$ rpki-client -vvf rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/CB5ED75AF62811EC9205771CC4F9AE02.roa File: CB5ED75AF62811EC9205771CC4F9AE02.roa (raw, json) Hash identifier: dKmVHY2d6fCvn1H3Ld9qZsPq3gV6fthJ5he7juRZoh8= Subject key identifier: AA:27:23:37:FD:9E:78:4A:7D:E8:7F:3C:CE:CB:5F:47:10:7B:18:C3 Certificate issuer: /CN=A91C705E/serialNumber=83ACB50F96F6443F4B83D391F857BE7CB57E34C1 Certificate serial: 02EC Authority key identifier: 83:AC:B5:0F:96:F6:44:3F:4B:83:D3:91:F8:57:BE:7C:B5:7E:34:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/CB5ED75AF62811EC9205771CC4F9AE02.roa Signing time: Sun 31 Aug 2025 02:19:15 +0000 ROA not before: Sun 31 Aug 2025 02:19:15 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 149987 IP address blocks: 103.190.44.0/23 maxlen: 23 103.190.44.0/24 maxlen: 24 103.190.45.0/24 maxlen: 24 2001:df0:e4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.crl rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 748 (0x2ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C705E, serialNumber=83ACB50F96F6443F4B83D391F857BE7CB57E34C1 Validity Not Before: Aug 31 02:19:15 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b3b123-7f0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7a:fa:72:eb:55:ee:1a:37:51:9a:c9:8f:25: e8:19:37:98:28:1f:0d:5f:1f:4b:5e:e7:08:62:e9: a1:30:a6:d9:77:dc:e8:5e:a5:a7:17:05:3a:3c:9c: 23:69:44:51:aa:95:2e:85:7b:5a:e9:28:10:ef:85: 52:0c:0a:a6:5d:1f:c4:96:ff:24:c3:3c:5e:9d:83: 7c:d6:0b:22:32:c6:47:88:91:f4:b8:8b:eb:5d:86: b3:59:fa:28:93:9a:50:58:78:0f:dd:ac:e6:f5:70: 41:9c:c1:f3:ac:1d:b0:6f:9e:31:78:3b:07:8c:a4: 65:ba:37:4c:ad:1e:b6:28:5b:ea:03:fc:90:5c:18: a6:5a:7e:e3:0d:8e:cd:90:ce:b1:16:56:fa:e9:bd: 7f:21:f2:1b:ca:21:7c:86:5b:c8:54:9e:61:7c:8a: 68:25:1d:ec:89:13:78:aa:ec:86:b8:82:f4:44:03: 20:5b:64:32:2d:ec:15:94:55:e5:d7:f9:b8:2b:fc: 26:28:50:e8:2c:9a:2f:2f:36:40:00:63:32:31:b9: 8f:ac:b3:a1:6f:ba:5b:e9:16:0c:cd:bf:de:3f:4b: a8:86:fe:7d:ff:5a:b5:bb:2c:d9:84:b9:3a:de:d7: e6:14:f1:2a:57:8f:a8:04:9d:10:7f:f0:08:d1:52: 95:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:27:23:37:FD:9E:78:4A:7D:E8:7F:3C:CE:CB:5F:47:10:7B:18:C3 X509v3 Authority Key Identifier: keyid:83:AC:B5:0F:96:F6:44:3F:4B:83:D3:91:F8:57:BE:7C:B5:7E:34:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/CB5ED75AF62811EC9205771CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.44.0/23 IPv6: 2001:df0:e4c0::/48 Signature Algorithm: sha256WithRSAEncryption a6:05:c7:15:b8:50:85:47:f8:41:e3:d4:12:30:b0:a7:03:85: eb:76:02:9b:48:8f:21:dc:fd:9e:df:c4:5a:4b:5f:93:bc:e6: 20:80:4c:ad:87:9b:4b:67:77:aa:1d:26:7b:fa:1e:28:d8:12: 22:3e:0d:a5:9b:16:4c:3a:17:3f:7a:51:5f:83:75:2c:00:c4: 76:b9:47:fa:b7:31:75:a8:cf:1a:9e:91:d1:34:8c:89:c9:ed: d3:5e:80:da:f2:31:74:e9:57:f4:e9:25:59:5e:41:b0:c8:b1: b2:de:fe:c5:7d:1c:79:16:2c:74:ba:30:a9:22:c8:67:45:c4: 01:5d:a2:34:ea:51:a7:cf:00:a5:a9:91:b2:60:ab:ae:80:82: 13:30:c0:d8:92:0b:f8:6e:31:e5:63:0a:03:62:ca:9c:1a:28: f4:f3:11:28:67:d5:ab:1c:bd:ea:9a:d5:e7:9d:bd:b6:d7:f1: 2d:67:bd:d8:9f:6f:0c:12:50:f7:45:1b:e3:49:ff:d2:02:11: 5e:b6:55:0b:2a:0b:1b:ea:34:c9:1b:96:56:5f:e6:52:8e:60: 82:81:59:bf:81:2d:80:38:dc:c5:13:d9:db:1a:ae:a7:64:ee: fe:32:32:73:e5:ab:ee:ff:cc:fa:c7:c9:d6:c1:ba:8b:da:e7: 02:ac:27:72 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcwNUUxMTAvBgNVBAUTKDgzQUNCNTBGOTZGNjQ0M0Y0QjgzRDM5MUY4NTdCRTdD QjU3RTM0QzEwHhcNMjUwODMxMDIxOTE1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzYjEyMy03ZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHr6cutV7ho3UZrJjyXoGTeYKB8NXx9LXucIYumhMKbZd9zoXqWnFwU6PJwj aURRqpUuhXta6SgQ74VSDAqmXR/Elv8kwzxenYN81gsiMsZHiJH0uIvrXYazWfoo k5pQWHgP3azm9XBBnMHzrB2wb54xeDsHjKRlujdMrR62KFvqA/yQXBimWn7jDY7N kM6xFlb66b1/IfIbyiF8hlvIVJ5hfIpoJR3siRN4quyGuIL0RAMgW2QyLewVlFXl 1/m4K/wmKFDoLJovLzZAAGMyMbmPrLOhb7pb6RYMzb/eP0uohv59/1q1uyzZhLk6 3tfmFPEqV4+oBJ0Qf/AI0VKVQwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKonIzf9 nnhKfeh/PM7LX0cQexjDMB8GA1UdIwQYMBaAFIOstQ+W9kQ/S4PTkfhXvny1fjTB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzA1RS8zNERENEVFNkY2 MjQxMUVDOTcyMzQ4MTRDNEY5QUUwMi9nNnkxRDViMlJEOUxnOU9SLUZlLWZMVi1O TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c2eTFENWIyUkQ5TGc5T1ItRmUtZkxWLU5NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzcwNUUvMzRERDRFRTZGNjI0MTFFQzk3MjM0ODE0QzRGOUFFMDIvQ0I1RUQ3NUFG NjI4MTFFQzkyMDU3NzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnviwwDwQCAAIwCQMHACABDfDkwDANBgkqhkiG9w0BAQsF AAOCAQEApgXHFbhQhUf4QePUEjCwpwOF63YCm0iPIdz9nt/EWktfk7zmIIBMrYeb S2d3qh0me/oeKNgSIj4NpZsWTDoXP3pRX4N1LADEdrlH+rcxdajPGp6R0TSMicnt 016A2vIxdOlX9OklWV5BsMixst7+xX0ceRYsdLowqSLIZ0XEAV2iNOpRp88ApamR smCrroCCEzDA2JIL+G4x5WMKA2LKnBoo9PMRKGfVqxy96prV5529ttfxLWe92J9v DBJQ90Ub40n/0gIRXrZVCyoLG+o0yRuWVl/mUo5ggoFZv4EtgDjcxRPZ2xqup2Tu /jIyc+Wr7v/M+sfJ1sG6i9rnAqwncg== -----END CERTIFICATE-----Generated at Mon Oct 20 21:39:23 2025 by rpki-client