$ rpki-client -vvf rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/54AE11C6AD3211E9B3BC7385C4F9AE02.roa File: 54AE11C6AD3211E9B3BC7385C4F9AE02.roa (raw, json) Hash identifier: 6nYEOZbY+riA9hipBBLAA8A7cOGQEYjhf5EbPaoNkaQ= Subject key identifier: 3B:E5:14:F6:23:E2:B1:97:5F:D1:3C:7F:74:C9:01:F7:2F:45:8E:EC Certificate issuer: /CN=A9192491/serialNumber=34C38D6649B90D68D3CE6C09F1EB94D3E579FC9D Certificate serial: 0E4A Authority key identifier: 34:C3:8D:66:49:B9:0D:68:D3:CE:6C:09:F1:EB:94:D3:E5:79:FC:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NMONZkm5DWjTzmwJ8euU0-V5_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/54AE11C6AD3211E9B3BC7385C4F9AE02.roa Signing time: Mon 06 Oct 2025 18:17:39 +0000 ROA not before: Mon 06 Oct 2025 18:17:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133742 IP address blocks: 103.76.2.0/24 maxlen: 24 2001:df5:6a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/NMONZkm5DWjTzmwJ8euU0-V5_J0.crl rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/NMONZkm5DWjTzmwJ8euU0-V5_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NMONZkm5DWjTzmwJ8euU0-V5_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3658 (0xe4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192491, serialNumber=34C38D6649B90D68D3CE6C09F1EB94D3E579FC9D Validity Not Before: Oct 6 18:17:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e407c3-f4cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b6:78:f9:23:89:12:6f:e7:b8:4f:7d:57:d8: af:e3:38:25:d7:83:0d:6c:32:ef:eb:9d:f7:6d:22: 4b:64:89:49:27:61:7f:a3:ab:3d:62:a9:dc:96:ea: 72:2d:b9:f1:83:ee:1c:d1:70:e3:f0:36:04:ec:0b: 00:6c:2d:84:b6:55:37:5f:ce:f3:e5:a1:fc:9a:58: 8f:a5:a9:00:00:94:70:b2:88:69:d8:92:41:4c:1a: bd:f5:2d:b5:a8:1c:78:1e:ca:e5:dc:e3:ed:c5:a4: 36:21:8d:4d:c1:d7:45:00:2e:29:7c:12:37:2f:e9: 10:a3:d1:e1:04:9b:36:83:08:57:17:19:c6:0b:17: ef:04:f6:d5:7a:b6:fb:a4:e9:14:99:71:87:77:cb: 97:3d:da:80:29:31:52:52:9b:5a:a0:b1:15:55:a6: 2b:da:2f:36:52:dc:ad:9f:92:f1:3f:ea:25:83:19: e8:0b:98:70:bf:e3:d1:16:b4:97:a7:38:0b:a9:5e: 21:17:f8:de:7e:3b:5a:aa:b3:08:7c:20:39:f8:7a: 6c:26:cd:70:f2:77:4c:22:3c:84:09:4a:e2:4d:b2: 07:68:93:8b:31:52:50:98:7a:15:d3:74:4d:7d:1e: 46:e7:99:c9:10:48:d3:78:a2:e3:c3:90:eb:51:39: 3c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E5:14:F6:23:E2:B1:97:5F:D1:3C:7F:74:C9:01:F7:2F:45:8E:EC X509v3 Authority Key Identifier: keyid:34:C3:8D:66:49:B9:0D:68:D3:CE:6C:09:F1:EB:94:D3:E5:79:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/NMONZkm5DWjTzmwJ8euU0-V5_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NMONZkm5DWjTzmwJ8euU0-V5_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/54AE11C6AD3211E9B3BC7385C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.2.0/24 IPv6: 2001:df5:6a00::/48 Signature Algorithm: sha256WithRSAEncryption 3e:b5:d2:7d:28:26:da:fd:51:81:33:07:ce:71:e5:85:c2:cf: 17:97:68:a5:f3:a0:34:cc:bf:48:f6:61:c5:26:74:fb:71:5f: 5e:ae:ac:a4:2a:0e:2f:2c:e1:2a:af:27:59:d7:63:5b:c4:ec: b5:42:c3:64:88:4f:77:b4:d9:7c:03:28:ff:9e:7d:68:84:2c: e6:e9:03:71:64:b6:9e:77:dc:48:15:dd:48:ca:34:7a:3a:c6: 47:2b:36:5f:e1:6c:77:c4:36:b6:18:ef:00:88:25:c4:ae:84: 37:e5:4b:9f:14:a9:af:71:0c:16:09:f1:d9:1f:24:21:57:d4: a9:a5:da:f2:7f:9f:32:6f:83:f6:40:1d:a9:51:b6:db:ad:55: 57:98:ee:f6:f3:25:93:b4:f2:7d:70:c5:51:e2:c2:47:e3:d1: b6:65:5a:ee:05:08:36:dc:e7:8f:f5:e1:52:f2:88:ab:ec:76: 79:6e:01:b1:f3:16:48:d4:7c:24:07:f9:8a:28:f0:4b:36:05: 58:7e:67:89:68:a5:13:3c:ca:9e:46:15:b0:2f:8a:30:ef:93: c3:75:cf:75:3c:73:a3:c0:16:01:66:51:58:b6:18:0f:eb:75: ba:94:6e:72:f1:6d:fa:f3:30:e9:a1:bb:39:15:78:5f:3e:74: a4:58:35:63 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTI0OTExMTAvBgNVBAUTKDM0QzM4RDY2NDlCOTBENjhEM0NFNkMwOUYxRUI5NEQz RTU3OUZDOUQwHhcNMjUxMDA2MTgxNzM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU0MDdjMy1mNGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7Z4+SOJEm/nuE99V9iv4zgl14MNbDLv6533bSJLZIlJJ2F/o6s9Yqnclupy Lbnxg+4c0XDj8DYE7AsAbC2EtlU3X87z5aH8mliPpakAAJRwsohp2JJBTBq99S21 qBx4Hsrl3OPtxaQ2IY1NwddFAC4pfBI3L+kQo9HhBJs2gwhXFxnGCxfvBPbVerb7 pOkUmXGHd8uXPdqAKTFSUptaoLEVVaYr2i82Utytn5LxP+olgxnoC5hwv+PRFrSX pzgLqV4hF/jefjtaqrMIfCA5+HpsJs1w8ndMIjyECUriTbIHaJOLMVJQmHoV03RN fR5G55nJEEjTeKLjw5DrUTk8qwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDvlFPYj 4rGXX9E8f3TJAfcvRY7sMB8GA1UdIwQYMBaAFDTDjWZJuQ1o085sCfHrlNPlefyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjQ5MS9EMDYyNkQ5MkFE MkYxMUU5OEZGOEQ3N0ZDNEY5QUUwMi9OTU9OWmttNURXalR6bXdKOGV1VTAtVjVf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05NT05aa201RFdqVHptd0o4ZXVVMC1WNV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTI0OTEvRDA2MjZEOTJBRDJGMTFFOThGRjhENzdGQzRGOUFFMDIvNTRBRTExQzZB RDMyMTFFOUIzQkM3Mzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnTAIwDwQCAAIwCQMHACABDfVqADANBgkqhkiG9w0BAQsF AAOCAQEAPrXSfSgm2v1RgTMHznHlhcLPF5dopfOgNMy/SPZhxSZ0+3FfXq6spCoO LyzhKq8nWddjW8TstULDZIhPd7TZfAMo/559aIQs5ukDcWS2nnfcSBXdSMo0ejrG Rys2X+Fsd8Q2thjvAIglxK6EN+VLnxSpr3EMFgnx2R8kIVfUqaXa8n+fMm+D9kAd qVG2261VV5ju9vMlk7TyfXDFUeLCR+PRtmVa7gUINtznj/XhUvKIq+x2eW4BsfMW SNR8JAf5iijwSzYFWH5niWilEzzKnkYVsC+KMO+Tw3XPdTxzo8AWAWZRWLYYD+t1 upRucvFt+vMw6aG7ORV4Xz50pFg1Yw== -----END CERTIFICATE-----Generated at Mon Oct 20 21:35:13 2025 by rpki-client