$ rpki-client -vvf rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/22A3D2E4E5D311EFB5545A4EC4F9AE02.roa File: 22A3D2E4E5D311EFB5545A4EC4F9AE02.roa (raw, json) Hash identifier: eZp28/ZhhARP0YeFheqkwTLrrVm+pDubRXIX/coSMO4= Subject key identifier: D3:65:FF:8B:1B:F2:2E:8E:0F:6E:AC:25:D0:67:AD:15:F1:4D:03:82 Certificate issuer: /CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Certificate serial: 05E8 Authority key identifier: F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/22A3D2E4E5D311EFB5545A4EC4F9AE02.roa Signing time: Thu 23 Oct 2025 00:13:57 +0000 ROA not before: Thu 23 Oct 2025 00:13:57 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 932 IP address blocks: 43.248.8.0/22 maxlen: 24 103.39.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 00:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E094D, serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Validity Not Before: Oct 23 00:13:57 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f97345-40ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9c:51:0a:b1:ad:8e:af:73:ce:a2:5f:4f:6a: 27:3d:64:bb:d9:4c:23:b3:84:a0:fd:2d:fe:ef:ad: d9:2d:db:08:93:13:d1:eb:9c:fc:51:c4:f5:af:03: 8f:a8:72:85:48:d5:5c:ea:5b:12:1f:1c:6f:61:c7: 07:9e:8b:c1:19:25:71:61:42:ab:95:63:7d:2c:12: 09:ab:8b:cf:de:32:da:73:36:80:25:c7:cb:d5:ce: c6:5c:25:e9:7e:11:c6:25:92:8c:d6:9b:9d:77:09: 76:af:ba:80:26:8e:98:4c:bc:8a:24:8c:1e:6a:06: 79:0b:c8:a1:64:04:eb:6b:ae:5f:25:5c:1c:13:9e: 65:3c:05:08:1d:52:3e:f5:58:68:6c:ec:ff:fa:02: f6:ac:52:2b:fb:4d:f8:36:dd:6e:19:11:0b:e9:1c: 6a:c0:54:de:20:98:2b:74:45:70:a8:6d:62:b0:9b: a7:54:e0:c2:db:62:03:f7:3c:a9:0e:4c:37:81:aa: f9:ec:09:c9:7f:a4:8d:bb:6b:d5:6a:7f:a9:02:78: d6:05:0b:7f:3e:2c:83:0d:09:fc:30:29:2d:62:7e: 88:f1:da:2b:cc:23:c2:c2:29:14:02:a4:f8:ab:ce: 42:83:07:ba:6f:b3:fa:47:51:3a:ba:81:8e:35:a3: 39:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:65:FF:8B:1B:F2:2E:8E:0F:6E:AC:25:D0:67:AD:15:F1:4D:03:82 X509v3 Authority Key Identifier: keyid:F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/22A3D2E4E5D311EFB5545A4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.8.0/22 103.39.76.0/22 Signature Algorithm: sha256WithRSAEncryption 72:4f:5c:cd:f2:43:28:e8:81:a2:6a:90:2e:0c:03:9b:62:9e: dd:20:18:c4:b0:c2:38:50:91:6c:bc:af:f8:99:3b:19:d9:ca: d9:6e:34:20:ba:12:e5:bb:60:bd:e7:94:07:87:83:5a:8e:5d: 33:96:53:2c:c9:a8:26:be:57:e5:21:44:d5:97:37:7d:66:c3: ab:d9:a6:92:44:46:6b:91:91:9e:a4:a5:0e:f5:ad:b1:d5:c2: 23:47:ad:ae:1b:e6:24:f6:cf:48:bd:cc:47:80:6f:98:95:af: 64:e3:e9:cf:81:a4:f0:35:bd:61:6e:64:68:f7:aa:59:51:31: 59:97:ac:a1:f4:5a:2d:25:b3:d3:af:ed:1b:f2:c1:a5:9b:66: 4e:59:49:e3:d0:01:a7:0d:77:41:7b:fa:bf:80:82:45:ec:27: 11:64:95:6e:c4:ab:7f:4b:87:99:04:c1:28:da:34:68:0f:d2: a4:55:ce:91:b8:db:7b:d2:35:ef:c7:1c:d3:43:fe:8c:c9:35: 51:ad:f8:46:2c:14:f5:19:bf:9d:64:ac:bc:c7:59:8e:8f:61: 01:78:78:2a:b7:1c:5e:d9:34:5c:98:1f:d7:7e:60:54:18:5f: ca:db:f9:76:cd:06:0c:b6:95:e3:fe:95:f0:e1:bb:5b:40:99: 82:a1:3f:e7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA5NEQxMTAvBgNVBAUTKEYzMTcwNUU4MThFQTQ4MDNCMDkzNDE5M0Y2MUZDNkUz MzcxNzcyRUQwHhcNMjUxMDIzMDAxMzU3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5NzM0NS00MGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15xRCrGtjq9zzqJfT2onPWS72Uwjs4Sg/S3+763ZLdsIkxPR65z8UcT1rwOP qHKFSNVc6lsSHxxvYccHnovBGSVxYUKrlWN9LBIJq4vP3jLaczaAJcfL1c7GXCXp fhHGJZKM1puddwl2r7qAJo6YTLyKJIweagZ5C8ihZATra65fJVwcE55lPAUIHVI+ 9VhobOz/+gL2rFIr+034Nt1uGREL6RxqwFTeIJgrdEVwqG1isJunVODC22ID9zyp Dkw3gar57AnJf6SNu2vVan+pAnjWBQt/PiyDDQn8MCktYn6I8dorzCPCwikUAqT4 q85Cgwe6b7P6R1E6uoGONaM5AQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNNl/4sb 8i6OD26sJdBnrRXxTQOCMB8GA1UdIwQYMBaAFPMXBegY6kgDsJNBk/YfxuM3F3Lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDk0RC80MEI3Mzg2RURF ODExMUVCQTlGQzdENzJDNEY5QUUwMi84eGNGNkJqcVNBT3drMEdUOWhfRzR6Y1hj dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh4Y0Y2QmpxU0FPd2swR1Q5aF9HNHpjWGN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA5NEQvNDBCNzM4NkVERTgxMTFFQkE5RkM3RDcyQzRGOUFFMDIvMjJBM0QyRTRF NUQzMTFFRkI1NTQ1QTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+AgDBAJnJ0wwDQYJKoZIhvcNAQELBQADggEBAHJPXM3y QyjogaJqkC4MA5tint0gGMSwwjhQkWy8r/iZOxnZytluNCC6EuW7YL3nlAeHg1qO XTOWUyzJqCa+V+UhRNWXN31mw6vZppJERmuRkZ6kpQ71rbHVwiNHra4b5iT2z0i9 zEeAb5iVr2Tj6c+BpPA1vWFuZGj3qllRMVmXrKH0Wi0ls9Ov7RvywaWbZk5ZSePQ AacNd0F7+r+AgkXsJxFklW7Eq39Lh5kEwSjaNGgP0qRVzpG423vSNe/HHNND/ozJ NVGt+EYsFPUZv51krLzHWY6PYQF4eCq3HF7ZNFyYH9d+YFQYX8rb+XbNBgy2leP+ lfDhu1tAmYKhP+c= -----END CERTIFICATE-----Generated at Fri Oct 24 10:51:26 2025 by rpki-client