$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/87D45318994C11EC82BA3978C4F9AE02.roa File: 87D45318994C11EC82BA3978C4F9AE02.roa (raw, json) Hash identifier: vU1HGyruT0rWn1hdwhJaA7GCZtlR47+81PGq+koUgEQ= Subject key identifier: 3B:46:50:A6:D8:8F:75:DE:47:58:19:8E:67:D5:A3:2A:00:1D:30:B2 Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Certificate serial: 16B8 Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/87D45318994C11EC82BA3978C4F9AE02.roa Signing time: Tue 21 Oct 2025 08:43:05 +0000 ROA not before: Tue 21 Oct 2025 08:43:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198247 IP address blocks: 103.27.21.0/24 maxlen: 24 175.111.2.0/24 maxlen: 24 175.111.7.0/24 maxlen: 24 175.111.14.0/23 maxlen: 23 2001:fe8:8f01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 08:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5816 (0x16b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1185, serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Validity Not Before: Oct 21 08:43:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68f74798-e3fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d6:ba:3f:ef:d9:93:86:71:3f:02:10:9c:20: b5:01:7e:36:75:13:d5:ba:52:a3:4c:59:1d:cc:ef: 5e:2d:0c:b5:41:ae:92:dd:f0:51:81:88:af:c4:c5: 31:2a:d9:c2:71:0f:e9:e2:63:ea:3f:a8:92:45:90: 03:b9:0a:ef:8d:5a:95:57:37:3a:0c:55:77:06:2c: c4:4e:a9:ab:e6:b9:ac:6f:04:4e:2c:cb:d5:73:39: a5:8e:f1:8c:e9:4b:df:24:69:6c:bd:be:77:28:cc: d7:59:31:02:a7:06:d0:f3:21:1f:0a:25:03:a7:b0: 64:d6:17:f4:b4:cd:87:8a:2c:8f:d7:d8:1b:6f:0f: 3e:9a:8f:ad:aa:35:c7:fd:55:9f:71:c9:cc:36:78: 20:f0:bb:8e:2e:18:c8:cf:9d:93:a0:9a:9b:6a:73: 3e:f2:8b:bc:dc:24:5d:95:c1:d3:26:47:54:68:91: 3c:6c:7e:5b:32:79:ab:4a:7e:b6:6f:0b:ec:ec:b1: b6:7b:40:d2:cc:e0:77:1c:04:ed:62:b0:aa:03:b3: 1d:58:3f:2a:c8:bb:21:fa:8a:3f:c2:4c:e0:ed:31: 25:c1:f0:66:1c:0c:08:96:22:0e:bd:ad:24:b8:f3: 8a:00:dd:c9:9f:0b:bd:90:1f:c2:4d:2b:75:d9:f5: 4c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:46:50:A6:D8:8F:75:DE:47:58:19:8E:67:D5:A3:2A:00:1D:30:B2 X509v3 Authority Key Identifier: keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/87D45318994C11EC82BA3978C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.21.0/24 175.111.2.0/24 175.111.7.0/24 175.111.14.0/23 IPv6: 2001:fe8:8f01::/48 Signature Algorithm: sha256WithRSAEncryption 72:b0:a6:60:19:20:e6:49:0c:04:d9:64:59:e4:69:e3:b4:0a: b5:9f:37:0f:06:b8:0a:00:4b:40:74:20:c2:62:85:df:0e:81: 97:84:f0:62:c5:e0:dc:ab:1e:5e:62:4b:61:ca:b1:f0:ea:d0: 50:3c:f1:02:e3:41:08:b5:66:b1:6a:8b:a2:da:f4:1c:73:29: 76:25:52:32:ce:60:b2:ac:85:2d:f3:81:e3:d7:26:2f:9e:ea: 3a:85:99:bf:25:74:40:4e:4f:c8:0e:f4:9a:c3:a3:0c:d5:35: ec:f9:97:e9:0a:dd:91:a1:8c:4b:75:5d:ce:39:db:80:93:f3: 47:cf:b2:e7:24:0f:8b:f3:47:d4:1c:5f:af:d8:d0:45:f2:4f: 35:f7:0a:dd:53:bb:14:9e:cc:6e:0b:f4:73:92:6f:06:07:35: 38:00:9e:ac:17:16:8d:1a:11:64:85:c6:4a:6f:12:8a:29:67: 95:bc:f6:d5:b5:58:29:25:b6:c6:63:35:97:f0:a4:71:1e:25: 6c:1f:1a:70:5a:ab:4a:9a:19:03:9a:3f:2a:a8:11:c7:9b:10: 9e:d5:1b:dc:10:ca:d2:d6:61:33:90:49:39:0f:58:fd:3d:06: 67:c0:1c:2d:ee:27:82:12:38:ac:ef:c9:7c:50:ba:b8:1e:5c: 2e:43:ed:55 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICFrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3 RjEyMUYwNTMwHhcNMjUxMDIxMDg0MzA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY3NDc5OC1lM2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9a6P+/Zk4ZxPwIQnCC1AX42dRPVulKjTFkdzO9eLQy1Qa6S3fBRgYivxMUx KtnCcQ/p4mPqP6iSRZADuQrvjVqVVzc6DFV3BizETqmr5rmsbwROLMvVczmljvGM 6UvfJGlsvb53KMzXWTECpwbQ8yEfCiUDp7Bk1hf0tM2HiiyP19gbbw8+mo+tqjXH /VWfccnMNngg8LuOLhjIz52ToJqbanM+8ou83CRdlcHTJkdUaJE8bH5bMnmrSn62 bwvs7LG2e0DSzOB3HATtYrCqA7MdWD8qyLsh+oo/wkzg7TElwfBmHAwIliIOva0k uPOKAN3Jnwu9kB/CTSt12fVMZwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFDtGUKbY j3XeR1gZjmfVoyoAHTCyMB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2 MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4 Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjExODUvM0VBOUREM0ExNjIzMTFFODkyQzRBOTQwQzRGOUFFMDIvODdENDUzMTg5 OTRDMTFFQzgyQkEzOTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBABnGxUDBACvbwIDBACvbwcDBAGvbw4wDwQCAAIwCQMHACAB D+iPATANBgkqhkiG9w0BAQsFAAOCAQEAcrCmYBkg5kkMBNlkWeRp47QKtZ83Dwa4 CgBLQHQgwmKF3w6Bl4TwYsXg3KseXmJLYcqx8OrQUDzxAuNBCLVmsWqLotr0HHMp diVSMs5gsqyFLfOB49cmL57qOoWZvyV0QE5PyA70msOjDNU17PmX6QrdkaGMS3Vd zjnbgJPzR8+y5yQPi/NH1Bxfr9jQRfJPNfcK3VO7FJ7Mbgv0c5JvBgc1OACerBcW jRoRZIXGSm8Siilnlbz21bVYKSW2xmM1l/CkcR4lbB8acFqrSpoZA5o/KqgRx5sQ ntUb3BDK0tZhM5BJOQ9Y/T0GZ8AcLe4nghI4rO/JfFC6uB5cLkPtVQ== -----END CERTIFICATE-----Generated at Tue Oct 21 23:02:30 2025 by rpki-client