$ rpki-client -vvf rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/660A349884C511EFB2831C16C4F9AE02.roa File: 660A349884C511EFB2831C16C4F9AE02.roa (raw, json) Hash identifier: K5rdCvcUlROQ0BuNDtcUQ3F8rgeuD4032+cfZuPHo+g= Subject key identifier: A1:4A:F1:E2:39:CF:5C:45:C1:70:1A:98:75:84:C4:CC:71:B7:6B:61 Certificate issuer: /CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Certificate serial: 05E7 Authority key identifier: F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/660A349884C511EFB2831C16C4F9AE02.roa Signing time: Thu 23 Oct 2025 00:13:56 +0000 ROA not before: Thu 23 Oct 2025 00:13:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 6134 IP address blocks: 43.248.8.0/22 maxlen: 24 103.39.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 00:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1511 (0x5e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E094D, serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Validity Not Before: Oct 23 00:13:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f97344-0c28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:46:d5:84:22:81:66:07:f5:ee:7d:4c:a7:f4: 49:b0:9c:08:70:4f:e8:4b:27:e9:a4:c4:84:bb:6c: 82:fa:02:8d:aa:6b:6b:60:b5:80:35:2d:53:72:12: 49:96:7c:a0:97:bf:df:f0:e2:ba:47:b0:32:bb:eb: fc:27:96:db:98:13:8c:63:35:d8:b9:39:b6:61:9e: ad:a1:2f:88:10:f1:3f:3a:57:82:a4:2f:61:92:c4: d1:2a:0e:62:07:a7:e1:10:84:4e:a6:13:4e:6b:4a: 03:55:72:b7:42:84:8e:74:ab:ee:3a:79:47:d4:2e: 82:82:17:d0:3b:58:26:f5:28:92:ad:2a:a7:ed:12: cf:cd:36:3f:79:db:c4:e2:b0:78:25:a7:d5:9b:8c: b3:25:b1:6a:3e:71:df:08:f3:bb:ec:b0:9c:0f:2c: ae:29:ce:8f:36:92:db:09:0d:52:e5:84:41:9e:ff: f4:ce:00:ef:b5:f2:40:01:82:f1:ae:b5:9d:89:c9: cf:e1:a5:af:c4:29:5a:e7:54:3d:f9:54:a3:f8:54: 9d:26:ea:ea:10:03:a6:00:2e:ce:4c:0c:f0:7c:91: f6:6e:d0:ec:c1:a3:f5:df:23:c6:a0:84:ae:fd:8e: 3c:54:1d:8f:07:67:62:5b:6d:a1:d9:df:5e:00:2e: 03:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:4A:F1:E2:39:CF:5C:45:C1:70:1A:98:75:84:C4:CC:71:B7:6B:61 X509v3 Authority Key Identifier: keyid:F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/660A349884C511EFB2831C16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.8.0/22 103.39.76.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:01:e3:61:b4:1d:3c:b4:4b:a9:46:35:71:a4:e1:6f:5e:fb: 2a:bb:5d:f8:e6:c1:8f:b5:75:84:4b:e6:a7:bc:bc:4f:bb:93: b5:4f:0a:5f:75:92:66:0d:eb:d2:39:08:1f:1f:fd:df:a1:de: 56:32:30:f3:fe:3b:d6:21:91:00:6f:db:c0:25:90:82:19:dd: 5a:63:20:02:c8:88:0b:ee:8d:e1:de:11:bf:de:3b:36:50:8e: 3d:e4:be:d0:65:73:19:92:79:6c:83:5f:bb:2f:33:ee:fe:34: f2:b9:15:de:a8:b2:fd:96:e5:30:43:f0:11:1c:e2:61:9d:9e: 2e:ec:f4:c6:98:a2:63:58:fd:db:fc:b8:42:f4:87:58:df:b2: 42:ed:09:39:2f:76:4d:27:b3:b4:ef:18:e6:4e:5b:2f:f6:e4: ee:30:07:70:98:3e:8c:34:3c:3d:e2:94:da:76:50:89:c4:27: ea:69:9c:f7:fc:a4:c6:3c:6a:56:b8:ae:4d:0a:b8:bf:8a:62: 11:ba:87:60:d1:6f:37:ce:ac:97:10:f1:80:b9:b5:6a:8c:e0: 37:cc:00:1b:26:92:51:1b:12:8b:65:95:9f:a3:55:c8:3d:b6: b4:17:aa:96:f8:dd:84:f1:a9:2b:53:b9:0e:c6:b4:e8:75:16: f6:91:83:19 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA5NEQxMTAvBgNVBAUTKEYzMTcwNUU4MThFQTQ4MDNCMDkzNDE5M0Y2MUZDNkUz MzcxNzcyRUQwHhcNMjUxMDIzMDAxMzU2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5NzM0NC0wYzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0bVhCKBZgf17n1Mp/RJsJwIcE/oSyfppMSEu2yC+gKNqmtrYLWANS1TchJJ lnygl7/f8OK6R7Ayu+v8J5bbmBOMYzXYuTm2YZ6toS+IEPE/OleCpC9hksTRKg5i B6fhEIROphNOa0oDVXK3QoSOdKvuOnlH1C6CghfQO1gm9SiSrSqn7RLPzTY/edvE 4rB4JafVm4yzJbFqPnHfCPO77LCcDyyuKc6PNpLbCQ1S5YRBnv/0zgDvtfJAAYLx rrWdicnP4aWvxCla51Q9+VSj+FSdJurqEAOmAC7OTAzwfJH2btDswaP13yPGoISu /Y48VB2PB2diW22h2d9eAC4D2QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKFK8eI5 z1xFwXAamHWExMxxt2thMB8GA1UdIwQYMBaAFPMXBegY6kgDsJNBk/YfxuM3F3Lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDk0RC80MEI3Mzg2RURF ODExMUVCQTlGQzdENzJDNEY5QUUwMi84eGNGNkJqcVNBT3drMEdUOWhfRzR6Y1hj dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh4Y0Y2QmpxU0FPd2swR1Q5aF9HNHpjWGN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA5NEQvNDBCNzM4NkVERTgxMTFFQkE5RkM3RDcyQzRGOUFFMDIvNjYwQTM0OTg4 NEM1MTFFRkIyODMxQzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+AgDBAJnJ0wwDQYJKoZIhvcNAQELBQADggEBAA4B42G0 HTy0S6lGNXGk4W9e+yq7XfjmwY+1dYRL5qe8vE+7k7VPCl91kmYN69I5CB8f/d+h 3lYyMPP+O9YhkQBv28AlkIIZ3VpjIALIiAvujeHeEb/eOzZQjj3kvtBlcxmSeWyD X7svM+7+NPK5Fd6osv2W5TBD8BEc4mGdni7s9MaYomNY/dv8uEL0h1jfskLtCTkv dk0ns7TvGOZOWy/25O4wB3CYPow0PD3ilNp2UInEJ+ppnPf8pMY8ala4rk0KuL+K YhG6h2DRbzfOrJcQ8YC5tWqM4DfMABsmklEbEotllZ+jVcg9trQXqpb43YTxqStT uQ7GtOh1FvaRgxk= -----END CERTIFICATE-----Generated at Fri Oct 24 08:30:28 2025 by rpki-client