$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/5D98833C77EC11EEA06F373BC4F9AE02.roa File: 5D98833C77EC11EEA06F373BC4F9AE02.roa (raw, json) Hash identifier: 2U1GUUuHz/HspZCAbX8MNYKTWmtmGMuAJscXPNynpMw= Subject key identifier: 5D:5E:D9:2F:6E:5E:B7:BE:1C:B4:80:E0:41:C1:00:78:6A:AD:FE:FB Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 0161 Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/5D98833C77EC11EEA06F373BC4F9AE02.roa Signing time: Sat 13 Sep 2025 04:10:26 +0000 ROA not before: Sat 13 Sep 2025 04:10:26 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.190.124.0/24 maxlen: 24 103.190.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Sep 13 04:10:26 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c4eeb1-f250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:9c:57:cc:70:3b:3f:0d:8a:5e:f6:aa:74:a3: 4e:18:20:a7:57:5f:1c:f1:a9:4e:f9:59:08:73:1d: 07:e1:13:4d:30:a4:09:5f:ec:9b:98:be:d4:ff:b8: 39:eb:7b:65:5d:e1:39:36:a2:ea:08:e5:a9:57:9b: 27:ac:09:5e:99:be:2d:de:f9:7c:f4:40:cc:0e:7e: c6:67:61:89:1c:7d:dd:74:a2:b6:1c:86:3f:d3:ce: 12:40:38:60:c0:aa:dd:e6:59:86:1b:83:c7:05:21: 91:0e:0a:ff:9e:89:49:91:ce:50:ae:7d:fc:70:20: 54:09:74:4c:59:a1:4b:a0:67:04:9d:0c:2f:f1:0d: d3:31:29:bb:af:b3:d0:f1:11:71:2d:98:82:e7:42: 43:82:df:5a:63:46:44:47:ed:19:8b:63:ff:f1:fc: 0f:8e:8d:32:d4:ac:b4:65:81:7a:72:fa:77:61:bf: 24:eb:da:dd:7c:d1:20:cb:c7:ff:26:9c:41:30:f6: 77:69:66:0c:43:95:5b:ed:73:85:6d:dc:da:1a:6d: 99:d7:10:bd:02:df:4a:2c:41:0a:d8:7e:85:ac:1a: 7f:36:7a:82:81:2e:fe:c3:0a:1f:9d:6a:06:2b:84: 4a:87:0c:c3:22:e7:bf:5a:b3:aa:9e:c1:87:b0:92: b2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:5E:D9:2F:6E:5E:B7:BE:1C:B4:80:E0:41:C1:00:78:6A:AD:FE:FB X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/5D98833C77EC11EEA06F373BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.124.0/23 Signature Algorithm: sha256WithRSAEncryption 44:ca:08:d7:59:b7:9c:ec:2a:bd:73:4c:5d:e0:fa:54:f6:29: 80:12:4c:60:c2:4c:a5:0f:56:5f:a7:04:8d:f9:fb:05:68:08: d5:7b:41:4c:8b:91:25:f9:b0:f4:54:88:74:91:69:0a:96:25: 73:25:b9:c1:ae:10:0c:3c:a7:be:66:b5:25:df:fb:94:e1:12: 56:73:aa:01:e0:14:0f:38:86:62:02:01:8e:ea:f1:20:24:e7: 51:d7:eb:35:7f:f7:86:1d:52:f9:0d:81:e0:7c:a9:0d:a1:0a: 33:cd:bb:c4:2e:ba:09:fe:d7:06:36:a6:aa:b7:1d:b6:ab:78: cd:0a:47:93:65:7c:a7:e5:f5:4e:a0:87:0d:79:ee:0d:d0:f7: cc:2d:05:9a:36:bd:b0:ef:fa:89:46:25:19:b6:27:77:00:b7: 54:19:b9:f3:60:14:2d:da:05:b6:01:e3:11:7c:0d:4c:26:e3: 74:ca:b6:05:98:f9:4f:37:0b:0b:cd:10:b2:b1:d4:55:a0:c9: 1e:b2:4e:a2:04:56:b8:34:43:84:3f:1c:93:1f:52:f0:a9:ee: 0e:d7:af:2c:29:92:73:88:36:ba:32:ef:a1:a5:91:1d:07:b1: 4f:29:ea:55:a3:65:f6:0e:54:fa:d5:24:9d:ae:66:4d:65:98: aa:b0:03:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjUwOTEzMDQxMDI2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0ZWViMS1mMjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9JxXzHA7Pw2KXvaqdKNOGCCnV18c8alO+VkIcx0H4RNNMKQJX+ybmL7U/7g5 63tlXeE5NqLqCOWpV5snrAlemb4t3vl89EDMDn7GZ2GJHH3ddKK2HIY/084SQDhg wKrd5lmGG4PHBSGRDgr/nolJkc5Qrn38cCBUCXRMWaFLoGcEnQwv8Q3TMSm7r7PQ 8RFxLZiC50JDgt9aY0ZER+0Zi2P/8fwPjo0y1Ky0ZYF6cvp3Yb8k69rdfNEgy8f/ JpxBMPZ3aWYMQ5Vb7XOFbdzaGm2Z1xC9At9KLEEK2H6FrBp/NnqCgS7+wwofnWoG K4RKhwzDIue/WrOqnsGHsJKycwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF1e2S9u Xre+HLSA4EHBAHhqrf77MB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAyQTIvRUZEMjE1ODQ3N0VCMTFFRTkzQjY4QjNBQzRGOUFFMDIvNUQ5ODgzM0M3 N0VDMTFFRUEwNkYzNzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvnwwDQYJKoZIhvcNAQELBQADggEBAETKCNdZt5zsKr1z TF3g+lT2KYASTGDCTKUPVl+nBI35+wVoCNV7QUyLkSX5sPRUiHSRaQqWJXMlucGu EAw8p75mtSXf+5ThElZzqgHgFA84hmICAY7q8SAk51HX6zV/94YdUvkNgeB8qQ2h CjPNu8Quugn+1wY2pqq3HbareM0KR5NlfKfl9U6ghw157g3Q98wtBZo2vbDv+olG JRm2J3cAt1QZufNgFC3aBbYB4xF8DUwm43TKtgWY+U83CwvNELKx1FWgyR6yTqIE Vrg0Q4Q/HJMfUvCp7g7XrywpknOINroy76GlkR0HsU8p6lWjZfYOVPrVJJ2uZk1l mKqwA/4= -----END CERTIFICATE-----Generated at Mon Oct 20 04:40:09 2025 by rpki-client