$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa File: 456CD12E5F0111ECAE4F0286C4F9AE02.roa (raw, json) Hash identifier: opv4DBbLy0U1nxAJSQ/FW4lgkGanCqSRXcsssLo5kGc= Subject key identifier: A2:38:27:E3:44:32:76:26:A1:B1:64:32:16:C8:BC:07:F3:6A:7E:44 Certificate issuer: /CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Certificate serial: 08CC Authority key identifier: 4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa Signing time: Sun 02 Nov 2025 20:40:06 +0000 ROA not before: Sun 02 Nov 2025 20:40:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 64053 IP address blocks: 103.198.168.0/22 maxlen: 24 2401:f1c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2252 (0x8cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7991, serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Validity Not Before: Nov 2 20:40:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6907c1a5-ff5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:22:6e:2b:d4:2c:a7:b6:ba:ce:d1:af:25:1c: 6a:a3:59:d2:df:4b:8e:ec:5c:f1:fe:b6:a3:e8:2e: ed:96:51:04:94:b1:8b:1c:f9:b7:1c:cf:2f:ca:20: 1a:8a:31:ce:d4:65:fc:99:9a:b1:82:3e:44:fa:03: 42:ce:0c:33:64:fa:c6:47:85:66:89:f1:1b:bb:46: 8e:73:15:c3:95:ab:74:69:85:c3:7e:a6:df:24:55: 82:05:b5:48:d0:25:88:31:80:60:c8:b3:10:3a:0a: 81:28:55:72:3c:3b:c3:cd:8b:46:77:4c:f1:86:bc: ee:46:0b:4b:64:27:6c:06:b8:8c:b0:c5:ef:5e:ef: 82:20:7f:14:2f:ec:22:f8:bd:47:3d:86:24:0f:ce: 89:b8:13:cb:19:88:c0:68:ad:ae:53:37:ca:74:87: b5:af:95:86:d1:02:01:40:da:0d:fa:e9:16:05:b1: 7d:fc:9f:94:5f:97:c7:4b:d8:85:6e:bc:59:cf:d1: cc:1d:7f:dd:69:b6:d4:84:ec:62:8f:08:33:86:43: 40:7e:79:b1:d2:a5:70:ab:0a:82:6a:a2:04:05:39: 70:90:86:52:dd:0c:69:33:c3:7a:13:fd:6f:ff:53: 9a:58:3c:41:c3:7a:17:00:c4:5c:3f:52:68:05:e7: 27:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:38:27:E3:44:32:76:26:A1:B1:64:32:16:C8:BC:07:F3:6A:7E:44 X509v3 Authority Key Identifier: keyid:4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.168.0/22 IPv6: 2401:f1c0::/32 Signature Algorithm: sha256WithRSAEncryption 4e:dd:4a:90:e0:6b:6b:8c:62:ed:77:0f:7f:9b:4c:ab:94:7f: d5:43:4c:2a:c6:68:e2:73:80:4b:f4:69:e0:ce:bb:a5:be:6c: 8c:d9:2d:b9:73:b8:a7:ac:74:cf:00:13:35:60:ea:39:66:f8: 86:2a:d8:c7:ce:48:07:c8:97:06:56:3e:02:32:32:a7:e0:71: 80:75:3a:7b:db:e2:96:98:29:d7:af:4a:b5:1e:27:19:59:f3: 6f:a3:90:d9:b1:19:e5:71:11:ff:e2:ab:3f:c8:75:0d:33:05: b1:91:5b:38:fb:3a:e3:ac:97:c3:7c:eb:68:32:94:95:4e:59: b9:a9:b0:66:21:b2:fd:29:d5:23:9e:b5:71:4d:aa:24:ec:76: f7:fe:d6:7d:7a:e5:69:f7:6b:74:a0:8b:8f:81:90:93:f4:32: 63:81:c1:b0:88:f2:d4:88:59:91:81:6d:1b:20:8e:9d:f9:27: 1e:d9:44:80:05:f1:48:11:9c:9f:79:f5:ae:08:a3:8c:b6:76: 69:40:bf:c7:fa:d7:72:16:15:69:61:13:18:82:a7:8f:71:ed: 36:b1:59:c4:36:87:b9:fc:01:a4:8b:0e:f2:33:bb:88:2c:f4: e3:ee:0a:0a:16:01:ac:c6:6b:4d:1e:d1:3b:1e:58:ed:8d:6c: 84:e5:5d:59 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OTExMTAvBgNVBAUTKDRDMjY5OUQyMTNERDVENTk5QjBFQzBFNDYzQjk0ODRG REIyMkY0MjcwHhcNMjUxMTAyMjA0MDA2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YzFhNS1mZjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyJuK9Qsp7a6ztGvJRxqo1nS30uO7Fzx/raj6C7tllEElLGLHPm3HM8vyiAa ijHO1GX8mZqxgj5E+gNCzgwzZPrGR4VmifEbu0aOcxXDlat0aYXDfqbfJFWCBbVI 0CWIMYBgyLMQOgqBKFVyPDvDzYtGd0zxhrzuRgtLZCdsBriMsMXvXu+CIH8UL+wi +L1HPYYkD86JuBPLGYjAaK2uUzfKdIe1r5WG0QIBQNoN+ukWBbF9/J+UX5fHS9iF brxZz9HMHX/dabbUhOxijwgzhkNAfnmx0qVwqwqCaqIEBTlwkIZS3QxpM8N6E/1v /1OaWDxBw3oXAMRcP1JoBecnXQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKI4J+NE MnYmobFkMhbIvAfzan5EMB8GA1UdIwQYMBaAFEwmmdIT3V1Zmw7A5GO5SE/bIvQn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5MS83QzdCMUY2NkMz NUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhWbWJEc0RrWTdsSVQ5c2k5 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDYVowaFBkWFZtYkRzRGtZN2xJVDlzaTlDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc5OTEvN0M3QjFGNjZDMzVBMTFFQUE4RUNCNjdGQzRGOUFFMDIvNDU2Q0QxMkU1 RjAxMTFFQ0FFNEYwMjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnxqgwDQQCAAIwBwMFACQB8cAwDQYJKoZIhvcNAQELBQAD ggEBAE7dSpDga2uMYu13D3+bTKuUf9VDTCrGaOJzgEv0aeDOu6W+bIzZLblzuKes dM8AEzVg6jlm+IYq2MfOSAfIlwZWPgIyMqfgcYB1Onvb4paYKdevSrUeJxlZ82+j kNmxGeVxEf/iqz/IdQ0zBbGRWzj7OuOsl8N862gylJVOWbmpsGYhsv0p1SOetXFN qiTsdvf+1n165Wn3a3Sgi4+BkJP0MmOBwbCI8tSIWZGBbRsgjp35Jx7ZRIAF8UgR nJ959a4Io4y2dmlAv8f613IWFWlhExiCp49x7TaxWcQ2h7n8AaSLDvIzu4gs9OPu CgoWAazGa00e0TseWO2NbITlXVk= -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:13 2025 by rpki-client