$ rpki-client -vvf rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/F3DC25C41E4511EFBB4DF80DC4F9AE02.roa File: F3DC25C41E4511EFBB4DF80DC4F9AE02.roa (raw, json) Hash identifier: 6cC6tQeQd87kGRdq2QumL1i69ExtEnVSm6iU0IQLUOU= Subject key identifier: FD:77:C2:97:BD:B3:57:D6:07:32:3D:87:05:2F:53:F7:A7:89:C9:5A Certificate issuer: /CN=A91E647A/serialNumber=8F59C8FD5A0B5A99AB040064423ABF4DB0B4E086 Certificate serial: 3501 Authority key identifier: 8F:59:C8:FD:5A:0B:5A:99:AB:04:00:64:42:3A:BF:4D:B0:B4:E0:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1nI_VoLWpmrBABkQjq_TbC04IY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/F3DC25C41E4511EFBB4DF80DC4F9AE02.roa Signing time: Tue 14 Oct 2025 15:41:15 +0000 ROA not before: Tue 14 Oct 2025 15:41:15 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 58445 IP address blocks: 103.11.136.0/22 maxlen: 24 116.206.132.0/22 maxlen: 24 2001:df0:29f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.crl rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1nI_VoLWpmrBABkQjq_TbC04IY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13569 (0x3501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E647A, serialNumber=8F59C8FD5A0B5A99AB040064423ABF4DB0B4E086 Validity Not Before: Oct 14 15:41:15 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ee6f1a-6847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:58:a0:dd:97:9f:64:a4:e3:55:33:05:59:76: e2:09:58:75:fe:0b:1c:94:66:17:ab:8a:11:c0:03: 90:37:df:6b:53:94:c0:e6:7c:1f:b1:3a:5e:bc:29: dd:b2:7b:97:eb:be:b6:74:4d:30:ce:a8:8f:2a:b0: 23:43:7b:40:2e:74:c2:58:26:8d:ad:70:d3:19:f3: 92:17:f7:61:81:a0:e8:76:6b:73:9b:3d:b8:00:37: 52:c3:35:59:ef:7b:21:f2:6e:4b:b0:2f:8e:73:d1: c9:16:d0:93:af:ce:26:cc:4b:a9:6a:64:af:4b:94: 0b:2d:6a:99:ac:f8:51:32:a5:94:9d:27:f9:4e:0a: 37:aa:87:11:48:7a:22:27:2f:fd:98:d0:4e:c3:1d: 43:65:65:8d:69:8f:78:a0:7f:94:4e:dc:51:47:c5: 2c:22:d4:88:da:42:51:94:1b:4e:de:95:4f:c5:38: 11:ba:3b:e3:ab:48:ca:7a:8c:2b:a8:f9:08:4e:a4: 2a:ae:9d:66:fa:d2:5d:f8:fb:f7:f6:1b:a0:18:ae: b3:5e:3c:ec:80:25:d7:59:41:7b:bb:1d:b7:2e:44: 4f:e1:74:70:c7:14:93:3e:76:7d:5f:95:35:51:f5: 68:82:37:14:9f:e6:37:15:ed:69:3a:0c:35:af:5e: 44:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:77:C2:97:BD:B3:57:D6:07:32:3D:87:05:2F:53:F7:A7:89:C9:5A X509v3 Authority Key Identifier: keyid:8F:59:C8:FD:5A:0B:5A:99:AB:04:00:64:42:3A:BF:4D:B0:B4:E0:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1nI_VoLWpmrBABkQjq_TbC04IY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/F3DC25C41E4511EFBB4DF80DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.136.0/22 116.206.132.0/22 IPv6: 2001:df0:29f::/48 Signature Algorithm: sha256WithRSAEncryption 84:0c:c9:f5:92:26:c0:61:77:3e:40:4e:e7:16:b4:6c:40:4f: 90:16:b8:12:d7:bc:7b:61:72:43:dc:95:66:df:49:6e:a4:5e: 45:bb:1c:f9:03:e8:fc:a7:fb:f1:fc:1c:67:7f:5a:91:da:f9: fb:6a:f3:57:61:20:e4:ef:7e:1c:e9:5c:bf:44:05:f6:79:e5: 27:8c:2e:ba:e5:fd:de:ce:4a:63:3e:ee:30:13:66:7a:9a:3c: 8e:dd:a2:e0:42:c7:2c:e4:cd:53:f6:eb:f8:50:f9:65:df:06: 4d:82:58:30:67:7f:f7:8c:71:c1:92:e1:c8:66:e1:b6:06:16: d2:e9:63:c8:b4:2d:2e:39:91:4d:92:10:04:5b:6b:66:15:05: bc:76:6d:b2:b0:27:c4:50:4f:50:f1:0e:df:58:04:c2:a7:9d: 59:f4:2c:32:d9:ae:b9:6c:06:20:02:1f:dc:49:15:17:37:16: ad:e5:52:94:0e:06:2b:f9:e1:48:36:c5:c7:67:80:d1:3c:2a: 8e:5a:f5:0e:18:98:f0:6b:c3:f3:9a:98:52:c7:06:cf:a1:c8: 7f:47:c3:f9:3d:b5:d4:76:86:d9:aa:30:6c:ee:34:21:94:c7: 5b:ea:c7:dc:a2:04:55:a6:56:e1:05:0d:72:50:a2:93:93:e6: 85:c3:49:7c -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICNQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0N0ExMTAvBgNVBAUTKDhGNTlDOEZENUEwQjVBOTlBQjA0MDA2NDQyM0FCRjRE QjBCNEUwODYwHhcNMjUxMDE0MTU0MTE1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlNmYxYS02ODQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFig3ZefZKTjVTMFWXbiCVh1/gsclGYXq4oRwAOQN99rU5TA5nwfsTpevCnd snuX6762dE0wzqiPKrAjQ3tALnTCWCaNrXDTGfOSF/dhgaDodmtzmz24ADdSwzVZ 73sh8m5LsC+Oc9HJFtCTr84mzEupamSvS5QLLWqZrPhRMqWUnSf5Tgo3qocRSHoi Jy/9mNBOwx1DZWWNaY94oH+UTtxRR8UsItSI2kJRlBtO3pVPxTgRujvjq0jKeowr qPkITqQqrp1m+tJd+Pv39hugGK6zXjzsgCXXWUF7ux23LkRP4XRwxxSTPnZ9X5U1 UfVogjcUn+Y3Fe1pOgw1r15EUQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFP13wpe9 s1fWBzI9hwUvU/eniclaMB8GA1UdIwQYMBaAFI9ZyP1aC1qZqwQAZEI6v02wtOCG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQ3QS83OTQ4RUExQzFE QTkxMUUyQkExNDg0QTQwOEIwMkNEMi9qMW5JX1ZvTFdwbXJCQUJrUWpxX1RiQzA0 SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2oxbklfVm9MV3BtckJBQmtRanFfVGJDMDRJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY0N0EvNzk0OEVBMUMxREE5MTFFMkJBMTQ4NEE0MDhCMDJDRDIvRjNEQzI1QzQx RTQ1MTFFRkJCNERGODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJnC4gDBAJ0zoQwDwQCAAIwCQMHACABDfACnzANBgkqhkiG 9w0BAQsFAAOCAQEAhAzJ9ZImwGF3PkBO5xa0bEBPkBa4Ete8e2FyQ9yVZt9JbqRe Rbsc+QPo/Kf78fwcZ39akdr5+2rzV2Eg5O9+HOlcv0QF9nnlJ4wuuuX93s5KYz7u MBNmepo8jt2i4ELHLOTNU/br+FD5Zd8GTYJYMGd/94xxwZLhyGbhtgYW0uljyLQt LjmRTZIQBFtrZhUFvHZtsrAnxFBPUPEO31gEwqedWfQsMtmuuWwGIAIf3EkVFzcW reVSlA4GK/nhSDbFx2eA0Twqjlr1DhiY8GvD85qYUscGz6HIf0fD+T211HaG2aow bO40IZTHW+rH3KIEVaZW4QUNclCik5PmhcNJfA== -----END CERTIFICATE-----Generated at Mon Oct 20 12:42:30 2025 by rpki-client