$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/4C738434ABD011F08EDDF110C4F9AE02.roa File: 4C738434ABD011F08EDDF110C4F9AE02.roa (raw, json) Hash identifier: QzMQcl79jMhK/zyugK+WK4417ANs7GPPe+ng/DcUaGM= Subject key identifier: 21:B5:E1:52:B7:91:28:8E:6A:EC:CB:46:EF:74:30:17:13:94:2E:8E Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: E1 Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/4C738434ABD011F08EDDF110C4F9AE02.roa Signing time: Sat 18 Oct 2025 03:12:37 +0000 ROA not before: Sat 18 Oct 2025 03:12:37 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.197.192.0/22 maxlen: 24 220.158.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Oct 18 03:12:37 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68f305a5-8c93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:69:23:39:3a:64:44:fa:93:67:5b:e1:66:8a: 72:d6:72:c4:f2:93:e3:5c:03:fe:6a:c4:3c:c0:74: c5:c9:e0:0c:52:50:e5:68:15:da:43:77:c8:f8:10: 7f:42:db:3e:20:08:0a:d7:ea:f0:42:3b:97:ce:89: ba:04:58:f9:14:f9:17:62:17:a3:b7:df:dd:cd:9e: 73:01:e2:f3:fb:04:d2:c7:16:f9:38:dc:d8:00:bc: b0:1f:46:ea:c0:b1:48:79:ff:6d:f2:8c:06:c2:96: 2f:9c:06:e2:2b:ad:77:03:8d:f0:25:7d:83:3f:78: 83:9e:6b:68:9c:7d:d1:b7:9e:0d:00:d7:fc:96:c5: c6:75:d0:ed:d5:7f:da:46:9e:70:79:12:74:1e:70: 63:a7:b2:3e:f6:7a:3f:4d:aa:7f:68:63:fe:df:79: 0e:ff:e7:f6:33:96:d6:a2:87:9e:51:c8:ab:4d:09: c7:ea:ea:cd:ff:01:7f:b5:df:2e:31:a3:db:f2:2e: 00:27:bd:75:e9:79:dc:f5:28:2f:cc:93:96:1c:6f: 6d:8e:af:b6:a3:47:5d:5b:11:2a:79:df:3f:39:e7: 4c:82:48:cf:9b:85:e1:53:b2:ac:48:b0:6a:1d:08: d1:2c:6c:20:df:1b:79:85:9f:e2:f2:7d:05:59:3d: d6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B5:E1:52:B7:91:28:8E:6A:EC:CB:46:EF:74:30:17:13:94:2E:8E X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/4C738434ABD011F08EDDF110C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.192.0/22 220.158.244.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:18:f0:83:17:f0:85:93:41:2e:86:3e:64:88:69:11:95:c7: e4:91:16:93:dc:ad:cb:14:54:cd:93:b4:4a:db:04:b6:3e:6a: e1:cb:5d:7e:35:c2:04:61:83:40:5c:7b:01:be:d7:4e:86:d8: 33:56:a4:db:21:6e:ee:06:ff:e0:a0:7a:35:5f:c8:e7:a5:20: 82:88:1f:0d:0e:99:30:0b:eb:58:c0:d7:b9:63:4c:a2:43:a2: 9d:56:42:b0:aa:1c:cd:bd:60:a0:b4:63:d1:b6:17:68:a1:dc: 27:da:ed:e7:9e:98:d9:52:1c:4a:5b:fa:df:e2:42:cd:31:95: 0d:bb:71:0d:3f:22:13:6f:cb:5a:00:77:96:37:a6:80:79:25: c4:98:c4:48:3f:d2:7b:75:53:b0:51:6e:db:c3:26:21:38:28: 0b:02:dd:4b:eb:59:cd:60:1f:4f:03:31:01:fb:d6:32:6c:99: ee:8f:1c:c1:68:2d:a6:d6:d8:e5:37:f7:50:24:66:75:10:bb: 01:3a:4a:63:d7:9a:1e:89:bf:ed:3a:15:1b:72:4c:c4:9c:ed: 85:a7:29:1a:73:3e:19:2b:36:35:13:ee:90:ab:b0:c8:5b:9b: b1:00:15:98:25:c9:10:48:6f:85:37:f6:2c:15:c8:e9:4e:81: 40:61:64:eb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjUxMDE4MDMxMjM3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzMDVhNS04YzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmkjOTpkRPqTZ1vhZopy1nLE8pPjXAP+asQ8wHTFyeAMUlDlaBXaQ3fI+BB/ Qts+IAgK1+rwQjuXzom6BFj5FPkXYhejt9/dzZ5zAeLz+wTSxxb5ONzYALywH0bq wLFIef9t8owGwpYvnAbiK613A43wJX2DP3iDnmtonH3Rt54NANf8lsXGddDt1X/a Rp5weRJ0HnBjp7I+9no/Tap/aGP+33kO/+f2M5bWooeeUcirTQnH6urN/wF/td8u MaPb8i4AJ7116Xnc9SgvzJOWHG9tjq+2o0ddWxEqed8/OedMgkjPm4XhU7KsSLBq HQjRLGwg3xt5hZ/i8n0FWT3WnwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCG14VK3 kSiOauzLRu90MBcTlC6OMB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJDRTcvNzJGNzVCOTg1QUREMTFFRjgxMkM5MjNGQzRGOUFFMDIvNEM3Mzg0MzRB QkQwMTFGMDhFRERGMTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnxcADBALcnvQwDQYJKoZIhvcNAQELBQADggEBADoY8IMX 8IWTQS6GPmSIaRGVx+SRFpPcrcsUVM2TtErbBLY+auHLXX41wgRhg0BcewG+106G 2DNWpNshbu4G/+CgejVfyOelIIKIHw0OmTAL61jA17ljTKJDop1WQrCqHM29YKC0 Y9G2F2ih3Cfa7eeemNlSHEpb+t/iQs0xlQ27cQ0/IhNvy1oAd5Y3poB5JcSYxEg/ 0nt1U7BRbtvDJiE4KAsC3UvrWc1gH08DMQH71jJsme6PHMFoLabW2OU391AkZnUQ uwE6SmPXmh6Jv+06FRtyTMSc7YWnKRpzPhkrNjUT7pCrsMhbm7EAFZglyRBIb4U3 9iwVyOlOgUBhZOs= -----END CERTIFICATE-----Generated at Tue Oct 28 06:43:37 2025 by rpki-client