$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/D5C4A54A617B11EC82058668C4F9AE02.roa File: D5C4A54A617B11EC82058668C4F9AE02.roa (raw, json) Hash identifier: cTO7dHRgQ10X2+wIM0WDWEXY+Ht/milaq+pShcIOrgo= Subject key identifier: AF:D0:CB:1E:71:10:E6:AD:B7:1B:02:28:8A:29:B1:96:7A:79:88:B6 Certificate issuer: /CN=A91DBB7D/serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Certificate serial: 050C Authority key identifier: DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/D5C4A54A617B11EC82058668C4F9AE02.roa Signing time: Wed 08 Oct 2025 23:55:37 +0000 ROA not before: Wed 08 Oct 2025 23:55:37 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147061 IP address blocks: 103.173.235.0/24 maxlen: 24 103.198.0.0/24 maxlen: 24 2001:df7:ae80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1292 (0x50c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB7D, serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Validity Not Before: Oct 8 23:55:37 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e6f9f8-06ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:2a:34:e2:e7:c5:7d:2e:5a:a1:d5:29:fd: 31:b4:38:4e:85:28:c0:c1:fa:db:0c:0c:14:be:3b: e1:d7:b4:61:b5:51:2f:96:87:cc:fd:a0:1a:08:c4: b4:a8:77:92:7a:5f:57:be:96:e5:62:c6:4f:41:a2: 0f:b2:13:a0:30:9a:ba:98:19:58:ba:bc:7c:75:f8: a2:af:56:6a:8b:42:09:d0:5e:8a:be:52:77:e5:3f: 93:51:b6:4d:b2:78:2a:5f:a9:22:25:d4:c9:22:4a: c6:24:ce:23:0e:62:5c:f4:69:6e:78:7f:3f:42:4d: 40:2e:71:1b:24:7c:71:0f:45:69:2f:a4:3d:e0:08: 55:cd:08:a8:0d:aa:97:82:19:fd:16:af:11:fc:67: c3:5b:cf:3e:1d:e5:45:ac:d3:80:78:62:2c:35:9c: a3:5f:49:50:8b:6f:2b:9a:52:81:11:6b:86:6f:ac: d2:b3:b7:86:8f:34:82:c6:10:a8:d9:c2:1b:80:73: ed:4b:f0:94:5c:0d:e1:61:73:ba:ed:b8:24:6d:d9: 43:af:56:7a:c7:c1:7e:76:69:19:92:02:93:01:ff: c5:e6:fe:b3:9a:92:be:f6:db:c0:ee:b4:64:a5:c6: 5f:3f:c3:ad:95:ca:bd:97:30:e8:3d:8a:4b:bc:9f: 1f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D0:CB:1E:71:10:E6:AD:B7:1B:02:28:8A:29:B1:96:7A:79:88:B6 X509v3 Authority Key Identifier: keyid:DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/D5C4A54A617B11EC82058668C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.235.0/24 103.198.0.0/24 IPv6: 2001:df7:ae80::/48 Signature Algorithm: sha256WithRSAEncryption a8:8e:b8:21:8e:9e:1e:f2:73:ef:37:e0:5a:9b:5e:f3:ee:44: 71:9f:cb:11:ff:ed:5c:96:b3:f8:71:53:29:63:8d:42:50:88: b6:e1:1d:a6:90:d5:66:d4:49:50:3e:a6:f5:69:99:63:c3:e6: 8e:71:b9:45:fb:a9:62:54:d2:3d:62:86:df:8a:1d:af:8b:d4: ef:a1:3c:13:64:3a:1d:ed:18:7b:7a:ab:c3:2f:4b:f0:81:07: a0:d6:8e:87:ae:02:0d:c6:e4:8c:31:93:6c:86:f3:0d:d6:b7: 4c:95:8d:56:be:5d:69:99:1f:b8:a2:7d:48:89:4d:c1:71:16: e2:eb:d6:de:a6:7d:b0:b1:b7:78:78:c5:c6:5d:d0:2e:7d:e5: eb:7f:c5:80:57:ca:a5:e4:54:5a:10:11:1c:24:7e:01:00:0c: 06:39:b7:32:5d:3b:f5:47:53:64:74:3c:fa:e4:58:11:6f:2f: bb:6b:30:00:a2:e7:1a:5d:7b:95:93:39:e6:c9:03:30:48:23: ec:df:41:88:25:e9:45:f7:16:18:31:7c:b3:f3:5c:ba:eb:c2: d3:ba:f5:ba:29:1f:8a:f7:3c:2b:ff:2c:cf:2d:b0:12:40:58: 56:89:20:bb:b1:8e:bf:a0:78:d6:aa:d5:a7:93:51:d3:38:ed: 8c:00:61:3f -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCN0QxMTAvBgNVBAUTKERGQkY1RjgzMEI1MEIzQkZDMUU1MzUwQjlDNjA1QkI3 NTYxMjJFMTEwHhcNMjUxMDA4MjM1NTM3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZjlmOC0wNmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgIqNOLnxX0uWqHVKf0xtDhOhSjAwfrbDAwUvjvh17RhtVEvlofM/aAaCMS0 qHeSel9XvpblYsZPQaIPshOgMJq6mBlYurx8dfiir1Zqi0IJ0F6KvlJ35T+TUbZN sngqX6kiJdTJIkrGJM4jDmJc9GlueH8/Qk1ALnEbJHxxD0VpL6Q94AhVzQioDaqX ghn9Fq8R/GfDW88+HeVFrNOAeGIsNZyjX0lQi28rmlKBEWuGb6zSs7eGjzSCxhCo 2cIbgHPtS/CUXA3hYXO67bgkbdlDr1Z6x8F+dmkZkgKTAf/F5v6zmpK+9tvA7rRk pcZfP8Otlcq9lzDoPYpLvJ8fJwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFK/Qyx5x EOattxsCKIopsZZ6eYi2MB8GA1UdIwQYMBaAFN+/X4MLULO/weU1C5xgW7dWEi4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI3RC8zMDE3MDk2RTJC QjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3X0I1VFVMbkdCYnQxWVNM aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM3OWZnd3RRczdfQjVUVUxuR0JidDFZU0xoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJCN0QvMzAxNzA5NkUyQkI5MTFFQ0IyQjM2NzRGQzRGOUFFMDIvRDVDNEE1NEE2 MTdCMTFFQzgyMDU4NjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnresDBABnxgAwDwQCAAIwCQMHACABDfeugDANBgkqhkiG 9w0BAQsFAAOCAQEAqI64IY6eHvJz7zfgWpte8+5EcZ/LEf/tXJaz+HFTKWONQlCI tuEdppDVZtRJUD6m9WmZY8PmjnG5RfupYlTSPWKG34odr4vU76E8E2Q6He0Ye3qr wy9L8IEHoNaOh64CDcbkjDGTbIbzDda3TJWNVr5daZkfuKJ9SIlNwXEW4uvW3qZ9 sLG3eHjFxl3QLn3l63/FgFfKpeRUWhARHCR+AQAMBjm3Ml079UdTZHQ8+uRYEW8v u2swAKLnGl17lZM55skDMEgj7N9BiCXpRfcWGDF8s/NcuuvC07r1uikfivc8K/8s zy2wEkBYVokgu7GOv6B41qrVp5NR0zjtjABhPw== -----END CERTIFICATE-----Generated at Mon Oct 20 08:57:36 2025 by rpki-client