$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4A20B66AA5FF11F08004B67CC4F9AE02.roa File: 4A20B66AA5FF11F08004B67CC4F9AE02.roa (raw, json) Hash identifier: 8TfJONOc+HpxVfcksRvftex3Ciph8ayPUCuCYT6BQmw= Subject key identifier: 91:9C:A5:02:4A:4E:D7:02:CE:54:32:8C:65:04:1C:FE:01:DA:6D:FF Certificate issuer: /CN=A91E3493/serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Certificate serial: 04EB Authority key identifier: E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4A20B66AA5FF11F08004B67CC4F9AE02.roa Signing time: Fri 10 Oct 2025 17:33:53 +0000 ROA not before: Fri 10 Oct 2025 17:33:53 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 53766 IP address blocks: 103.48.252.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Oct 2025 01:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Validity Not Before: Oct 10 17:33:53 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68e94381-45b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d9:df:ad:62:b5:17:33:ab:a1:d3:ee:01:c1: 65:e7:5e:05:11:e3:1b:1d:31:c4:9b:a2:c2:1c:9e: 51:44:49:62:85:a9:77:07:57:af:40:ec:78:cb:70: 03:81:14:79:00:0f:66:1a:96:1c:c3:b0:85:14:6d: 27:c8:48:bd:4e:e2:f8:2d:dd:81:61:c9:4e:ff:9b: 61:ae:71:56:4e:bd:f1:60:37:13:15:fb:5d:90:85: 83:93:39:1f:da:8f:7b:ba:d6:3a:51:ca:b1:40:2f: 2d:8f:9f:2b:ec:48:33:c6:84:b5:95:ff:e9:87:20: 5e:b9:c2:9a:b8:e2:a0:27:58:70:82:83:95:2e:e7: de:8f:46:48:e0:d8:98:ce:c6:5e:68:69:4e:f8:e2: 1b:c1:ec:bd:65:94:d7:e2:a1:af:e6:01:3b:d2:c2: 82:c3:5e:5e:61:f4:4c:c8:d0:f2:3d:e0:b4:83:00: ba:28:01:1c:60:cf:07:b4:21:2b:6d:a3:0c:8c:46: 35:33:ec:ea:a9:11:5e:82:5f:77:8b:1d:c6:6e:9b: 0b:8a:41:36:cd:04:73:5f:c4:e8:95:91:c3:1a:b2: d4:27:5b:43:d8:ee:09:b5:9c:56:0c:60:24:78:d4: cc:9b:ed:e0:b6:3f:6e:cb:10:e0:24:f3:72:85:c5: 74:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9C:A5:02:4A:4E:D7:02:CE:54:32:8C:65:04:1C:FE:01:DA:6D:FF X509v3 Authority Key Identifier: keyid:E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4A20B66AA5FF11F08004B67CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.252.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:ae:00:91:f7:47:59:c4:8e:24:eb:e6:e2:ae:f7:66:bf:c2: 01:29:e5:81:41:51:37:c0:e9:a0:56:78:f3:b7:4e:fc:b8:96: 1e:d6:9b:f8:81:21:85:60:d2:23:90:a2:c5:45:11:b6:e0:f1: 62:52:43:db:5a:55:78:4a:7f:d7:7e:69:0c:c2:b6:59:49:cf: 63:5a:17:00:20:22:63:12:e9:e9:9f:db:a8:0d:60:d3:5d:00: e0:6f:c1:b4:48:7d:b9:69:1b:bd:ea:99:fa:39:0c:5f:3e:d4: 5b:40:9c:3c:a9:5e:26:8b:bc:b2:81:a6:c8:ef:c7:0a:51:62: ad:40:ac:0a:4f:33:2f:5a:ab:e3:3d:33:66:04:02:b7:19:ec: b9:a4:9f:7f:c9:68:3d:60:77:14:5d:7d:b8:b3:fa:f0:40:96: 13:46:f3:14:21:9e:70:01:d3:4e:4a:35:77:be:04:3e:6d:14: fb:72:d2:f0:fc:b8:aa:eb:2f:0a:34:ba:de:d2:11:61:fc:07: e1:24:05:ad:e1:65:b6:9d:08:90:4a:b8:ee:b7:3d:91:ce:da: ce:7b:b9:e3:8a:8f:85:42:d6:4d:7b:7a:98:7c:01:d7:9c:fc: 90:ba:85:ed:0d:68:3c:09:66:5a:17:84:be:98:cd:6b:6f:84: 6b:f2:2a:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM0OTMxMTAvBgNVBAUTKEUxNDRBNkNDQTU2QUE5MzEyODkxMjg0RDI2Mjc3MDYy NEVGQ0UyRUMwHhcNMjUxMDEwMTczMzUzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU5NDM4MS00NWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAltnfrWK1FzOrodPuAcFl514FEeMbHTHEm6LCHJ5RRElihal3B1evQOx4y3AD gRR5AA9mGpYcw7CFFG0nyEi9TuL4Ld2BYclO/5thrnFWTr3xYDcTFftdkIWDkzkf 2o97utY6UcqxQC8tj58r7EgzxoS1lf/phyBeucKauOKgJ1hwgoOVLufej0ZI4NiY zsZeaGlO+OIbwey9ZZTX4qGv5gE70sKCw15eYfRMyNDyPeC0gwC6KAEcYM8HtCEr baMMjEY1M+zqqRFegl93ix3GbpsLikE2zQRzX8TolZHDGrLUJ1tD2O4JtZxWDGAk eNTMm+3gtj9uyxDgJPNyhcV0SQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJGcpQJK TtcCzlQyjGUEHP4B2m3/MB8GA1UdIwQYMBaAFOFEpsylaqkxKJEoTSYncGJO/OLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzQ5My80OUEyRUU2QzM2 ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFURW9rU2hOSmlkd1lrNzg0 dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVU216S1ZxcVRFb2tTaE5KaWR3WWs3ODR1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM0OTMvNDlBMkVFNkMzNjg1MTFFQzgwRjUyMDM1QzRGOUFFMDIvNEEyMEI2NkFB NUZGMTFGMDgwMDRCNjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnMPwwDQYJKoZIhvcNAQELBQADggEBAE2uAJH3R1nEjiTr 5uKu92a/wgEp5YFBUTfA6aBWePO3Tvy4lh7Wm/iBIYVg0iOQosVFEbbg8WJSQ9ta VXhKf9d+aQzCtllJz2NaFwAgImMS6emf26gNYNNdAOBvwbRIfblpG73qmfo5DF8+ 1FtAnDypXiaLvLKBpsjvxwpRYq1ArApPMy9aq+M9M2YEArcZ7Lmkn3/JaD1gdxRd fbiz+vBAlhNG8xQhnnAB005KNXe+BD5tFPty0vD8uKrrLwo0ut7SEWH8B+EkBa3h ZbadCJBKuO63PZHO2s57ueOKj4VC1k17eph8Adec/JC6he0NaDwJZloXhL6YzWtv hGvyKoE= -----END CERTIFICATE-----Generated at Sat Oct 11 06:44:16 2025 by rpki-client