$ rpki-client -vvf rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/16FA72386A4E11E992F4832FC4F9AE02.roa File: 16FA72386A4E11E992F4832FC4F9AE02.roa (raw, json) Hash identifier: JDJx+bW699vTjkG4SZTOilca+2ZG/Wo+x5hxTR1zUag= Subject key identifier: 87:1B:AE:F0:CE:7A:DF:33:FD:34:C8:49:98:F8:01:A0:E7:80:12:68 Certificate issuer: /CN=A91172C6/serialNumber=5976EF5D0BF16688E25EC5E2DC8CA9F5AFAE1B53 Certificate serial: 0F9C Authority key identifier: 59:76:EF:5D:0B:F1:66:88:E2:5E:C5:E2:DC:8C:A9:F5:AF:AE:1B:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WXbvXQvxZojiXsXi3Iyp9a-uG1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/16FA72386A4E11E992F4832FC4F9AE02.roa Signing time: Thu 02 Oct 2025 17:47:21 +0000 ROA not before: Thu 02 Oct 2025 17:47:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134503 IP address blocks: 103.35.80.0/22 maxlen: 22 2402:c180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.crl rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WXbvXQvxZojiXsXi3Iyp9a-uG1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3996 (0xf9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91172C6, serialNumber=5976EF5D0BF16688E25EC5E2DC8CA9F5AFAE1B53 Validity Not Before: Oct 2 17:47:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68debaa9-426a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:07:71:d7:e4:64:04:ca:11:d1:01:f5:e0:8d: 00:a1:5c:4c:b8:d2:a6:40:f9:41:f3:89:64:b7:18: d9:18:aa:8e:69:c5:de:53:c7:a9:73:47:e6:43:a9: 06:99:cd:1d:a2:5f:40:e3:28:49:9e:98:77:6b:72: 4a:3f:af:65:aa:37:31:23:4d:bc:ea:44:77:2d:73: ea:e8:d3:b3:04:91:10:24:96:ca:21:89:dc:c0:d2: 6c:b2:d2:70:61:5b:96:e2:52:75:32:59:7f:30:22: 96:f0:ff:9c:1c:8e:58:eb:aa:88:c9:cc:53:26:e8: 78:81:8b:52:95:25:a5:b2:f8:d0:50:86:e4:0d:da: 9e:68:82:b9:f3:6f:ea:e7:f1:5e:91:48:a7:5b:57: ea:b6:20:7b:2b:03:25:cb:e7:49:50:ac:3b:44:b4: 40:ac:cc:13:ff:63:dc:9a:92:7a:28:53:35:54:22: 8f:c8:7a:db:6e:4b:b1:ee:78:10:a8:43:12:bc:fe: 9d:37:c7:e8:de:a6:14:9a:1b:7e:47:cc:07:db:4d: df:9c:20:85:f9:8c:c8:28:03:1a:bf:ee:53:c9:04: 04:14:f7:b6:85:23:69:71:28:4d:21:0e:27:77:79: c2:bf:0e:1d:d3:57:e0:9e:6d:ec:64:51:91:88:95: 8b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:1B:AE:F0:CE:7A:DF:33:FD:34:C8:49:98:F8:01:A0:E7:80:12:68 X509v3 Authority Key Identifier: keyid:59:76:EF:5D:0B:F1:66:88:E2:5E:C5:E2:DC:8C:A9:F5:AF:AE:1B:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/WXbvXQvxZojiXsXi3Iyp9a-uG1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WXbvXQvxZojiXsXi3Iyp9a-uG1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91172C6/0AA4D6646A4D11E99F05432EC4F9AE02/16FA72386A4E11E992F4832FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.80.0/22 IPv6: 2402:c180::/32 Signature Algorithm: sha256WithRSAEncryption 84:e8:da:0d:2a:c9:bb:4c:8c:24:1e:ca:be:70:ae:ea:b0:a0: 78:97:2f:e7:3a:5a:9e:5d:bb:7d:3f:a8:90:58:17:61:d4:7f: 95:45:57:d6:81:09:57:f0:bd:a0:46:e4:87:fa:c1:f3:1f:a0: 65:75:2b:de:a6:26:ba:2a:81:2c:be:ec:b6:20:af:b8:19:5b: a5:62:08:14:96:17:77:1c:2e:d1:f0:0a:7c:ca:e0:60:72:2b: f6:ef:c8:27:d2:a6:ed:8a:9b:7f:04:31:8a:ae:29:0e:0c:61: 16:2a:e7:15:cd:dc:d6:4d:33:60:79:2e:9f:53:02:4b:8a:e4: 3f:be:67:a8:b1:c8:e3:b0:0e:47:4e:0b:cc:a2:d0:c8:a2:0a: a6:f3:13:83:a0:64:5a:cf:65:47:b5:38:d8:a4:a5:23:ab:d5: 07:e5:fd:c3:12:d8:84:e4:8f:be:1c:48:de:95:9f:15:53:9d: 74:6c:17:34:6b:3f:be:92:94:e2:fe:86:91:3b:37:19:1b:76: 1e:0e:31:21:f6:32:de:58:dc:f2:a6:51:09:de:d3:f7:12:ee: 00:67:62:06:2e:ee:a4:27:95:f0:55:62:cd:c7:b0:4f:1e:79: 58:91:a3:26:f8:34:50:7c:56:1b:b1:f6:11:0c:8a:25:34:95: 2c:0c:61:aa -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICD5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcyQzYxMTAvBgNVBAUTKDU5NzZFRjVEMEJGMTY2ODhFMjVFQzVFMkRDOENBOUY1 QUZBRTFCNTMwHhcNMjUxMDAyMTc0NzIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlYmFhOS00MjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgdx1+RkBMoR0QH14I0AoVxMuNKmQPlB84lktxjZGKqOacXeU8epc0fmQ6kG mc0dol9A4yhJnph3a3JKP69lqjcxI0286kR3LXPq6NOzBJEQJJbKIYncwNJsstJw YVuW4lJ1Mll/MCKW8P+cHI5Y66qIycxTJuh4gYtSlSWlsvjQUIbkDdqeaIK582/q 5/FekUinW1fqtiB7KwMly+dJUKw7RLRArMwT/2PcmpJ6KFM1VCKPyHrbbkux7ngQ qEMSvP6dN8fo3qYUmht+R8wH203fnCCF+YzIKAMav+5TyQQEFPe2hSNpcShNIQ4n d3nCvw4d01fgnm3sZFGRiJWL6QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIcbrvDO et8z/TTISZj4AaDngBJoMB8GA1UdIwQYMBaAFFl2710L8WaI4l7F4tyMqfWvrhtT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzJDNi8wQUE0RDY2NDZB NEQxMUU5OUYwNTQzMkVDNEY5QUUwMi9XWGJ2WFF2eFpvamlYc1hpM0l5cDlhLXVH MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dYYnZYUXZ4Wm9qaVhzWGkzSXlwOWEtdUcxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTcyQzYvMEFBNEQ2NjQ2QTREMTFFOTlGMDU0MzJFQzRGOUFFMDIvMTZGQTcyMzg2 QTRFMTFFOTkyRjQ4MzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnI1AwDQQCAAIwBwMFACQCwYAwDQYJKoZIhvcNAQELBQAD ggEBAITo2g0qybtMjCQeyr5wruqwoHiXL+c6Wp5du30/qJBYF2HUf5VFV9aBCVfw vaBG5If6wfMfoGV1K96mJroqgSy+7LYgr7gZW6ViCBSWF3ccLtHwCnzK4GByK/bv yCfSpu2Km38EMYquKQ4MYRYq5xXN3NZNM2B5Lp9TAkuK5D++Z6ixyOOwDkdOC8yi 0MiiCqbzE4OgZFrPZUe1ONikpSOr1Qfl/cMS2ITkj74cSN6VnxVTnXRsFzRrP76S lOL+hpE7Nxkbdh4OMSH2Mt5Y3PKmUQne0/cS7gBnYgYu7qQnlfBVYs3HsE8eeViR oyb4NFB8Vhux9hEMiiU0lSwMYao= -----END CERTIFICATE-----Generated at Wed Nov 5 05:27:15 2025 by rpki-client