$ rpki-client -vvf rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/2611C806D1AA11EA82C4313FC4F9AE02.roa File: 2611C806D1AA11EA82C4313FC4F9AE02.roa (raw, json) Hash identifier: 8ta9HVc8kWnLyV4rQM+6TAEQnoWOLIl1eGvxCBdphDU= Subject key identifier: 9A:C4:61:2F:D4:4A:F1:60:77:98:27:73:68:59:84:20:F1:E6:52:B0 Certificate issuer: /CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Certificate serial: 085D Authority key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/2611C806D1AA11EA82C4313FC4F9AE02.roa Signing time: Tue 26 Aug 2025 21:00:06 +0000 ROA not before: Tue 26 Aug 2025 21:00:06 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133938 IP address blocks: 103.153.240.0/23 maxlen: 23 103.153.240.0/24 maxlen: 24 103.153.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177D4, serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE Validity Not Before: Aug 26 21:00:06 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ae2056-499b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d3:24:f8:48:e4:0a:0a:fa:91:63:8d:77:41: 56:a1:63:1c:6d:6f:4f:90:79:41:04:9b:c2:cc:70: f7:c5:52:5a:1a:35:d2:c8:2a:40:9a:a6:aa:5d:b6: 3e:cd:a2:72:02:da:d9:9a:fa:e1:1f:91:d7:6d:7a: cb:80:ea:c1:71:c1:ed:65:eb:37:4c:db:9d:d5:bf: 90:17:50:d4:42:08:3b:65:1d:05:5a:07:a7:a9:bf: 22:32:45:c5:9b:fa:ea:d8:f8:d4:de:cc:18:10:2d: d8:35:32:24:85:77:54:e3:70:69:61:6e:6f:0d:84: dd:d8:61:bb:6c:e6:6d:94:4e:4e:e5:ef:8c:2e:c1: d7:22:c3:40:9e:8e:4e:c6:62:a3:af:c4:df:a0:61: d2:fe:e1:ae:c3:5e:c9:e4:01:cf:76:0c:26:af:9f: ca:ad:1c:32:a5:82:c1:b8:56:29:d5:98:f0:bc:ab: 6f:e0:93:e9:88:ba:d3:44:bc:5b:c4:2c:90:16:e0: 3d:df:02:a2:df:a0:81:35:b1:9a:9a:7b:7a:96:21: ad:d1:64:50:d4:7d:7b:14:90:e4:0c:23:c5:b6:f4: a3:77:f6:e7:19:4c:ff:8a:95:89:10:4a:52:29:4a: a7:36:e8:23:e9:31:fa:ac:c7:d2:6c:45:eb:93:93: 7a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C4:61:2F:D4:4A:F1:60:77:98:27:73:68:59:84:20:F1:E6:52:B0 X509v3 Authority Key Identifier: keyid:86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/2611C806D1AA11EA82C4313FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.240.0/23 Signature Algorithm: sha256WithRSAEncryption 33:9e:40:d9:66:9a:82:80:45:db:b9:2b:0d:08:b8:0b:d0:7c: c9:34:7b:f1:a2:c6:46:d3:e6:f4:bc:30:ae:78:ba:87:8e:bb: d0:34:4c:79:47:ac:23:5d:9a:c1:ee:78:83:5b:95:91:bf:81: 81:ec:4e:1d:b1:b6:fa:85:16:86:41:86:5a:48:5f:48:6e:78: 2d:3f:ec:23:4b:dc:94:15:af:f4:28:9c:a6:66:30:5c:c4:56: 36:8c:f8:27:eb:0e:0b:0e:45:c1:8c:24:f2:77:d3:80:ef:90: 0b:71:d3:86:33:cc:6f:b2:70:80:bc:b9:7f:e9:18:34:95:92: bf:a2:cd:c6:25:60:a5:8a:6e:7f:73:47:ab:63:34:b8:4b:2f: 33:04:f6:1d:6f:17:10:ed:65:c5:61:d2:47:d7:69:1b:51:80: 8f:ce:61:fb:41:ff:37:9f:f0:54:57:d5:00:b9:9b:67:d2:59: 03:b3:cd:be:a3:b6:3d:02:91:6c:e7:84:e1:d8:71:05:97:4d: 65:c5:35:65:a4:e6:8b:72:7e:88:4a:66:2c:8b:69:87:6f:69: 82:02:a5:83:75:ba:50:7c:b9:ce:62:be:cf:f0:ae:35:2f:18: d9:4a:69:ec:5b:b5:b3:ae:86:83:2e:58:d5:fd:f8:fc:e1:78: ad:d5:12:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdENzkxRDgzRUM3 Njg5QkU3QUUwHhcNMjUwODI2MjEwMDA2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlMjA1Ni00OTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9Mk+EjkCgr6kWONd0FWoWMcbW9PkHlBBJvCzHD3xVJaGjXSyCpAmqaqXbY+ zaJyAtrZmvrhH5HXbXrLgOrBccHtZes3TNud1b+QF1DUQgg7ZR0FWgenqb8iMkXF m/rq2PjU3swYEC3YNTIkhXdU43BpYW5vDYTd2GG7bOZtlE5O5e+MLsHXIsNAno5O xmKjr8TfoGHS/uGuw17J5AHPdgwmr5/KrRwypYLBuFYp1ZjwvKtv4JPpiLrTRLxb xCyQFuA93wKi36CBNbGamnt6liGt0WRQ1H17FJDkDCPFtvSjd/bnGUz/ipWJEEpS KUqnNugj6TH6rMfSbEXrk5N6AQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJrEYS/U SvFgd5gnc2hZhCDx5lKwMB8GA1UdIwQYMBaAFIZTMppR28Z58b8X15HYPsdom+eu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdENC8yQ0VFRkUzNEQx QTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxIYnhubnh2eGZYa2RnLXgyaWI1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hsTXltbEhieG5ueHZ4ZlhrZGcteDJpYjU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc3RDQvMkNFRUZFMzREMUE4MTFFQThDNTgzNzNCQzRGOUFFMDIvMjYxMUM4MDZE MUFBMTFFQTgyQzQzMTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmfAwDQYJKoZIhvcNAQELBQADggEBADOeQNlmmoKARdu5 Kw0IuAvQfMk0e/GixkbT5vS8MK54uoeOu9A0THlHrCNdmsHueINblZG/gYHsTh2x tvqFFoZBhlpIX0hueC0/7CNL3JQVr/QonKZmMFzEVjaM+CfrDgsORcGMJPJ304Dv kAtx04YzzG+ycIC8uX/pGDSVkr+izcYlYKWKbn9zR6tjNLhLLzME9h1vFxDtZcVh 0kfXaRtRgI/OYftB/zef8FRX1QC5m2fSWQOzzb6jtj0CkWznhOHYcQWXTWXFNWWk 5otyfohKZiyLaYdvaYICpYN1ulB8uc5ivs/wrjUvGNlKaexbtbOuhoMuWNX9+Pzh eK3VEs0= -----END CERTIFICATE-----Generated at Mon Oct 20 16:47:53 2025 by rpki-client