$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/FE4992F25C3411EBA2B9004DC4F9AE02.roa File: FE4992F25C3411EBA2B9004DC4F9AE02.roa (raw, json) Hash identifier: 90yd6nVAhznOwqzLDkzWSurW9sg0NSgWSjPCpe+6AKs= Subject key identifier: E4:7A:A0:A7:5D:11:54:3C:18:7A:35:06:EF:D6:57:E4:19:05:D5:00 Certificate issuer: /CN=A91F5FA2/serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79 Certificate serial: 0709 Authority key identifier: 79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/FE4992F25C3411EBA2B9004DC4F9AE02.roa Signing time: Sat 20 Sep 2025 22:11:48 +0000 ROA not before: Sat 20 Sep 2025 22:11:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131292 IP address blocks: 103.68.208.0/22 maxlen: 24 2405:e680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1801 (0x709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5FA2, serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79 Validity Not Before: Sep 20 22:11:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68cf26a4-a39c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:66:d7:57:73:1a:1f:5b:95:51:b0:60:b3:f8: 14:60:e5:55:1f:95:83:ef:a6:a1:d5:d2:51:0a:33: d5:37:a1:c1:48:47:3f:67:a0:fb:c5:97:1b:1b:7f: f0:a8:07:7a:68:b7:18:42:6d:8c:b0:a6:0f:0d:9f: b0:6d:fd:01:40:17:99:8b:fe:a8:0d:01:ff:2d:0e: b4:0b:de:31:aa:39:64:0e:b6:b0:da:b8:ce:2c:e2: 86:b5:a9:72:10:45:a8:45:c4:2f:68:18:e2:1e:e6: e5:83:92:b5:17:91:20:b4:99:37:97:ab:5b:f2:dc: 26:d4:16:91:3a:9d:a1:3e:41:9d:fd:5a:c7:20:9b: 27:9c:90:8f:b1:fe:d7:3a:71:e7:b5:42:35:d7:b8: ee:df:5d:a8:f3:38:b2:22:8e:dc:85:8d:66:4f:ff: 6d:7d:0a:4a:89:90:e3:9d:cf:3c:60:6d:7c:f8:33: df:29:14:7a:00:35:2d:21:10:cb:53:56:0b:07:9e: ee:aa:d0:6c:0c:ef:9a:a3:61:ce:2f:d1:98:1d:44: 50:e5:fc:1d:f3:90:98:89:d2:8b:02:e4:99:20:48: 4e:bb:30:99:f2:df:3f:5b:9d:41:07:67:a0:66:bd: 18:96:64:5b:25:3a:b1:a3:1f:e1:40:d7:38:28:d7: 50:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7A:A0:A7:5D:11:54:3C:18:7A:35:06:EF:D6:57:E4:19:05:D5:00 X509v3 Authority Key Identifier: keyid:79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/FE4992F25C3411EBA2B9004DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.208.0/22 IPv6: 2405:e680::/32 Signature Algorithm: sha256WithRSAEncryption 8a:93:f4:b1:20:3a:3b:55:f8:19:bd:47:65:0d:fb:bf:21:d9: 73:75:03:39:30:da:ce:58:62:5d:19:c3:9e:bf:8e:49:04:91: 42:2a:f5:0a:d9:a1:4f:18:a9:09:fa:9c:dd:56:75:a5:02:c0: 08:c9:cd:4b:f3:92:b2:36:36:d7:f5:1f:02:82:f7:35:84:6e: 91:36:4f:db:69:90:83:22:36:26:f8:e8:e0:22:6b:31:a8:82: 42:79:54:fc:0d:68:ea:74:02:2d:b8:29:80:bc:16:5a:2a:42: 6a:9b:d6:be:c7:29:2a:b0:e3:de:a9:60:d9:2d:d2:2f:8f:1f: 26:26:97:41:20:57:81:38:b7:e4:d1:79:2c:ce:06:4a:bf:63: cc:52:bf:56:f3:5e:6a:0c:6b:02:23:b4:88:5b:a0:42:e2:94: 4d:d9:7e:b1:48:36:81:07:3c:09:1f:b4:d6:45:89:ba:cc:a4: 2d:8c:26:13:9e:6b:be:65:5c:e4:76:54:ac:ff:3e:db:73:0f: 5b:00:d8:03:95:10:9a:47:12:98:81:48:8e:c6:10:3c:e7:9f: b5:2e:1b:c3:f7:2d:b2:6d:e3:2e:7b:4d:fe:61:65:7b:40:9b: 57:7e:83:66:7c:92:af:ec:4c:e7:c8:cb:c6:5f:ca:7d:e0:98: 13:5e:f7:78 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVGQTIxMTAvBgNVBAUTKDc5QTk0RDI4RTU0MjQ3MzgwOTEzODNENUY0OTc1QkZE QkNFQUFFNzkwHhcNMjUwOTIwMjIxMTQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNmMjZhNC1hMzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWbXV3MaH1uVUbBgs/gUYOVVH5WD76ah1dJRCjPVN6HBSEc/Z6D7xZcbG3/w qAd6aLcYQm2MsKYPDZ+wbf0BQBeZi/6oDQH/LQ60C94xqjlkDraw2rjOLOKGtaly EEWoRcQvaBjiHublg5K1F5EgtJk3l6tb8twm1BaROp2hPkGd/VrHIJsnnJCPsf7X OnHntUI117ju312o8ziyIo7chY1mT/9tfQpKiZDjnc88YG18+DPfKRR6ADUtIRDL U1YLB57uqtBsDO+ao2HOL9GYHURQ5fwd85CYidKLAuSZIEhOuzCZ8t8/W51BB2eg Zr0YlmRbJTqxox/hQNc4KNdQvQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOR6oKdd EVQ8GHo1Bu/WV+QZBdUAMB8GA1UdIwQYMBaAFHmpTSjlQkc4CROD1fSXW/286q55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUZBMi8wMzI1NDQ0MDVD MzIxMUVCOTdCRjdDNDVDNEY5QUUwMi9lYWxOS09WQ1J6Z0pFNFBWOUpkYl9ienFy bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VhbE5LT1ZDUnpnSkU0UFY5SmRiX2J6cXJuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjVGQTIvMDMyNTQ0NDA1QzMyMTFFQjk3QkY3QzQ1QzRGOUFFMDIvRkU0OTkyRjI1 QzM0MTFFQkEyQjkwMDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnRNAwDQQCAAIwBwMFACQF5oAwDQYJKoZIhvcNAQELBQAD ggEBAIqT9LEgOjtV+Bm9R2UN+78h2XN1Azkw2s5YYl0Zw56/jkkEkUIq9QrZoU8Y qQn6nN1WdaUCwAjJzUvzkrI2Ntf1HwKC9zWEbpE2T9tpkIMiNib46OAiazGogkJ5 VPwNaOp0Ai24KYC8FloqQmqb1r7HKSqw496pYNkt0i+PHyYml0EgV4E4t+TReSzO Bkq/Y8xSv1bzXmoMawIjtIhboELilE3ZfrFINoEHPAkftNZFibrMpC2MJhOea75l XOR2VKz/PttzD1sA2AOVEJpHEpiBSI7GEDznn7UuG8P3LbJt4y57Tf5hZXtAm1d+ g2Z8kq/sTOfIy8Zfyn3gmBNe93g= -----END CERTIFICATE-----Generated at Mon Oct 20 04:46:02 2025 by rpki-client