$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/1600DBF659C311E9A04B846FC4F9AE02.roa File: 1600DBF659C311E9A04B846FC4F9AE02.roa (raw, json) Hash identifier: Rp2RG1hF6yB5oGrywiGWXTiVHqNq8sdwd+lk50rYEfg= Subject key identifier: 87:C7:43:4B:89:F3:0E:12:64:5F:14:0D:87:2F:34:AC:04:33:C4:9F Certificate issuer: /CN=A91C4F06/serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Certificate serial: 35A8 Authority key identifier: 3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/1600DBF659C311E9A04B846FC4F9AE02.roa Signing time: Thu 02 Oct 2025 15:10:57 +0000 ROA not before: Thu 02 Oct 2025 15:10:57 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38740 IP address blocks: 43.241.139.0/24 maxlen: 24 2405:ec00:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13736 (0x35a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F06, serialNumber=3AAF80EA97E99B9525B33BC1335BB095C2D278A7 Validity Not Before: Oct 2 15:10:57 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68de9601-73cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:95:5f:b7:36:36:79:24:2b:30:54:ce:05:bc: 2f:fa:d7:1b:f6:19:ff:39:61:3d:58:cb:54:c6:4d: ab:27:1e:96:b4:55:d0:88:b6:d2:2d:89:b6:f3:c4: ce:f4:97:db:bb:2a:cf:97:0b:7b:64:27:74:90:5b: f0:ae:ab:cc:24:0b:66:f0:ce:6c:76:df:ed:11:57: 3c:bb:0a:3a:f1:e8:20:52:2f:db:34:74:e7:92:49: 2d:7e:27:f7:bc:05:ab:d5:79:92:05:c3:d6:d0:43: a1:b5:79:e1:7a:e1:e0:40:63:81:a1:a5:b8:d9:2c: ee:e8:2e:03:4a:4b:e5:23:2e:f4:dd:cc:53:3b:2f: c0:75:e3:32:45:f1:f3:48:17:16:f0:c2:62:df:37: 63:ba:dc:d6:4c:ee:e5:22:d1:8e:10:75:e0:c6:63: d1:c5:30:d8:f7:83:42:6f:ef:14:dc:85:2a:cd:b7: 57:cb:40:6c:20:d8:ad:83:2d:97:04:d0:14:b6:1c: 30:65:98:c0:90:3b:2c:65:4a:d8:87:17:79:5e:d0: 0f:25:07:23:03:32:c9:78:98:46:c1:3a:f8:a7:64: 56:d8:b5:69:16:6b:84:8e:b8:e3:6d:fa:90:81:d3: 7a:09:a8:e7:2a:eb:06:c1:c0:ed:6b:2b:bc:54:eb: 1a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C7:43:4B:89:F3:0E:12:64:5F:14:0D:87:2F:34:AC:04:33:C4:9F X509v3 Authority Key Identifier: keyid:3A:AF:80:EA:97:E9:9B:95:25:B3:3B:C1:33:5B:B0:95:C2:D2:78:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oq-A6pfpm5UlszvBM1uwlcLSeKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F06/76E1C47E1D9511E2BE595E7D08B02CD2/1600DBF659C311E9A04B846FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.139.0/24 IPv6: 2405:ec00:8000::/48 Signature Algorithm: sha256WithRSAEncryption 12:1d:ec:8f:20:02:3f:fb:da:24:ba:d9:51:09:92:09:a8:b9: fe:0c:7a:ae:15:e4:25:37:f6:56:3c:40:24:71:49:fb:7d:86: 56:c9:7c:8b:17:9c:70:40:95:a6:66:7b:df:f3:17:01:71:e1: 3c:15:49:d5:ac:f5:a4:c9:e8:cd:d8:44:77:d6:a9:68:b3:21: 81:d3:89:7b:98:ae:6a:40:86:8b:55:c2:1c:84:7e:e7:32:04: 92:b3:76:a6:50:f0:c0:be:ab:0b:fc:b7:3c:01:31:74:a1:0f: 37:50:ec:cb:97:02:07:55:f0:7d:a1:0b:5e:b1:28:3f:a6:2e: f2:87:2f:29:fb:10:44:0a:1c:93:1c:89:00:80:ee:33:ca:94: e2:a6:cb:09:e2:2f:9b:41:13:32:ce:34:3e:e1:e0:4e:4e:88: bb:42:5d:34:8d:ef:45:f8:a8:2b:54:fd:9e:c0:83:07:fc:51: 51:eb:ac:05:cf:de:b9:e0:8a:53:bb:f2:e0:aa:bf:15:06:0a: 4a:23:2e:bd:1f:46:69:14:fd:39:b0:52:41:e6:44:65:f1:a8: fa:69:14:b7:0e:0b:34:fe:bf:49:55:0d:e1:9e:bb:c9:e0:02: 29:67:40:22:f5:1b:a8:f8:6c:b3:70:5f:41:00:a6:ca:31:f2: 3a:4d:6b:65 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMDYxMTAvBgNVBAUTKDNBQUY4MEVBOTdFOTlCOTUyNUIzM0JDMTMzNUJCMDk1 QzJEMjc4QTcwHhcNMjUxMDAyMTUxMDU3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlOTYwMS03M2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JVftzY2eSQrMFTOBbwv+tcb9hn/OWE9WMtUxk2rJx6WtFXQiLbSLYm288TO 9JfbuyrPlwt7ZCd0kFvwrqvMJAtm8M5sdt/tEVc8uwo68eggUi/bNHTnkkktfif3 vAWr1XmSBcPW0EOhtXnheuHgQGOBoaW42Szu6C4DSkvlIy703cxTOy/AdeMyRfHz SBcW8MJi3zdjutzWTO7lItGOEHXgxmPRxTDY94NCb+8U3IUqzbdXy0BsINitgy2X BNAUthwwZZjAkDssZUrYhxd5XtAPJQcjAzLJeJhGwTr4p2RW2LVpFmuEjrjjbfqQ gdN6CajnKusGwcDtayu8VOsaZQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIfHQ0uJ 8w4SZF8UDYcvNKwEM8SfMB8GA1UdIwQYMBaAFDqvgOqX6ZuVJbM7wTNbsJXC0nin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYwNi83NkUxQzQ3RTFE OTUxMUUyQkU1OTVFN0QwOEIwMkNEMi9PcS1BNnBmcG01VWxzenZCTTF1d2xjTFNl S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xLUE2cGZwbTVVbHN6dkJNMXV3bGNMU2VLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGMDYvNzZFMUM0N0UxRDk1MTFFMkJFNTk1RTdEMDhCMDJDRDIvMTYwMERCRjY1 OUMzMTFFOUEwNEI4NDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAr8YswDwQCAAIwCQMHACQF7ACAADANBgkqhkiG9w0BAQsF AAOCAQEAEh3sjyACP/vaJLrZUQmSCai5/gx6rhXkJTf2VjxAJHFJ+32GVsl8ixec cECVpmZ73/MXAXHhPBVJ1az1pMnozdhEd9apaLMhgdOJe5iuakCGi1XCHIR+5zIE krN2plDwwL6rC/y3PAExdKEPN1Dsy5cCB1XwfaELXrEoP6Yu8ocvKfsQRAockxyJ AIDuM8qU4qbLCeIvm0ETMs40PuHgTk6Iu0JdNI3vRfioK1T9nsCDB/xRUeusBc/e ueCKU7vy4Kq/FQYKSiMuvR9GaRT9ObBSQeZEZfGo+mkUtw4LNP6/SVUN4Z67yeAC KWdAIvUbqPhss3BfQQCmyjHyOk1rZQ== -----END CERTIFICATE-----Generated at Mon Oct 20 13:42:13 2025 by rpki-client