$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/0E1EAB66961011ECA540626AC4F9AE02.roa File: 0E1EAB66961011ECA540626AC4F9AE02.roa (raw, json) Hash identifier: 8EZQM/G5p946FK5IAxG3P6xewk8qoFsvyNghIhRO4OU= Subject key identifier: 65:25:97:7C:FF:7F:14:BD:4E:C4:D7:3F:50:95:92:B5:BF:87:5E:A8 Certificate issuer: /CN=A91E2A61/serialNumber=2B517C6B79E3CEB0389D41ABC5ECE2107FEC53FB Certificate serial: 03FF Authority key identifier: 2B:51:7C:6B:79:E3:CE:B0:38:9D:41:AB:C5:EC:E2:10:7F:EC:53:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/0E1EAB66961011ECA540626AC4F9AE02.roa Signing time: Wed 15 Oct 2025 02:56:12 +0000 ROA not before: Wed 15 Oct 2025 02:56:12 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133199 IP address blocks: 43.255.28.0/24 maxlen: 24 43.255.29.0/24 maxlen: 24 43.255.30.0/24 maxlen: 24 43.255.31.0/24 maxlen: 24 103.74.192.0/24 maxlen: 24 103.74.193.0/24 maxlen: 24 103.74.194.0/24 maxlen: 24 103.74.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.crl rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 03:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1023 (0x3ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2A61, serialNumber=2B517C6B79E3CEB0389D41ABC5ECE2107FEC53FB Validity Not Before: Oct 15 02:56:12 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ef0d4c-3aa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:21:20:ef:57:25:02:63:ef:a3:20:80:48:08: 41:b7:87:26:5a:0a:fe:f9:c6:f8:56:e3:bc:56:36: ae:88:69:22:8f:bf:c0:c1:a4:1d:77:5e:22:bf:b9: 9c:60:41:9c:5a:c4:83:2e:91:74:ff:2e:63:91:a1: 7f:c3:81:8b:e4:54:55:3f:1f:55:7d:ed:f8:48:9e: fb:b6:5d:54:28:63:8e:27:8a:07:c1:f1:a7:27:fe: 42:65:dc:98:a0:bf:74:5b:2a:d7:df:ac:f7:8a:de: f6:58:00:5c:73:02:0b:e3:1b:84:be:ea:d1:f2:c9: 75:14:13:26:ff:4b:a0:cd:a2:42:35:aa:6f:fe:17: b1:51:23:21:8e:fd:1b:5d:3b:6e:ed:0a:79:14:4d: 55:d7:d6:08:89:4f:b7:03:6e:b0:8b:52:97:f0:3b: 87:26:00:f2:58:5e:57:43:dc:1f:9d:5f:d5:de:6c: c9:fa:85:d0:a3:5d:af:41:1f:c4:dd:7b:91:23:3f: a2:03:3d:71:9b:bf:b4:66:5a:c0:4b:f2:eb:b1:0e: 42:e9:0e:97:17:2d:94:56:31:6f:eb:fb:e5:97:ef: 61:f9:97:f2:5b:37:4f:b9:c9:fe:0b:69:55:2f:da: fe:37:3f:13:92:a7:fe:90:75:7a:8c:3a:1a:ff:cf: ef:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:25:97:7C:FF:7F:14:BD:4E:C4:D7:3F:50:95:92:B5:BF:87:5E:A8 X509v3 Authority Key Identifier: keyid:2B:51:7C:6B:79:E3:CE:B0:38:9D:41:AB:C5:EC:E2:10:7F:EC:53:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/0E1EAB66961011ECA540626AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.28.0/22 103.74.192.0/22 Signature Algorithm: sha256WithRSAEncryption 68:74:7f:a7:bb:3f:57:3f:f0:9a:ad:29:2b:96:d4:da:43:e0: 27:06:5c:05:5e:da:0d:20:5b:76:c6:50:fb:20:af:bc:84:76: 72:cf:80:90:0b:80:9d:98:98:9a:57:f8:23:5c:8a:df:1c:fb: db:e8:d5:9b:51:e3:95:e3:c1:d4:61:ee:56:30:37:29:3d:cd: 36:2d:e9:6d:f2:dc:a7:e1:7a:62:68:81:b0:a1:f9:b6:56:9b: 3f:9a:f1:70:78:22:27:14:b1:be:78:e3:b8:15:60:df:72:23: b0:97:68:cf:37:be:8f:1f:c5:43:1e:25:07:5c:01:3a:8d:bf: e9:fc:97:d9:a1:e8:2e:31:03:8f:4d:38:73:4c:4d:51:59:b5: a1:76:61:87:22:f4:24:64:8f:98:23:4a:c2:16:58:db:1a:d2: f3:a7:88:5b:b9:97:92:19:f0:91:e4:ef:19:f7:d2:2f:b2:eb: f8:0e:85:03:ad:11:ab:5b:f1:41:00:70:6d:43:a8:52:d1:31: 06:9d:35:f0:5d:cb:13:05:57:8d:66:2a:e7:02:22:56:6f:59: db:3a:e1:91:f7:a1:a9:cf:44:2d:50:b6:79:61:88:40:db:5f: c6:f7:df:31:a4:51:90:2e:57:33:30:b8:a3:58:db:ed:3e:03: ce:54:05:89 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBNjExMTAvBgNVBAUTKDJCNTE3QzZCNzlFM0NFQjAzODlENDFBQkM1RUNFMjEw N0ZFQzUzRkIwHhcNMjUxMDE1MDI1NjEyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVmMGQ0Yy0zYWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1iEg71clAmPvoyCASAhBt4cmWgr++cb4VuO8VjauiGkij7/AwaQdd14iv7mc YEGcWsSDLpF0/y5jkaF/w4GL5FRVPx9Vfe34SJ77tl1UKGOOJ4oHwfGnJ/5CZdyY oL90WyrX36z3it72WABccwIL4xuEvurR8sl1FBMm/0ugzaJCNapv/hexUSMhjv0b XTtu7Qp5FE1V19YIiU+3A26wi1KX8DuHJgDyWF5XQ9wfnV/V3mzJ+oXQo12vQR/E 3XuRIz+iAz1xm7+0ZlrAS/LrsQ5C6Q6XFy2UVjFv6/vll+9h+ZfyWzdPucn+C2lV L9r+Nz8Tkqf+kHV6jDoa/8/v9wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGUll3z/ fxS9TsTXP1CVkrW/h16oMB8GA1UdIwQYMBaAFCtRfGt5486wOJ1Bq8Xs4hB/7FP7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkE2MS9FREMwOEZFNjk2 MEIxMUVDQkJFNEJFNjRDNEY5QUUwMi9LMUY4YTNuanpyQTRuVUdyeGV6aUVIX3NV X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxRjhhM25qenJBNG5VR3J4ZXppRUhfc1Vfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJBNjEvRURDMDhGRTY5NjBCMTFFQ0JCRTRCRTY0QzRGOUFFMDIvMEUxRUFCNjY5 NjEwMTFFQ0E1NDA2MjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/xwDBAJnSsAwDQYJKoZIhvcNAQELBQADggEBAGh0f6e7 P1c/8JqtKSuW1NpD4CcGXAVe2g0gW3bGUPsgr7yEdnLPgJALgJ2YmJpX+CNcit8c +9vo1ZtR45XjwdRh7lYwNyk9zTYt6W3y3KfhemJogbCh+bZWmz+a8XB4IicUsb54 47gVYN9yI7CXaM83vo8fxUMeJQdcATqNv+n8l9mh6C4xA49NOHNMTVFZtaF2YYci 9CRkj5gjSsIWWNsa0vOniFu5l5IZ8JHk7xn30i+y6/gOhQOtEatb8UEAcG1DqFLR MQadNfBdyxMFV41mKucCIlZvWds64ZH3oanPRC1QtnlhiEDbX8b33zGkUZAuVzMw uKNY2+0+A85UBYk= -----END CERTIFICATE-----Generated at Sun Oct 26 02:39:31 2025 by rpki-client