$ rpki-client -vvf rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa File: 3E730FA28E8111EAB2038B6BC4F9AE02.roa (raw, json) Hash identifier: xfLkI/h1XN/7CM8om6JZQHC5GByz3LQPllaxdjqu0tc= Subject key identifier: EC:C4:DA:73:A9:1F:8A:AE:A5:FA:B8:C6:8A:4D:51:2A:B0:3D:C0:9B Certificate issuer: /CN=A91293F4/serialNumber=E6A54BAD7D176E4447A9E94F24480327C1B40C9E Certificate serial: 09D2 Authority key identifier: E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa Signing time: Wed 08 Oct 2025 20:21:13 +0000 ROA not before: Wed 08 Oct 2025 20:21:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45355 IP address blocks: 45.117.244.0/22 maxlen: 22 103.1.180.0/22 maxlen: 22 103.101.240.0/22 maxlen: 22 202.129.228.0/22 maxlen: 22 2400:6d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2514 (0x9d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91293F4, serialNumber=E6A54BAD7D176E4447A9E94F24480327C1B40C9E Validity Not Before: Oct 8 20:21:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6c7b9-b3e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:d8:61:d9:8b:d6:1b:f2:3a:39:6e:3e:ae: 9f:20:8b:c5:c9:4e:8e:8b:67:fe:d0:23:41:d9:6e: 69:f6:d4:5d:85:be:55:26:26:20:8f:11:8a:78:5d: 6d:4c:38:1e:d0:a1:9d:61:49:dc:26:6a:81:75:c7: 92:16:8a:c6:39:e2:92:50:5c:be:98:37:a2:45:ab: 22:67:eb:fc:18:5f:16:10:02:e9:1d:3a:18:01:1a: 9b:39:97:2b:5b:80:70:91:fa:98:e5:a1:ec:6c:a4: a1:45:4c:ad:9e:c5:a2:c4:62:56:93:a0:1b:e3:0e: f6:ae:09:f2:0e:33:fb:53:63:4b:24:37:25:c3:fa: 2e:a6:96:a4:dd:df:ac:12:fa:7b:4c:02:ce:13:5b: ce:6b:20:56:90:c8:95:a0:d0:c8:e4:3f:da:c0:b6: 60:c5:70:a2:54:f0:49:81:32:bb:bb:e7:08:03:bf: a0:d1:51:45:a7:d5:83:fd:ca:41:d8:27:3c:56:d1: 20:3a:c9:d1:55:7b:a6:2c:19:69:f2:42:01:e2:e4: 6d:5d:ee:3e:a3:29:9d:04:16:04:51:b5:1b:64:e1: 90:da:34:5e:1f:51:ec:7a:7c:43:d6:83:c5:db:fa: 40:8a:d7:4d:eb:a4:22:2c:54:22:93:b2:12:1f:c8: 54:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C4:DA:73:A9:1F:8A:AE:A5:FA:B8:C6:8A:4D:51:2A:B0:3D:C0:9B X509v3 Authority Key Identifier: keyid:E6:A5:4B:AD:7D:17:6E:44:47:A9:E9:4F:24:48:03:27:C1:B4:0C:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5qVLrX0XbkRHqelPJEgDJ8G0DJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91293F4/1F695EEC8E7F11EAA9584C67C4F9AE02/3E730FA28E8111EAB2038B6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.244.0/22 103.1.180.0/22 103.101.240.0/22 202.129.228.0/22 IPv6: 2400:6d00::/32 Signature Algorithm: sha256WithRSAEncryption 08:43:19:5f:fa:94:bb:64:9b:5a:74:b4:88:a7:38:cc:a1:45: b8:07:23:46:31:c8:83:e9:29:1f:03:a3:22:09:cb:bb:86:44: 1e:a7:61:b9:80:c1:6c:92:36:d7:e7:c1:21:a4:37:7c:33:47: 8e:e6:6d:3f:0e:79:b7:b9:76:2e:e4:f3:f2:63:d1:b6:5f:70: 11:5c:0c:13:7f:0c:aa:4a:70:c3:cd:10:8d:3b:5c:a7:9b:d3: 88:7b:55:53:28:c9:8c:dc:2f:a3:47:67:e9:e5:02:00:bf:c6: 91:d8:24:2c:6d:70:9c:35:fe:fb:42:ca:b9:c6:1d:7e:83:e5: b5:64:44:a8:d2:31:c2:9b:e1:47:aa:ed:0e:6b:63:3b:94:77: c9:08:03:52:d1:63:5a:8b:ca:88:b7:7b:dc:63:5b:a5:9b:a5: f7:83:a6:11:95:fb:a7:83:12:f7:14:3d:7f:47:09:cc:48:81: 8a:10:c8:bb:1c:d0:f8:42:d7:93:96:63:0c:7c:5c:5f:6f:fc: 4a:21:b7:85:c1:5b:57:7e:ea:87:20:cf:f8:b7:6e:09:18:b4: 86:62:7b:8e:07:d3:ce:4e:89:cd:31:e5:76:8b:23:c1:16:c5: 72:66:bd:a5:30:e0:d0:26:98:e5:7f:11:6d:71:c9:55:cb:39: 35:9d:ca:a3 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICCdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkzRjQxMTAvBgNVBAUTKEU2QTU0QkFEN0QxNzZFNDQ0N0E5RTk0RjI0NDgwMzI3 QzFCNDBDOUUwHhcNMjUxMDA4MjAyMTEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2YzdiOS1iM2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAto/YYdmL1hvyOjluPq6fIIvFyU6Oi2f+0CNB2W5p9tRdhb5VJiYgjxGKeF1t TDge0KGdYUncJmqBdceSForGOeKSUFy+mDeiRasiZ+v8GF8WEALpHToYARqbOZcr W4BwkfqY5aHsbKShRUytnsWixGJWk6Ab4w72rgnyDjP7U2NLJDclw/ouppak3d+s Evp7TALOE1vOayBWkMiVoNDI5D/awLZgxXCiVPBJgTK7u+cIA7+g0VFFp9WD/cpB 2Cc8VtEgOsnRVXumLBlp8kIB4uRtXe4+oymdBBYEUbUbZOGQ2jReH1HsenxD1oPF 2/pAitdN66QiLFQik7ISH8hUoQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFOzE2nOp H4qupfq4xopNUSqwPcCbMB8GA1UdIwQYMBaAFOalS619F25ER6npTyRIAyfBtAye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTNGNC8xRjY5NUVFQzhF N0YxMUVBQTk1ODRDNjdDNEY5QUUwMi81cVZMclgwWGJrUkhxZWxQSkVnREo4RzBE SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVxVkxyWDBYYmtSSHFlbFBKRWdESjhHMERKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjkzRjQvMUY2OTVFRUM4RTdGMTFFQUE5NTg0QzY3QzRGOUFFMDIvM0U3MzBGQTI4 RTgxMTFFQUIyMDM4QjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAItdfQDBAJnAbQDBAJnZfADBALKgeQwDQQCAAIwBwMFACQA bQAwDQYJKoZIhvcNAQELBQADggEBAAhDGV/6lLtkm1p0tIinOMyhRbgHI0YxyIPp KR8DoyIJy7uGRB6nYbmAwWySNtfnwSGkN3wzR47mbT8Oebe5di7k8/Jj0bZfcBFc DBN/DKpKcMPNEI07XKeb04h7VVMoyYzcL6NHZ+nlAgC/xpHYJCxtcJw1/vtCyrnG HX6D5bVkRKjSMcKb4Ueq7Q5rYzuUd8kIA1LRY1qLyoi3e9xjW6WbpfeDphGV+6eD EvcUPX9HCcxIgYoQyLsc0PhC15OWYwx8XF9v/Eoht4XBW1d+6ocgz/i3bgkYtIZi e44H085Oic0x5XaLI8EWxXJmvaUw4NAmmOV/EW1xyVXLOTWdyqM= -----END CERTIFICATE-----Generated at Wed Nov 5 20:08:53 2025 by rpki-client