$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/52333EB4CFAE11EEB928CD25C4F9AE02.roa File: 52333EB4CFAE11EEB928CD25C4F9AE02.roa (raw, json) Hash identifier: 6P1QigKgDh/og+D4IavE2ADNPbY260YTNHIn9cQtib4= Subject key identifier: 12:67:01:15:58:E2:D8:91:71:2D:27:89:88:F8:BD:2D:91:EA:44:77 Certificate issuer: /CN=A91C0EDF/serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Certificate serial: 0122 Authority key identifier: 8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/52333EB4CFAE11EEB928CD25C4F9AE02.roa Signing time: Wed 27 Aug 2025 05:12:29 +0000 ROA not before: Wed 27 Aug 2025 05:12:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137846 IP address blocks: 103.191.110.0/23 maxlen: 23 103.191.110.0/24 maxlen: 24 103.191.111.0/24 maxlen: 24 2001:df0:fec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0EDF, serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Validity Not Before: Aug 27 05:12:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ae93bc-0784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:dc:f4:2d:96:db:23:d8:2c:d9:3f:c7:f1:31: fb:d3:cc:c0:8f:e2:3d:32:4c:d4:cf:76:87:0e:09: e1:a7:e4:56:e5:a6:79:95:f4:58:0e:40:d0:09:f8: 16:1b:46:f9:e0:2a:47:7a:56:b2:9c:5d:bb:8f:28: 41:76:ca:e4:28:4b:81:c7:bb:93:3c:84:a5:bf:78: e0:7e:a4:8e:47:cb:25:c0:1f:05:65:aa:c5:62:02: 74:f2:0b:be:6f:bb:5f:fe:64:4c:74:ae:5f:d0:45: 74:2f:6b:98:21:15:a4:16:e0:9d:f5:52:c6:0e:7a: 70:aa:8c:6f:4d:fa:75:e2:fd:08:b7:07:8f:cd:91: 03:03:c1:e8:00:64:62:1a:45:e8:87:08:85:87:7f: 8e:94:e0:78:64:41:f7:80:79:2d:d7:60:e1:34:de: 66:d3:56:8a:cb:40:02:9c:5d:28:a9:94:0f:2e:7d: f9:c1:53:d8:7a:c2:69:d3:5c:06:1c:89:4e:5a:08: c1:17:1d:8b:e0:01:54:1a:8d:9e:e0:6c:43:fc:7c: ad:b7:5a:84:fc:02:f7:a5:5d:d5:68:45:3e:00:e6: b2:b8:1a:28:a8:e5:1c:7f:4c:12:37:f0:91:d7:b8: 20:77:2d:80:d8:43:35:59:fd:3f:4b:ed:74:68:11: 88:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:67:01:15:58:E2:D8:91:71:2D:27:89:88:F8:BD:2D:91:EA:44:77 X509v3 Authority Key Identifier: keyid:8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/52333EB4CFAE11EEB928CD25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.110.0/23 IPv6: 2001:df0:fec0::/48 Signature Algorithm: sha256WithRSAEncryption 64:1d:59:60:32:46:3b:5f:0a:a5:f5:f3:73:84:24:11:c9:89: 73:eb:51:f0:23:6e:6b:4d:50:dd:6a:70:62:9c:8d:03:a3:2c: ca:ea:97:9f:cb:45:bb:19:ee:78:bd:1d:4b:1d:3c:04:3e:48: f2:7d:8e:d0:b6:1a:56:d3:3f:4e:e9:1c:08:45:5b:f8:49:c7: 97:06:6f:1e:dd:cc:9c:9a:61:e5:af:1c:bf:de:17:4d:39:e7: b7:65:0e:49:b4:67:8a:11:0b:6a:6a:a6:94:6e:15:23:d9:74: 54:dd:fe:51:b9:8c:39:10:b4:68:be:8f:9f:7f:6e:5f:7f:9d: 70:09:f1:1c:df:e4:09:d1:6e:c2:26:d9:84:90:5e:c6:dc:ad: 59:fd:2a:2f:87:59:91:1f:38:fb:b0:50:ff:95:ac:5b:00:4c: 25:8d:8e:7a:6e:9a:df:16:a3:c7:3d:ea:c6:b5:4c:e7:2d:20: 95:3d:f5:26:79:3f:7f:26:31:da:09:96:0b:d6:16:e5:94:6e: 75:a1:82:cc:c8:8d:44:92:d7:8f:2d:17:a2:e4:a1:0e:51:d7: 3b:f4:a3:3c:04:f5:cb:58:95:d0:95:62:ef:4b:bf:8c:b1:ac: 33:da:cb:88:8c:ce:9d:30:e9:94:9e:31:e8:78:d5:ad:6b:de: 38:90:8d:0e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFREYxMTAvBgNVBAUTKDhCNjQxOTY4NjkxMTdCOTlCODc5QjREQ0JBRjA0Mjkw QkMxNjgxMEMwHhcNMjUwODI3MDUxMjI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlOTNiYy0wNzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9z0LZbbI9gs2T/H8TH708zAj+I9MkzUz3aHDgnhp+RW5aZ5lfRYDkDQCfgW G0b54CpHelaynF27jyhBdsrkKEuBx7uTPISlv3jgfqSOR8slwB8FZarFYgJ08gu+ b7tf/mRMdK5f0EV0L2uYIRWkFuCd9VLGDnpwqoxvTfp14v0ItwePzZEDA8HoAGRi GkXohwiFh3+OlOB4ZEH3gHkt12DhNN5m01aKy0ACnF0oqZQPLn35wVPYesJp01wG HIlOWgjBFx2L4AFUGo2e4GxD/Hytt1qE/AL3pV3VaEU+AOayuBooqOUcf0wSN/CR 17ggdy2A2EM1Wf0/S+10aBGIeQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBJnARVY 4tiRcS0niYj4vS2R6kR3MB8GA1UdIwQYMBaAFItkGWhpEXuZuHm03LrwQpC8FoEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEVERi8zREUzOUU4MkNG QUQxMUVFQUNGQTQyNjhDNEY5QUUwMi9pMlFaYUdrUmU1bTRlYlRjdXZCQ2tMd1dn UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kyUVphR2tSZTVtNGViVGN1dkJDa0x3V2dRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBFREYvM0RFMzlFODJDRkFEMTFFRUFDRkE0MjY4QzRGOUFFMDIvNTIzMzNFQjRD RkFFMTFFRUI5MjhDRDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnv24wDwQCAAIwCQMHACABDfD+wDANBgkqhkiG9w0BAQsF AAOCAQEAZB1ZYDJGO18KpfXzc4QkEcmJc+tR8CNua01Q3WpwYpyNA6MsyuqXn8tF uxnueL0dSx08BD5I8n2O0LYaVtM/TukcCEVb+EnHlwZvHt3MnJph5a8cv94XTTnn t2UOSbRnihELamqmlG4VI9l0VN3+UbmMORC0aL6Pn39uX3+dcAnxHN/kCdFuwibZ hJBextytWf0qL4dZkR84+7BQ/5WsWwBMJY2Oem6a3xajxz3qxrVM5y0glT31Jnk/ fyYx2gmWC9YW5ZRudaGCzMiNRJLXjy0XouShDlHXO/SjPAT1y1iV0JVi70u/jLGs M9rLiIzOnTDplJ4x6HjVrWveOJCNDg== -----END CERTIFICATE-----Generated at Mon Oct 20 15:43:53 2025 by rpki-client