$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/4178B83237ED11E99B3C9C4AC4F9AE02.roa File: 4178B83237ED11E99B3C9C4AC4F9AE02.roa (raw, json) Hash identifier: XAfo1PZPIVH3Y+cfsdpgLhiwJGHrd3PGIzfnpG6VlMU= Subject key identifier: B0:4A:AA:28:CB:DA:32:AC:7F:3B:CF:4D:6E:D6:E6:72:84:E3:E1:AE Certificate issuer: /CN=A91BC1CE/serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Certificate serial: 108C Authority key identifier: 91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/4178B83237ED11E99B3C9C4AC4F9AE02.roa Signing time: Thu 04 Sep 2025 17:57:38 +0000 ROA not before: Thu 04 Sep 2025 17:57:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 58433 IP address blocks: 103.5.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4236 (0x108c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC1CE, serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Validity Not Before: Sep 4 17:57:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68b9d312-dd4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:48:c1:cf:99:0e:ad:e0:37:37:bc:39:e9:b0: cd:e3:2d:3c:8a:ca:bd:be:b9:4a:27:31:7f:05:39: 01:5f:e7:83:ad:2e:81:d1:97:8e:ec:84:b1:90:0b: a8:aa:1b:20:77:e9:8a:9a:98:ad:e4:67:fa:27:95: 32:d6:f2:88:2f:30:88:cb:4b:20:f7:a9:c0:21:2b: 91:2e:56:7f:d2:35:15:a2:ad:95:2d:4c:8a:9a:94: dc:4d:52:97:a1:f3:23:c3:8a:f6:bd:3f:ce:cd:f3: 68:8d:5c:ce:a7:68:2b:c2:01:d3:1b:5e:b0:f6:0a: c7:9d:98:a7:be:7f:fe:fb:d4:9f:a8:ee:d8:c7:91: a9:d1:00:40:58:59:63:5f:75:79:60:4c:43:0c:70: 38:75:c6:09:fd:bb:25:e5:e5:79:b2:ea:41:cc:ba: 84:0a:5f:ea:ea:df:84:2a:89:13:c2:d4:e2:90:aa: d5:2a:21:b1:2f:c4:87:6b:0a:21:b2:c6:aa:d4:ed: cb:82:51:73:be:b7:60:bf:06:4b:65:27:ee:af:5f: b2:fb:05:71:b1:16:a2:64:ac:12:46:36:2a:86:f8: a5:a4:bd:b9:87:19:f8:7f:99:d1:ac:9d:d7:9f:ee: 37:f8:7c:b7:5a:a9:de:3c:ed:80:ee:fd:24:bb:7c: 40:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:4A:AA:28:CB:DA:32:AC:7F:3B:CF:4D:6E:D6:E6:72:84:E3:E1:AE X509v3 Authority Key Identifier: keyid:91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/4178B83237ED11E99B3C9C4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.228.0/23 Signature Algorithm: sha256WithRSAEncryption a0:d6:10:e7:59:d6:74:65:83:0e:c7:44:d9:7c:3c:4d:8e:0d: ff:da:f8:59:39:7c:3b:84:90:5f:5b:01:57:1a:2b:c0:d4:61: 5b:2e:c0:29:34:30:6e:f9:62:e0:d6:f3:c4:8f:84:55:fc:1a: ed:d6:66:bb:33:1e:c7:97:45:cb:4e:67:5e:e3:a3:8f:e2:69: 56:9f:15:97:1a:53:05:8b:97:f8:30:ce:e3:1a:8a:8d:67:60: f3:c3:8f:34:76:e2:52:c5:19:41:ca:dd:63:b5:31:a2:5d:0a: 7e:07:73:f3:18:55:05:fc:05:32:95:88:4b:b7:c1:25:f7:67: bf:24:1e:cd:7e:7c:48:6e:5f:e5:87:22:2a:53:59:92:6b:36: ad:c1:75:c2:2e:91:4f:7f:91:5f:52:44:2c:fb:47:43:39:ca: 16:4b:92:cd:e1:08:10:33:04:b9:17:65:a6:09:6b:f4:07:34: 70:b3:42:29:39:71:6f:80:eb:cf:f8:be:0d:30:52:74:27:f8: 87:48:67:e9:e6:e8:47:c2:26:4a:0f:43:99:0e:b3:02:f5:e7: 90:70:a5:94:b7:53:e4:77:50:72:a7:9c:42:60:99:b3:f1:50: 78:83:53:6a:93:12:98:87:fe:84:2d:aa:3f:df:bd:f8:df:d8: 24:ab:e4:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMxQ0UxMTAvBgNVBAUTKDkxRjJERTY3QzhFNjVCQjUzM0VEOEYzQzY0RjMyREY5 QzY5NUMwNTcwHhcNMjUwOTA0MTc1NzM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5ZDMxMi1kZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30jBz5kOreA3N7w56bDN4y08isq9vrlKJzF/BTkBX+eDrS6B0ZeO7ISxkAuo qhsgd+mKmpit5Gf6J5Uy1vKILzCIy0sg96nAISuRLlZ/0jUVoq2VLUyKmpTcTVKX ofMjw4r2vT/OzfNojVzOp2grwgHTG16w9grHnZinvn/++9SfqO7Yx5Gp0QBAWFlj X3V5YExDDHA4dcYJ/bsl5eV5supBzLqECl/q6t+EKokTwtTikKrVKiGxL8SHawoh ssaq1O3LglFzvrdgvwZLZSfur1+y+wVxsRaiZKwSRjYqhvilpL25hxn4f5nRrJ3X n+43+Hy3WqnePO2A7v0ku3xACQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLBKqijL 2jKsfzvPTW7W5nKE4+GuMB8GA1UdIwQYMBaAFJHy3mfI5lu1M+2PPGTzLfnGlcBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzFDRS8yNEZBNjBFNDM3 RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3VXo3WTg4WlBNdC1jYVZ3 RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmTGVaOGptVzdVejdZODhaUE10LWNhVndGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMxQ0UvMjRGQTYwRTQzN0VDMTFFOUE4NzVFODQ4QzRGOUFFMDIvNDE3OEI4MzIz N0VEMTFFOTlCM0M5QzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnBeQwDQYJKoZIhvcNAQELBQADggEBAKDWEOdZ1nRlgw7H RNl8PE2ODf/a+Fk5fDuEkF9bAVcaK8DUYVsuwCk0MG75YuDW88SPhFX8Gu3WZrsz HseXRctOZ17jo4/iaVafFZcaUwWLl/gwzuMaio1nYPPDjzR24lLFGUHK3WO1MaJd Cn4Hc/MYVQX8BTKViEu3wSX3Z78kHs1+fEhuX+WHIipTWZJrNq3BdcIukU9/kV9S RCz7R0M5yhZLks3hCBAzBLkXZaYJa/QHNHCzQik5cW+A68/4vg0wUnQn+IdIZ+nm 6EfCJkoPQ5kOswL155BwpZS3U+R3UHKnnEJgmbPxUHiDU2qTEpiH/oQtqj/fvfjf 2CSr5GM= -----END CERTIFICATE-----Generated at Mon Oct 20 05:40:09 2025 by rpki-client