$ rpki-client -vvf rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/2201EFC86E5211EEB027A974C4F9AE02.roa File: 2201EFC86E5211EEB027A974C4F9AE02.roa (raw, json) Hash identifier: mptcdiE9tQA9oGuwJ5pkSKgRaIV+xdsDpTyBHSSEXD8= Subject key identifier: 99:A1:AD:12:C3:06:8D:1E:7A:B2:D2:CB:DE:5E:C2:50:42:BE:54:9E Certificate issuer: /CN=A91490C8/serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Certificate serial: 017A Authority key identifier: 33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/2201EFC86E5211EEB027A974C4F9AE02.roa Signing time: Thu 23 Oct 2025 05:51:48 +0000 ROA not before: Thu 23 Oct 2025 05:51:48 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 38203 IP address blocks: 103.65.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 07:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91490C8, serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Validity Not Before: Oct 23 05:51:48 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f9c273-7ec3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a1:6e:e8:75:e9:73:23:c5:d5:be:65:cd:9e: 4b:7f:bd:92:40:85:bc:c7:0e:2d:16:00:d4:ab:a7: 35:15:86:0d:ef:2a:f3:3e:00:03:0f:fd:4a:c1:e7: 7d:34:af:e5:46:88:00:d5:cb:5b:64:b7:05:fb:27: 31:fe:c4:e1:e4:03:fe:36:b9:8e:f3:a3:cf:a2:b6: 8c:d0:68:13:d1:52:d9:43:8e:f0:fd:f4:01:c8:e9: 4d:a0:b3:14:98:5b:65:f1:b9:23:ae:3c:15:49:5a: bf:f5:c0:39:e8:3c:f9:ab:7a:b6:64:8a:d6:8b:53: 36:47:d3:73:57:e2:10:ee:3e:e2:48:f5:c0:1d:3b: 22:65:00:5c:e1:ac:6d:ea:ec:d0:48:7e:8b:09:0d: 53:f4:a8:b0:f7:39:6d:8e:16:23:41:b3:10:6b:b8: 65:00:b5:20:28:d3:88:9b:b8:fd:51:a7:01:62:34: 7a:2d:06:2e:38:ac:b5:c4:32:22:dd:a8:44:65:54: f7:b7:5c:53:fb:6f:bf:bf:6f:c9:79:18:bb:4a:75: 7d:d1:55:04:94:5f:95:92:74:9f:e9:06:ae:41:5a: 4e:7d:58:25:48:3a:b0:79:4b:f8:17:cf:56:da:83: 15:7e:e3:f3:97:54:70:11:46:88:f4:5b:99:84:1b: 07:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A1:AD:12:C3:06:8D:1E:7A:B2:D2:CB:DE:5E:C2:50:42:BE:54:9E X509v3 Authority Key Identifier: keyid:33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/2201EFC86E5211EEB027A974C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.132.0/23 Signature Algorithm: sha256WithRSAEncryption 42:9e:79:2c:de:1a:b0:fd:d0:2e:9b:05:c1:62:87:30:54:fb: 93:84:10:3c:97:6b:26:5e:ff:bd:ad:5b:30:f9:ea:24:c1:b4: 5e:61:9f:80:bb:29:77:70:c3:26:29:a1:29:50:a4:35:4e:cb: 5b:70:8a:cd:65:a6:6d:f5:08:30:4a:84:67:2f:b3:4a:c4:14: 51:73:9b:a8:f1:a7:ab:08:0a:e5:31:dc:29:3c:ac:da:e2:db: b5:87:60:65:d5:a7:8c:1a:bc:f1:95:e4:39:04:c3:e4:0c:1c: e8:10:09:5d:f9:00:52:ea:df:f2:da:3f:07:ed:bc:85:ec:76: 11:be:1b:f6:80:9e:5e:af:ca:f7:8f:43:69:ab:0e:83:58:fe: 66:f0:de:8f:1c:ec:92:d6:21:5c:a2:ac:86:e4:07:9e:5d:72: 10:7b:95:93:e9:d2:f8:b2:e9:dc:e2:30:24:77:6f:e0:80:26: f5:ea:5e:07:bf:98:d9:ba:6d:1e:cd:08:7f:16:f0:d2:eb:4f: 14:05:89:3a:20:b4:ba:4a:6f:5a:da:6a:28:e7:a7:a5:74:42: 2e:2a:eb:dc:33:0a:a1:6b:7e:bc:b0:e9:62:9a:24:73:30:cb: 2a:4b:f5:5a:43:8c:ae:08:e5:d9:06:9f:da:7b:2d:28:1e:cd: 52:43:23:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkwQzgxMTAvBgNVBAUTKDMzMThFODc1NDEzNjQyMUUyNDRBNkM0MUREQTVERUND MTBEQThGODEwHhcNMjUxMDIzMDU1MTQ4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5YzI3My03ZWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KFu6HXpcyPF1b5lzZ5Lf72SQIW8xw4tFgDUq6c1FYYN7yrzPgADD/1Kwed9 NK/lRogA1ctbZLcF+ycx/sTh5AP+NrmO86PPoraM0GgT0VLZQ47w/fQByOlNoLMU mFtl8bkjrjwVSVq/9cA56Dz5q3q2ZIrWi1M2R9NzV+IQ7j7iSPXAHTsiZQBc4axt 6uzQSH6LCQ1T9Kiw9zltjhYjQbMQa7hlALUgKNOIm7j9UacBYjR6LQYuOKy1xDIi 3ahEZVT3t1xT+2+/v2/JeRi7SnV90VUElF+VknSf6QauQVpOfVglSDqweUv4F89W 2oMVfuPzl1RwEUaI9FuZhBsHCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJmhrRLD Bo0eerLSy95ewlBCvlSeMB8GA1UdIwQYMBaAFDMY6HVBNkIeJEpsQd2l3swQ2o+B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTBDOC9DQzIzMzhEQzZF NTExMUVFQTQ3RTJCNzRDNEY5QUUwMi9NeGpvZFVFMlFoNGtTbXhCM2FYZXpCRGFq NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014am9kVUUyUWg0a1NteEIzYVhlekJEYWo0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDkwQzgvQ0MyMzM4REM2RTUxMTFFRUE0N0UyQjc0QzRGOUFFMDIvMjIwMUVGQzg2 RTUyMTFFRUIwMjdBOTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnQYQwDQYJKoZIhvcNAQELBQADggEBAEKeeSzeGrD90C6b BcFihzBU+5OEEDyXayZe/72tWzD56iTBtF5hn4C7KXdwwyYpoSlQpDVOy1twis1l pm31CDBKhGcvs0rEFFFzm6jxp6sICuUx3Ck8rNri27WHYGXVp4wavPGV5DkEw+QM HOgQCV35AFLq3/LaPwftvIXsdhG+G/aAnl6vyvePQ2mrDoNY/mbw3o8c7JLWIVyi rIbkB55dchB7lZPp0viy6dziMCR3b+CAJvXqXge/mNm6bR7NCH8W8NLrTxQFiTog tLpKb1raaijnp6V0Qi4q69wzCqFrfryw6WKaJHMwyypL9VpDjK4I5dkGn9p7LSge zVJDIzw= -----END CERTIFICATE-----Generated at Sun Oct 26 20:39:06 2025 by rpki-client