$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/653C22F441C311F0999A9935C4F9AE02.roa File: 653C22F441C311F0999A9935C4F9AE02.roa (raw, json) Hash identifier: Lf3alCeyUDstgnP7x5+oblCm0tv/uJ2YmuuNF6Xn0z0= Subject key identifier: B8:4A:0B:A2:95:32:94:57:6B:A3:B6:F2:95:D4:FC:6B:29:13:12:FF Certificate issuer: /CN=A91BDF2B/serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Certificate serial: 36 Authority key identifier: 8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/653C22F441C311F0999A9935C4F9AE02.roa Signing time: Tue 09 Sep 2025 08:14:16 +0000 ROA not before: Tue 09 Sep 2025 08:14:16 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 63126 IP address blocks: 103.60.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDF2B, serialNumber=8CD190A143AA2E1E487303B13DC053ED17BCEB1E Validity Not Before: Sep 9 08:14:16 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68bfe1d7-9fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:23:bb:e9:25:a3:3b:1e:36:ea:87:16:33:f8: 8f:c8:f9:f0:be:d4:48:13:8a:24:93:86:a7:06:80: 41:dc:1a:3e:17:4b:5c:41:f8:f3:cc:a0:d3:e7:c4: 41:21:cc:db:97:93:9d:90:2c:21:2d:c6:22:a9:50: 4f:ea:51:47:c2:c7:c8:54:88:df:8c:e8:34:64:07: 9c:69:33:9e:81:52:4d:f4:c8:6c:a5:59:0a:01:31: 22:9c:5c:e1:4c:bf:6e:83:83:fb:1d:de:96:52:6b: 42:d8:13:c4:3c:a8:a2:f7:96:19:65:5c:4b:45:ec: 25:80:8c:00:30:bd:33:03:42:f5:60:fa:2b:63:2e: 00:b4:f5:20:94:ad:31:98:86:6a:e6:cd:10:9a:59: 64:ac:db:9c:46:09:8f:1b:b8:32:3b:f5:29:80:3e: 04:55:0e:30:31:62:7b:b6:52:d4:93:48:f9:94:39: a3:ba:cf:c3:ff:54:ec:d5:a7:be:cf:be:f4:70:55: 57:38:7e:0a:47:7a:e0:e8:ea:7a:4e:34:72:94:a5: ed:4a:c5:6a:0a:d4:64:57:ca:33:19:d9:af:7c:d9: b0:72:b1:9e:84:89:55:99:65:9f:84:b6:fd:77:d8: 9e:b9:26:8f:28:de:80:bd:c2:70:2d:8b:e0:fd:a7: e7:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4A:0B:A2:95:32:94:57:6B:A3:B6:F2:95:D4:FC:6B:29:13:12:FF X509v3 Authority Key Identifier: keyid:8C:D1:90:A1:43:AA:2E:1E:48:73:03:B1:3D:C0:53:ED:17:BC:EB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/jNGQoUOqLh5IcwOxPcBT7Re86x4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNGQoUOqLh5IcwOxPcBT7Re86x4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDF2B/6C2B7B1C41BB11F0B456D857C4F9AE02/653C22F441C311F0999A9935C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.91.0/24 Signature Algorithm: sha256WithRSAEncryption c8:7e:eb:38:8f:8d:06:29:9e:55:6b:e3:9c:e2:f8:7a:74:c4: 79:97:7f:13:2b:c5:82:b6:05:f3:22:bf:ec:22:f2:e2:89:b9: f8:96:35:1a:de:ee:b9:37:45:5b:4b:42:60:1f:15:df:08:fa: 0b:87:3a:29:a8:83:38:d1:82:7e:c0:63:3f:93:c6:3f:0c:00: 60:f3:99:c6:84:e7:f8:1c:89:f1:d8:68:ab:46:da:7d:16:8b: 15:9e:0d:e7:f2:a1:6a:8a:80:b4:32:1a:52:42:c7:7b:a6:1c: e2:93:16:bd:6b:c1:24:1e:7f:51:10:98:ec:06:47:81:c8:b3: 0a:d9:e3:32:3d:c4:14:e9:56:86:52:92:32:1f:d5:35:2e:21: f6:ca:cc:0e:2c:ec:5c:39:9a:d0:bb:55:a4:9c:e9:38:f6:b9: 1e:75:35:e9:a2:9c:39:b5:3f:72:09:3c:b6:d9:d5:10:f4:44: f4:fc:d2:38:c1:95:37:c4:eb:ff:ff:1a:b3:74:af:56:70:f5: 31:0c:f3:49:3e:84:75:ff:f9:80:d6:9b:f8:ac:75:9d:fe:9a: 8b:19:75:11:68:dd:52:73:b8:82:57:9b:81:df:f3:5d:31:8a: a9:17:7c:1c:c2:3f:22:62:43:fc:80:ac:f7:bf:e9:8e:cd:fe: a6:69:ed:b7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REYyQjExMC8GA1UEBRMoOENEMTkwQTE0M0FBMkUxRTQ4NzMwM0IxM0RDMDUzRUQx N0JDRUIxRTAeFw0yNTA5MDkwODE0MTZaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YmZlMWQ3LTlmYjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwI7vpJaM7HjbqhxYz+I/I+fC+1EgTiiSThqcGgEHcGj4XS1xB+PPMoNPnxEEh zNuXk52QLCEtxiKpUE/qUUfCx8hUiN+M6DRkB5xpM56BUk30yGylWQoBMSKcXOFM v26Dg/sd3pZSa0LYE8Q8qKL3lhllXEtF7CWAjAAwvTMDQvVg+itjLgC09SCUrTGY hmrmzRCaWWSs25xGCY8buDI79SmAPgRVDjAxYnu2UtSTSPmUOaO6z8P/VOzVp77P vvRwVVc4fgpHeuDo6npONHKUpe1KxWoK1GRXyjMZ2a982bBysZ6EiVWZZZ+Etv13 2J65Jo8o3oC9wnAti+D9p+ezAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuEoLopUy lFdro7byldT8aykTEv8wHwYDVR0jBBgwFoAUjNGQoUOqLh5IcwOxPcBT7Re86x4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERjJCLzZDMkI3QjFDNDFC QjExRjBCNDU2RDg1N0M0RjlBRTAyL2pOR1FvVU9xTGg1SWN3T3hQY0JUN1JlODZ4 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvak5HUW9VT3FMaDVJY3dPeFBjQlQ3UmU4Nng0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REYyQi82QzJCN0IxQzQxQkIxMUYwQjQ1NkQ4NTdDNEY5QUUwMi82NTNDMjJGNDQx QzMxMUYwOTk5QTk5MzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGc8WzANBgkqhkiG9w0BAQsFAAOCAQEAyH7rOI+NBimeVWvj nOL4enTEeZd/EyvFgrYF8yK/7CLy4om5+JY1Gt7uuTdFW0tCYB8V3wj6C4c6KaiD ONGCfsBjP5PGPwwAYPOZxoTn+ByJ8dhoq0bafRaLFZ4N5/KhaoqAtDIaUkLHe6Yc 4pMWvWvBJB5/URCY7AZHgcizCtnjMj3EFOlWhlKSMh/VNS4h9srMDizsXDma0LtV pJzpOPa5HnU16aKcObU/cgk8ttnVEPRE9PzSOMGVN8Tr//8as3SvVnD1MQzzST6E df/5gNab+Kx1nf6aixl1EWjdUnO4glebgd/zXTGKqRd8HMI/ImJD/ICs97/pjs3+ pmnttw== -----END CERTIFICATE-----Generated at Tue Oct 21 08:06:59 2025 by rpki-client