$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa File: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (raw, json) Hash identifier: ncmb5q9rR1siQY10NSuWDQXTtyorRNilXo5iuSRTX3w= Subject key identifier: 20:5F:FC:C8:18:92:75:A8:DB:F8:3E:81:63:C9:4B:AA:9D:97:A5:AE Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 0646 Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa Signing time: Sat 04 Oct 2025 22:54:26 +0000 ROA not before: Sat 04 Oct 2025 22:54:26 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 63473 IP address blocks: 103.73.64.0/23 maxlen: 23 103.73.66.0/24 maxlen: 24 103.73.67.0/24 maxlen: 24 216.250.96.0/24 maxlen: 24 216.250.97.0/24 maxlen: 24 2406:ef80:1::/48 maxlen: 48 2406:ef80:2::/48 maxlen: 48 2406:ef80:3::/48 maxlen: 48 2406:ef80:4::/48 maxlen: 48 2406:ef80:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 23:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1606 (0x646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176, serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Oct 4 22:54:26 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1a5a1-cb06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:91:92:21:67:3c:f3:74:a8:4f:89:90:dd:f3: 7d:53:96:86:16:f8:93:7c:6b:8a:31:6d:8c:dd:3d: 0e:df:f1:6c:50:a4:c3:48:97:3f:58:7d:30:7d:ca: a1:9d:4d:28:8d:a0:c9:a7:a7:51:fb:3a:41:43:ba: 71:a5:b9:a1:3a:84:35:00:fb:da:ec:4a:f0:d6:23: 8d:7d:88:71:c1:16:19:23:c8:b9:21:8b:74:35:ac: 35:4e:94:cf:11:89:96:10:71:2d:6c:c7:71:d2:1b: 98:df:c7:61:a6:be:98:cd:4d:f2:0e:23:35:94:58: 37:24:de:69:1e:47:58:52:20:b3:48:1c:5d:79:de: 36:cf:54:05:59:be:2d:da:74:c2:34:a0:2b:c0:e8: 6a:ba:62:31:d5:bf:08:22:3d:78:41:91:73:b1:d3: ed:cc:fc:14:2e:42:48:1c:9c:ea:47:89:03:de:6c: 05:85:45:98:9b:c6:53:4c:dc:c7:7e:eb:c3:4d:94: 40:c5:cf:ab:8b:d2:dc:6d:83:67:7b:a8:cb:a5:f6: 38:52:4e:a1:8b:7d:fc:31:30:10:c4:47:ed:36:79: ed:a4:b3:e4:59:85:9e:41:fd:ea:c0:97:7d:02:73: c4:36:50:69:e2:0b:38:76:67:11:d8:c2:69:c7:ff: c7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:5F:FC:C8:18:92:75:A8:DB:F8:3E:81:63:C9:4B:AA:9D:97:A5:AE X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/6595CE9CB29011EBBBF4F548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.64.0/22 216.250.96.0/23 IPv6: 2406:ef80:1::-2406:ef80:4:ffff:ffff:ffff:ffff:ffff 2406:ef80:100::/40 Signature Algorithm: sha256WithRSAEncryption 78:1d:bf:b7:b3:2c:c9:6d:44:00:68:a6:99:81:85:25:2e:c3: 80:e3:15:fa:e4:84:f9:e7:7d:7a:aa:c2:c3:7b:7b:33:75:77: 0a:80:d6:cc:4b:b2:d5:0f:aa:2d:b2:05:97:cf:ad:1a:0b:5a: 82:9f:d1:b2:50:70:83:3d:24:b2:ee:6f:33:04:0d:91:f6:4f: 09:4c:4b:09:f1:81:7e:37:be:4b:0d:0f:30:39:26:51:15:ea: 36:0d:e4:7e:e0:8b:78:79:bb:a9:85:2c:71:92:9e:e5:af:d9: bf:ec:b9:be:a4:6b:7f:5b:bd:97:dd:d4:28:e5:36:97:62:72: b9:7d:fe:a3:84:de:db:2f:d8:2a:f7:ba:87:24:16:f5:f1:45: 48:75:43:be:d1:cb:31:ac:e8:61:14:19:d2:7f:7f:84:63:b8: 56:a6:e0:85:1c:63:58:45:fb:b9:35:c6:62:00:6b:a2:cf:6c: de:36:c9:df:ab:2a:c1:16:48:21:3d:b9:c4:59:0e:ef:54:50: c2:83:1f:8a:65:b2:10:2f:76:65:6f:70:ac:d2:2c:c4:10:51: d1:fd:5c:be:54:4d:92:aa:04:88:7e:dd:b3:e2:92:a0:8b:52: 96:37:44:78:90:45:4c:27:37:b0:0f:6a:55:47:e0:fa:87:fa: 48:06:29:0c -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICBkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjUxMDA0MjI1NDI2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxYTVhMS1jYjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZGSIWc883SoT4mQ3fN9U5aGFviTfGuKMW2M3T0O3/FsUKTDSJc/WH0wfcqh nU0ojaDJp6dR+zpBQ7pxpbmhOoQ1APva7Erw1iONfYhxwRYZI8i5IYt0Naw1TpTP EYmWEHEtbMdx0huY38dhpr6YzU3yDiM1lFg3JN5pHkdYUiCzSBxded42z1QFWb4t 2nTCNKArwOhqumIx1b8IIj14QZFzsdPtzPwULkJIHJzqR4kD3mwFhUWYm8ZTTNzH fuvDTZRAxc+ri9LcbYNne6jLpfY4Uk6hi338MTAQxEftNnntpLPkWYWeQf3qwJd9 AnPENlBp4gs4dmcR2MJpx//H7QIDAQABo4ICvzCCArswHQYDVR0OBBYEFCBf/MgY knWo2/g+gWPJS6qdl6WuMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExNzYvQUREM0FFQ0VCMjhFMTFFQjk0RDIxODQ3QzRGOUFFMDIvNjU5NUNFOUNC MjkwMTFFQkJCRjRGNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MBIEAgABMAwDBAJnSUADBAHY+mAwIgQCAAIwHDASAwcAJAbvgAABAwcAJAbv gAAEAwYAJAbvgAEwDQYJKoZIhvcNAQELBQADggEBAHgdv7ezLMltRABoppmBhSUu w4DjFfrkhPnnfXqqwsN7ezN1dwqA1sxLstUPqi2yBZfPrRoLWoKf0bJQcIM9JLLu bzMEDZH2TwlMSwnxgX43vksNDzA5JlEV6jYN5H7gi3h5u6mFLHGSnuWv2b/sub6k a39bvZfd1CjlNpdicrl9/qOE3tsv2Cr3uockFvXxRUh1Q77RyzGs6GEUGdJ/f4Rj uFam4IUcY1hF+7k1xmIAa6LPbN42yd+rKsEWSCE9ucRZDu9UUMKDH4plshAvdmVv cKzSLMQQUdH9XL5UTZKqBIh+3bPikqCLUpY3RHiQRUwnN7APalVH4PqH+kgGKQw= -----END CERTIFICATE-----Generated at Fri Oct 24 17:55:39 2025 by rpki-client