$ rpki-client -vvf rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/591DB9860C1F11EF9FC57C84C4F9AE02.roa File: 591DB9860C1F11EF9FC57C84C4F9AE02.roa (raw, json) Hash identifier: q9ONqjSdzy+JisPTZwqoRB+SzsCldHkNYOddjkBH7o0= Subject key identifier: A1:51:FB:23:8F:39:F7:1A:C2:88:63:6A:28:C0:B3:B3:0E:BA:96:B8 Certificate issuer: /CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Certificate serial: 013C Authority key identifier: 8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/591DB9860C1F11EF9FC57C84C4F9AE02.roa Signing time: Mon 03 Nov 2025 04:49:17 +0000 ROA not before: Mon 03 Nov 2025 04:49:17 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 9304 IP address blocks: 103.215.40.0/22 maxlen: 24 144.48.216.0/22 maxlen: 24 223.255.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91846F6, serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Validity Not Before: Nov 3 04:49:17 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=6908344c-cf37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f5:2a:5e:9c:89:78:03:7b:e5:e0:dd:8a:97: 1c:a0:b0:d6:7e:7d:44:b9:9d:39:fb:40:e7:f6:22: 24:60:42:5e:d0:a0:b4:3c:29:50:c7:73:9b:87:92: 63:a1:de:13:1f:fb:b9:41:8c:fd:e1:d0:ec:77:b2: 6d:92:0c:c2:a1:a6:79:81:dd:1c:d8:23:3e:cf:d9: c0:0a:67:d4:99:22:b0:f1:17:2e:55:12:73:45:a6: 1d:30:ef:d1:ed:02:7f:aa:4c:2c:4e:05:26:23:c1: 29:ee:bf:58:e7:3c:77:b3:6c:f5:1f:1a:e9:d2:46: 01:a0:a9:af:79:3a:9e:4c:2f:6d:67:67:f4:b1:f7: ec:c7:fe:64:81:83:a9:91:1a:ad:fb:be:4d:a4:c0: ea:8f:a5:35:5c:a3:46:45:2d:24:28:eb:5e:28:ef: 54:0a:c7:09:0e:95:ca:1a:1b:95:ae:65:fb:f3:1e: 91:18:bb:d7:32:e4:7a:79:92:b4:08:ce:7a:53:54: 5c:d6:be:86:d4:e4:e5:2b:62:d3:25:95:eb:d8:24: 61:a1:f1:3f:f8:6e:22:a3:4e:c4:38:65:f2:0d:45: c2:ff:98:58:67:d6:cd:70:a9:6f:ef:33:a3:f7:75: ca:71:38:55:fd:a4:36:2e:b4:75:fd:01:6f:a6:e1: e9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:51:FB:23:8F:39:F7:1A:C2:88:63:6A:28:C0:B3:B3:0E:BA:96:B8 X509v3 Authority Key Identifier: keyid:8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/591DB9860C1F11EF9FC57C84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.40.0/22 144.48.216.0/22 223.255.240.0/22 Signature Algorithm: sha256WithRSAEncryption 53:9c:02:16:67:cd:eb:7d:c0:d2:2b:d5:b7:c3:a8:37:5f:27: 0d:56:3a:a2:b9:0e:f4:17:4b:f0:0a:33:9d:b9:4b:81:fb:41: ef:9f:4b:13:7e:85:64:b8:4b:f5:0a:7f:85:b3:e1:f5:72:65: 21:ec:51:5e:3d:75:01:35:b0:2f:9d:ff:bf:a7:ee:0c:c6:17: d0:63:ba:2b:d5:02:23:39:43:2e:e0:ff:68:58:c5:eb:4b:ef: 9a:c2:63:df:65:1b:b2:0b:6d:5d:01:a0:6e:77:65:8d:8c:4f: fe:38:9d:ef:05:32:c4:8d:fa:19:50:de:9e:c0:aa:43:aa:52: 90:f3:a7:a6:3a:34:0d:b2:e3:4c:4e:e1:22:1a:17:2a:34:fc: 4e:a7:93:59:31:bd:c6:45:5d:04:67:f5:d1:e5:19:cb:45:f5: 47:f7:d4:15:83:96:d4:f2:5d:dd:36:5f:ae:c6:ea:69:33:27: 28:63:f8:02:b4:8f:48:b8:fc:0a:1e:65:76:07:61:8f:04:b7: 42:a8:b8:8a:79:4d:8f:cd:cd:87:ca:52:cd:67:8e:6f:24:42: 4a:58:63:e6:80:c7:e5:31:a2:26:b2:71:92:76:ff:1c:d8:50: b5:ac:18:47:51:30:7e:71:e8:ae:ec:cd:06:56:40:95:39:d6: 18:35:50:b5 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ2RjYxMTAvBgNVBAUTKDhERTgyRUZGNjIzNEQ3OUI3QTY1RkE2MEEwNTMwMDdE QTgyODFGQ0MwHhcNMjUxMTAzMDQ0OTE3WhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MzQ0Yy1jZjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PUqXpyJeAN75eDdipccoLDWfn1EuZ05+0Dn9iIkYEJe0KC0PClQx3Obh5Jj od4TH/u5QYz94dDsd7JtkgzCoaZ5gd0c2CM+z9nACmfUmSKw8RcuVRJzRaYdMO/R 7QJ/qkwsTgUmI8Ep7r9Y5zx3s2z1Hxrp0kYBoKmveTqeTC9tZ2f0sffsx/5kgYOp kRqt+75NpMDqj6U1XKNGRS0kKOteKO9UCscJDpXKGhuVrmX78x6RGLvXMuR6eZK0 CM56U1Rc1r6G1OTlK2LTJZXr2CRhofE/+G4io07EOGXyDUXC/5hYZ9bNcKlv7zOj 93XKcThV/aQ2LrR1/QFvpuHpCQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKFR+yOP OfcawohjaijAs7MOupa4MB8GA1UdIwQYMBaAFI3oLv9iNNebemX6YKBTAH2oKB/M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDZGNi9GNEExQjJEODBD MTgxMUVGOUZGNzAxNDFDNEY5QUUwMi9qZWd1XzJJMDE1dDZaZnBnb0ZNQWZhZ29I OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plZ3VfMkkwMTV0NlpmcGdvRk1BZmFnb0g4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ2RjYvRjRBMUIyRDgwQzE4MTFFRjlGRjcwMTQxQzRGOUFFMDIvNTkxREI5ODYw QzFGMTFFRjlGQzU3Qzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJn1ygDBAKQMNgDBALf//AwDQYJKoZIhvcNAQELBQADggEB AFOcAhZnzet9wNIr1bfDqDdfJw1WOqK5DvQXS/AKM525S4H7Qe+fSxN+hWS4S/UK f4Wz4fVyZSHsUV49dQE1sC+d/7+n7gzGF9BjuivVAiM5Qy7g/2hYxetL75rCY99l G7ILbV0BoG53ZY2MT/44ne8FMsSN+hlQ3p7AqkOqUpDzp6Y6NA2y40xO4SIaFyo0 /E6nk1kxvcZFXQRn9dHlGctF9Uf31BWDltTyXd02X67G6mkzJyhj+AK0j0i4/Aoe ZXYHYY8Et0KouIp5TY/NzYfKUs1njm8kQkpYY+aAx+UxoiaycZJ2/xzYULWsGEdR MH5x6K7szQZWQJU51hg1ULU= -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:42 2025 by rpki-client