$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/997D587CABD011F0AA576211C4F9AE02.roa File: 997D587CABD011F0AA576211C4F9AE02.roa (raw, json) Hash identifier: eqFr7d/2/7J+tBqwKqs+V3n0lNlzzsND/P+LSGAEIcc= Subject key identifier: 2D:AA:BA:0A:B3:CC:C9:4F:E1:F2:8B:A3:56:C7:1C:E0:69:AC:6E:DF Certificate issuer: /CN=A91CDC32/serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Certificate serial: E1 Authority key identifier: 81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/997D587CABD011F0AA576211C4F9AE02.roa Signing time: Sat 18 Oct 2025 03:14:47 +0000 ROA not before: Sat 18 Oct 2025 03:14:46 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.197.216.0/22 maxlen: 24 220.158.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDC32, serialNumber=8199493AD265AD2DC73396F6BA0B6ED6CC41E10B Validity Not Before: Oct 18 03:14:46 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68f30626-ae46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:20:0a:38:29:a8:3d:c2:3a:5e:3a:6a:31:0e: 99:5a:de:74:91:ea:e3:f2:9b:85:9a:20:00:ab:55: ab:55:2d:21:5c:c9:f5:af:05:f9:12:42:8c:d6:b8: f3:d2:d3:db:fb:f5:87:6f:1f:fc:a6:5b:dd:a0:f5: 83:b8:c7:2a:c2:30:fc:e4:56:d3:20:10:92:a0:84: e6:f0:0e:f8:02:bf:8b:cf:b5:55:32:44:51:00:79: 5e:3c:43:8e:4e:55:95:8d:6e:19:18:0c:d1:c7:0c: 3d:9a:13:41:a6:e3:33:82:c8:f2:61:1c:f8:9c:9d: 49:26:a1:4d:bb:f0:7a:7c:4a:38:7a:c3:7a:c4:53: 15:bc:01:84:40:8a:be:ca:c3:f9:d4:48:06:88:61: b3:43:4d:ff:fe:bc:91:b0:0a:c9:01:e2:12:6e:ac: 77:69:57:33:61:89:46:f5:c1:11:b3:c7:a9:f9:11: cf:b3:05:cd:0f:1f:b4:c6:66:bb:3a:b6:2d:59:45: ba:cb:2b:61:54:4e:00:3d:d3:9b:9a:d5:06:69:e6: 91:ac:48:df:9a:2e:87:43:a9:06:f2:c1:71:b4:c5: de:ab:ea:33:57:b5:a3:77:0e:fd:4d:ef:5a:ca:6f: ad:b8:76:73:c9:7d:d4:c2:eb:1c:0d:ec:f4:0a:d8: 40:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:AA:BA:0A:B3:CC:C9:4F:E1:F2:8B:A3:56:C7:1C:E0:69:AC:6E:DF X509v3 Authority Key Identifier: keyid:81:99:49:3A:D2:65:AD:2D:C7:33:96:F6:BA:0B:6E:D6:CC:41:E1:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gZlJOtJlrS3HM5b2ugtu1sxB4Qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDC32/0F0928545ADE11EFA5C9A240C4F9AE02/997D587CABD011F0AA576211C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.216.0/22 220.158.252.0/22 Signature Algorithm: sha256WithRSAEncryption a2:21:08:51:51:f5:a5:86:dd:75:99:1c:4f:b2:e9:e7:68:f9: 49:de:d9:fc:67:23:fa:01:97:d2:64:47:5a:b3:8a:59:04:1c: cf:2e:33:76:c7:86:2e:3a:f8:2b:98:ca:1a:53:a6:1a:a2:da: 8c:95:24:dd:21:3b:17:d9:08:f5:f7:ad:1a:8e:70:a1:07:86: 04:ae:4a:c5:ee:28:fa:91:66:d1:e5:ef:77:8d:1a:77:aa:3d: c1:15:1c:64:97:5c:7d:fa:58:47:11:c5:94:d4:7f:22:27:c5: f8:8a:35:a3:00:f7:0b:af:70:a5:6d:73:82:f8:99:48:16:87: f5:04:24:ac:6b:99:38:fa:60:34:65:6e:70:86:d8:b7:72:6b: c0:97:5b:22:06:39:ff:fb:07:ba:3b:4b:37:5d:4d:9b:c5:76: 52:66:8c:36:51:f2:3e:8b:20:e0:29:d6:d3:ca:61:e7:38:9d: 2f:c0:10:b9:4c:43:bd:3d:f0:19:75:ea:26:b1:5e:b9:42:2d: 1f:51:e8:12:24:cc:8d:fc:5b:37:bc:6c:ab:b9:1c:fa:94:09: c1:6c:5e:b4:51:8f:d5:fe:ab:8f:e2:2b:57:ba:15:4c:4f:ca: 1e:a3:88:94:ef:d1:8b:75:28:17:90:90:2b:ec:f8:b0:3d:45: 29:05:36:ca -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RDMzIxMTAvBgNVBAUTKDgxOTk0OTNBRDI2NUFEMkRDNzMzOTZGNkJBMEI2RUQ2 Q0M0MUUxMEIwHhcNMjUxMDE4MDMxNDQ2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzMDYyNi1hZTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCAKOCmoPcI6XjpqMQ6ZWt50kerj8puFmiAAq1WrVS0hXMn1rwX5EkKM1rjz 0tPb+/WHbx/8plvdoPWDuMcqwjD85FbTIBCSoITm8A74Ar+Lz7VVMkRRAHlePEOO TlWVjW4ZGAzRxww9mhNBpuMzgsjyYRz4nJ1JJqFNu/B6fEo4esN6xFMVvAGEQIq+ ysP51EgGiGGzQ03//ryRsArJAeISbqx3aVczYYlG9cERs8ep+RHPswXNDx+0xma7 OrYtWUW6yythVE4APdObmtUGaeaRrEjfmi6HQ6kG8sFxtMXeq+ozV7Wjdw79Te9a ym+tuHZzyX3UwuscDez0CthAtQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFC2qugqz zMlP4fKLo1bHHOBprG7fMB8GA1UdIwQYMBaAFIGZSTrSZa0txzOW9roLbtbMQeEL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREMzMi8wRjA5Mjg1NDVB REUxMUVGQTVDOUEyNDBDNEY5QUUwMi9nWmxKT3RKbHJTM0hNNWIydWd0dTFzeEI0 UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dabEpPdEpsclMzSE01YjJ1Z3R1MXN4QjRRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RDMzIvMEYwOTI4NTQ1QURFMTFFRkE1QzlBMjQwQzRGOUFFMDIvOTk3RDU4N0NB QkQwMTFGMEFBNTc2MjExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnxdgDBALcnvwwDQYJKoZIhvcNAQELBQADggEBAKIhCFFR 9aWG3XWZHE+y6edo+Une2fxnI/oBl9JkR1qzilkEHM8uM3bHhi46+CuYyhpTphqi 2oyVJN0hOxfZCPX3rRqOcKEHhgSuSsXuKPqRZtHl73eNGneqPcEVHGSXXH36WEcR xZTUfyInxfiKNaMA9wuvcKVtc4L4mUgWh/UEJKxrmTj6YDRlbnCG2Ldya8CXWyIG Of/7B7o7SzddTZvFdlJmjDZR8j6LIOAp1tPKYec4nS/AELlMQ7098Bl16iaxXrlC LR9R6BIkzI38Wze8bKu5HPqUCcFsXrRRj9X+q4/iK1e6FUxPyh6jiJTv0Yt1KBeQ kCvs+LA9RSkFNso= -----END CERTIFICATE-----Generated at Tue Oct 28 06:43:36 2025 by rpki-client