$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F0A/E86021D6A23C11E88A6FE66CC4F9AE02/3F6E94ACF5CF11EF90104A57C4F9AE02.roa File: 3F6E94ACF5CF11EF90104A57C4F9AE02.roa (raw, json) Hash identifier: /ZIUoYPB1EIQasu4GhEyvD9OIV83dzAypvtiMc9qVo4= Subject key identifier: E8:B3:14:5A:68:AF:88:C4:4B:F9:12:D7:E8:13:4C:14:BC:94:12:90 Certificate issuer: /CN=A91D9F0A/serialNumber=E46BBF01768956E866AEC443F2BB13501F2E7379 Certificate serial: 1400 Authority key identifier: E4:6B:BF:01:76:89:56:E8:66:AE:C4:43:F2:BB:13:50:1F:2E:73:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Gu_AXaJVuhmrsRD8rsTUB8uc3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F0A/E86021D6A23C11E88A6FE66CC4F9AE02/3F6E94ACF5CF11EF90104A57C4F9AE02.roa Signing time: Fri 31 Oct 2025 17:35:04 +0000 ROA not before: Fri 31 Oct 2025 17:35:04 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 138043 IP address blocks: 103.130.196.0/23 maxlen: 23 103.130.196.0/24 maxlen: 24 103.130.197.0/24 maxlen: 24 2400:9860::/32 maxlen: 32 2400:9860::/35 maxlen: 35 2400:9860:2000::/35 maxlen: 35 2400:9860:4000::/35 maxlen: 35 2400:9860:6000::/35 maxlen: 35 2400:9860:8000::/35 maxlen: 35 2400:9860:a000::/35 maxlen: 35 2400:9860:c000::/35 maxlen: 35 2400:9860:e000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F0A/E86021D6A23C11E88A6FE66CC4F9AE02/5Gu_AXaJVuhmrsRD8rsTUB8uc3k.crl rsync://rpki.apnic.net/member_repository/A91D9F0A/E86021D6A23C11E88A6FE66CC4F9AE02/5Gu_AXaJVuhmrsRD8rsTUB8uc3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Gu_AXaJVuhmrsRD8rsTUB8uc3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5120 (0x1400) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F0A, serialNumber=E46BBF01768956E866AEC443F2BB13501F2E7379 Validity Not Before: Oct 31 17:35:04 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=6904f348-b1ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:41:03:81:ed:4c:7a:44:bd:49:aa:a7:98:9e: 16:76:bc:89:6d:4d:e9:d9:c8:b5:01:9c:8f:2b:88: 40:91:f5:0a:c3:61:f9:e9:3f:60:9f:fb:a3:0c:56: dd:9d:ad:dc:29:ed:56:81:7c:61:d8:16:cc:fc:36: 1f:77:b0:d1:91:0d:d5:9e:96:1d:c4:1b:63:a9:56: b8:f8:7d:ec:b2:5e:df:03:a8:93:f0:af:7c:ed:57: 6d:f5:0b:9e:e6:ba:4a:ed:8d:2a:7f:6f:e4:0e:35: 14:89:6b:02:7e:fb:ea:7d:a7:dc:6c:d5:16:a4:13: 63:a4:4f:67:af:4c:15:90:4c:79:62:31:48:85:79: ad:69:c1:97:69:18:a7:c0:a3:35:9d:bd:43:c6:9c: 15:e9:e9:75:12:d2:fe:62:73:ce:82:c2:9b:98:8a: fe:fe:28:2f:84:38:b8:d5:9e:4a:bc:f1:24:53:a4: 06:4c:e8:8f:fb:5c:f0:ad:8c:37:a7:2a:91:59:5f: 93:79:29:8d:16:b3:7d:f6:21:45:22:7e:97:0a:8b: e5:6d:2c:ff:90:79:6a:63:a0:34:87:52:7c:53:51: 57:8a:96:79:b2:e5:4c:42:44:cd:00:b2:3b:aa:73: ca:5d:cb:44:6a:44:87:bb:e3:58:cd:9d:ff:6e:78: 47:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B3:14:5A:68:AF:88:C4:4B:F9:12:D7:E8:13:4C:14:BC:94:12:90 X509v3 Authority Key Identifier: keyid:E4:6B:BF:01:76:89:56:E8:66:AE:C4:43:F2:BB:13:50:1F:2E:73:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F0A/E86021D6A23C11E88A6FE66CC4F9AE02/5Gu_AXaJVuhmrsRD8rsTUB8uc3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Gu_AXaJVuhmrsRD8rsTUB8uc3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F0A/E86021D6A23C11E88A6FE66CC4F9AE02/3F6E94ACF5CF11EF90104A57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.196.0/23 IPv6: 2400:9860::/32 Signature Algorithm: sha256WithRSAEncryption 16:37:07:8f:d5:30:a9:0d:ea:be:cd:db:86:81:bd:03:c7:6a: d2:e7:90:12:c0:1e:87:ac:0c:4b:19:c5:ea:d2:a8:7f:7f:c4: ea:a6:c6:af:9d:02:f9:1c:20:85:df:4b:28:da:46:b8:58:7c: 30:4d:03:25:f0:ed:cc:ea:b6:2f:a8:fe:ad:f1:73:b0:3a:53: 3f:45:94:5f:a9:85:79:ea:c2:0e:62:83:5c:2d:5e:3e:33:02: 45:07:2e:40:17:04:8e:ee:11:02:8f:57:ec:16:17:3b:42:5b: e0:13:43:51:82:8c:10:36:83:dd:12:fe:da:60:f3:db:dd:b8: af:bd:07:2f:7f:71:71:2b:10:80:42:c7:42:99:72:7c:6e:a5: dc:03:8b:ed:da:70:51:e6:f1:dd:55:28:68:bb:29:e9:83:d3: 46:b8:33:63:41:1f:0e:b6:50:5a:90:f4:6f:dd:03:19:c5:f8: 1b:2e:c4:4a:12:23:b6:04:12:08:d8:83:c0:7d:e1:05:c2:31: e3:55:27:25:be:75:85:72:26:62:db:bb:d8:a8:a3:55:f9:1c: e6:3c:a4:c5:73:43:f3:e3:6e:f2:2d:98:ea:ec:25:94:c4:0b: f4:16:f7:68:c9:2a:4b:35:d5:18:b0:8a:41:e0:d0:87:fc:ef: 08:fe:01:f0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlGMEExMTAvBgNVBAUTKEU0NkJCRjAxNzY4OTU2RTg2NkFFQzQ0M0YyQkIxMzUw MUYyRTczNzkwHhcNMjUxMDMxMTczNTA0WhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0ZjM0OC1iMWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEEDge1MekS9SaqnmJ4WdryJbU3p2ci1AZyPK4hAkfUKw2H56T9gn/ujDFbd na3cKe1WgXxh2BbM/DYfd7DRkQ3VnpYdxBtjqVa4+H3ssl7fA6iT8K987Vdt9Que 5rpK7Y0qf2/kDjUUiWsCfvvqfafcbNUWpBNjpE9nr0wVkEx5YjFIhXmtacGXaRin wKM1nb1DxpwV6el1EtL+YnPOgsKbmIr+/igvhDi41Z5KvPEkU6QGTOiP+1zwrYw3 pyqRWV+TeSmNFrN99iFFIn6XCovlbSz/kHlqY6A0h1J8U1FXipZ5suVMQkTNALI7 qnPKXctEakSHu+NYzZ3/bnhH0QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOizFFpo r4jES/kS1+gTTBS8lBKQMB8GA1UdIwQYMBaAFORrvwF2iVboZq7EQ/K7E1AfLnN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUYwQS9FODYwMjFENkEy M0MxMUU4OEE2RkU2NkNDNEY5QUUwMi81R3VfQVhhSlZ1aG1yc1JEOHJzVFVCOHVj M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHdV9BWGFKVnVobXJzUkQ4cnNUVUI4dWMzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDlGMEEvRTg2MDIxRDZBMjNDMTFFODhBNkZFNjZDQzRGOUFFMDIvM0Y2RTk0QUNG NUNGMTFFRjkwMTA0QTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFngsQwDQQCAAIwBwMFACQAmGAwDQYJKoZIhvcNAQELBQAD ggEBABY3B4/VMKkN6r7N24aBvQPHatLnkBLAHoesDEsZxerSqH9/xOqmxq+dAvkc IIXfSyjaRrhYfDBNAyXw7czqti+o/q3xc7A6Uz9FlF+phXnqwg5ig1wtXj4zAkUH LkAXBI7uEQKPV+wWFztCW+ATQ1GCjBA2g90S/tpg89vduK+9By9/cXErEIBCx0KZ cnxupdwDi+3acFHm8d1VKGi7KemD00a4M2NBHw62UFqQ9G/dAxnF+BsuxEoSI7YE EgjYg8B94QXCMeNVJyW+dYVyJmLbu9ioo1X5HOY8pMVzQ/PjbvItmOrsJZTEC/QW 92jJKks11RiwikHg0If87wj+AfA= -----END CERTIFICATE-----Generated at Wed Nov 5 13:05:55 2025 by rpki-client