$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/91056478AF6A11EE93DDE73AC4F9AE02.roa File: 91056478AF6A11EE93DDE73AC4F9AE02.roa (raw, json) Hash identifier: AurKJa/IQdeMXLDvtgzXzstmuY9lm884aAVif5yLieA= Subject key identifier: EC:99:7A:B4:BB:33:F0:D1:6E:52:B6:A5:C0:44:FD:FB:CB:AE:6B:15 Certificate issuer: /CN=A91FBA0C/serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Certificate serial: 015A Authority key identifier: CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/91056478AF6A11EE93DDE73AC4F9AE02.roa Signing time: Mon 03 Nov 2025 04:18:40 +0000 ROA not before: Mon 03 Nov 2025 04:18:40 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 151806 IP address blocks: 103.218.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:16:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBA0C, serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Validity Not Before: Nov 3 04:18:40 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=69082d20-dca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:47:5c:fa:5e:18:f1:6a:3b:99:61:fc:87:57: 9c:4a:fb:dd:05:a7:68:e6:7a:9f:f6:13:13:b4:ef: e8:9d:33:6c:89:ec:a6:bd:b1:e0:45:46:34:e4:32: ac:c0:3a:68:26:56:0c:58:26:0f:2c:25:eb:24:3d: be:aa:ef:e0:53:1c:27:1f:77:7a:3d:c7:3b:c6:df: 38:11:11:7e:a4:d3:e0:c6:b2:64:5d:b0:48:18:3d: 04:47:18:45:6c:ee:bb:c0:ad:50:74:65:6a:7d:fe: 18:ff:c7:b6:b5:ad:7f:40:c5:1c:63:93:f8:8b:38: d2:22:30:70:bd:a2:e0:2e:82:06:62:84:d0:f8:e1: 1a:46:2a:59:09:de:1f:c0:5f:cd:00:0b:25:ea:36: ba:c2:7d:c6:79:99:3e:65:1c:dc:58:13:c5:4c:91: b4:20:48:a0:c0:7b:01:c1:32:d0:a3:f4:0d:47:9e: 76:2f:cf:1b:d1:ef:fe:01:95:4a:65:f2:b5:59:74: 70:de:60:a2:c6:d7:26:50:5d:5d:b0:ec:8f:84:5b: e7:d2:dd:14:9d:68:03:a6:70:e6:ee:5f:3f:f2:da: 3f:5e:d6:64:ef:57:4e:7c:33:1e:f7:3b:40:6d:9c: a4:6d:f2:8d:39:43:87:f5:93:04:73:6e:ac:c4:3e: 01:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:99:7A:B4:BB:33:F0:D1:6E:52:B6:A5:C0:44:FD:FB:CB:AE:6B:15 X509v3 Authority Key Identifier: keyid:CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/91056478AF6A11EE93DDE73AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.218.138.0/23 Signature Algorithm: sha256WithRSAEncryption 97:22:94:91:e1:e4:73:f0:5d:18:99:30:b6:b9:96:88:8e:14: 73:2b:c4:52:e5:08:87:84:fc:35:67:96:f2:c3:d2:01:42:50: 37:57:db:19:44:9e:0d:2e:ae:d8:ee:29:8f:74:f8:c6:02:e3: 98:a1:ab:83:ea:f8:72:4e:9b:4c:3e:c6:c8:d9:8c:75:90:c5: ee:bf:b0:0a:70:ef:6c:9c:2e:de:6c:b6:b7:95:e3:a9:7a:51: 00:1b:bc:6c:7f:65:3a:f0:8f:73:58:8c:f9:8f:95:e1:75:c3: 5b:d6:2c:9a:86:48:2b:00:61:e4:c8:b4:26:a7:4f:a7:a2:78: cf:68:91:29:d1:80:6d:b8:38:49:17:dd:0b:33:a3:12:41:60: 88:1d:47:66:e9:f5:e9:11:5e:83:49:c8:37:b9:41:37:b1:0c: e3:ee:3d:54:78:ac:b9:5d:b5:a6:ac:99:b9:49:58:c0:fb:19: ff:6c:c6:6b:d7:0f:24:39:49:8f:8b:05:94:60:0c:b1:5b:e6: 27:31:e3:0c:12:a0:7c:99:f6:da:56:e0:e7:c8:d8:ee:d9:31: 3f:d2:8d:b2:0e:2a:3c:ee:12:82:d5:80:2b:02:31:7f:7d:16: ea:43:2f:d9:ea:db:a2:d2:ef:76:0f:34:fe:0d:d5:ea:c7:68: 0a:b9:88:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJBMEMxMTAvBgNVBAUTKENENUNENTkwOTEzRTRGODlBRjNEMUNBNkUyOUZBQjND MDY3RDIxNEUwHhcNMjUxMTAzMDQxODQwWhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MmQyMC1kY2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0dc+l4Y8Wo7mWH8h1ecSvvdBado5nqf9hMTtO/onTNsieymvbHgRUY05DKs wDpoJlYMWCYPLCXrJD2+qu/gUxwnH3d6Pcc7xt84ERF+pNPgxrJkXbBIGD0ERxhF bO67wK1QdGVqff4Y/8e2ta1/QMUcY5P4izjSIjBwvaLgLoIGYoTQ+OEaRipZCd4f wF/NAAsl6ja6wn3GeZk+ZRzcWBPFTJG0IEigwHsBwTLQo/QNR552L88b0e/+AZVK ZfK1WXRw3mCixtcmUF1dsOyPhFvn0t0UnWgDpnDm7l8/8to/XtZk71dOfDMe9ztA bZykbfKNOUOH9ZMEc26sxD4BeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOyZerS7 M/DRblK2pcBE/fvLrmsVMB8GA1UdIwQYMBaAFM1c1ZCRPk+Jrz0cpuKfqzwGfSFO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkEwQy80MTUzMUIwQ0FF Q0QxMUVFODZGMUIyNDlDNEY5QUUwMi96VnpWa0pFLVQ0bXZQUnltNHAtclBBWjlJ VTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pWelZrSkUtVDRtdlBSeW00cC1yUEFaOUlVNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkJBMEMvNDE1MzFCMENBRUNEMTFFRTg2RjFCMjQ5QzRGOUFFMDIvOTEwNTY0NzhB RjZBMTFFRTkzRERFNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn2oowDQYJKoZIhvcNAQELBQADggEBAJcilJHh5HPwXRiZ MLa5loiOFHMrxFLlCIeE/DVnlvLD0gFCUDdX2xlEng0urtjuKY90+MYC45ihq4Pq +HJOm0w+xsjZjHWQxe6/sApw72ycLt5streV46l6UQAbvGx/ZTrwj3NYjPmPleF1 w1vWLJqGSCsAYeTItCanT6eieM9okSnRgG24OEkX3QszoxJBYIgdR2bp9ekRXoNJ yDe5QTexDOPuPVR4rLldtaasmblJWMD7Gf9sxmvXDyQ5SY+LBZRgDLFb5icx4wwS oHyZ9tpW4OfI2O7ZMT/SjbIOKjzuEoLVgCsCMX99FupDL9nq26LS73YPNP4N1erH aAq5iK0= -----END CERTIFICATE-----Generated at Wed Nov 5 13:05:36 2025 by rpki-client