$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/F54804E6AB7F11F0B2EF8142C4F9AE02.roa File: F54804E6AB7F11F0B2EF8142C4F9AE02.roa (raw, json) Hash identifier: NPhAmWHU5O43Kq855O647EcbzZVgTafr5vhWlb7SK88= Subject key identifier: 3C:35:C9:F3:CD:9C:B5:54:74:59:F2:94:A3:77:46:B4:42:97:A3:9C Certificate issuer: /CN=A91EB002/serialNumber=9EF3E604A63F2CEF4BDDE37DCA890D0451967AEC Certificate serial: 0135 Authority key identifier: 9E:F3:E6:04:A6:3F:2C:EF:4B:DD:E3:7D:CA:89:0D:04:51:96:7A:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/F54804E6AB7F11F0B2EF8142C4F9AE02.roa Signing time: Sun 19 Oct 2025 04:59:31 +0000 ROA not before: Sun 19 Oct 2025 04:59:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134552 IP address blocks: 103.40.166.0/23 maxlen: 23 103.40.166.0/24 maxlen: 24 103.40.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.crl rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB002, serialNumber=9EF3E604A63F2CEF4BDDE37DCA890D0451967AEC Validity Not Before: Oct 19 04:59:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68f47033-45cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6e:f4:4a:bc:41:0a:4d:62:a9:a7:0c:04:e7: 31:b6:bd:1d:34:8f:f6:16:be:e1:32:90:32:11:15: aa:fe:56:64:88:c1:46:49:6c:4d:72:c1:f4:6d:80: 29:e2:14:be:13:9d:1e:e4:68:51:7a:e5:1b:33:57: 6a:88:40:5b:f5:f3:1f:f0:2f:d4:70:ea:7c:60:f9: 53:10:69:12:7d:81:0e:ba:0e:d3:a1:1c:0d:45:e3: da:8e:17:a0:7c:f9:ee:0c:66:22:9e:21:84:7d:85: 02:32:b7:80:a0:52:ba:8f:ca:51:8b:12:39:18:78: 8c:ee:1c:b9:b1:d5:00:d1:d1:90:99:41:28:32:13: 98:d1:cd:2f:e8:10:de:8b:ea:57:f2:c4:56:f1:a2: 04:ca:4c:53:07:01:73:af:65:4b:00:d8:e7:83:32: 95:57:33:f0:a1:6c:f6:15:30:67:5f:68:95:8e:6f: d5:45:86:96:11:bc:f3:3d:53:67:33:fc:ff:54:cb: 25:0d:00:52:81:fd:d2:81:ff:33:ae:bc:b0:44:4d: c0:6f:d8:7b:fc:6d:06:5b:cd:a8:95:35:1d:a8:7b: 1b:b8:e1:3b:bd:00:8c:e9:b7:6b:24:30:0a:f8:b7: e2:e2:84:21:87:e8:eb:e6:2b:99:32:e8:49:e3:1a: 55:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:35:C9:F3:CD:9C:B5:54:74:59:F2:94:A3:77:46:B4:42:97:A3:9C X509v3 Authority Key Identifier: keyid:9E:F3:E6:04:A6:3F:2C:EF:4B:DD:E3:7D:CA:89:0D:04:51:96:7A:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/F54804E6AB7F11F0B2EF8142C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.40.166.0/23 Signature Algorithm: sha256WithRSAEncryption 91:ac:af:f6:f0:c6:4e:97:a1:9c:52:46:4c:67:83:d5:27:19: 48:c9:e1:e9:09:7b:67:6c:b7:47:52:2c:49:da:34:43:bc:1c: b2:bc:19:53:78:bb:a4:d3:b7:fd:82:75:b9:4f:15:d6:25:0c: fc:db:d0:bf:27:c5:78:cd:00:1a:cb:04:9d:8f:c8:84:63:05: 81:06:8f:b0:35:33:ab:74:71:23:7c:e2:e8:12:59:54:b4:ad: 60:1f:ba:e8:b2:21:96:14:28:8d:b8:ef:c5:d8:ee:fe:dd:62: 9b:c0:cc:01:c1:98:6d:0f:c3:c4:26:63:df:79:a3:e9:8a:12: d0:6a:6e:52:27:7c:9e:48:37:09:54:0a:b2:d6:d1:d5:55:68: 8a:5e:76:63:2c:32:81:67:0c:0c:8b:45:d1:dc:a9:b0:31:55: 0f:d9:c7:9d:4f:88:50:7c:60:40:df:40:a5:a3:9d:8b:69:9a: fd:ce:20:7d:23:e2:6f:b1:a5:e0:d0:46:71:2e:9c:0c:e5:86: 52:de:dd:1e:fe:5a:c8:64:3b:f0:67:9e:bd:16:61:2b:8a:b6: 76:4c:c3:de:e0:be:b1:d4:c6:d8:3a:2a:23:5c:e4:5e:a3:5a: 22:0d:e7:03:23:8d:63:35:05:6f:bb:d3:a3:f1:d9:aa:5e:d1: a8:94:ee:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwMDIxMTAvBgNVBAUTKDlFRjNFNjA0QTYzRjJDRUY0QkRERTM3RENBODkwRDA0 NTE5NjdBRUMwHhcNMjUxMDE5MDQ1OTMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY0NzAzMy00NWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0m70SrxBCk1iqacMBOcxtr0dNI/2Fr7hMpAyERWq/lZkiMFGSWxNcsH0bYAp 4hS+E50e5GhReuUbM1dqiEBb9fMf8C/UcOp8YPlTEGkSfYEOug7ToRwNRePajheg fPnuDGYiniGEfYUCMreAoFK6j8pRixI5GHiM7hy5sdUA0dGQmUEoMhOY0c0v6BDe i+pX8sRW8aIEykxTBwFzr2VLANjngzKVVzPwoWz2FTBnX2iVjm/VRYaWEbzzPVNn M/z/VMslDQBSgf3Sgf8zrrywRE3Ab9h7/G0GW82olTUdqHsbuOE7vQCM6bdrJDAK +Lfi4oQhh+jr5iuZMuhJ4xpVTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDw1yfPN nLVUdFnylKN3RrRCl6OcMB8GA1UdIwQYMBaAFJ7z5gSmPyzvS93jfcqJDQRRlnrs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjAwMi9FMjRGODIzNDAy MkUxMUVGODU2RjUxMzJDNEY5QUUwMi9udlBtQktZX0xPOUwzZU45eW9rTkJGR1dl dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252UG1CS1lfTE85TDNlTjl5b2tOQkZHV2V1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIwMDIvRTI0RjgyMzQwMjJFMTFFRjg1NkY1MTMyQzRGOUFFMDIvRjU0ODA0RTZB QjdGMTFGMEIyRUY4MTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnKKYwDQYJKoZIhvcNAQELBQADggEBAJGsr/bwxk6XoZxS Rkxng9UnGUjJ4ekJe2dst0dSLEnaNEO8HLK8GVN4u6TTt/2CdblPFdYlDPzb0L8n xXjNABrLBJ2PyIRjBYEGj7A1M6t0cSN84ugSWVS0rWAfuuiyIZYUKI2478XY7v7d YpvAzAHBmG0Pw8QmY995o+mKEtBqblInfJ5INwlUCrLW0dVVaIpedmMsMoFnDAyL RdHcqbAxVQ/Zx51PiFB8YEDfQKWjnYtpmv3OIH0j4m+xpeDQRnEunAzlhlLe3R7+ WshkO/Bnnr0WYSuKtnZMw97gvrHUxtg6KiNc5F6jWiIN5wMjjWM1BW+706Px2ape 0aiU7uE= -----END CERTIFICATE-----Generated at Mon Oct 20 22:18:23 2025 by rpki-client