$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/073BC4F4ED3B11EDB5A01A46C4F9AE02.roa File: 073BC4F4ED3B11EDB5A01A46C4F9AE02.roa (raw, json) Hash identifier: zHchOODRMXh4YPNN1A7mCb7XiL/ujTp4cFUjm4qxBCU= Subject key identifier: 96:5B:EF:33:9B:C6:C3:BC:5B:FE:BA:34:1E:1A:7E:6D:C1:8A:16:DF Certificate issuer: /CN=A91CF285/serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Certificate serial: 107C Authority key identifier: 3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/073BC4F4ED3B11EDB5A01A46C4F9AE02.roa Signing time: Fri 02 May 2025 17:56:40 +0000 ROA not before: Fri 02 May 2025 17:56:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38220 IP address blocks: 103.24.132.0/23 maxlen: 23 2406:bf00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4220 (0x107c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF285, serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Validity Not Before: May 2 17:56:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68150758-2bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3b:72:e0:b9:e1:f8:58:fb:bb:cf:3a:01:35: 3a:80:cc:be:d5:c1:ea:c6:24:0e:53:a2:d9:e9:f7: 30:81:e9:95:a8:a9:58:90:aa:4b:16:82:87:51:46: 6d:d8:f1:70:6f:b3:31:ad:be:ae:a8:5d:5e:4e:78: c1:04:ca:42:83:04:ec:7a:6c:3b:01:47:3b:1e:52: e3:26:aa:dc:f4:d0:94:93:42:44:4a:c6:71:62:0d: f0:03:65:a5:a9:cc:fa:6d:e1:d0:c1:a1:ac:f0:bb: 61:94:db:b8:01:af:bf:ba:8b:0e:1e:6e:43:bb:e0: 87:16:39:12:5e:a7:2c:50:8b:13:07:62:64:fd:fd: 8d:7b:b1:af:c1:15:13:16:54:bc:3d:3d:f5:0c:c2: 97:8f:a8:91:59:30:3c:6a:8f:fc:e8:5b:f5:7f:56: 26:26:c9:eb:50:0b:84:ce:90:b3:89:e4:dd:06:98: 27:de:f9:25:fe:f9:b8:dc:92:42:c5:76:99:69:a8: 77:5c:ab:76:2b:ea:8d:3b:ce:96:e5:3e:29:8b:83: a7:c4:57:14:e2:63:35:32:ed:03:78:b7:59:d0:a3: c8:f2:90:cd:9f:63:a2:31:da:d9:f8:49:d0:4b:0b: 5e:bd:e1:7f:3b:01:ad:1b:2e:91:83:1f:22:d7:1f: 28:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:5B:EF:33:9B:C6:C3:BC:5B:FE:BA:34:1E:1A:7E:6D:C1:8A:16:DF X509v3 Authority Key Identifier: keyid:3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/073BC4F4ED3B11EDB5A01A46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.132.0/23 IPv6: 2406:bf00::/48 Signature Algorithm: sha256WithRSAEncryption 80:6d:cb:b9:27:b4:b8:ec:31:7b:0b:58:db:4d:4d:e5:af:fe: c7:99:cc:d8:29:86:a7:11:49:80:fe:ea:76:83:89:86:cd:d9: 47:2c:65:fe:44:e9:df:23:ee:f7:34:06:45:be:3c:2e:6b:90: dc:bb:29:56:c2:06:b8:9f:17:5b:4e:de:34:33:dd:5c:f9:07: 7f:e8:91:10:e6:14:7a:8c:3e:bf:82:e4:81:3f:ac:e6:9a:46: ec:26:2c:6b:99:d1:e3:ae:fb:67:81:16:67:9a:bc:d5:3e:95: af:8b:c9:5b:75:cf:76:48:1b:79:55:02:8f:17:fc:fc:6e:f6: 40:6a:cd:6e:e9:ab:51:d3:ea:69:5a:13:f6:19:2d:93:83:4d: 1e:71:f5:8b:d2:80:29:b9:e2:18:d9:d0:10:ea:cd:87:87:34: df:36:d4:45:13:a7:20:fc:f1:de:4b:e3:ca:72:d1:52:09:eb: 75:ad:6c:3f:89:87:bd:18:c9:d4:d7:65:90:ea:3e:a5:aa:38: bf:82:fe:21:c7:2d:f0:a6:7a:ac:24:06:f0:c0:b2:cc:3e:34: a4:9a:51:a5:d8:dd:d3:b2:48:f8:69:76:6b:22:6d:8c:73:8c: f0:fa:ce:7b:51:dc:88:8b:a5:3a:7e:58:b0:f6:75:38:bc:41: cf:00:34:88 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICEHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YyODUxMTAvBgNVBAUTKDNFMjlDRTZGNkE3REI5NEI2RDA5MTMzQjczRkVENTJE REVFMTJEQUIwHhcNMjUwNTAyMTc1NjQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MDc1OC0yYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTty4Lnh+Fj7u886ATU6gMy+1cHqxiQOU6LZ6fcwgemVqKlYkKpLFoKHUUZt 2PFwb7Mxrb6uqF1eTnjBBMpCgwTsemw7AUc7HlLjJqrc9NCUk0JESsZxYg3wA2Wl qcz6beHQwaGs8LthlNu4Aa+/uosOHm5Du+CHFjkSXqcsUIsTB2Jk/f2Ne7GvwRUT FlS8PT31DMKXj6iRWTA8ao/86Fv1f1YmJsnrUAuEzpCzieTdBpgn3vkl/vm43JJC xXaZaah3XKt2K+qNO86W5T4pi4OnxFcU4mM1Mu0DeLdZ0KPI8pDNn2OiMdrZ+EnQ SwteveF/OwGtGy6Rgx8i1x8oywIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJZb7zOb xsO8W/66NB4afm3BihbfMB8GA1UdIwQYMBaAFD4pzm9qfblLbQkTO3P+1S3e4S2r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjI4NS9GRDY0RjBCODM0 MEMxMUU5OTY2QzVBNzZDNEY5QUUwMi9QaW5PYjJwOXVVdHRDUk03Y183VkxkN2hM YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Bpbk9iMnA5dVV0dENSTTdjXzdWTGQ3aExhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0YyODUvRkQ2NEYwQjgzNDBDMTFFOTk2NkM1QTc2QzRGOUFFMDIvMDczQkM0RjRF RDNCMTFFREI1QTAxQTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnGIQwDwQCAAIwCQMHACQGvwAAADANBgkqhkiG9w0BAQsF AAOCAQEAgG3LuSe0uOwxewtY201N5a/+x5nM2CmGpxFJgP7qdoOJhs3ZRyxl/kTp 3yPu9zQGRb48LmuQ3LspVsIGuJ8XW07eNDPdXPkHf+iREOYUeow+v4LkgT+s5ppG 7CYsa5nR4677Z4EWZ5q81T6Vr4vJW3XPdkgbeVUCjxf8/G72QGrNbumrUdPqaVoT 9hktk4NNHnH1i9KAKbniGNnQEOrNh4c03zbURROnIPzx3kvjynLRUgnrda1sP4mH vRjJ1NdlkOo+pao4v4L+Icct8KZ6rCQG8MCyzD40pJpRpdjd07JI+Gl2ayJtjHOM 8PrOe1HciIulOn5YsPZ1OLxBzwA0iA== -----END CERTIFICATE-----Generated at Wed Nov 5 08:27:38 2025 by rpki-client