$ rpki-client -vvf rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/7A5433D6A37811F083057A2CC4F9AE02.roa File: 7A5433D6A37811F083057A2CC4F9AE02.roa (raw, json) Hash identifier: b+bWjpJ3d8KGR6taphUOyHe940I2iy3CRK/xSYWZWeA= Subject key identifier: C2:49:39:73:73:3E:87:F7:38:4C:6A:5D:94:E0:87:B7:04:36:AF:BB Certificate issuer: /CN=A91C67F9/serialNumber=BD4C441F02C7ADD42FA6242E8331D93F59E5183A Certificate serial: 0219 Authority key identifier: BD:4C:44:1F:02:C7:AD:D4:2F:A6:24:2E:83:31:D9:3F:59:E5:18:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUxEHwLHrdQvpiQugzHZP1nlGDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/7A5433D6A37811F083057A2CC4F9AE02.roa Signing time: Tue 07 Oct 2025 12:25:18 +0000 ROA not before: Tue 07 Oct 2025 12:25:18 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 150708 IP address blocks: 103.65.226.0/23 maxlen: 23 103.65.226.0/24 maxlen: 24 103.65.227.0/24 maxlen: 24 2001:df1:c8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/vUxEHwLHrdQvpiQugzHZP1nlGDo.crl rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/vUxEHwLHrdQvpiQugzHZP1nlGDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUxEHwLHrdQvpiQugzHZP1nlGDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C67F9, serialNumber=BD4C441F02C7ADD42FA6242E8331D93F59E5183A Validity Not Before: Oct 7 12:25:18 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68e506ae-7a22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:3c:c8:7b:65:41:15:13:f3:45:44:f4:24:dd: f1:c2:93:cc:86:8e:c3:80:5a:f1:76:0c:dc:98:6c: d7:08:3c:49:d2:0a:bb:f6:7c:80:c5:d0:c3:2c:6d: 81:37:d6:18:1e:5f:3a:f8:fe:cf:54:ea:4b:81:e8: 6b:30:2a:a4:a2:73:16:67:af:60:6a:63:c0:2b:55: 6e:c7:94:7d:7f:99:a7:43:e7:81:07:93:6f:7a:78: e4:a7:f4:66:b1:a1:1a:c7:9e:5e:4e:0d:d7:a0:0f: 70:ca:1f:45:5c:21:56:df:63:74:bb:ae:75:6a:eb: 56:d7:11:d9:64:c8:e2:01:3e:7b:2f:17:2b:8a:87: 88:a0:45:6d:7f:31:a3:6b:46:b9:0a:f2:d1:3d:f9: cb:46:60:5f:d1:c0:81:1f:fc:95:88:3d:60:71:8e: 49:69:ae:de:0e:64:25:41:c8:33:a7:c9:7d:96:e0: a5:da:9e:c3:d8:1b:5f:27:73:2d:c8:2e:b7:97:c3: 17:34:80:ac:52:da:a3:c1:73:33:54:cd:e4:d7:d3: b6:68:21:b4:99:e6:ca:b2:5a:43:60:1f:40:89:fe: 8e:21:77:0c:1e:94:3d:17:33:72:4b:5a:d7:cf:a5: 9e:76:9e:8f:ae:81:8c:09:c4:1e:5b:b9:90:ac:d5: 0e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:49:39:73:73:3E:87:F7:38:4C:6A:5D:94:E0:87:B7:04:36:AF:BB X509v3 Authority Key Identifier: keyid:BD:4C:44:1F:02:C7:AD:D4:2F:A6:24:2E:83:31:D9:3F:59:E5:18:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/vUxEHwLHrdQvpiQugzHZP1nlGDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vUxEHwLHrdQvpiQugzHZP1nlGDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C67F9/EAE12E448DAD11EDB2DCC487C4F9AE02/7A5433D6A37811F083057A2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.226.0/23 IPv6: 2001:df1:c8c0::/48 Signature Algorithm: sha256WithRSAEncryption 78:68:87:41:73:eb:3c:05:51:fe:3e:e9:e3:25:39:27:4c:2c: 2f:99:46:07:3c:7d:e4:39:b1:21:d2:ed:cf:1e:a8:68:8d:13: af:0d:9a:d4:26:17:78:03:32:ef:5f:8b:9d:2e:71:bc:13:d1: 28:99:f3:5a:76:f1:38:02:e1:a0:47:0d:53:c5:de:32:bc:f7: 49:1b:08:10:ab:36:7c:85:9a:88:ec:63:42:11:f4:96:a8:50: 91:12:51:38:87:9e:4c:6b:e5:cb:e7:46:82:06:42:ec:12:33: 7e:fa:7d:68:b2:ae:6f:36:13:ee:55:c1:52:ba:cc:5a:b8:52: c8:d3:d6:d0:8b:5c:5d:2d:94:a5:17:8e:0a:c2:07:01:9c:92: 5c:c2:1b:7d:9a:12:ea:07:dc:b6:c0:81:84:c1:e6:8d:e1:a3: 7b:2a:94:ab:f8:f6:99:b5:60:5b:e2:9f:bb:5c:16:76:15:d9: d4:86:7e:26:ce:91:93:9f:ed:1d:75:cf:ad:e3:84:cb:ed:f7: 65:36:2a:bc:ee:75:68:c2:09:c9:e7:0a:3d:8e:bd:ec:25:43: 64:4f:58:7c:4d:a2:da:1b:5d:c2:76:fa:6a:d9:95:0b:ee:2e: ff:aa:ba:2a:11:46:d7:ad:8f:82:ce:f3:92:8f:28:db:ce:86: bb:b5:9b:eb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY3RjkxMTAvBgNVBAUTKEJENEM0NDFGMDJDN0FERDQyRkE2MjQyRTgzMzFEOTNG NTlFNTE4M0EwHhcNMjUxMDA3MTIyNTE4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU1MDZhZS03YTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9TzIe2VBFRPzRUT0JN3xwpPMho7DgFrxdgzcmGzXCDxJ0gq79nyAxdDDLG2B N9YYHl86+P7PVOpLgehrMCqkonMWZ69gamPAK1Vux5R9f5mnQ+eBB5Nvenjkp/Rm saEax55eTg3XoA9wyh9FXCFW32N0u651autW1xHZZMjiAT57LxcrioeIoEVtfzGj a0a5CvLRPfnLRmBf0cCBH/yViD1gcY5Jaa7eDmQlQcgzp8l9luCl2p7D2BtfJ3Mt yC63l8MXNICsUtqjwXMzVM3k19O2aCG0mebKslpDYB9Aif6OIXcMHpQ9FzNyS1rX z6Wedp6ProGMCcQeW7mQrNUO8wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMJJOXNz Pof3OExqXZTgh7cENq+7MB8GA1UdIwQYMBaAFL1MRB8Cx63UL6YkLoMx2T9Z5Rg6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjdGOS9FQUUxMkU0NDhE QUQxMUVEQjJEQ0M0ODdDNEY5QUUwMi92VXhFSHdMSHJkUXZwaVF1Z3pIWlAxbmxH RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZVeEVId0xIcmRRdnBpUXVnekhaUDFubEdEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY3RjkvRUFFMTJFNDQ4REFEMTFFREIyRENDNDg3QzRGOUFFMDIvN0E1NDMzRDZB Mzc4MTFGMDgzMDU3QTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnQeIwDwQCAAIwCQMHACABDfHIwDANBgkqhkiG9w0BAQsF AAOCAQEAeGiHQXPrPAVR/j7p4yU5J0wsL5lGBzx95DmxIdLtzx6oaI0Trw2a1CYX eAMy71+LnS5xvBPRKJnzWnbxOALhoEcNU8XeMrz3SRsIEKs2fIWaiOxjQhH0lqhQ kRJROIeeTGvly+dGggZC7BIzfvp9aLKubzYT7lXBUrrMWrhSyNPW0ItcXS2UpReO CsIHAZySXMIbfZoS6gfctsCBhMHmjeGjeyqUq/j2mbVgW+Kfu1wWdhXZ1IZ+Js6R k5/tHXXPreOEy+33ZTYqvO51aMIJyecKPY697CVDZE9YfE2i2htdwnb6atmVC+4u /6q6KhFG162Pgs7zko8o286Gu7Wb6w== -----END CERTIFICATE-----Generated at Mon Oct 20 09:48:30 2025 by rpki-client