$ rpki-client -vvf rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/92EBC90CABD111F0B4462F16C4F9AE02.roa File: 92EBC90CABD111F0B4462F16C4F9AE02.roa (raw, json) Hash identifier: WZcZmgFPpXfORxvGM494Pr8Ava0fj6MltmQBEC1MNTc= Subject key identifier: AB:5A:C0:E9:C9:4A:49:D4:A6:A2:B1:30:CB:FB:C4:58:D4:54:0F:79 Certificate issuer: /CN=A91E77F3/serialNumber=65114B1743FD60DD7728DEE1E85B49EEA1BF0DAD Certificate serial: E1 Authority key identifier: 65:11:4B:17:43:FD:60:DD:77:28:DE:E1:E8:5B:49:EE:A1:BF:0D:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/92EBC90CABD111F0B4462F16C4F9AE02.roa Signing time: Sat 18 Oct 2025 03:21:46 +0000 ROA not before: Sat 18 Oct 2025 03:21:46 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.204.252.0/22 maxlen: 24 203.76.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.crl rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E77F3, serialNumber=65114B1743FD60DD7728DEE1E85B49EEA1BF0DAD Validity Not Before: Oct 18 03:21:46 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68f307c9-3995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:82:c7:bd:90:bd:af:3d:b9:e1:03:43:72:7a: 9a:93:7b:87:28:44:1c:0e:66:e3:ed:b1:4a:29:3e: 84:08:7b:8a:dd:86:9c:99:e2:ee:14:33:16:f6:ef: 83:cf:0f:81:3f:9b:6b:db:ce:34:3a:d3:ed:fd:a1: 3d:77:5f:57:c7:d6:41:3f:91:c6:67:62:91:ad:02: d0:f2:96:42:34:3a:5d:b3:2f:c9:5b:0f:c5:6c:3a: d3:42:d5:29:47:54:54:09:b8:ee:a3:05:b5:93:8b: a0:39:18:b4:a4:3c:a3:c6:af:33:ae:17:55:24:5d: 50:c5:aa:fe:79:39:f5:5c:79:6a:bc:9e:22:90:e7: 7c:e4:bd:68:08:04:d0:0a:45:d4:48:66:86:25:70: e3:55:dd:1f:47:7f:bf:82:c6:07:7a:09:47:ac:a2: 95:63:a0:ed:20:bd:9a:24:5b:20:9f:fb:ba:da:70: 8f:96:29:6b:01:95:82:58:bf:e6:a3:22:85:fd:64: af:f9:7c:2a:bf:2e:eb:69:e4:8b:d9:ad:39:69:a1: bb:a3:8a:87:66:5a:1a:03:c1:32:cb:03:ee:a2:1a: 8b:65:50:6b:17:48:fd:ba:3d:f6:e9:a3:ae:8b:f0: de:39:42:ad:30:ba:48:2f:4a:24:f5:38:89:98:8f: 9d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:5A:C0:E9:C9:4A:49:D4:A6:A2:B1:30:CB:FB:C4:58:D4:54:0F:79 X509v3 Authority Key Identifier: keyid:65:11:4B:17:43:FD:60:DD:77:28:DE:E1:E8:5B:49:EE:A1:BF:0D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/92EBC90CABD111F0B4462F16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.252.0/22 203.76.232.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:90:97:f2:c4:f2:7f:b7:cb:b9:c0:5f:e0:4a:e8:17:73:84: 3f:58:4c:0b:f6:5a:72:b3:cb:fc:f2:7d:81:92:6b:7c:92:fe: d8:5c:50:22:ce:d3:41:a7:a3:9d:2b:d9:14:16:c7:ab:b0:37: 45:84:f2:26:1d:71:a7:e0:5e:ec:c7:5c:00:29:1a:42:68:9d: 3b:25:68:f8:0c:ce:eb:4c:f7:5a:3e:97:ac:ea:a7:ea:cf:44: 30:e6:fb:8f:58:c4:38:e9:28:31:f7:95:b7:aa:9e:0f:00:56: cf:a9:95:f0:53:ac:a4:4c:3e:5d:c9:2c:d0:f8:8a:1c:bd:d0: 2b:d9:e3:1c:6b:78:bd:2b:5d:18:4d:72:b8:e2:76:e2:49:6b: e7:b8:48:62:ad:51:9c:0a:31:22:28:b5:21:0f:77:42:be:03: 1b:72:52:e2:80:6e:24:fc:07:25:bc:75:e3:86:59:bf:f4:2e: f5:d0:de:dc:68:fa:c2:0c:47:68:2d:56:96:7b:17:6d:4e:fa: ab:8b:a0:f7:f0:73:a3:4b:19:6e:99:b3:1f:34:c7:66:e8:71: d2:5c:51:f4:95:3c:6f:82:17:db:e0:a1:b4:fd:f6:54:f7:94: c6:dc:07:42:3e:4f:89:6f:04:13:15:ec:05:7e:08:fa:50:95: 7c:01:43:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc3RjMxMTAvBgNVBAUTKDY1MTE0QjE3NDNGRDYwREQ3NzI4REVFMUU4NUI0OUVF QTFCRjBEQUQwHhcNMjUxMDE4MDMyMTQ2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzMDdjOS0zOTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYLHvZC9rz254QNDcnqak3uHKEQcDmbj7bFKKT6ECHuK3YacmeLuFDMW9u+D zw+BP5tr2840OtPt/aE9d19Xx9ZBP5HGZ2KRrQLQ8pZCNDpdsy/JWw/FbDrTQtUp R1RUCbjuowW1k4ugORi0pDyjxq8zrhdVJF1Qxar+eTn1XHlqvJ4ikOd85L1oCATQ CkXUSGaGJXDjVd0fR3+/gsYHeglHrKKVY6DtIL2aJFsgn/u62nCPlilrAZWCWL/m oyKF/WSv+Xwqvy7raeSL2a05aaG7o4qHZloaA8EyywPuohqLZVBrF0j9uj326aOu i/DeOUKtMLpIL0ok9TiJmI+dwQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKtawOnJ SknUpqKxMMv7xFjUVA95MB8GA1UdIwQYMBaAFGURSxdD/WDddyje4ehbSe6hvw2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzdGMy85NEVGQ0MwQzVC OUMxMUVGOENFQTMxNDVDNEY5QUUwMi9aUkZMRjBQOVlOMTNLTjdoNkZ0SjdxR19E YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pSRkxGMFA5WU4xM0tON2g2RnRKN3FHX0RhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc3RjMvOTRFRkNDMEM1QjlDMTFFRjhDRUEzMTQ1QzRGOUFFMDIvOTJFQkM5MENB QkQxMTFGMEI0NDYyRjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnzPwDBALLTOgwDQYJKoZIhvcNAQELBQADggEBAAqQl/LE 8n+3y7nAX+BK6BdzhD9YTAv2WnKzy/zyfYGSa3yS/thcUCLO00Gno50r2RQWx6uw N0WE8iYdcafgXuzHXAApGkJonTslaPgMzutM91o+l6zqp+rPRDDm+49YxDjpKDH3 lbeqng8AVs+plfBTrKRMPl3JLND4ihy90CvZ4xxreL0rXRhNcrjiduJJa+e4SGKt UZwKMSIotSEPd0K+AxtyUuKAbiT8ByW8deOGWb/0LvXQ3txo+sIMR2gtVpZ7F21O +quLoPfwc6NLGW6Zsx80x2bocdJcUfSVPG+CF9vgobT99lT3lMbcB0I+T4lvBBMV 7AV+CPpQlXwBQxg= -----END CERTIFICATE-----Generated at Mon Oct 20 04:52:21 2025 by rpki-client