$ rpki-client -vvf rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa File: F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa (raw, json) Hash identifier: AxnCXioU+pzcVhOQczSiGNqFZn1BtxYji3/Mt/svcQU= Subject key identifier: F6:71:83:1E:15:84:1E:8B:5B:AD:56:AA:60:D1:59:D3:4A:50:03:DF Certificate issuer: /CN=A91A36A7/serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Certificate serial: 05C6 Authority key identifier: A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa Signing time: Wed 02 Apr 2025 23:24:37 +0000 ROA not before: Wed 02 Apr 2025 23:24:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141767 IP address blocks: 103.163.182.0/23 maxlen: 23 103.163.182.0/24 maxlen: 24 103.163.183.0/24 maxlen: 24 2001:df6:2380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1478 (0x5c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A36A7, serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Validity Not Before: Apr 2 23:24:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67edc735-924c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:22:89:a3:5f:a9:ff:c9:b9:7b:a8:e9:07:82: ab:12:6a:6d:27:87:e8:c3:b0:41:4f:89:f7:0b:cb: 11:63:38:2b:a4:20:76:03:ee:e7:98:20:f0:6a:7d: cd:88:46:fe:6a:0e:7d:b9:2d:05:d1:83:f5:b2:de: aa:8f:f8:e1:3b:42:37:9e:28:1a:2d:fd:95:fc:61: d8:07:47:80:66:e2:7e:e9:84:f8:b4:0e:1f:6c:b6: 99:08:8c:93:f9:a3:66:cb:42:08:53:ca:16:ca:c4: 64:52:fa:cf:b1:74:e7:a8:a9:6e:4c:9d:30:1b:5e: e5:ca:2b:7d:8a:45:1d:66:6f:b4:25:77:9c:d5:6e: 35:7a:c9:90:ba:6c:88:cb:db:84:e5:05:b3:b6:e7: 92:71:35:db:c2:29:54:6c:67:5e:87:9b:ce:85:f9: b9:0d:a7:1b:76:27:c3:f7:2f:9c:e9:24:37:76:84: 6f:96:78:d2:bf:11:fa:1f:51:d1:59:7a:7e:70:f3: d8:b6:8f:5c:cd:dc:35:96:2f:aa:25:a3:54:cd:7e: b3:3d:82:a5:ba:52:4a:bb:f7:bf:5d:42:86:d4:bd: 5c:45:d2:1e:1e:6b:db:1c:6f:de:06:79:16:54:6c: 06:28:a2:dc:bd:f4:6c:7d:ce:09:aa:38:86:bb:69: 11:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:71:83:1E:15:84:1E:8B:5B:AD:56:AA:60:D1:59:D3:4A:50:03:DF X509v3 Authority Key Identifier: keyid:A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.182.0/23 IPv6: 2001:df6:2380::/48 Signature Algorithm: sha256WithRSAEncryption 16:f3:7c:5d:bf:e2:92:03:e5:5d:1d:55:2f:e6:3a:43:c1:35: d0:59:eb:92:47:e1:ef:39:d9:68:c0:e3:d0:d3:06:95:e5:44: 6e:16:2f:e4:8c:41:6e:c7:52:28:a3:8d:c5:f2:38:de:86:58: 6b:c8:29:f4:db:2d:29:70:d3:c3:b8:14:cd:c7:a0:17:dd:7f: f8:d7:65:27:00:db:64:32:20:c5:f3:0c:8b:c5:e1:7e:11:1d: a0:de:75:83:0b:12:c1:8b:e6:63:21:31:d2:7a:00:6b:63:d9: b9:1d:e9:ae:5b:d4:c6:db:e9:97:d7:67:7b:05:55:ff:59:31: bc:7b:e2:0a:ef:82:03:dd:a1:e2:21:d0:bd:cd:c1:36:19:bb: 3a:b0:4d:69:f1:d5:fd:99:17:5e:15:36:ac:92:f5:77:38:ac: e6:43:c5:87:d6:0a:c1:78:c7:7b:22:fe:c0:c2:04:cf:b8:d7: b0:70:f9:84:9d:e0:24:12:92:7a:a8:5d:f4:1d:cb:31:b9:81: d5:b1:71:e5:b5:fd:ac:98:99:6b:af:8f:63:49:d6:42:ef:16: 4d:9b:84:31:3f:87:f2:4d:b8:b0:db:62:30:55:dd:3e:8c:71: 7e:bc:15:9d:98:fd:5c:3a:4c:48:ac:4a:37:f3:bb:e5:3d:f6: 4b:10:dd:66 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM2QTcxMTAvBgNVBAUTKEEzNjUyRDlFNTRFOTY0NjhCMjMwNDc5MzczMTdGQTRF Q0Q3QjM2NDgwHhcNMjUwNDAyMjMyNDM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYzczNS05MjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyKJo1+p/8m5e6jpB4KrEmptJ4fow7BBT4n3C8sRYzgrpCB2A+7nmCDwan3N iEb+ag59uS0F0YP1st6qj/jhO0I3nigaLf2V/GHYB0eAZuJ+6YT4tA4fbLaZCIyT +aNmy0IIU8oWysRkUvrPsXTnqKluTJ0wG17lyit9ikUdZm+0JXec1W41esmQumyI y9uE5QWztueScTXbwilUbGdeh5vOhfm5DacbdifD9y+c6SQ3doRvlnjSvxH6H1HR WXp+cPPYto9czdw1li+qJaNUzX6zPYKlulJKu/e/XUKG1L1cRdIeHmvbHG/eBnkW VGwGKKLcvfRsfc4JqjiGu2kRUwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPZxgx4V hB6LW61WqmDRWdNKUAPfMB8GA1UdIwQYMBaAFKNlLZ5U6WRosjBHk3MX+k7NezZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzZBNy84QUE2NUFGQ0I5 NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpHaXlNRWVUY3hmNlRzMTdO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yVXRubFRwWkdpeU1FZVRjeGY2VHMxN05rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM2QTcvOEFBNjVBRkNCOTQ5MTFFQkJCQjMyNTVBQzRGOUFFMDIvRjBDQTA5MEVC OTRBMTFFQkFGNUJERDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFno7YwDwQCAAIwCQMHACABDfYjgDANBgkqhkiG9w0BAQsF AAOCAQEAFvN8Xb/ikgPlXR1VL+Y6Q8E10Fnrkkfh7znZaMDj0NMGleVEbhYv5IxB bsdSKKONxfI43oZYa8gp9NstKXDTw7gUzcegF91/+NdlJwDbZDIgxfMMi8XhfhEd oN51gwsSwYvmYyEx0noAa2PZuR3prlvUxtvpl9dnewVV/1kxvHviCu+CA92h4iHQ vc3BNhm7OrBNafHV/ZkXXhU2rJL1dzis5kPFh9YKwXjHeyL+wMIEz7jXsHD5hJ3g JBKSeqhd9B3LMbmB1bFx5bX9rJiZa6+PY0nWQu8WTZuEMT+H8k24sNtiMFXdPoxx frwVnZj9XDpMSKxKN/O75T32SxDdZg== -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:57 2025 by rpki-client