$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa File: E940EF3464B611EA9B743415C4F9AE02.roa (raw, json) Hash identifier: ASMLpEvsvu5fZiBYK5kv36WlKk7sSJJC1YfYG/Sqc/8= Subject key identifier: E6:7F:9D:E3:0E:9B:B5:56:43:88:5F:D7:99:0B:B0:36:34:AA:1B:97 Certificate issuer: /CN=A91CDE0E/serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2 Certificate serial: 16A3 Authority key identifier: 73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa Signing time: Thu 31 Jul 2025 17:25:44 +0000 ROA not before: Thu 31 Jul 2025 17:25:44 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4647 IP address blocks: 103.246.28.0/22 maxlen: 24 203.30.140.0/24 maxlen: 24 2404:fc80::/32 maxlen: 36 2404:fc80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.crl rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5795 (0x16a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDE0E, serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2 Validity Not Before: Jul 31 17:25:44 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688ba718-94fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:88:10:df:b0:a2:4b:91:4c:97:44:e4:a7:d7: 41:a7:98:f2:e4:0f:5a:27:c3:a0:ec:01:d2:15:65: c4:f5:5c:7e:49:51:e1:44:de:cd:aa:86:b8:f5:70: 02:29:28:f9:85:3a:92:80:67:8f:8d:ea:70:d6:58: 76:92:77:52:a3:7c:de:a9:a4:0d:82:10:2f:32:b8: 06:d9:e1:8c:cd:a8:06:9d:49:77:74:b7:cf:9b:24: b6:27:d3:6e:3d:dc:67:3c:cf:2a:4d:44:47:03:7b: ce:07:98:89:8f:8f:da:45:65:d0:85:78:5b:03:55: ad:f0:90:9c:1c:b3:aa:1f:18:f9:b3:a8:1a:e4:a4: 2a:3f:15:23:55:33:93:ae:f3:d7:16:35:d7:98:e6: a9:2e:10:5d:ea:8a:b0:e7:d1:e1:71:65:78:46:a0: 8c:d7:aa:75:6d:ee:24:15:e3:c5:35:6a:cf:30:a9: f3:bc:f7:4a:51:a1:47:8c:2c:b5:15:a3:17:0b:18: 99:37:91:8b:87:e1:bd:11:7a:d5:94:1e:9b:c9:ad: e5:f3:bf:f9:d2:f7:25:04:14:48:0b:cc:29:79:da: 17:e8:55:3a:55:a9:ee:e7:d0:d8:fb:82:f3:8d:b2: 5e:d4:42:f4:31:8d:d9:73:39:be:99:b9:6e:82:67: 96:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7F:9D:E3:0E:9B:B5:56:43:88:5F:D7:99:0B:B0:36:34:AA:1B:97 X509v3 Authority Key Identifier: keyid:73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/E940EF3464B611EA9B743415C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.28.0/22 203.30.140.0/24 IPv6: 2404:fc80::/32 Signature Algorithm: sha256WithRSAEncryption 5e:05:81:3e:d3:9d:dd:22:71:ff:68:ee:9b:0f:d0:a3:da:da: 43:fc:3c:62:75:83:82:e3:0f:df:17:55:9e:79:78:5a:c3:50: 0a:dc:16:d8:6f:da:65:21:3f:c0:e7:c0:7f:42:16:a1:8b:2a: 1a:22:6e:af:a3:27:bd:6c:7b:63:18:d2:0d:62:51:28:18:b1: 2d:83:83:f8:2d:e3:86:e5:4e:4e:66:2c:06:25:a3:3f:51:f3: 45:ee:32:ac:89:7f:f7:35:a6:4c:93:a6:a9:b1:0b:91:17:33: 38:f7:c1:9b:32:ed:24:9c:e2:bd:9a:ce:1e:dc:06:ad:b5:af: c6:d7:c7:cc:36:0e:bc:56:66:2c:b3:da:12:14:84:22:2d:c5: 06:f8:57:85:21:0f:b8:87:3f:52:61:39:8c:d8:42:5a:2e:73: 2d:10:cb:39:47:5e:e5:79:be:ea:b9:7d:3d:85:25:00:a2:05: 04:f1:32:ad:16:2e:6b:06:7f:79:5d:82:31:ae:08:ce:29:56: 0a:5c:4c:f9:73:de:9a:81:b3:ac:36:0f:9f:8b:70:1b:fe:cf: e2:a4:ba:d8:93:06:65:57:df:11:31:d7:db:a4:0f:cf:01:d0: e4:ab:4d:83:6a:7a:66:42:92:05:e4:f9:1a:e0:ab:a0:de:12: 15:71:a2:86 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFMEUxMTAvBgNVBAUTKDczMTE0MUFGMEE3OTNBQTMxNkVGN0RERDJGMUIwNUY4 OTFDNTY2QjIwHhcNMjUwNzMxMTcyNTQ0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiYTcxOC05NGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIgQ37CiS5FMl0Tkp9dBp5jy5A9aJ8Og7AHSFWXE9Vx+SVHhRN7Nqoa49XAC KSj5hTqSgGePjepw1lh2kndSo3zeqaQNghAvMrgG2eGMzagGnUl3dLfPmyS2J9Nu PdxnPM8qTURHA3vOB5iJj4/aRWXQhXhbA1Wt8JCcHLOqHxj5s6ga5KQqPxUjVTOT rvPXFjXXmOapLhBd6oqw59HhcWV4RqCM16p1be4kFePFNWrPMKnzvPdKUaFHjCy1 FaMXCxiZN5GLh+G9EXrVlB6bya3l87/50vclBBRIC8wpedoX6FU6Vanu59DY+4Lz jbJe1EL0MY3Zczm+mblugmeWgQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOZ/neMO m7VWQ4hf15kLsDY0qhuXMB8GA1UdIwQYMBaAFHMRQa8KeTqjFu993S8bBfiRxWay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREUwRS82RTFFN0RFNDA1 N0MxMUU4ODJGRThFMjhDNEY5QUUwMi9jeEZCcndwNU9xTVc3MzNkTHhzRi1KSEZa ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4RkJyd3A1T3FNVzczM2RMeHNGLUpIRlpySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RFMEUvNkUxRTdERTQwNTdDMTFFODgyRkU4RTI4QzRGOUFFMDIvRTk0MEVGMzQ2 NEI2MTFFQTlCNzQzNDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn9hwDBADLHowwDQQCAAIwBwMFACQE/IAwDQYJKoZIhvcN AQELBQADggEBAF4FgT7Tnd0icf9o7psP0KPa2kP8PGJ1g4LjD98XVZ55eFrDUArc Fthv2mUhP8DnwH9CFqGLKhoibq+jJ71se2MY0g1iUSgYsS2Dg/gt44blTk5mLAYl oz9R80XuMqyJf/c1pkyTpqmxC5EXMzj3wZsy7SSc4r2azh7cBq21r8bXx8w2DrxW Ziyz2hIUhCItxQb4V4UhD7iHP1JhOYzYQloucy0QyzlHXuV5vuq5fT2FJQCiBQTx Mq0WLmsGf3ldgjGuCM4pVgpcTPlz3pqBs6w2D5+LcBv+z+KkutiTBmVX3xEx19uk D88B0OSrTYNqemZCkgXk+Rrgq6DeEhVxooY= -----END CERTIFICATE-----Generated at Wed Nov 5 19:52:38 2025 by rpki-client