0/24 IPv6: 2403:ecc0::/32 Signature Algorithm: sha256WithRSAEncryption 90:4d:37:2f:8b:15:2e:86:2a:9b:6f:c7:96:4d:22:51:7b:e6: 4e:19:76:40:39:c7:66:be:3a:74:08:6e:b7:64:c9:91:b0:64: c4:2d:5c:2d:0d:e6:30:1e:c1:b4:d4:c6:6c:5b:c6:1f:f6:78: a3:42:07:17:27:8f:40:c1:53:9a:ea:ed:28:de:8e:82:00:a6: 09:85:55:5f:9d:ee:e6:0e:c0:80:59:6f:fb:1a:3b:ca:7d:8f: 7d:2f:a0:80:df:fe:65:96:06:bf:17:46:88:fb:2a:0f:41:04: 66:9b:5d:d6:33:f3:0f:8b:e9:fb:12:a9:7d:50:ab:eb:48:0c: 99:c3:34:1b:09:5a:e9:40:47:17:6d:be:fb:d3:14:30:2f:ae: 59:e0:69:92:01:57:a4:1d:07:c3:96:41:bf:a4:72:fe:7d:f0: 2a:da:86:0c:8e:70:a1:08:40:42:5c:45:c5:e3:33:88:65:50: e4:13:53:d8:46:17:4d:26:fd:62:b0:e2:18:91:35:50:10:7d: ad:47:6a:86:b0:ce:b0:1f:24:4d:98:90:54:a1:73:05:7b:d6: 08:73:06:55:bd:87:65:ab:48:1a:c3:dc:ec:64:68:36:76:51: ba:9c:a1:1b:7d:78:8a:9c:78:97:f8:0e:26:40:43:04:7b:d0: 3a:c3:36:72 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjUxMDE4MTc1NTU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzZDRhYS1iNjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4mTR+FvfQLG24CFkqFf5Dg8TfcQGpFf0Wn5WP9JulfjYYiWx/SV77Iqbbhv XqVMWok7QFMhoWz7TwXhFrBnZ95D53Cs8QHCQNoibr5NHKK1t9cNmB8FMyvc0dZX Hn8rX8u+hQhYuZKW6GXopCwbEzBSw1/GrnZaL6oqhy+P6+QqddOMvuRlaCgRg3i8 zOFJHNBjoeCvRIdM65HYNxB1fpBJGqobXWVAMhrrUFnBP1uqxi7QNaen9w0rdbPh gN1r/mZUbI47S2lphSicF0SND6M2MD1Z1Ig+nvIbkNtqZwLaX/L7w3n+MTn443SZ 8w4RAFMoVnPXRL/HwT/c9ZQOQwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOhd2VL0 C/eVqbQa6qlkHK0Q7S12MB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQ1QzAvQkRFRTcyOUFFNkQ5MTFFODhCOEJGNzdDQzRGOUFFMDIvOTk5NUEzOENG QURDMTFFRjg3RTg2OTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnFTADBADKSj0wDQQCAAIwBwMFACQD7MAwDQYJKoZIhvcN AQELBQADggEBAJBNNy+LFS6GKptvx5ZNIlF75k4ZdkA5x2a+OnQIbrdkyZGwZMQt XC0N5jAewbTUxmxbxh/2eKNCBxcnj0DBU5rq7SjejoIApgmFVV+d7uYOwIBZb/sa O8p9j30voIDf/mWWBr8XRoj7Kg9BBGabXdYz8w+L6fsSqX1Qq+tIDJnDNBsJWulA RxdtvvvTFDAvrlngaZIBV6QdB8OWQb+kcv598CrahgyOcKEIQEJcRcXjM4hlUOQT U9hGF00m/WKw4hiRNVAQfa1HaoawzrAfJE2YkFShcwV71ghzBlW9h2WrSBrD3Oxk aDZ2UbqcoRt9eIqceJf4DiZAQwR70DrDNnI= -----END CERTIFICATE-----Generated at Mon Oct 20 17:54:41 2025 by rpki-client