$ rpki-client -vvf rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/A84FB264FD7011EAA1DF3534C4F9AE02.roa File: A84FB264FD7011EAA1DF3534C4F9AE02.roa (raw, json) Hash identifier: qFL74VsWk0alCoqYasNXx5dBtFR40fQNiPpQ09RmOwE= Subject key identifier: 8E:CD:B4:29:15:BD:70:40:AE:53:E3:0B:F9:81:5D:04:89:30:45:A6 Certificate issuer: /CN=A91C609A/serialNumber=3FD3895952FD849A97BC112474950284C6868645 Certificate serial: 0809 Authority key identifier: 3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/A84FB264FD7011EAA1DF3534C4F9AE02.roa Signing time: Mon 06 Oct 2025 21:22:43 +0000 ROA not before: Mon 06 Oct 2025 21:22:43 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141184 IP address blocks: 103.155.218.0/23 maxlen: 24 2407:f640::/32 maxlen: 32 2407:f640:600::/48 maxlen: 48 2407:f640:601::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C609A, serialNumber=3FD3895952FD849A97BC112474950284C6868645 Validity Not Before: Oct 6 21:22:43 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e43323-3746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ff:8f:a5:df:f8:cd:e8:0e:34:ab:6d:b9:c3: da:9f:72:36:c8:ec:f4:f5:0d:71:5b:41:f4:0e:e1: 04:00:21:1d:4a:d0:3b:02:37:1a:29:f2:f5:00:21: 9d:63:af:9c:3f:af:ef:2e:b6:21:8b:e6:16:72:9c: 6e:10:a4:7e:41:57:85:d3:25:c6:6c:ce:0a:c9:f4: 63:c3:6f:75:08:99:0d:dd:bf:74:35:ef:4c:0b:63: 38:14:b5:c2:50:35:02:92:95:c0:cf:34:42:ea:77: e0:0f:91:0e:e2:eb:8c:02:f2:9d:0d:ac:27:e4:da: 47:bd:8d:3d:3a:8f:35:74:78:8f:d8:9a:ad:5c:2a: da:7a:68:b7:7f:2a:ee:df:82:7a:ab:20:a3:0b:89: 92:4b:4e:a0:20:08:70:a1:ab:86:4c:92:8e:b2:9f: df:a7:c2:dc:52:5b:cd:da:82:49:29:fc:26:9f:19: 74:60:b5:04:3e:3e:e9:4f:25:51:15:be:8c:db:1b: 57:d4:e9:82:9c:88:1b:a4:34:2e:65:cc:60:ae:b7: 02:8d:52:54:ed:65:2c:dd:26:63:de:47:e7:02:f5: e0:7e:80:5d:bc:65:66:79:db:9b:37:49:fb:55:91: 6e:89:38:b0:78:17:85:03:b6:48:74:39:4d:bb:9f: b4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:CD:B4:29:15:BD:70:40:AE:53:E3:0B:F9:81:5D:04:89:30:45:A6 X509v3 Authority Key Identifier: keyid:3F:D3:89:59:52:FD:84:9A:97:BC:11:24:74:95:02:84:C6:86:86:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/P9OJWVL9hJqXvBEkdJUChMaGhkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9OJWVL9hJqXvBEkdJUChMaGhkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C609A/A37AE926FD6F11EA8E815E33C4F9AE02/A84FB264FD7011EAA1DF3534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.218.0/23 IPv6: 2407:f640::/32 Signature Algorithm: sha256WithRSAEncryption 09:06:d4:c2:9e:80:16:48:e0:53:ab:c8:d5:22:80:b5:9f:b1: cb:84:50:90:c8:a3:c6:b3:4c:cb:59:96:5e:b1:46:e0:d3:d6: ba:dc:85:db:18:ca:82:a8:c3:4e:b6:eb:fc:8b:67:cc:53:11: d3:3e:c8:1b:fc:e8:4b:61:03:df:5b:34:ea:74:ec:7c:d2:ad: 03:c2:c7:92:8a:c5:fa:d6:b5:2a:a7:62:cc:9f:a6:a8:0b:01: 03:c2:e7:3e:b0:fb:d9:6f:c2:30:b8:29:f5:bb:ef:99:ed:2b: f0:03:da:6c:79:46:e5:2d:e1:d0:57:d8:b0:41:18:c5:9d:b5: 07:e9:9f:f0:88:a4:4a:b9:a9:ac:ac:e4:d8:86:21:46:25:96: c2:77:af:71:be:6b:c4:7e:2f:04:1b:1b:c3:18:61:58:11:af: e7:e2:b3:8d:75:e1:6b:8e:a9:24:11:c9:af:cf:49:7f:3a:ee: 8c:2f:7d:03:ea:b7:03:88:21:95:2d:cc:09:2d:25:a5:39:6e: 5d:df:06:0a:30:57:f1:d5:8b:34:b2:53:c8:bd:02:d0:db:10: 8e:8a:75:75:6c:68:05:e6:e3:bd:d4:a6:57:47:fc:50:ee:44: 79:90:55:59:64:31:69:4a:f4:d5:f8:e0:aa:88:82:90:7c:f5: 59:70:5b:bf -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYwOUExMTAvBgNVBAUTKDNGRDM4OTU5NTJGRDg0OUE5N0JDMTEyNDc0OTUwMjg0 QzY4Njg2NDUwHhcNMjUxMDA2MjEyMjQzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU0MzMyMy0zNzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/+Ppd/4zegONKttucPan3I2yOz09Q1xW0H0DuEEACEdStA7AjcaKfL1ACGd Y6+cP6/vLrYhi+YWcpxuEKR+QVeF0yXGbM4KyfRjw291CJkN3b90Ne9MC2M4FLXC UDUCkpXAzzRC6nfgD5EO4uuMAvKdDawn5NpHvY09Oo81dHiP2JqtXCraemi3fyru 34J6qyCjC4mSS06gIAhwoauGTJKOsp/fp8LcUlvN2oJJKfwmnxl0YLUEPj7pTyVR Fb6M2xtX1OmCnIgbpDQuZcxgrrcCjVJU7WUs3SZj3kfnAvXgfoBdvGVmedubN0n7 VZFuiTiweBeFA7ZIdDlNu5+0zwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI7NtCkV vXBArlPjC/mBXQSJMEWmMB8GA1UdIwQYMBaAFD/TiVlS/YSal7wRJHSVAoTGhoZF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjA5QS9BMzdBRTkyNkZE NkYxMUVBOEU4MTVFMzNDNEY5QUUwMi9QOU9KV1ZMOWhKcVh2QkVrZEpVQ2hNYUdo a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5T0pXVkw5aEpxWHZCRWtkSlVDaE1hR2hrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYwOUEvQTM3QUU5MjZGRDZGMTFFQThFODE1RTMzQzRGOUFFMDIvQTg0RkIyNjRG RDcwMTFFQUExREYzNTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnm9owDQQCAAIwBwMFACQH9kAwDQYJKoZIhvcNAQELBQAD ggEBAAkG1MKegBZI4FOryNUigLWfscuEUJDIo8azTMtZll6xRuDT1rrchdsYyoKo w0626/yLZ8xTEdM+yBv86EthA99bNOp07HzSrQPCx5KKxfrWtSqnYsyfpqgLAQPC 5z6w+9lvwjC4KfW775ntK/AD2mx5RuUt4dBX2LBBGMWdtQfpn/CIpEq5qays5NiG IUYllsJ3r3G+a8R+LwQbG8MYYVgRr+fis4114WuOqSQRya/PSX867owvfQPqtwOI IZUtzAktJaU5bl3fBgowV/HVizSyU8i9AtDbEI6KdXVsaAXm473UpldH/FDuRHmQ VVlkMWlK9NX44KqIgpB89VlwW78= -----END CERTIFICATE-----Generated at Mon Oct 20 16:25:44 2025 by rpki-client