$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa File: 0BFA0C9C927E11EEA47AD74FC4F9AE02.roa (raw, json) Hash identifier: hKxsj0PrtMUtw8bckcFfFfce/Zwknq+qJ573s/y34G4= Subject key identifier: B6:FF:8E:5D:E6:11:95:3B:47:8E:54:66:2E:DA:95:9D:C0:17:F7:03 Certificate issuer: /CN=A91EF35B/serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Certificate serial: 04C7 Authority key identifier: E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa Signing time: Mon 03 Nov 2025 00:14:46 +0000 ROA not before: Mon 03 Nov 2025 00:14:46 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 146990 IP address blocks: 103.172.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:04:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF35B, serialNumber=E40720BA293BAF25BC0A1778C65CF0D2E0F35160 Validity Not Before: Nov 3 00:14:46 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=6907f3f6-bd1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:22:e7:50:fb:d6:c7:28:b8:ab:77:f3:ad:ad: 92:7a:af:9d:f3:9e:7f:a9:8f:55:51:50:4d:92:dc: 81:f3:8a:c2:4c:d2:0f:8d:78:6e:b5:5f:82:d0:5e: 4d:c7:a0:2b:a0:38:ef:7f:b1:30:08:d6:32:da:9c: 52:6d:07:dd:ab:ae:e5:e6:e1:42:e7:7a:71:90:1f: 54:08:14:8f:7a:9a:ae:28:8f:9d:dd:40:3a:c2:77: 68:03:7a:7e:06:df:b9:75:63:d7:96:0a:67:8a:ba: b0:1e:aa:1a:7e:1a:f9:9b:c6:f3:21:2e:79:5a:f6: b0:da:44:08:88:b8:3b:58:c5:47:14:52:50:70:c4: 6e:72:67:17:a6:61:2f:1f:b7:50:1e:58:8a:b2:16: 8b:89:d5:79:83:f0:12:18:4f:cf:de:ee:2a:73:89: cf:f5:95:67:cb:a1:7c:df:90:f6:ee:c2:37:b6:d9: 9a:ac:2c:68:1b:d4:20:1b:ee:54:7d:a5:87:57:d7: 71:df:d6:a8:5e:bd:34:4d:cc:bc:79:f3:02:fb:da: 97:38:f7:cf:69:9b:cd:0e:67:b5:c7:9d:ae:86:e9: 0c:13:06:f7:5b:77:43:e4:4c:17:d5:96:a1:de:3c: a7:6b:46:ec:b9:2c:d7:e3:5e:d2:c8:5d:1b:f7:73: c8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:FF:8E:5D:E6:11:95:3B:47:8E:54:66:2E:DA:95:9D:C0:17:F7:03 X509v3 Authority Key Identifier: keyid:E4:07:20:BA:29:3B:AF:25:BC:0A:17:78:C6:5C:F0:D2:E0:F3:51:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/5Acguik7ryW8Chd4xlzw0uDzUWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Acguik7ryW8Chd4xlzw0uDzUWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF35B/E010158A564E11EC85885914C4F9AE02/0BFA0C9C927E11EEA47AD74FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.138.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:68:0b:55:30:4b:af:d6:1e:7b:9d:6c:83:6e:8f:28:2d:ff: 8f:56:a0:04:94:43:af:7e:99:eb:a9:af:ce:2b:d5:02:55:96: ac:d2:81:87:9d:67:21:5e:33:ad:a4:46:a1:24:a1:f0:31:55: 2c:39:bc:4d:a1:21:ad:00:f6:cf:f8:76:ce:54:26:fa:4d:37: 56:7d:68:26:49:ca:a6:15:60:7a:f5:dd:9a:1a:09:c6:bf:eb: b0:4c:0b:30:f8:02:cf:75:c1:3e:d5:3e:1e:4a:28:d3:e6:bb: 3f:df:81:e8:05:70:e0:05:dd:6f:bf:80:63:e5:c6:18:8f:60: f6:88:50:94:8c:e7:63:86:57:00:b4:ad:00:ef:27:b2:01:f8: 46:a8:5f:13:ec:19:55:42:fc:c5:e9:d4:1e:75:83:93:6a:f8: 10:56:36:25:da:6b:b9:6f:10:1b:af:da:1c:64:88:db:83:61: 53:90:1e:91:c6:ec:87:ef:3b:80:58:89:c1:66:13:68:dc:e8: ff:7e:c1:b3:2d:e5:9e:79:cd:75:85:b6:03:c6:f5:cb:9e:ee: 49:46:2f:f6:eb:59:0a:db:25:d0:31:41:50:15:a2:e6:71:3d: 4b:b5:99:e3:ff:4e:c8:f1:4c:f5:c1:d9:a5:90:c8:ba:20:43: d5:44:10:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYzNUIxMTAvBgNVBAUTKEU0MDcyMEJBMjkzQkFGMjVCQzBBMTc3OEM2NUNGMEQy RTBGMzUxNjAwHhcNMjUxMTAzMDAxNDQ2WhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3ZjNmNi1iZDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCLnUPvWxyi4q3fzra2Seq+d855/qY9VUVBNktyB84rCTNIPjXhutV+C0F5N x6AroDjvf7EwCNYy2pxSbQfdq67l5uFC53pxkB9UCBSPepquKI+d3UA6wndoA3p+ Bt+5dWPXlgpnirqwHqoafhr5m8bzIS55Wvaw2kQIiLg7WMVHFFJQcMRucmcXpmEv H7dQHliKshaLidV5g/ASGE/P3u4qc4nP9ZVny6F835D27sI3ttmarCxoG9QgG+5U faWHV9dx39aoXr00Tcy8efMC+9qXOPfPaZvNDme1x52uhukMEwb3W3dD5EwX1Zah 3jyna0bsuSzX417SyF0b93PIVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLb/jl3m EZU7R45UZi7alZ3AF/cDMB8GA1UdIwQYMBaAFOQHILopO68lvAoXeMZc8NLg81Fg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjM1Qi9FMDEwMTU4QTU2 NEUxMUVDODU4ODU5MTRDNEY5QUUwMi81QWNndWlrN3J5VzhDaGQ0eGx6dzB1RHpV V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVBY2d1aWs3cnlXOENoZDR4bHp3MHVEelVXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYzNUIvRTAxMDE1OEE1NjRFMTFFQzg1ODg1OTE0QzRGOUFFMDIvMEJGQTBDOUM5 MjdFMTFFRUE0N0FENzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrIowDQYJKoZIhvcNAQELBQADggEBAIpoC1UwS6/WHnud bINujygt/49WoASUQ69+meupr84r1QJVlqzSgYedZyFeM62kRqEkofAxVSw5vE2h Ia0A9s/4ds5UJvpNN1Z9aCZJyqYVYHr13ZoaCca/67BMCzD4As91wT7VPh5KKNPm uz/fgegFcOAF3W+/gGPlxhiPYPaIUJSM52OGVwC0rQDvJ7IB+EaoXxPsGVVC/MXp 1B51g5Nq+BBWNiXaa7lvEBuv2hxkiNuDYVOQHpHG7IfvO4BYicFmE2jc6P9+wbMt 5Z55zXWFtgPG9cue7klGL/brWQrbJdAxQVAVouZxPUu1meP/TsjxTPXB2aWQyLog Q9VEEEo= -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:21 2025 by rpki-client