$ rpki-client -vvf rpki.apnic.net/member_repository/A91978F7/362247068DEE11F087426542C4F9AE02/87C69A4E8DEE11F0A7999742C4F9AE02.roa File: 87C69A4E8DEE11F0A7999742C4F9AE02.roa (raw, json) Hash identifier: AF9EblqIIR14Jg1fqI/l7p20Pg6bE92rpu7Zvd4y37I= Subject key identifier: 71:5A:56:CB:C4:4D:18:C1:22:73:4B:AD:DA:25:02:55:B3:29:6A:5F Certificate issuer: /CN=A91978F7/serialNumber=62155BB0059C4DC861536CB052EC755BAB166C3F Certificate serial: 17 Authority key identifier: 62:15:5B:B0:05:9C:4D:C8:61:53:6C:B0:52:EC:75:5B:AB:16:6C:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhVbsAWcTchhU2ywUux1W6sWbD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91978F7/362247068DEE11F087426542C4F9AE02/87C69A4E8DEE11F0A7999742C4F9AE02.roa Signing time: Fri 17 Oct 2025 11:43:58 +0000 ROA not before: Fri 17 Oct 2025 11:43:58 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147030 IP address blocks: 103.173.58.0/23 maxlen: 23 2407:e2c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91978F7/362247068DEE11F087426542C4F9AE02/YhVbsAWcTchhU2ywUux1W6sWbD8.crl rsync://rpki.apnic.net/member_repository/A91978F7/362247068DEE11F087426542C4F9AE02/YhVbsAWcTchhU2ywUux1W6sWbD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhVbsAWcTchhU2ywUux1W6sWbD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91978F7, serialNumber=62155BB0059C4DC861536CB052EC755BAB166C3F Validity Not Before: Oct 17 11:43:58 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f22bfe-6245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:19:e0:4c:22:f7:a0:8b:d8:a4:97:af:ee:03: a9:5c:68:ba:97:70:66:fb:e0:33:1c:76:06:f1:30: 2e:68:11:64:ac:15:a8:8a:60:aa:a4:a5:17:58:33: b1:19:d3:30:5d:e6:56:90:26:36:15:7e:cf:75:82: a2:13:df:40:b7:91:bd:1a:03:4a:c0:7f:b9:fb:b8: c5:09:65:c3:aa:fa:d9:c5:27:5b:9c:3e:45:2b:99: 51:80:99:87:c8:0c:00:f8:64:e2:cc:41:fe:fd:71: 49:49:94:cd:3b:ec:29:e0:56:75:86:a3:0c:0f:fd: b6:a8:50:56:53:90:c5:b1:c1:14:73:7c:c2:d9:19: 00:b8:e4:14:8b:6e:93:6a:42:f7:38:e7:80:99:7d: 00:61:b9:21:63:c2:f5:fa:7c:b2:f8:cb:d1:23:60: 09:4e:15:70:0d:19:68:11:13:f8:5d:be:4a:fd:e8: e6:bc:f6:15:d8:36:ff:67:b1:61:09:9b:0a:8a:54: 61:6e:96:ce:fc:c0:81:1a:3f:3e:15:9d:1c:ee:88: 81:5a:59:5c:50:bb:90:d5:0a:2b:75:6e:3e:e5:88: ce:12:b4:fe:52:93:cf:b6:56:fc:11:bb:66:d1:a7: 09:2b:a9:18:0d:91:74:2a:f1:1d:6f:ce:b5:d9:d5: 69:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:5A:56:CB:C4:4D:18:C1:22:73:4B:AD:DA:25:02:55:B3:29:6A:5F X509v3 Authority Key Identifier: keyid:62:15:5B:B0:05:9C:4D:C8:61:53:6C:B0:52:EC:75:5B:AB:16:6C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91978F7/362247068DEE11F087426542C4F9AE02/YhVbsAWcTchhU2ywUux1W6sWbD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhVbsAWcTchhU2ywUux1W6sWbD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91978F7/362247068DEE11F087426542C4F9AE02/87C69A4E8DEE11F0A7999742C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.58.0/23 IPv6: 2407:e2c0::/32 Signature Algorithm: sha256WithRSAEncryption 3a:99:3f:51:eb:6c:22:84:87:7e:6b:dc:32:02:a1:96:c9:d5: 3a:a2:56:91:93:05:57:3d:2b:ab:6c:18:45:c0:b2:51:ab:33: 17:a3:88:55:ad:47:5a:86:2c:51:19:15:83:34:76:e6:9a:ae: 67:23:5b:5d:3e:7f:63:d4:ed:aa:08:40:7f:49:57:0e:87:1f: fd:0f:b1:59:44:4b:3b:94:f5:99:e1:21:a8:7c:a1:00:a2:db: 09:b8:de:1e:2f:8f:f6:c1:d5:7f:a7:39:b4:54:04:e6:4f:43: f1:48:13:79:e9:59:0d:f5:d2:93:78:8b:18:e3:4e:c0:79:64: 5b:e8:20:7e:ca:bf:07:44:8e:d1:a7:10:33:5b:da:d4:62:b1: 5e:7a:4c:3c:a1:02:e2:b7:0e:32:b5:cb:fa:cf:13:eb:d1:45: 55:2d:44:5e:60:b4:d3:24:f5:ad:45:33:a9:06:fe:02:4f:1e: 4d:69:f4:20:16:ee:2e:a0:a7:33:b5:e1:f7:7c:21:f6:15:3e: 53:62:09:66:ef:20:b4:ea:b5:4e:6e:e3:a7:3c:54:e4:2a:f8: 81:0f:e0:53:47:ce:27:1f:23:ca:70:6b:37:2e:20:e3:d8:2e: e2:8e:b8:a2:c4:fe:85:05:ba:8e:cd:18:06:dd:db:e5:65:fe: b2:93:4d:f4 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzhGNzExMC8GA1UEBRMoNjIxNTVCQjAwNTlDNERDODYxNTM2Q0IwNTJFQzc1NUJB QjE2NkMzRjAeFw0yNTEwMTcxMTQzNThaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjIyYmZlLTYyNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCSGeBMIvegi9ikl6/uA6lcaLqXcGb74DMcdgbxMC5oEWSsFaiKYKqkpRdYM7EZ 0zBd5laQJjYVfs91gqIT30C3kb0aA0rAf7n7uMUJZcOq+tnFJ1ucPkUrmVGAmYfI DAD4ZOLMQf79cUlJlM077CngVnWGowwP/baoUFZTkMWxwRRzfMLZGQC45BSLbpNq Qvc454CZfQBhuSFjwvX6fLL4y9EjYAlOFXANGWgRE/hdvkr96Oa89hXYNv9nsWEJ mwqKVGFuls78wIEaPz4VnRzuiIFaWVxQu5DVCit1bj7liM4StP5Sk8+2VvwRu2bR pwkrqRgNkXQq8R1vzrXZ1WkXAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUcVpWy8RN GMEic0ut2iUCVbMpal8wHwYDVR0jBBgwFoAUYhVbsAWcTchhU2ywUux1W6sWbD8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3OEY3LzM2MjI0NzA2OERF RTExRjA4NzQyNjU0MkM0RjlBRTAyL1loVmJzQVdjVGNoaFUyeXdVdXgxVzZzV2JE OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWhWYnNBV2NUY2hoVTJ5d1V1eDFXNnNXYkQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzhGNy8zNjIyNDcwNjhERUUxMUYwODc0MjY1NDJDNEY5QUUwMi84N0M2OUE0RThE RUUxMUYwQTc5OTk3NDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWetOjANBAIAAjAHAwUAJAfiwDANBgkqhkiG9w0BAQsFAAOC AQEAOpk/UetsIoSHfmvcMgKhlsnVOqJWkZMFVz0rq2wYRcCyUaszF6OIVa1HWoYs URkVgzR25pquZyNbXT5/Y9TtqghAf0lXDocf/Q+xWURLO5T1meEhqHyhAKLbCbje Hi+P9sHVf6c5tFQE5k9D8UgTeelZDfXSk3iLGONOwHlkW+ggfsq/B0SO0acQM1va 1GKxXnpMPKEC4rcOMrXL+s8T69FFVS1EXmC00yT1rUUzqQb+Ak8eTWn0IBbuLqCn M7Xh93wh9hU+U2IJZu8gtOq1Tm7jpzxU5Cr4gQ/gU0fOJx8jynBrNy4g49gu4o64 osT+hQW6js0YBt3b5WX+spNN9A== -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:31 2025 by rpki-client