$ rpki-client -vvf rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/5DC91E6E6E4611F09D8F426CC4F9AE02.roa File: 5DC91E6E6E4611F09D8F426CC4F9AE02.roa (raw, json) Hash identifier: y8hgCCBPI84qrp5W1tiqF8+NbZgro3HnrgturfTW64A= Subject key identifier: 8A:08:02:72:BD:7F:4A:C3:B1:AA:A8:CF:4C:90:31:0C:E7:DB:E4:E0 Certificate issuer: /CN=A914C531/serialNumber=5801484CFF6EFC5D000B2629F9116BE235C4AC36 Certificate serial: EC Authority key identifier: 58:01:48:4C:FF:6E:FC:5D:00:0B:26:29:F9:11:6B:E2:35:C4:AC:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAFITP9u_F0ACyYp-RFr4jXErDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/5DC91E6E6E4611F09D8F426CC4F9AE02.roa Signing time: Tue 14 Oct 2025 05:03:57 +0000 ROA not before: Tue 14 Oct 2025 05:03:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 150722 IP address blocks: 103.69.160.0/24 maxlen: 24 103.69.161.0/24 maxlen: 24 2001:df1:d4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/WAFITP9u_F0ACyYp-RFr4jXErDY.crl rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/WAFITP9u_F0ACyYp-RFr4jXErDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAFITP9u_F0ACyYp-RFr4jXErDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:33:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C531, serialNumber=5801484CFF6EFC5D000B2629F9116BE235C4AC36 Validity Not Before: Oct 14 05:03:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68edd9bc-94d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:9c:e6:ae:45:1e:4d:19:9e:32:f2:4d:01:fd: 8e:f9:dd:cf:11:d6:48:f8:fb:e2:b4:57:02:36:af: a0:f7:59:b5:c6:f3:f5:41:96:c4:08:ac:ae:39:1d: 36:f5:0c:64:08:f3:fd:b0:24:e1:ef:a1:14:ac:81: 34:65:bf:d9:33:3c:00:3a:c7:6b:e1:f8:20:5f:96: 91:16:44:bd:86:a1:7f:02:fa:98:08:58:bc:42:3b: 54:84:db:50:de:ae:ea:83:ee:c1:63:79:77:19:8f: f1:3e:d1:ce:6c:b6:a9:65:2a:56:15:63:9c:89:fc: ce:10:1c:08:93:0d:48:77:08:ef:be:87:6d:d8:55: 1a:78:b1:a5:c6:00:44:62:8e:c8:e1:55:a4:85:ed: bb:a7:a4:8d:59:a3:ba:48:06:a2:71:7f:5a:e3:82: 70:4d:2e:6b:04:3a:aa:72:ed:7d:8e:86:b1:2f:08: fd:b1:b8:76:5b:c4:81:a8:68:20:c0:4e:6c:8a:d2: 3b:77:ce:e1:64:df:4f:7a:3f:b1:77:08:9a:b3:59: a6:c0:4d:9a:52:17:5b:2e:82:3a:64:44:b0:1d:09: c0:27:d2:41:06:16:d4:72:3a:8e:3d:57:32:b6:60: 87:bf:39:75:58:b9:3c:2b:18:1e:10:b6:84:de:07: 6f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:08:02:72:BD:7F:4A:C3:B1:AA:A8:CF:4C:90:31:0C:E7:DB:E4:E0 X509v3 Authority Key Identifier: keyid:58:01:48:4C:FF:6E:FC:5D:00:0B:26:29:F9:11:6B:E2:35:C4:AC:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/WAFITP9u_F0ACyYp-RFr4jXErDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAFITP9u_F0ACyYp-RFr4jXErDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/5DC91E6E6E4611F09D8F426CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.160.0/23 IPv6: 2001:df1:d4c0::/48 Signature Algorithm: sha256WithRSAEncryption 01:20:9b:06:7b:50:58:ee:2a:06:eb:b3:36:1a:9c:d0:31:e2: 56:04:6a:c4:07:62:4b:fd:c9:88:4d:a6:f6:fe:03:53:8f:bd: 54:b1:a6:45:4e:fb:61:ce:63:7b:e0:81:91:6c:9d:5c:9b:59: d8:82:8e:a8:71:5b:14:ed:97:3f:db:da:a5:cb:f0:7b:d9:ec: fa:59:a0:5e:89:c4:47:58:ef:29:59:fd:e2:79:b2:72:1f:08: da:e4:cc:85:86:ab:4b:27:e8:35:5f:a9:49:d9:62:06:d4:f6: a6:40:10:0d:61:1f:48:b5:cf:f1:86:8c:8f:da:cc:b6:1e:72: 98:7a:91:19:68:92:f3:f7:f9:08:d8:a4:bf:32:be:61:17:e2: 61:3f:d1:80:c4:21:64:92:b8:5a:81:ae:34:90:a3:02:2d:af: c3:d7:50:64:92:bb:3f:2c:44:af:e3:ea:8f:35:9c:3f:bd:01: 03:32:64:f0:36:69:21:42:81:aa:79:65:2d:6e:5b:6b:18:a0: e5:c2:00:24:d2:68:1d:ad:da:64:fd:da:7c:94:22:91:ae:ef: c8:64:63:bb:50:13:21:6f:05:d8:d6:e4:0b:cc:de:d8:1b:86: b5:99:a7:eb:99:52:cb:f2:eb:bb:c7:61:46:26:4a:0c:94:09: 00:94:3d:98 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM1MzExMTAvBgNVBAUTKDU4MDE0ODRDRkY2RUZDNUQwMDBCMjYyOUY5MTE2QkUy MzVDNEFDMzYwHhcNMjUxMDE0MDUwMzU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVkZDliYy05NGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlJzmrkUeTRmeMvJNAf2O+d3PEdZI+PvitFcCNq+g91m1xvP1QZbECKyuOR02 9QxkCPP9sCTh76EUrIE0Zb/ZMzwAOsdr4fggX5aRFkS9hqF/AvqYCFi8QjtUhNtQ 3q7qg+7BY3l3GY/xPtHObLapZSpWFWOcifzOEBwIkw1Idwjvvodt2FUaeLGlxgBE Yo7I4VWkhe27p6SNWaO6SAaicX9a44JwTS5rBDqqcu19joaxLwj9sbh2W8SBqGgg wE5sitI7d87hZN9Pej+xdwias1mmwE2aUhdbLoI6ZESwHQnAJ9JBBhbUcjqOPVcy tmCHvzl1WLk8KxgeELaE3gdvzwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIoIAnK9 f0rDsaqoz0yQMQzn2+TgMB8GA1UdIwQYMBaAFFgBSEz/bvxdAAsmKfkRa+I1xKw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzUzMS8wQjBEMEY2NjVE NUIxMUVGQTRGMzJCMTNDNEY5QUUwMi9XQUZJVFA5dV9GMEFDeVlwLVJGcjRqWEVy RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBRklUUDl1X0YwQUN5WXAtUkZyNGpYRXJEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM1MzEvMEIwRDBGNjY1RDVCMTFFRkE0RjMyQjEzQzRGOUFFMDIvNURDOTFFNkU2 RTQ2MTFGMDlEOEY0MjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnRaAwDwQCAAIwCQMHACABDfHUwDANBgkqhkiG9w0BAQsF AAOCAQEAASCbBntQWO4qBuuzNhqc0DHiVgRqxAdiS/3JiE2m9v4DU4+9VLGmRU77 Yc5je+CBkWydXJtZ2IKOqHFbFO2XP9vapcvwe9ns+lmgXonER1jvKVn94nmych8I 2uTMhYarSyfoNV+pSdliBtT2pkAQDWEfSLXP8YaMj9rMth5ymHqRGWiS8/f5CNik vzK+YRfiYT/RgMQhZJK4WoGuNJCjAi2vw9dQZJK7PyxEr+PqjzWcP70BAzJk8DZp IUKBqnllLW5baxig5cIAJNJoHa3aZP3afJQika7vyGRju1ATIW8F2NbkC8ze2BuG tZmn65lSy/Lru8dhRiZKDJQJAJQ9mA== -----END CERTIFICATE-----Generated at Mon Oct 20 12:42:33 2025 by rpki-client