$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/729F253CAB7611F0BCB28743C4F9AE02.roa File: 729F253CAB7611F0BCB28743C4F9AE02.roa (raw, json) Hash identifier: /i4Id8Q+jnrw5e+R6tIy1tKz8MPyg9GBRlUx3W4xwjI= Subject key identifier: 44:50:0A:2B:FE:2F:5F:8B:F6:99:E6:8B:F1:F4:51:ED:95:9F:85:A6 Certificate issuer: /CN=A91AB383/serialNumber=9C2351D45A97D71D03D6BC385B37DD9BFB80CF5E Certificate serial: 05F5 Authority key identifier: 9C:23:51:D4:5A:97:D7:1D:03:D6:BC:38:5B:37:DD:9B:FB:80:CF:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nCNR1FqX1x0D1rw4Wzfdm_uAz14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/729F253CAB7611F0BCB28743C4F9AE02.roa Signing time: Fri 17 Oct 2025 16:30:57 +0000 ROA not before: Fri 17 Oct 2025 16:30:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 932 IP address blocks: 103.214.172.0/22 maxlen: 24 182.255.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/nCNR1FqX1x0D1rw4Wzfdm_uAz14.crl rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/nCNR1FqX1x0D1rw4Wzfdm_uAz14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nCNR1FqX1x0D1rw4Wzfdm_uAz14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1525 (0x5f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB383, serialNumber=9C2351D45A97D71D03D6BC385B37DD9BFB80CF5E Validity Not Before: Oct 17 16:30:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68f26f41-db88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e5:20:02:d1:97:b2:29:0d:cd:ca:e9:1e:26: 49:82:fe:64:7b:4a:13:90:55:64:80:18:67:44:71: 7e:23:6c:6f:ee:8e:ac:fe:dc:a4:67:b8:08:1d:78: 97:68:6e:54:59:32:ab:c1:ec:b7:e4:01:c3:43:da: a4:7d:37:53:83:1a:47:d4:49:b1:01:fc:dd:52:b1: 93:e0:ce:c8:a1:f6:08:4f:93:53:96:42:86:cb:af: 8c:4e:c7:cf:26:1c:28:96:02:05:27:6d:52:42:57: b9:33:d8:54:60:92:d8:75:be:d7:98:92:57:c7:88: da:ae:c0:37:9f:7f:85:b5:ca:19:62:43:9d:6b:89: b8:26:87:a3:0c:5a:ca:8f:de:c6:69:42:a9:36:35: 8c:3a:bd:15:45:09:f6:fe:4b:16:68:88:be:5e:07: ac:0a:ba:af:b7:c3:e6:6d:9f:32:27:6c:df:70:ce: c3:e7:e3:83:1d:9a:54:a2:1e:58:17:66:86:b8:2b: 68:67:73:4a:54:d4:90:a9:b8:5a:02:9b:17:4d:ee: 95:b2:8c:10:a7:18:6d:a9:07:ec:08:8d:98:21:11: 52:d3:21:62:a6:fb:71:ad:77:90:e8:50:b2:ea:6c: 7a:20:50:15:c0:fa:69:2a:19:f5:30:10:b1:37:74: 06:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:50:0A:2B:FE:2F:5F:8B:F6:99:E6:8B:F1:F4:51:ED:95:9F:85:A6 X509v3 Authority Key Identifier: keyid:9C:23:51:D4:5A:97:D7:1D:03:D6:BC:38:5B:37:DD:9B:FB:80:CF:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/nCNR1FqX1x0D1rw4Wzfdm_uAz14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nCNR1FqX1x0D1rw4Wzfdm_uAz14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/729F253CAB7611F0BCB28743C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.172.0/22 182.255.44.0/22 Signature Algorithm: sha256WithRSAEncryption 09:14:f7:89:50:25:d1:4c:89:de:5f:94:2b:a3:0a:f5:9c:a4: 90:57:d9:64:d9:e4:39:6a:74:59:83:13:3b:d2:a5:db:bc:80: a4:29:57:d9:91:bb:85:38:47:54:1e:80:a4:28:c0:1c:51:78: 0c:5b:c9:b0:96:85:20:3f:94:bb:15:9a:0e:c9:aa:e0:33:26: cf:e4:63:fd:23:35:1e:e4:a9:4c:b8:0b:c8:7e:09:da:5e:10: b6:8a:53:29:f2:36:e1:e8:1f:94:2f:5c:bb:1c:09:61:54:da: de:fc:00:57:4f:d9:fb:e2:07:f3:3e:ea:55:2d:29:65:18:b6: 1e:12:47:2e:89:ac:a6:df:9a:6a:95:2f:30:59:86:56:5d:d9: 72:c9:ca:88:87:ea:88:b4:0f:27:b0:a3:ac:c9:d1:33:36:ae: 59:40:70:69:42:a0:4d:bd:5b:e9:b5:56:1b:ae:5b:2e:7c:14: 42:78:e0:8b:c2:e1:05:9a:ff:c0:da:05:4e:53:19:dd:6d:67: 80:e0:82:71:cd:db:9e:e6:b9:e3:ef:4e:ba:7d:7a:30:19:26: 23:ca:94:48:7c:2b:18:0e:92:3b:10:3e:b2:d1:b2:a5:e9:c4: 81:0c:f6:30:12:21:3e:ee:d6:7e:4a:77:84:0e:e0:e4:a6:c7: 13:6d:f2:85 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzODMxMTAvBgNVBAUTKDlDMjM1MUQ0NUE5N0Q3MUQwM0Q2QkMzODVCMzdERDlC RkI4MENGNUUwHhcNMjUxMDE3MTYzMDU3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYyNmY0MS1kYjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOUgAtGXsikNzcrpHiZJgv5ke0oTkFVkgBhnRHF+I2xv7o6s/tykZ7gIHXiX aG5UWTKrwey35AHDQ9qkfTdTgxpH1EmxAfzdUrGT4M7IofYIT5NTlkKGy6+MTsfP JhwolgIFJ21SQle5M9hUYJLYdb7XmJJXx4jarsA3n3+FtcoZYkOda4m4JoejDFrK j97GaUKpNjWMOr0VRQn2/ksWaIi+XgesCrqvt8PmbZ8yJ2zfcM7D5+ODHZpUoh5Y F2aGuCtoZ3NKVNSQqbhaApsXTe6VsowQpxhtqQfsCI2YIRFS0yFipvtxrXeQ6FCy 6mx6IFAVwPppKhn1MBCxN3QGOwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFERQCiv+ L1+L9pnmi/H0Ue2Vn4WmMB8GA1UdIwQYMBaAFJwjUdRal9cdA9a8OFs33Zv7gM9e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjM4My84Q0MyQTlBQURF NzcxMUVCODczOUVDMTFDNEY5QUUwMi9uQ05SMUZxWDF4MEQxcnc0V3pmZG1fdUF6 MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25DTlIxRnFYMXgwRDFydzRXemZkbV91QXoxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIzODMvOENDMkE5QUFERTc3MTFFQjg3MzlFQzExQzRGOUFFMDIvNzI5RjI1M0NB Qjc2MTFGMEJDQjI4NzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1qwDBAK2/ywwDQYJKoZIhvcNAQELBQADggEBAAkU94lQ JdFMid5flCujCvWcpJBX2WTZ5DlqdFmDEzvSpdu8gKQpV9mRu4U4R1QegKQowBxR eAxbybCWhSA/lLsVmg7JquAzJs/kY/0jNR7kqUy4C8h+CdpeELaKUynyNuHoH5Qv XLscCWFU2t78AFdP2fviB/M+6lUtKWUYth4SRy6JrKbfmmqVLzBZhlZd2XLJyoiH 6oi0Dyewo6zJ0TM2rllAcGlCoE29W+m1VhuuWy58FEJ44IvC4QWa/8DaBU5TGd1t Z4DggnHN257muePvTrp9ejAZJiPKlEh8KxgOkjsQPrLRsqXpxIEM9jASIT7u1n5K d4QO4OSmxxNt8oU= -----END CERTIFICATE-----Generated at Mon Oct 20 03:49:25 2025 by rpki-client