$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/98A0F61840AD11F0BB332714C4F9AE02.roa File: 98A0F61840AD11F0BB332714C4F9AE02.roa (raw, json) Hash identifier: tKQU1f9hJtuAYfiy2kdRz9mYUmd+c/z8iKCPuJpB5Jo= Subject key identifier: 4C:92:62:58:B0:F6:66:CF:B1:C4:2B:99:1C:C4:9A:49:61:38:A4:BF Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1143 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/98A0F61840AD11F0BB332714C4F9AE02.roa Signing time: Thu 19 Jun 2025 17:27:35 +0000 ROA not before: Thu 19 Jun 2025 17:27:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138640 IP address blocks: 103.86.195.0/24 maxlen: 24 220.152.114.0/24 maxlen: 24 2400:c640:80::/48 maxlen: 48 2400:c640:81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 17:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4419 (0x1143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Jun 19 17:27:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68544887-7e9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:37:b5:16:e7:ed:3a:bf:ea:65:b4:89:b6:73: 79:15:66:3e:84:59:52:59:58:c4:f2:d9:28:d7:41: ac:fd:d8:7c:c1:11:83:62:52:d4:fe:7a:01:dc:ba: 4c:7d:5d:ce:86:9e:b9:ec:5f:53:ff:d8:41:58:f2: 69:54:3c:09:a9:cc:54:51:4c:d6:f2:4a:af:54:fd: 86:54:ad:22:95:9a:89:d8:07:c4:3f:09:cb:de:2c: 64:51:07:1b:75:0a:b2:e4:b4:83:f1:e3:88:0b:08: 60:cf:49:87:6d:67:77:b0:6a:cf:00:38:d2:88:45: 36:aa:73:7b:d9:b1:d8:cb:f2:15:5d:9f:56:41:57: ef:2d:34:e7:da:82:c4:b4:64:9f:a4:1e:33:97:84: 90:87:a2:01:d6:d8:04:d8:30:eb:83:22:95:6c:25: 76:97:9d:73:ab:7d:e8:4e:ed:2b:5d:75:5d:7f:82: c0:96:fd:34:b4:59:c8:fe:d8:0b:62:b6:5d:bc:e8: 30:3b:95:d5:d5:fe:9c:7f:7d:35:7c:2e:45:3b:6b: 8c:7d:b7:72:b6:7e:df:72:a8:da:80:05:fe:90:f8: b2:5d:1b:84:cf:4a:28:da:a4:e2:68:d7:4e:23:98: da:5f:85:30:16:8a:8f:f0:96:4a:25:d5:67:93:3a: c3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:92:62:58:B0:F6:66:CF:B1:C4:2B:99:1C:C4:9A:49:61:38:A4:BF X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/98A0F61840AD11F0BB332714C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.195.0/24 220.152.114.0/24 IPv6: 2400:c640:80::/47 Signature Algorithm: sha256WithRSAEncryption 1d:7a:a8:0e:d7:bd:04:d2:88:71:b3:a4:89:1f:f7:b1:02:12: ca:fa:3d:13:7b:ba:da:b1:9a:c4:4b:bd:be:97:9b:43:01:71: a4:9a:8a:fa:d4:2d:60:c2:b8:5b:2f:74:af:c4:67:8a:6c:2c: 80:c9:c7:9c:1a:af:7d:79:da:71:e3:5f:c1:47:5c:9e:b6:48: 07:db:78:e7:95:e5:49:ba:c5:1c:63:61:78:0e:b9:4c:20:b9: a2:3f:99:c7:ff:b5:9d:cb:cc:44:be:8a:72:43:ac:aa:5b:e5: e9:87:3f:90:7d:69:ed:6e:7d:e5:6f:53:55:7f:0a:aa:72:85: a2:a2:92:7a:12:92:4b:2e:83:03:f8:2e:e1:7d:ae:4b:7f:70: e8:eb:ae:f8:79:2e:36:e5:b6:a3:c8:82:76:d4:19:ab:d5:b4: 1f:ff:4e:20:e3:5f:fb:b5:61:93:6e:45:1d:87:42:82:9c:2b: b8:23:f3:ba:46:dd:f5:c2:14:c3:96:f4:53:06:c9:33:49:7b: 00:f4:67:95:3f:e7:ae:7d:51:7a:0d:f2:25:71:aa:f6:86:1d: e2:5e:06:ec:99:9b:80:c1:fe:99:2a:41:c1:4d:09:e8:42:92: 7c:b0:98:5e:9d:e6:4d:79:10:83:df:15:cb:ab:a8:bc:a7:28: f3:a2:ce:9e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICEUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUwNjE5MTcyNzM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODU0NDg4Ny03ZTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDe1FuftOr/qZbSJtnN5FWY+hFlSWVjE8tko10Gs/dh8wRGDYlLU/noB3LpM fV3Ohp657F9T/9hBWPJpVDwJqcxUUUzW8kqvVP2GVK0ilZqJ2AfEPwnL3ixkUQcb dQqy5LSD8eOICwhgz0mHbWd3sGrPADjSiEU2qnN72bHYy/IVXZ9WQVfvLTTn2oLE tGSfpB4zl4SQh6IB1tgE2DDrgyKVbCV2l51zq33oTu0rXXVdf4LAlv00tFnI/tgL YrZdvOgwO5XV1f6cf301fC5FO2uMfbdytn7fcqjagAX+kPiyXRuEz0oo2qTiaNdO I5jaX4UwFoqP8JZKJdVnkzrDhQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEySYliw 9mbPscQrmRzEmklhOKS/MB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvOThBMEY2MTg0 MEFEMTFGMEJCMzMyNzE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnVsMDBADcmHIwDwQCAAIwCQMHASQAxkAAgDANBgkqhkiG 9w0BAQsFAAOCAQEAHXqoDte9BNKIcbOkiR/3sQISyvo9E3u62rGaxEu9vpebQwFx pJqK+tQtYMK4Wy90r8RnimwsgMnHnBqvfXnaceNfwUdcnrZIB9t455XlSbrFHGNh eA65TCC5oj+Zx/+1ncvMRL6KckOsqlvl6Yc/kH1p7W595W9TVX8KqnKFoqKSehKS Sy6DA/gu4X2uS39w6Ouu+HkuNuW2o8iCdtQZq9W0H/9OIONf+7Vhk25FHYdCgpwr uCPzukbd9cIUw5b0UwbJM0l7APRnlT/nrn1Reg3yJXGq9oYd4l4G7JmbgMH+mSpB wU0J6EKSfLCYXp3mTXkQg98Vy6uovKco86LOng== -----END CERTIFICATE-----Generated at Mon Oct 27 07:12:47 2025 by rpki-client