$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/DBAEB8B0ABF011F08F2FF00BC4F9AE02.roa File: DBAEB8B0ABF011F08F2FF00BC4F9AE02.roa (raw, json) Hash identifier: Bj66h/ubdkEKI16DU2Rhg+BZTpJu1j1x+zynDkS9OdQ= Subject key identifier: AE:DE:46:6E:C1:90:F0:6E:96:B6:6A:97:4D:CD:21:DF:10:90:E7:D8 Certificate issuer: /CN=A91A1FF1/serialNumber=263A55146E3172CFD8F00A6BB17BCB0EC20915C6 Certificate serial: E1 Authority key identifier: 26:3A:55:14:6E:31:72:CF:D8:F0:0A:6B:B1:7B:CB:0E:C2:09:15:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JjpVFG4xcs_Y8AprsXvLDsIJFcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/DBAEB8B0ABF011F08F2FF00BC4F9AE02.roa Signing time: Sat 18 Oct 2025 07:05:41 +0000 ROA not before: Sat 18 Oct 2025 07:05:41 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.21.8.0/22 maxlen: 24 111.92.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/JjpVFG4xcs_Y8AprsXvLDsIJFcY.crl rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/JjpVFG4xcs_Y8AprsXvLDsIJFcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JjpVFG4xcs_Y8AprsXvLDsIJFcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1FF1, serialNumber=263A55146E3172CFD8F00A6BB17BCB0EC20915C6 Validity Not Before: Oct 18 07:05:41 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68f33c45-e510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e1:7d:60:25:54:98:93:cf:09:09:37:ab:90: ae:19:74:66:25:8a:67:aa:61:a8:70:8d:b5:73:0e: 6b:80:dc:ac:82:f4:9c:8c:4f:32:ff:92:ad:8c:66: 39:1f:07:dc:cf:42:bc:23:64:be:c4:e4:6b:4a:e0: 71:77:2a:03:8d:13:fc:e0:96:6f:ba:c9:37:d0:8f: aa:01:9c:05:9b:c1:85:73:b5:05:b3:26:f1:e1:9b: 78:f5:2a:68:3d:70:d8:e9:e4:87:38:6e:4b:05:ac: d1:3d:97:f4:25:a3:ac:e5:11:22:f9:23:35:d4:7c: cf:aa:0b:5a:20:34:c3:bf:85:8b:99:ad:df:5f:92: aa:43:ca:62:31:04:50:f9:c0:71:74:1d:e8:33:03: e2:16:db:4f:d6:4b:27:4a:65:05:1e:83:ff:4b:c7: b9:9b:85:63:88:96:98:65:99:33:da:8d:fd:4f:0e: 2f:7c:de:10:f0:04:36:f6:96:28:52:35:87:0b:d0: 6b:46:5b:5d:4f:8d:c6:aa:cc:f1:38:b6:10:57:bf: 98:4b:31:bf:22:29:09:2d:80:89:d8:14:6d:7c:04: 33:83:c0:44:f4:51:60:e9:e1:d3:bd:25:71:a0:df: 8d:8d:f8:c4:49:f3:20:bd:c1:e2:3d:c7:5c:92:56: 61:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DE:46:6E:C1:90:F0:6E:96:B6:6A:97:4D:CD:21:DF:10:90:E7:D8 X509v3 Authority Key Identifier: keyid:26:3A:55:14:6E:31:72:CF:D8:F0:0A:6B:B1:7B:CB:0E:C2:09:15:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/JjpVFG4xcs_Y8AprsXvLDsIJFcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JjpVFG4xcs_Y8AprsXvLDsIJFcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1FF1/00D8F9AE5B9B11EF96AA4F42C4F9AE02/DBAEB8B0ABF011F08F2FF00BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.8.0/22 111.92.184.0/22 Signature Algorithm: sha256WithRSAEncryption ab:ff:fc:1d:69:55:64:1e:06:46:0d:e6:88:eb:8f:f3:c2:77: 37:8f:9c:8a:0b:84:85:e3:b6:4d:40:09:e8:de:ed:e2:5f:e5: 0b:ac:6a:d3:7e:6f:bc:b4:d2:ce:56:6b:84:ee:6f:83:02:d5: 9a:d0:94:3c:05:bc:98:04:40:5a:38:c0:ad:e6:eb:3c:1b:99: 33:28:35:5b:a7:c3:1e:48:3d:22:dd:51:bd:36:29:55:a2:62: 94:69:3f:fe:da:44:25:74:6d:74:53:ff:03:3a:71:d6:89:37: 03:04:58:65:db:d8:54:8b:a8:2d:4a:1d:12:23:2a:72:52:7f: 6c:cb:82:91:29:39:bf:f5:78:dc:e7:48:8a:0e:2e:84:68:d1: 4a:8f:6f:9e:c9:57:f0:c8:8f:82:da:4c:f2:38:3b:fb:f5:95: bb:96:92:6c:94:8d:8c:44:dc:5d:b7:98:44:32:9c:a4:39:65: 81:a5:e9:62:31:e9:19:89:c4:a9:a8:a5:a4:1a:f8:d5:eb:0f: c5:45:b5:96:eb:13:61:36:eb:0e:00:92:e1:db:4f:44:4b:d6: 4f:c6:be:31:ef:7d:f7:85:bc:1a:4b:fd:44:38:52:6e:ee:ec: b6:87:f4:77:60:f9:dc:e9:75:46:6b:30:d6:1d:aa:e1:a8:43: 47:0d:61:2e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFGRjExMTAvBgNVBAUTKDI2M0E1NTE0NkUzMTcyQ0ZEOEYwMEE2QkIxN0JDQjBF QzIwOTE1QzYwHhcNMjUxMDE4MDcwNTQxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzM2M0NS1lNTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruF9YCVUmJPPCQk3q5CuGXRmJYpnqmGocI21cw5rgNysgvScjE8y/5KtjGY5 Hwfcz0K8I2S+xORrSuBxdyoDjRP84JZvusk30I+qAZwFm8GFc7UFsybx4Zt49Spo PXDY6eSHOG5LBazRPZf0JaOs5REi+SM11HzPqgtaIDTDv4WLma3fX5KqQ8piMQRQ +cBxdB3oMwPiFttP1ksnSmUFHoP/S8e5m4VjiJaYZZkz2o39Tw4vfN4Q8AQ29pYo UjWHC9BrRltdT43GqszxOLYQV7+YSzG/IikJLYCJ2BRtfAQzg8BE9FFg6eHTvSVx oN+NjfjESfMgvcHiPcdcklZhcQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFK7eRm7B kPBulrZql03NId8QkOfYMB8GA1UdIwQYMBaAFCY6VRRuMXLP2PAKa7F7yw7CCRXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUZGMS8wMEQ4RjlBRTVC OUIxMUVGOTZBQTRGNDJDNEY5QUUwMi9KanBWRkc0eGNzX1k4QXByc1h2TERzSUpG Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pqcFZGRzR4Y3NfWThBcHJzWHZMRHNJSkZjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFGRjEvMDBEOEY5QUU1QjlCMTFFRjk2QUE0RjQyQzRGOUFFMDIvREJBRUI4QjBB QkYwMTFGMDhGMkZGMDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnFQgDBAJvXLgwDQYJKoZIhvcNAQELBQADggEBAKv//B1p VWQeBkYN5ojrj/PCdzePnIoLhIXjtk1ACeje7eJf5QusatN+b7y00s5Wa4Tub4MC 1ZrQlDwFvJgEQFo4wK3m6zwbmTMoNVunwx5IPSLdUb02KVWiYpRpP/7aRCV0bXRT /wM6cdaJNwMEWGXb2FSLqC1KHRIjKnJSf2zLgpEpOb/1eNznSIoOLoRo0UqPb57J V/DIj4LaTPI4O/v1lbuWkmyUjYxE3F23mEQynKQ5ZYGl6WIx6RmJxKmopaQa+NXr D8VFtZbrE2E26w4AkuHbT0RL1k/GvjHvffeFvBpL/UQ4Um7u7LaH9Hdg+dzpdUZr MNYdquGoQ0cNYS4= -----END CERTIFICATE-----Generated at Tue Oct 28 06:43:38 2025 by rpki-client