$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB14D/30FE0AFEC4C611EAA8D5BE66C4F9AE02/C483C80CDE4011EFB4A11D5CC4F9AE02.roa File: C483C80CDE4011EFB4A11D5CC4F9AE02.roa (raw, json) Hash identifier: qD7Tfzoc4wjH2bt1dbbg4OGAjJJrb45scH4IFujWWW4= Subject key identifier: 77:88:81:D8:69:76:CD:E7:BD:A3:10:63:04:7A:6B:1C:90:5C:7E:CA Certificate issuer: /CN=A91CB14D/serialNumber=16C662726F4A009133D6591664239E00C681A004 Certificate serial: 0139 Authority key identifier: 16:C6:62:72:6F:4A:00:91:33:D6:59:16:64:23:9E:00:C6:81:A0:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FsZicm9KAJEz1lkWZCOeAMaBoAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB14D/30FE0AFEC4C611EAA8D5BE66C4F9AE02/C483C80CDE4011EFB4A11D5CC4F9AE02.roa Signing time: Wed 24 Sep 2025 20:41:22 +0000 ROA not before: Wed 24 Sep 2025 20:41:22 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137432 IP address blocks: 103.153.52.0/23 maxlen: 23 103.153.52.0/24 maxlen: 24 103.153.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB14D/30FE0AFEC4C611EAA8D5BE66C4F9AE02/FsZicm9KAJEz1lkWZCOeAMaBoAQ.crl rsync://rpki.apnic.net/member_repository/A91CB14D/30FE0AFEC4C611EAA8D5BE66C4F9AE02/FsZicm9KAJEz1lkWZCOeAMaBoAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FsZicm9KAJEz1lkWZCOeAMaBoAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB14D, serialNumber=16C662726F4A009133D6591664239E00C681A004 Validity Not Before: Sep 24 20:41:22 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68d45772-1b5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ba:65:fe:04:92:65:65:e4:bb:fd:44:7d:17: c2:9a:31:d1:5f:12:e0:60:4c:cc:dd:0f:f4:72:b6: 2b:64:fc:78:9d:36:98:c4:83:fd:a6:bc:a7:4b:6f: 9c:27:79:4e:a2:28:bf:3e:34:ff:c9:b1:12:35:e4: cd:71:f9:47:2b:58:ce:5d:59:30:96:85:8f:e4:53: 1d:51:48:1b:55:3b:66:ec:88:4e:68:0c:35:a4:21: 70:88:0a:df:78:aa:3f:e4:21:96:1b:fd:64:91:ea: 70:59:14:1e:1a:91:b9:2b:67:85:77:02:d9:a8:6c: d2:c1:b7:24:09:b9:02:48:bb:f6:75:be:84:26:0b: 9a:15:a5:04:4a:92:f6:13:fa:d7:40:27:b2:bf:4e: 02:e2:3b:3c:99:b2:8d:bd:15:0e:19:2a:3b:12:ee: 96:80:14:d3:3c:56:f5:ba:5e:ce:ec:8e:bc:e8:50: 1f:d0:82:67:40:79:de:33:fa:14:6a:2c:99:88:74: c1:9d:be:38:e7:26:6c:73:66:71:34:8a:bf:37:b8: 2a:ad:dc:53:c8:c2:1c:ef:4a:5a:86:51:b0:fe:c6: 7e:99:48:a7:7f:5a:ec:c3:cd:a7:fe:26:cf:56:f2: 89:8c:36:0a:db:06:a4:05:93:e1:ae:43:b6:ef:ce: fa:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:88:81:D8:69:76:CD:E7:BD:A3:10:63:04:7A:6B:1C:90:5C:7E:CA X509v3 Authority Key Identifier: keyid:16:C6:62:72:6F:4A:00:91:33:D6:59:16:64:23:9E:00:C6:81:A0:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB14D/30FE0AFEC4C611EAA8D5BE66C4F9AE02/FsZicm9KAJEz1lkWZCOeAMaBoAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FsZicm9KAJEz1lkWZCOeAMaBoAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB14D/30FE0AFEC4C611EAA8D5BE66C4F9AE02/C483C80CDE4011EFB4A11D5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.52.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:66:18:3b:9a:33:c6:3b:98:b2:0d:1b:d3:e9:b2:38:e5:0a: 43:37:cd:0e:6c:33:12:5c:d8:fc:06:b4:98:5d:9c:e2:c2:59: 34:93:a6:c2:80:c2:16:87:07:c2:91:a4:b0:af:51:3b:8e:de: bd:a6:5d:94:85:cf:e4:79:04:07:15:2c:03:b5:10:e5:c5:c7: af:bb:94:92:a8:fa:7c:6f:30:12:95:ba:c0:9b:29:10:f2:c6: 2a:71:fc:36:79:f6:57:e0:70:82:36:30:5f:75:ea:37:e1:fa: 63:4f:d8:cb:ab:ba:fd:bb:10:f7:f7:01:76:32:ea:5f:b6:0e: f0:6e:28:52:4e:91:3c:83:5f:35:fd:dd:15:f4:e5:fb:e5:3b: 89:5e:25:53:f2:b8:f7:a7:8e:c2:cc:19:09:4d:27:3f:1d:44: b7:af:d0:a6:33:ed:1e:b1:2f:c8:88:65:7d:64:d9:75:1a:48: f9:b6:22:bc:a5:f4:c6:60:75:c7:b1:c4:b9:2e:a9:00:3e:6e: b5:8b:e0:42:8a:2f:0f:32:de:7d:97:00:9b:a0:d5:e8:80:c7: c6:45:80:a3:b8:86:90:19:db:6b:4d:29:dd:b8:b4:cf:cb:33: 7c:8b:57:ab:0a:5c:81:eb:36:15:c8:95:10:f0:cd:23:db:14: e3:39:57:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IxNEQxMTAvBgNVBAUTKDE2QzY2MjcyNkY0QTAwOTEzM0Q2NTkxNjY0MjM5RTAw QzY4MUEwMDQwHhcNMjUwOTI0MjA0MTIyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0NTc3Mi0xYjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rpl/gSSZWXku/1EfRfCmjHRXxLgYEzM3Q/0crYrZPx4nTaYxIP9prynS2+c J3lOoii/PjT/ybESNeTNcflHK1jOXVkwloWP5FMdUUgbVTtm7IhOaAw1pCFwiArf eKo/5CGWG/1kkepwWRQeGpG5K2eFdwLZqGzSwbckCbkCSLv2db6EJguaFaUESpL2 E/rXQCeyv04C4js8mbKNvRUOGSo7Eu6WgBTTPFb1ul7O7I686FAf0IJnQHneM/oU aiyZiHTBnb445yZsc2ZxNIq/N7gqrdxTyMIc70pahlGw/sZ+mUinf1rsw82n/ibP VvKJjDYK2wakBZPhrkO27876fwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHeIgdhp ds3nvaMQYwR6axyQXH7KMB8GA1UdIwQYMBaAFBbGYnJvSgCRM9ZZFmQjngDGgaAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjE0RC8zMEZFMEFGRUM0 QzYxMUVBQThENUJFNjZDNEY5QUUwMi9Gc1ppY205S0FKRXoxbGtXWkNPZUFNYUJv QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZzWmljbTlLQUpFejFsa1daQ09lQU1hQm9BUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0IxNEQvMzBGRTBBRkVDNEM2MTFFQUE4RDVCRTY2QzRGOUFFMDIvQzQ4M0M4MENE RTQwMTFFRkI0QTExRDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmTQwDQYJKoZIhvcNAQELBQADggEBAGpmGDuaM8Y7mLIN G9PpsjjlCkM3zQ5sMxJc2PwGtJhdnOLCWTSTpsKAwhaHB8KRpLCvUTuO3r2mXZSF z+R5BAcVLAO1EOXFx6+7lJKo+nxvMBKVusCbKRDyxipx/DZ59lfgcII2MF916jfh +mNP2Muruv27EPf3AXYy6l+2DvBuKFJOkTyDXzX93RX05fvlO4leJVPyuPenjsLM GQlNJz8dRLev0KYz7R6xL8iIZX1k2XUaSPm2Iryl9MZgdcexxLkuqQA+brWL4EKK Lw8y3n2XAJug1eiAx8ZFgKO4hpAZ22tNKd24tM/LM3yLV6sKXIHrNhXIlRDwzSPb FOM5VyE= -----END CERTIFICATE-----Generated at Mon Oct 20 23:34:19 2025 by rpki-client