$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/9535628E5C0D11EDA7191A0AC4F9AE02.roa File: 9535628E5C0D11EDA7191A0AC4F9AE02.roa (raw, json) Hash identifier: F6J0bt8uAa0oxWiVJbAXSFZZKwEQUSnzC9etelTnDPw= Subject key identifier: E7:8E:1F:6C:63:03:BD:A9:59:3C:9C:06:C6:67:D6:D4:9E:8A:2B:8A Certificate issuer: /CN=A91ABD25/serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Certificate serial: 0251 Authority key identifier: 7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/9535628E5C0D11EDA7191A0AC4F9AE02.roa Signing time: Mon 03 Nov 2025 02:16:23 +0000 ROA not before: Mon 03 Nov 2025 02:16:23 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136521 IP address blocks: 103.91.185.0/24 maxlen: 24 103.91.185.0/25 maxlen: 25 103.91.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 593 (0x251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABD25, serialNumber=7FFC7C55CA485C376A61EFEC0E5377653A04C3BD Validity Not Before: Nov 3 02:16:23 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69081076-1152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0d:ac:d8:0d:4c:af:00:0f:6d:61:55:a4:85: 75:4d:e1:31:66:23:87:fd:5e:72:eb:e0:6d:6c:af: 6a:ef:35:54:43:5a:b5:b2:48:32:5a:35:52:48:e0: 70:05:8e:6b:ed:f5:d2:61:4c:33:36:f4:56:64:86: cf:42:ec:e5:30:91:2a:ba:2c:c2:e7:7a:c0:98:ba: 24:6a:f1:35:8f:28:ed:b4:12:ba:aa:16:cc:9e:ba: c8:75:1a:3b:e0:1e:29:ab:5c:ed:46:5a:2b:d8:28: f2:50:0b:88:e3:bb:f7:01:48:c7:5c:e6:bf:d7:cf: 99:38:8c:70:cd:d4:89:c5:0f:5b:ee:22:56:b0:c3: 29:16:83:d9:a1:08:9b:25:3d:72:c4:cb:46:a3:6c: 34:9a:fb:34:1c:17:97:60:01:0c:1c:86:fd:72:a4: 32:26:f5:d8:6e:cd:0e:2b:3c:ad:84:5f:89:7d:db: 92:7a:62:dc:53:dd:58:89:ec:42:f5:0c:74:99:60: 19:23:fe:3e:54:84:0c:57:0f:48:aa:30:e5:6a:86: 0f:89:54:a0:5c:d4:4c:de:0c:ee:85:91:d5:03:79: 2e:da:f2:e1:9f:f8:be:e5:da:e2:c7:be:9c:17:06: c0:8a:d7:9e:a4:23:bd:17:30:d7:9e:51:69:f2:1e: 3b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:8E:1F:6C:63:03:BD:A9:59:3C:9C:06:C6:67:D6:D4:9E:8A:2B:8A X509v3 Authority Key Identifier: keyid:7F:FC:7C:55:CA:48:5C:37:6A:61:EF:EC:0E:53:77:65:3A:04:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/f_x8VcpIXDdqYe_sDlN3ZToEw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_x8VcpIXDdqYe_sDlN3ZToEw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABD25/527DD25A4EAC11EDB4F71E38C4F9AE02/9535628E5C0D11EDA7191A0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.185.0/24 103.91.192.0/24 Signature Algorithm: sha256WithRSAEncryption a7:8d:5b:c1:d7:6a:83:99:2c:2c:81:e8:e4:fe:e0:0c:a8:2f: ce:a4:a9:5c:8b:53:57:f6:4d:3d:c1:e1:f3:79:dd:2e:45:b8: f5:5d:27:53:51:07:52:21:41:3e:75:07:a2:ad:30:d1:7e:d4: 35:77:bc:fb:01:33:b3:dd:81:0d:1f:a6:7a:32:39:6e:30:cc: 65:fb:50:7c:ad:85:1e:4c:4c:b8:aa:4d:ee:31:9d:a2:92:78: c5:b2:21:bc:4f:36:a6:aa:1f:fb:06:fb:67:b5:18:9f:93:2d: 21:d7:02:b1:e3:93:37:a2:6f:b1:e4:57:b2:a1:64:90:ea:04: dd:8a:80:19:97:eb:92:70:70:16:69:a7:f7:b8:cf:c2:1e:43: 80:87:3c:ba:10:6e:c4:a0:ff:1f:c3:78:0b:94:b3:1a:82:04: 5b:8b:07:df:f2:05:cb:83:50:01:ed:43:fa:c5:2a:6f:c2:8f: 21:18:34:53:85:e7:aa:36:e8:ce:5c:c8:09:3a:54:96:25:76: a3:7c:e1:9e:16:af:75:1f:e0:98:76:02:e8:c1:dc:6f:b1:32: 57:9d:4b:23:42:96:47:16:f0:d3:50:c5:1a:6d:e8:16:9d:62: e5:2a:bb:21:93:22:51:39:48:4b:43:b9:f1:87:86:15:28:8d: 05:70:1a:75 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJEMjUxMTAvBgNVBAUTKDdGRkM3QzU1Q0E0ODVDMzc2QTYxRUZFQzBFNTM3NzY1 M0EwNEMzQkQwHhcNMjUxMTAzMDIxNjIzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MTA3Ni0xMTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsw2s2A1MrwAPbWFVpIV1TeExZiOH/V5y6+BtbK9q7zVUQ1q1skgyWjVSSOBw BY5r7fXSYUwzNvRWZIbPQuzlMJEquizC53rAmLokavE1jyjttBK6qhbMnrrIdRo7 4B4pq1ztRlor2CjyUAuI47v3AUjHXOa/18+ZOIxwzdSJxQ9b7iJWsMMpFoPZoQib JT1yxMtGo2w0mvs0HBeXYAEMHIb9cqQyJvXYbs0OKzythF+JfduSemLcU91YiexC 9Qx0mWAZI/4+VIQMVw9IqjDlaoYPiVSgXNRM3gzuhZHVA3ku2vLhn/i+5drix76c FwbAiteepCO9FzDXnlFp8h47LwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOeOH2xj A72pWTycBsZn1tSeiiuKMB8GA1UdIwQYMBaAFH/8fFXKSFw3amHv7A5Td2U6BMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkQyNS81MjdERDI1QTRF QUMxMUVEQjRGNzFFMzhDNEY5QUUwMi9mX3g4VmNwSVhEZHFZZV9zRGxOM1pUb0V3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeDhWY3BJWERkcVllX3NEbE4zWlRvRXc3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJEMjUvNTI3REQyNUE0RUFDMTFFREI0RjcxRTM4QzRGOUFFMDIvOTUzNTYyOEU1 QzBEMTFFREE3MTkxQTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnW7kDBABnW8AwDQYJKoZIhvcNAQELBQADggEBAKeNW8HX aoOZLCyB6OT+4AyoL86kqVyLU1f2TT3B4fN53S5FuPVdJ1NRB1IhQT51B6KtMNF+ 1DV3vPsBM7PdgQ0fpnoyOW4wzGX7UHythR5MTLiqTe4xnaKSeMWyIbxPNqaqH/sG +2e1GJ+TLSHXArHjkzeib7HkV7KhZJDqBN2KgBmX65JwcBZpp/e4z8IeQ4CHPLoQ bsSg/x/DeAuUsxqCBFuLB9/yBcuDUAHtQ/rFKm/CjyEYNFOF56o26M5cyAk6VJYl dqN84Z4Wr3Uf4Jh2AujB3G+xMledSyNClkcW8NNQxRpt6BadYuUquyGTIlE5SEtD ufGHhhUojQVwGnU= -----END CERTIFICATE-----Generated at Wed Nov 5 21:28:16 2025 by rpki-client