$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/5FB07B1421CF11EBA0C85857C4F9AE02.roa File: 5FB07B1421CF11EBA0C85857C4F9AE02.roa (raw, json) Hash identifier: OmYQIIbzZk6dmH6VxHcDDfUOUOfBGcECAJW72iuPNeI= Subject key identifier: 9A:2B:8A:78:53:EF:20:A6:40:6D:97:72:D4:AD:FF:59:2A:F2:33:09 Certificate issuer: /CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Certificate serial: 0FE2 Authority key identifier: 6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/5FB07B1421CF11EBA0C85857C4F9AE02.roa Signing time: Tue 30 Sep 2025 17:46:12 +0000 ROA not before: Tue 30 Sep 2025 17:46:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.99.40.0/23 maxlen: 24 103.132.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4066 (0xfe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6B4, serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Validity Not Before: Sep 30 17:46:12 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dc1763-4aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a8:b5:29:d5:26:d5:49:c4:24:1c:d1:52:04: 4a:c5:98:b2:a3:bd:8d:48:e5:33:10:b5:8d:e0:c0: 1c:6d:4e:2a:b9:1e:49:8d:27:4b:72:e9:e6:a3:76: 1e:e6:b8:bd:2f:d9:ec:8c:9f:9a:7c:21:37:b3:4d: f8:c1:5a:43:de:08:55:94:5b:e6:88:8d:b8:88:80: ca:e8:1d:b1:f6:af:f4:31:01:a8:97:c9:4f:1f:60: e5:be:ef:b2:15:52:f9:dd:1a:e4:ef:98:fc:50:79: 2c:79:be:6f:5b:5f:51:f8:a4:9b:c0:84:db:72:7b: 31:78:bd:3f:0b:60:c8:a7:89:2d:0a:f8:ef:82:a1: 51:94:27:9a:00:24:56:f9:3f:69:6a:77:e1:80:dd: 18:93:ba:a1:e9:e4:d8:4b:f0:b3:53:54:b3:da:74: 48:7c:f0:ca:54:6d:c9:b9:2f:b7:f1:99:3c:f2:61: ff:f3:04:56:b9:cb:ed:98:f5:24:4a:1b:59:57:28: ee:b3:cf:fe:f5:4c:64:ad:24:79:0f:4c:d3:e9:02: 70:bb:0c:52:27:00:55:b8:2d:6d:ee:b1:a3:b2:58: b9:9d:dc:6f:d3:2b:00:9c:e2:93:2a:22:4e:ae:2c: 96:b3:7e:88:a6:33:6f:24:4e:7e:03:82:af:69:fa: 1f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:2B:8A:78:53:EF:20:A6:40:6D:97:72:D4:AD:FF:59:2A:F2:33:09 X509v3 Authority Key Identifier: keyid:6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/5FB07B1421CF11EBA0C85857C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.40.0/23 103.132.234.0/23 Signature Algorithm: sha256WithRSAEncryption 65:45:87:1b:f7:dc:a5:a6:16:08:db:98:f5:ba:ea:54:f1:58: 40:69:db:d2:4d:c9:8c:19:45:6d:ef:2d:1c:d7:f3:a4:d5:6c: e3:1a:90:aa:45:68:6c:d6:6c:28:41:ac:07:34:b0:4c:23:92: 0c:44:2a:4a:54:ea:d2:14:4f:a1:cf:23:92:0b:3a:18:a4:6a: da:f3:da:af:22:fb:4f:d2:3d:43:66:7b:a9:f4:17:b4:ef:80: 97:8f:8c:34:41:a8:3b:e2:26:12:72:59:d2:97:af:3f:05:08: cb:79:ab:f7:b6:cc:b8:64:43:27:12:fa:4a:c6:5f:ca:cb:7b: 27:2c:ca:a1:53:92:6a:a9:31:e4:0f:b7:76:6e:13:2b:38:ef: e5:e0:24:2c:48:9e:b8:fc:00:80:47:a6:99:e2:53:7a:ed:18: 87:ce:0f:fc:2f:d8:a4:13:d1:d8:d9:df:11:a4:48:f9:7c:9b: 0a:b8:99:aa:ae:35:9c:ce:89:ec:0b:4c:87:a9:fb:e2:e6:a9: 0b:25:51:2c:6c:75:fc:a0:a5:21:75:d0:f0:02:6b:23:84:8d: db:24:56:58:fb:d4:cd:f9:1d:75:3b:d4:f6:89:a4:f3:17:c8: 58:e8:d3:75:be:34:05:37:26:c9:d2:e3:c5:52:af:02:8d:77: 11:2f:12:af -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICD+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2QjQxMTAvBgNVBAUTKDZDQTZCMkFDMUREMTdCMDE0REI2Qzc2NzI3OUQwOEM2 NkU0RUZDMDUwHhcNMjUwOTMwMTc0NjEyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjMTc2My00YWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ai1KdUm1UnEJBzRUgRKxZiyo72NSOUzELWN4MAcbU4quR5JjSdLcunmo3Ye 5ri9L9nsjJ+afCE3s034wVpD3ghVlFvmiI24iIDK6B2x9q/0MQGol8lPH2Dlvu+y FVL53Rrk75j8UHkseb5vW19R+KSbwITbcnsxeL0/C2DIp4ktCvjvgqFRlCeaACRW +T9panfhgN0Yk7qh6eTYS/CzU1Sz2nRIfPDKVG3JuS+38Zk88mH/8wRWucvtmPUk ShtZVyjus8/+9UxkrSR5D0zT6QJwuwxSJwBVuC1t7rGjsli5ndxv0ysAnOKTKiJO riyWs36IpjNvJE5+A4KvafofAQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJorinhT 7yCmQG2XctSt/1kq8jMJMB8GA1UdIwQYMBaAFGymsqwd0XsBTbbHZyedCMZuTvwF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZCNC83MjZGNTFDMjYz RjIxMUU5QkIyMERENDVDNEY5QUUwMi9iS2F5ckIzUmV3Rk50c2RuSjUwSXhtNU9f QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLYXlyQjNSZXdGTnRzZG5KNTBJeG01T19BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2QjQvNzI2RjUxQzI2M0YyMTFFOUJCMjBERDQ1QzRGOUFFMDIvNUZCMDdCMTQy MUNGMTFFQkEwQzg1ODU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYygDBAFnhOowDQYJKoZIhvcNAQELBQADggEBAGVFhxv3 3KWmFgjbmPW66lTxWEBp29JNyYwZRW3vLRzX86TVbOMakKpFaGzWbChBrAc0sEwj kgxEKkpU6tIUT6HPI5ILOhikatrz2q8i+0/SPUNme6n0F7TvgJePjDRBqDviJhJy WdKXrz8FCMt5q/e2zLhkQycS+krGX8rLeycsyqFTkmqpMeQPt3ZuEys47+XgJCxI nrj8AIBHppniU3rtGIfOD/wv2KQT0djZ3xGkSPl8mwq4maquNZzOiewLTIep++Lm qQslUSxsdfygpSF10PACayOEjdskVlj71M35HXU71PaJpPMXyFjo03W+NAU3JsnS 48VSrwKNdxEvEq8= -----END CERTIFICATE-----Generated at Wed Oct 22 21:25:32 2025 by rpki-client