$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6ABE/15F5C10C743E11F094A7BF09C4F9AE02/EADAF6B2743E11F0ABAB020EC4F9AE02.roa File: EADAF6B2743E11F0ABAB020EC4F9AE02.roa (raw, json) Hash identifier: y8FMpJ63sS6i2zvQWU1SmHtfzGgXpl9kmSxDwAQPAFo= Subject key identifier: D5:86:61:00:D3:75:08:87:98:85:FF:78:2E:74:B0:38:39:6D:CA:35 Certificate issuer: /CN=A91A6ABE/serialNumber=6B22F9079105A4DEBCB09CC1B90096085C662D44 Certificate serial: 12 Authority key identifier: 6B:22:F9:07:91:05:A4:DE:BC:B0:9C:C1:B9:00:96:08:5C:66:2D:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ayL5B5EFpN68sJzBuQCWCFxmLUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6ABE/15F5C10C743E11F094A7BF09C4F9AE02/EADAF6B2743E11F0ABAB020EC4F9AE02.roa Signing time: Mon 01 Sep 2025 08:56:12 +0000 ROA not before: Mon 01 Sep 2025 08:56:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58690 IP address blocks: 103.15.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6ABE/15F5C10C743E11F094A7BF09C4F9AE02/ayL5B5EFpN68sJzBuQCWCFxmLUQ.crl rsync://rpki.apnic.net/member_repository/A91A6ABE/15F5C10C743E11F094A7BF09C4F9AE02/ayL5B5EFpN68sJzBuQCWCFxmLUQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ayL5B5EFpN68sJzBuQCWCFxmLUQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6ABE, serialNumber=6B22F9079105A4DEBCB09CC1B90096085C662D44 Validity Not Before: Sep 1 08:56:12 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b55fac-2a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1c:cc:92:3b:09:51:4a:17:48:d5:e6:81:ed: 38:6d:cb:d2:30:9b:e9:be:8a:65:d9:e5:bd:7d:b4: a7:d6:58:e5:f8:70:65:0c:52:7b:9e:da:bf:d4:36: 78:12:7f:18:77:75:1c:8d:d4:a7:30:24:98:5d:47: b4:a7:2e:14:45:b9:47:78:59:a4:04:4c:fa:68:48: 7d:6f:06:38:33:f7:67:78:c0:83:e3:03:23:7b:03: 2d:4c:54:70:d4:10:fe:99:d4:13:d0:7c:9f:e5:d8: ae:ea:11:6a:74:2f:25:22:48:dc:92:e0:c4:47:a7: 51:0f:d1:33:3e:40:6b:1a:09:22:8c:ef:3f:4a:db: 4a:de:6a:53:ab:93:62:3c:3c:82:16:9f:bc:6e:71: 84:bf:a3:ba:c6:a6:92:3d:0d:de:28:73:13:28:c6: 43:19:68:2c:9b:1f:58:70:aa:33:05:41:c9:0e:23: 1a:fc:e7:eb:1f:7a:d9:2b:36:7c:92:8d:c2:b4:8f: a3:75:da:35:b9:32:8a:dc:3f:c7:68:da:df:65:70: b4:6a:90:fe:b3:c3:26:f2:29:fe:82:28:35:95:6e: dd:56:7f:42:a6:c1:d0:5a:f6:8f:70:08:81:da:e1: fa:64:20:5e:95:99:30:06:23:6f:33:49:c5:9b:7c: 1f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:86:61:00:D3:75:08:87:98:85:FF:78:2E:74:B0:38:39:6D:CA:35 X509v3 Authority Key Identifier: keyid:6B:22:F9:07:91:05:A4:DE:BC:B0:9C:C1:B9:00:96:08:5C:66:2D:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6ABE/15F5C10C743E11F094A7BF09C4F9AE02/ayL5B5EFpN68sJzBuQCWCFxmLUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ayL5B5EFpN68sJzBuQCWCFxmLUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6ABE/15F5C10C743E11F094A7BF09C4F9AE02/EADAF6B2743E11F0ABAB020EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.15.144.0/22 Signature Algorithm: sha256WithRSAEncryption 50:9c:42:b9:e8:84:01:0d:c8:be:9d:fd:32:a6:eb:73:34:f0: a4:cb:39:90:d9:df:7b:3c:dc:c9:65:11:39:2e:01:38:54:59: d3:33:8a:7e:35:d9:be:85:19:ca:05:31:c3:b0:d6:eb:91:ac: 71:6f:55:8c:63:d8:d7:ec:e5:b7:25:36:a8:d5:cc:b1:f2:7d: 8c:fb:c8:60:1a:a7:cb:05:e0:63:0e:32:9c:a4:be:72:77:23: 8e:f0:ef:78:65:11:12:d9:2c:52:22:bb:f2:43:35:9a:6c:98: d1:ff:ab:05:50:95:2c:20:84:2d:f1:1d:28:20:20:f2:af:03: 90:1a:33:4a:fe:e3:0c:e2:f8:80:fc:d0:fc:9d:6a:62:39:de: 6c:cc:52:8b:75:ce:97:1b:01:17:ce:43:23:c1:97:5c:06:f5: 44:f2:21:b1:2d:5e:a7:40:d5:d4:c5:de:29:2f:07:da:01:99: 85:79:00:cf:82:ee:86:bd:0c:e5:09:cd:cd:d3:0a:27:d9:ff: c2:15:ba:d3:0d:34:a0:29:af:c9:d1:89:94:db:e1:0e:6d:38: c7:3c:ea:5d:cb:12:10:5d:a3:9e:67:1e:dd:20:9c:95:58:72: ff:9f:03:a8:b0:70:ae:8b:e3:d2:94:80:9c:3f:db:16:4c:19: fc:8f:8c:f7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkFCRTExMC8GA1UEBRMoNkIyMkY5MDc5MTA1QTRERUJDQjA5Q0MxQjkwMDk2MDg1 QzY2MkQ0NDAeFw0yNTA5MDEwODU2MTJaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjU1ZmFjLTJhNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/HMySOwlRShdI1eaB7Thty9Iwm+m+imXZ5b19tKfWWOX4cGUMUnue2r/UNngS fxh3dRyN1KcwJJhdR7SnLhRFuUd4WaQETPpoSH1vBjgz92d4wIPjAyN7Ay1MVHDU EP6Z1BPQfJ/l2K7qEWp0LyUiSNyS4MRHp1EP0TM+QGsaCSKM7z9K20realOrk2I8 PIIWn7xucYS/o7rGppI9Dd4ocxMoxkMZaCybH1hwqjMFQckOIxr85+sfetkrNnyS jcK0j6N12jW5MorcP8do2t9lcLRqkP6zwybyKf6CKDWVbt1Wf0KmwdBa9o9wCIHa 4fpkIF6VmTAGI28zScWbfB8vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1YZhANN1 CIeYhf94LnSwODltyjUwHwYDVR0jBBgwFoAUayL5B5EFpN68sJzBuQCWCFxmLUQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2QUJFLzE1RjVDMTBDNzQz RTExRjA5NEE3QkYwOUM0RjlBRTAyL2F5TDVCNUVGcE42OHNKekJ1UUNXQ0Z4bUxV US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXlMNUI1RUZwTjY4c0p6QnVRQ1dDRnhtTFVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkFCRS8xNUY1QzEwQzc0M0UxMUYwOTRBN0JGMDlDNEY5QUUwMi9FQURBRjZCMjc0 M0UxMUYwQUJBQjAyMEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmcPkDANBgkqhkiG9w0BAQsFAAOCAQEAUJxCueiEAQ3Ivp39 MqbrczTwpMs5kNnfezzcyWUROS4BOFRZ0zOKfjXZvoUZygUxw7DW65GscW9VjGPY 1+zltyU2qNXMsfJ9jPvIYBqnywXgYw4ynKS+cncjjvDveGUREtksUiK78kM1mmyY 0f+rBVCVLCCELfEdKCAg8q8DkBozSv7jDOL4gPzQ/J1qYjnebMxSi3XOlxsBF85D I8GXXAb1RPIhsS1ep0DV1MXeKS8H2gGZhXkAz4Luhr0M5QnNzdMKJ9n/whW60w00 oCmvydGJlNvhDm04xzzqXcsSEF2jnmce3SCclVhy/58DqLBwrovj0pSAnD/bFkwZ /I+M9w== -----END CERTIFICATE-----Generated at Tue Oct 21 03:05:43 2025 by rpki-client