$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/CA42E5689FA411EBBC1FFB40C4F9AE02.roa File: CA42E5689FA411EBBC1FFB40C4F9AE02.roa (raw, json) Hash identifier: OCh4LN68aJpc0ulStGzgAqznGnm3sYyEz+fd1t6nYl4= Subject key identifier: F0:2D:B5:2F:16:8B:A2:26:8C:34:C8:E5:03:1F:1A:CF:83:1E:F8:06 Certificate issuer: /CN=A91CDFFB/serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Certificate serial: 086B Authority key identifier: DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/CA42E5689FA411EBBC1FFB40C4F9AE02.roa Signing time: Mon 06 Oct 2025 20:53:08 +0000 ROA not before: Mon 06 Oct 2025 20:53:08 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140957 IP address blocks: 103.153.198.0/23 maxlen: 23 103.153.198.0/24 maxlen: 24 103.153.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2155 (0x86b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDFFB, serialNumber=DEB5639F5847C70DE0FC44BE78424118F8A206C6 Validity Not Before: Oct 6 20:53:08 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68e42c33-ac8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:86:9e:2d:bb:2f:7b:bd:81:54:40:73:f5:20: a8:35:82:d0:2e:8c:68:e6:1d:2b:5f:5c:72:6a:c3: f1:4a:bb:17:d9:39:58:b6:66:18:39:4f:d1:71:be: 70:37:cf:d0:71:4f:2d:77:62:34:62:3c:08:1f:9c: 26:e3:54:c2:f9:64:15:38:78:8a:38:70:d8:43:c3: 54:2a:03:77:30:42:9f:d5:30:c5:e4:e5:ac:7b:b1: 22:64:b2:e8:78:21:51:ae:9c:94:49:a6:3d:6f:b7: ee:8a:5e:ec:8e:c5:7a:15:c5:3f:bb:22:df:5e:d6: b6:31:7a:28:cf:dc:36:3d:2f:cd:7a:18:53:87:0c: 8e:2f:c5:3d:b0:f7:00:02:03:d5:41:68:75:44:6f: 89:98:90:e8:51:bd:8e:94:cf:c8:dc:93:4d:59:0b: 0c:72:0b:c5:f6:bf:9b:02:e2:a8:87:38:84:c0:4f: 86:ad:00:4f:8f:8e:5f:97:51:29:e3:be:3c:38:69: 4b:8e:a8:68:c4:36:20:c3:16:fa:d6:7e:32:9f:97: 92:af:be:28:51:e9:b2:e7:7b:0a:fb:de:2d:88:00: 35:77:42:ba:b3:d1:b4:8f:58:b1:44:6e:f6:ae:59: a3:60:7f:27:92:95:80:e4:93:74:c8:e5:c0:11:46: fb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:2D:B5:2F:16:8B:A2:26:8C:34:C8:E5:03:1F:1A:CF:83:1E:F8:06 X509v3 Authority Key Identifier: keyid:DE:B5:63:9F:58:47:C7:0D:E0:FC:44:BE:78:42:41:18:F8:A2:06:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/3rVjn1hHxw3g_ES-eEJBGPiiBsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3rVjn1hHxw3g_ES-eEJBGPiiBsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDFFB/27E506E6D4EF11EA9A61724AC4F9AE02/CA42E5689FA411EBBC1FFB40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.198.0/23 Signature Algorithm: sha256WithRSAEncryption 33:9e:30:02:38:92:3e:a2:9b:25:6f:01:73:4d:55:bb:25:4f: 33:7b:e7:fd:2a:14:b3:1a:5b:b3:93:27:3c:dd:05:47:f2:97: 4f:67:29:a9:8d:c6:40:47:17:6f:97:5f:70:6b:1c:07:57:d4: 4e:f3:69:6c:33:3a:e9:22:72:74:32:6e:96:12:d9:d1:31:6a: 38:ea:53:f6:e5:f7:5b:d8:0e:79:b6:ca:bf:98:b0:9e:c2:46: c1:20:76:3f:0e:89:70:26:54:53:d9:a6:ce:a6:82:09:e8:ec: 97:a1:c8:5b:6d:3d:e6:b2:9a:24:35:56:0b:c7:80:36:3a:19: 14:fe:a2:18:a6:2a:2a:6d:24:9f:31:82:f3:bc:2a:30:cb:0f: 9f:b5:c7:f7:16:5a:e9:77:1f:de:e8:4e:44:71:73:f7:c2:a4: 76:f3:a9:8b:79:35:d2:d4:df:1e:db:ff:5f:b7:59:bd:da:e6: df:5c:a0:fc:96:3a:e3:4b:df:98:41:10:de:21:27:59:c1:81: 9f:8f:af:af:fd:9f:fe:e4:7d:6d:16:52:4d:75:08:91:0d:4c: 14:82:24:6f:2e:e1:64:44:18:bc:7f:c8:9e:67:9f:c1:60:33: 60:7c:9b:e5:c4:af:41:f8:9d:6c:40:e3:b8:f1:b9:06:b4:ad: 71:b4:e8:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGRkIxMTAvBgNVBAUTKERFQjU2MzlGNTg0N0M3MERFMEZDNDRCRTc4NDI0MTE4 RjhBMjA2QzYwHhcNMjUxMDA2MjA1MzA4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU0MmMzMy1hYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYaeLbsve72BVEBz9SCoNYLQLoxo5h0rX1xyasPxSrsX2TlYtmYYOU/Rcb5w N8/QcU8td2I0YjwIH5wm41TC+WQVOHiKOHDYQ8NUKgN3MEKf1TDF5OWse7EiZLLo eCFRrpyUSaY9b7fuil7sjsV6FcU/uyLfXta2MXooz9w2PS/NehhThwyOL8U9sPcA AgPVQWh1RG+JmJDoUb2OlM/I3JNNWQsMcgvF9r+bAuKohziEwE+GrQBPj45fl1Ep 4748OGlLjqhoxDYgwxb61n4yn5eSr74oUemy53sK+94tiAA1d0K6s9G0j1ixRG72 rlmjYH8nkpWA5JN0yOXAEUb7sQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPAttS8W i6ImjDTI5QMfGs+DHvgGMB8GA1UdIwQYMBaAFN61Y59YR8cN4PxEvnhCQRj4ogbG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREZGQi8yN0U1MDZFNkQ0 RUYxMUVBOUE2MTcyNEFDNEY5QUUwMi8zclZqbjFoSHh3M2dfRVMtZUVKQkdQaWlC c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNyVmpuMWhIeHczZ19FUy1lRUpCR1BpaUJzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RGRkIvMjdFNTA2RTZENEVGMTFFQTlBNjE3MjRBQzRGOUFFMDIvQ0E0MkU1Njg5 RkE0MTFFQkJDMUZGQjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmcYwDQYJKoZIhvcNAQELBQADggEBADOeMAI4kj6imyVv AXNNVbslTzN75/0qFLMaW7OTJzzdBUfyl09nKamNxkBHF2+XX3BrHAdX1E7zaWwz OukicnQybpYS2dExajjqU/bl91vYDnm2yr+YsJ7CRsEgdj8OiXAmVFPZps6mggno 7JehyFttPeaymiQ1VgvHgDY6GRT+ohimKiptJJ8xgvO8KjDLD5+1x/cWWul3H97o TkRxc/fCpHbzqYt5NdLU3x7b/1+3Wb3a5t9coPyWOuNL35hBEN4hJ1nBgZ+Pr6/9 n/7kfW0WUk11CJENTBSCJG8u4WREGLx/yJ5nn8FgM2B8m+XEr0H4nWxA47jxuQa0 rXG06FU= -----END CERTIFICATE-----Generated at Mon Oct 20 10:46:34 2025 by rpki-client