$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/9EC3DA0CABC311F0B5C5583DC4F9AE02.roa File: 9EC3DA0CABC311F0B5C5583DC4F9AE02.roa (raw, json) Hash identifier: ifOEg9W1aB/k/lXnYsmHjMPmR84JfX9/zAJq58rKyJ0= Subject key identifier: 53:BD:67:55:2E:E3:B8:9E:BC:DA:CD:2B:6A:78:FD:31:68:E9:72:28 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: E7 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/9EC3DA0CABC311F0B5C5583DC4F9AE02.roa Signing time: Sat 18 Oct 2025 03:18:39 +0000 ROA not before: Sat 18 Oct 2025 03:18:39 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.199.244.0/22 maxlen: 24 203.82.28.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Oct 18 03:18:39 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68f3070f-f888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e2:d4:ed:86:fa:db:4f:e9:11:a3:9a:a2:31: 34:47:db:f4:20:d7:da:44:4a:c3:a9:3a:3f:9a:07: 00:fe:df:78:36:1c:5d:4e:28:71:ec:90:e3:b2:78: 36:54:df:7a:c7:eb:f9:c0:bc:fb:e8:68:eb:b0:7d: c4:da:be:a7:a7:62:73:71:a3:fc:6d:53:13:f1:cf: fa:e2:5e:30:58:ab:68:5c:8e:11:7c:63:64:4f:38: 6c:a9:c4:1b:ee:83:f2:51:8b:aa:cd:5f:a6:a2:eb: 0f:9d:ff:8d:18:4f:77:c0:51:0f:0e:46:d7:48:fb: 37:f3:1f:68:af:bf:ca:d0:6e:12:3c:19:56:d5:db: ad:7e:92:e0:a6:3a:20:f9:61:a3:47:c8:08:55:a3: 99:02:04:dc:32:01:a7:6e:43:d0:64:21:f8:4d:03: 9d:eb:b6:4f:09:4f:57:26:c4:3a:9c:d3:da:d0:31: cb:48:36:71:1e:de:26:0f:69:dd:46:10:c0:ac:3e: ed:e7:78:eb:bc:fc:84:3d:4a:8d:02:d7:b7:d9:74: 9d:ab:ef:ed:f4:a6:ae:d9:8d:73:ee:27:9e:93:ab: ed:ac:c6:6c:a9:55:2e:8f:df:d5:d6:18:57:7b:97: c6:f9:a0:fb:9b:7d:f2:be:e8:4b:83:67:bf:d4:83: 65:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BD:67:55:2E:E3:B8:9E:BC:DA:CD:2B:6A:78:FD:31:68:E9:72:28 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/9EC3DA0CABC311F0B5C5583DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.244.0/22 203.82.28.0/22 Signature Algorithm: sha256WithRSAEncryption ac:23:b3:9c:12:44:fb:be:21:d5:a6:73:d5:f9:ca:05:dc:4f: 1e:9b:bd:f7:81:29:14:99:94:2b:e3:13:60:7f:62:db:29:27: 91:7d:59:d6:fd:bf:a0:93:81:9c:80:d0:3c:60:ec:ac:48:b8: 16:42:82:07:32:74:8c:98:42:e7:db:47:7b:63:76:19:66:4c: b8:eb:94:2f:44:5e:bd:06:cf:0a:14:a7:65:2b:3d:73:c8:c8: 2a:2c:ad:f4:5e:62:24:75:ae:40:61:52:e3:8b:9a:9e:fe:28: f5:41:ce:29:4c:79:e3:c3:66:b8:86:6e:d0:30:f1:96:8c:ff: b5:19:59:2f:34:92:e1:6b:96:2a:bd:74:09:78:e0:0b:80:34: 8c:6b:7f:f8:f1:f6:d7:c4:c7:01:99:6c:81:84:41:b1:bc:86: f3:a2:c7:66:bb:e5:c8:24:53:45:9f:e5:fa:f5:7f:ea:a5:bd: 65:5b:25:6b:8c:ee:51:be:aa:be:36:87:a3:b6:bb:39:be:56: 4d:e2:80:f2:17:f8:9e:d9:dd:63:b0:4c:b2:df:fa:f2:39:b3: c8:00:20:7b:d1:6b:fd:27:19:e5:78:79:84:61:c4:bc:32:a2: 4d:94:1e:7e:c8:3c:5f:55:aa:e5:4a:c5:98:d5:0d:90:54:de: e9:4f:36:64 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUxMDE4MDMxODM5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzMDcwZi1mODg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+LU7Yb620/pEaOaojE0R9v0INfaRErDqTo/mgcA/t94NhxdTihx7JDjsng2 VN96x+v5wLz76GjrsH3E2r6np2JzcaP8bVMT8c/64l4wWKtoXI4RfGNkTzhsqcQb 7oPyUYuqzV+mousPnf+NGE93wFEPDkbXSPs38x9or7/K0G4SPBlW1dutfpLgpjog +WGjR8gIVaOZAgTcMgGnbkPQZCH4TQOd67ZPCU9XJsQ6nNPa0DHLSDZxHt4mD2nd RhDArD7t53jrvPyEPUqNAte32XSdq+/t9Kau2Y1z7ieek6vtrMZsqVUuj9/V1hhX e5fG+aD7m33yvuhLg2e/1INliwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFO9Z1Uu 47ievNrNK2p4/TFo6XIoMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjk3OTAvNzE4MDVCQUM1QUUyMTFFRkFFQjAzMTJFQzRGOUFFMDIvOUVDM0RBMENB QkMzMTFGMEI1QzU1ODNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnx/QDBALLUhwwDQYJKoZIhvcNAQELBQADggEBAKwjs5wS RPu+IdWmc9X5ygXcTx6bvfeBKRSZlCvjE2B/YtspJ5F9Wdb9v6CTgZyA0Dxg7KxI uBZCggcydIyYQufbR3tjdhlmTLjrlC9EXr0GzwoUp2UrPXPIyCosrfReYiR1rkBh UuOLmp7+KPVBzilMeePDZriGbtAw8ZaM/7UZWS80kuFrliq9dAl44AuANIxrf/jx 9tfExwGZbIGEQbG8hvOix2a75cgkU0Wf5fr1f+qlvWVbJWuM7lG+qr42h6O2uzm+ Vk3igPIX+J7Z3WOwTLLf+vI5s8gAIHvRa/0nGeV4eYRhxLwyok2UHn7IPF9VquVK xZjVDZBU3ulPNmQ= -----END CERTIFICATE-----Generated at Tue Oct 28 06:43:35 2025 by rpki-client