$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/CA888654D0E011EC9E5ACC1CC4F9AE02.roa File: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (raw, json) Hash identifier: XDPidkRVqWeQc1eTHxQCxUaJElvlJNeT6pKmzwyn+HU= Subject key identifier: D8:B0:B0:65:DF:5F:CE:E3:D3:7F:13:47:A9:0D:96:2B:42:21:86:37 Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 04D7 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/CA888654D0E011EC9E5ACC1CC4F9AE02.roa Signing time: Sun 05 Oct 2025 00:26:13 +0000 ROA not before: Sun 05 Oct 2025 00:26:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58511 IP address blocks: 103.73.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Oct 5 00:26:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1bb25-e7a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b2:f6:c8:f4:b8:42:7f:bb:c5:b0:45:6f:72: 36:04:f9:62:e9:c1:04:b2:27:f7:ec:ea:e6:48:f4: 70:8e:48:fb:f2:db:77:43:00:a4:22:0c:14:97:11: db:b6:12:31:4a:ac:01:52:4a:bf:a8:19:1d:fb:38: 1d:74:b8:c2:11:5b:63:9a:f8:04:99:26:09:fe:10: 4a:01:1d:19:b4:cf:9f:04:4b:f1:15:9f:de:4c:50: 4c:04:91:8e:43:11:fd:ad:9a:ce:12:3f:99:06:d3: d7:65:2a:20:94:d1:ae:4b:e8:37:94:3b:aa:83:52: 4b:93:57:d0:d7:e9:d8:37:c4:85:d2:cd:1b:c9:dc: df:b0:98:30:59:27:a5:0d:00:d4:ad:d9:9d:03:87: 39:49:4f:e3:88:27:09:aa:a7:9c:ab:be:bf:c5:63: 6f:dc:41:2b:76:57:c4:e9:c3:aa:e4:73:4a:b3:32: c5:e3:a2:16:dc:e8:2f:71:3e:21:1f:a8:5e:e6:98: e4:d4:96:8f:74:db:89:17:fb:d4:1b:e4:5f:6a:61: ba:72:3e:f7:56:58:fd:ac:91:46:ef:71:79:ca:00: 9b:e1:4e:62:a6:44:00:76:75:53:57:71:38:ef:8e: 8a:b7:50:04:57:1c:a1:21:c4:64:65:47:74:3c:da: 9a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B0:B0:65:DF:5F:CE:E3:D3:7F:13:47:A9:0D:96:2B:42:21:86:37 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/CA888654D0E011EC9E5ACC1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.84.0/23 Signature Algorithm: sha256WithRSAEncryption a8:eb:af:8b:cd:2d:3c:bd:25:1f:25:49:0a:59:de:e3:b7:a4: 84:15:97:47:47:3e:d2:ea:a9:78:91:6d:1a:53:1a:4f:8e:ac: 38:11:4b:1b:3f:6b:d8:a3:28:b1:7d:a1:3d:e9:8b:90:58:63: 09:12:4c:c4:94:43:e7:aa:cc:31:d7:24:e4:95:86:f8:3d:68: e8:0d:17:f9:08:58:31:14:60:8c:60:94:fc:76:53:74:80:5d: a7:c2:eb:ad:ba:d6:00:45:d8:9e:78:c2:0f:f5:ae:05:9b:45: 78:76:93:bb:74:63:96:41:c1:99:cf:74:3f:6a:96:e0:87:6a: 26:a2:89:99:c5:2f:8b:01:8f:1e:2a:96:99:99:17:a0:28:95: 0f:55:59:45:65:60:0d:a4:2a:ee:54:6a:a6:8d:88:91:73:2b: 97:1b:42:7a:d5:58:17:9c:7d:49:0b:0f:8b:62:cc:fe:c4:24: 0c:3d:aa:80:f3:3d:2c:4b:c4:c6:60:19:ab:54:5b:22:17:7a: b0:2c:cb:2f:92:44:ef:e0:0b:32:8b:7c:32:43:d6:29:d8:4f: 89:52:13:09:b9:73:55:ce:b8:3e:81:99:88:a2:c6:d6:fc:df: a3:f0:0b:fc:b9:3b:e0:e3:45:2f:90:95:3f:38:9f:c6:f7:03: 03:ed:3d:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUxMDA1MDAyNjEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxYmIyNS1lN2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLL2yPS4Qn+7xbBFb3I2BPli6cEEsif37OrmSPRwjkj78tt3QwCkIgwUlxHb thIxSqwBUkq/qBkd+zgddLjCEVtjmvgEmSYJ/hBKAR0ZtM+fBEvxFZ/eTFBMBJGO QxH9rZrOEj+ZBtPXZSoglNGuS+g3lDuqg1JLk1fQ1+nYN8SF0s0bydzfsJgwWSel DQDUrdmdA4c5SU/jiCcJqqecq76/xWNv3EErdlfE6cOq5HNKszLF46IW3OgvcT4h H6he5pjk1JaPdNuJF/vUG+RfamG6cj73Vlj9rJFG73F5ygCb4U5ipkQAdnVTV3E4 746Kt1AEVxyhIcRkZUd0PNqa0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNiwsGXf X87j038TR6kNlitCIYY3MB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzNTcvQjg0QjEwRUM0NUE4MTFFQzhCMTQwNTU4QzRGOUFFMDIvQ0E4ODg2NTRE MEUwMTFFQzlFNUFDQzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnSVQwDQYJKoZIhvcNAQELBQADggEBAKjrr4vNLTy9JR8l SQpZ3uO3pIQVl0dHPtLqqXiRbRpTGk+OrDgRSxs/a9ijKLF9oT3pi5BYYwkSTMSU Q+eqzDHXJOSVhvg9aOgNF/kIWDEUYIxglPx2U3SAXafC66261gBF2J54wg/1rgWb RXh2k7t0Y5ZBwZnPdD9qluCHaiaiiZnFL4sBjx4qlpmZF6AolQ9VWUVlYA2kKu5U aqaNiJFzK5cbQnrVWBecfUkLD4tizP7EJAw9qoDzPSxLxMZgGatUWyIXerAsyy+S RO/gCzKLfDJD1inYT4lSEwm5c1XOuD6BmYiixtb836PwC/y5O+DjRS+QlT84n8b3 AwPtPYE= -----END CERTIFICATE-----Generated at Mon Oct 20 04:26:46 2025 by rpki-client