$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6814/0967C798B92411F0BFD5A56EC4F9AE02/81C07094BA0C11F0AF4DEF76C4F9AE02.roa File: 81C07094BA0C11F0AF4DEF76C4F9AE02.roa (raw, json) Hash identifier: LvYtqqsX5XDqBjDN9kYZD7Fq4cBUSUa2LyCIcp3UDEM= Subject key identifier: 6C:A1:B0:21:58:9C:33:91:80:34:B3:F6:28:02:7A:CD:E0:36:A7:A4 Certificate issuer: /CN=A91B6814/serialNumber=F63C46422912B45A9186E445C5A9DEA7BBA3428B Certificate serial: 13 Authority key identifier: F6:3C:46:42:29:12:B4:5A:91:86:E4:45:C5:A9:DE:A7:BB:A3:42:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9jxGQikStFqRhuRFxanep7ujQos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6814/0967C798B92411F0BFD5A56EC4F9AE02/81C07094BA0C11F0AF4DEF76C4F9AE02.roa Signing time: Wed 05 Nov 2025 06:03:45 +0000 ROA not before: Wed 05 Nov 2025 06:03:45 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 32205 IP address blocks: 43.251.100.0/22 maxlen: 22 43.251.100.0/24 maxlen: 24 43.251.101.0/24 maxlen: 24 43.251.102.0/24 maxlen: 24 43.251.103.0/24 maxlen: 24 103.82.52.0/22 maxlen: 22 103.82.52.0/24 maxlen: 24 103.82.53.0/24 maxlen: 24 103.82.54.0/24 maxlen: 24 103.82.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6814/0967C798B92411F0BFD5A56EC4F9AE02/9jxGQikStFqRhuRFxanep7ujQos.crl rsync://rpki.apnic.net/member_repository/A91B6814/0967C798B92411F0BFD5A56EC4F9AE02/9jxGQikStFqRhuRFxanep7ujQos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9jxGQikStFqRhuRFxanep7ujQos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6814, serialNumber=F63C46422912B45A9186E445C5A9DEA7BBA3428B Validity Not Before: Nov 5 06:03:45 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690ae8c1-f43a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:64:3e:e9:5f:17:53:c6:e8:e9:ad:73:d8:0c: 3f:95:d5:e9:9d:02:a6:72:bb:1b:c5:4e:59:83:59: c0:0f:64:3a:78:7e:03:d9:de:91:cf:fd:18:76:3b: 27:c4:a4:d8:f7:0e:b3:55:ac:c1:54:16:41:03:5a: cb:67:02:a1:de:84:b2:c2:18:f0:12:a1:9f:7c:07: f1:2e:79:45:e0:02:d5:b0:d3:d7:9b:0c:a8:6a:36: 28:77:22:bb:f5:b7:e1:a7:29:c1:fc:93:22:4e:97: 3c:6b:e9:42:4f:7f:28:16:6d:28:d6:cb:73:ae:51: 5d:89:e4:de:b0:4f:77:d3:f3:5f:80:3a:1f:3a:cb: b7:17:30:53:0b:1f:64:0d:da:b5:fd:20:db:98:9c: 6a:0c:7b:fb:43:cb:23:07:91:06:53:1a:2d:3d:30: 71:2b:7b:e3:9b:40:c2:5d:2d:53:a5:29:bb:01:7c: 81:10:2d:da:b1:4e:0f:e2:4e:f4:f5:10:b0:1c:31: 66:c1:9e:ee:5e:ec:31:ac:0a:0d:0a:e4:4a:15:c0: e9:9b:58:61:9a:b4:4f:4e:d9:c0:65:f0:00:67:78: ad:70:f2:71:2c:b1:5a:3b:13:50:c7:45:11:61:78: 61:42:2d:71:72:21:da:cc:31:32:0a:a9:92:68:f5: 31:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:A1:B0:21:58:9C:33:91:80:34:B3:F6:28:02:7A:CD:E0:36:A7:A4 X509v3 Authority Key Identifier: keyid:F6:3C:46:42:29:12:B4:5A:91:86:E4:45:C5:A9:DE:A7:BB:A3:42:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6814/0967C798B92411F0BFD5A56EC4F9AE02/9jxGQikStFqRhuRFxanep7ujQos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9jxGQikStFqRhuRFxanep7ujQos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6814/0967C798B92411F0BFD5A56EC4F9AE02/81C07094BA0C11F0AF4DEF76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.100.0/22 103.82.52.0/22 Signature Algorithm: sha256WithRSAEncryption 40:4e:99:44:e2:57:7e:4f:23:a5:69:b1:a7:09:f3:56:21:d7: da:99:63:b3:00:d4:09:ee:33:d7:ee:e1:b7:aa:e5:06:90:ff: 0b:89:61:82:5f:1d:42:31:23:51:35:7f:20:83:5b:df:30:27: 8b:94:b4:57:09:30:dd:61:93:d6:99:62:16:d6:1a:48:c9:f4: 86:e5:3f:0c:da:7c:e9:79:e8:b4:1e:e8:f0:74:d4:5a:5b:c7: 92:db:6d:9b:96:91:3f:80:38:55:d5:04:ad:b0:be:79:34:d6: a6:9d:1f:37:6c:07:08:ce:89:bd:48:c7:56:b1:14:74:36:4e: 8f:79:1e:fa:b6:e6:6b:e9:9e:0c:fb:de:34:d6:18:8f:65:d4: 21:f1:ba:c3:83:3a:db:7c:4a:a7:fc:5f:de:da:c7:ff:4a:c3: bd:e2:8c:60:23:30:44:72:77:c5:86:8c:af:d1:cd:8e:8c:dd: 89:29:19:35:14:ef:d7:bf:65:2a:86:11:4d:b5:90:b9:28:49: 58:9b:9c:d2:62:57:9e:59:41:9f:e8:03:a7:35:b2:67:3a:e1: 12:aa:b2:fc:8d:d3:c7:be:82:1d:13:e6:a8:2f:6d:65:97:e0: c8:48:30:40:b6:0b:3e:ab:db:f7:e2:a3:56:a1:1c:e4:64:f1: 24:2a:6a:78 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjgxNDExMC8GA1UEBRMoRjYzQzQ2NDIyOTEyQjQ1QTkxODZFNDQ1QzVBOURFQTdC QkEzNDI4QjAeFw0yNTExMDUwNjAzNDVaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MGFlOGMxLWY0M2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoZD7pXxdTxujprXPYDD+V1emdAqZyuxvFTlmDWcAPZDp4fgPZ3pHP/Rh2OyfE pNj3DrNVrMFUFkEDWstnAqHehLLCGPASoZ98B/EueUXgAtWw09ebDKhqNih3Irv1 t+GnKcH8kyJOlzxr6UJPfygWbSjWy3OuUV2J5N6wT3fT81+AOh86y7cXMFMLH2QN 2rX9INuYnGoMe/tDyyMHkQZTGi09MHEre+ObQMJdLVOlKbsBfIEQLdqxTg/iTvT1 ELAcMWbBnu5e7DGsCg0K5EoVwOmbWGGatE9O2cBl8ABneK1w8nEssVo7E1DHRRFh eGFCLXFyIdrMMTIKqZJo9TFVAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUbKGwIVic M5GANLP2KAJ6zeA2p6QwHwYDVR0jBBgwFoAU9jxGQikStFqRhuRFxanep7ujQosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2ODE0LzA5NjdDNzk4Qjky NDExRjBCRkQ1QTU2RUM0RjlBRTAyLzlqeEdRaWtTdEZxUmh1UkZ4YW5lcDd1alFv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWp4R1Fpa1N0RnFSaHVSRnhhbmVwN3VqUW9zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjgxNC8wOTY3Qzc5OEI5MjQxMUYwQkZENUE1NkVDNEY5QUUwMi84MUMwNzA5NEJB MEMxMUYwQUY0REVGNzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAiv7ZAMEAmdSNDANBgkqhkiG9w0BAQsFAAOCAQEAQE6ZROJX fk8jpWmxpwnzViHX2pljswDUCe4z1+7ht6rlBpD/C4lhgl8dQjEjUTV/IINb3zAn i5S0Vwkw3WGT1pliFtYaSMn0huU/DNp86XnotB7o8HTUWlvHktttm5aRP4A4VdUE rbC+eTTWpp0fN2wHCM6JvUjHVrEUdDZOj3ke+rbma+meDPveNNYYj2XUIfG6w4M6 23xKp/xf3trH/0rDveKMYCMwRHJ3xYaMr9HNjozdiSkZNRTv179lKoYRTbWQuShJ WJuc0mJXnllBn+gDpzWyZzrhEqqy/I3Tx76CHRPmqC9tZZfgyEgwQLYLPqvb9+Kj VqEc5GTxJCpqeA== -----END CERTIFICATE-----Generated at Wed Nov 5 21:37:57 2025 by rpki-client