$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/5153E9DAC0B911ED99A12312C4F9AE02.roa File: 5153E9DAC0B911ED99A12312C4F9AE02.roa (raw, json) Hash identifier: A4mMoOgqhrpbmnUE3oA6zWgyEjfGMI0KKDHAWWwT+kY= Subject key identifier: CF:7F:93:46:EA:BA:FE:CF:B5:B4:A5:BD:86:44:FB:CC:02:6E:0F:03 Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 01EC Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/5153E9DAC0B911ED99A12312C4F9AE02.roa Signing time: Sat 11 Oct 2025 05:29:53 +0000 ROA not before: Sat 11 Oct 2025 05:29:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135335 IP address blocks: 103.154.46.0/23 maxlen: 23 103.154.46.0/24 maxlen: 24 103.154.47.0/24 maxlen: 24 2001:df4:6780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:59:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Oct 11 05:29:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68e9eb50-399e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8d:20:ac:56:75:c9:b0:b5:fd:18:7c:d0:83: 62:f6:60:48:34:00:97:dc:0f:84:f1:0e:99:40:93: cc:77:fa:c9:0a:5e:e5:ee:a5:50:68:85:9d:d1:cc: fe:94:16:a5:79:c0:f0:86:3e:38:54:9a:92:6e:6f: 30:1e:27:68:57:2a:36:9a:5a:82:bd:71:d3:11:08: 63:3d:d0:be:76:ad:9d:9c:8c:6d:de:a5:19:e6:41: e7:f7:9d:6b:81:fe:8b:35:a5:da:10:13:91:a8:54: 97:e2:e7:ec:a9:6e:81:42:f3:9c:23:24:5b:fb:80: 70:21:60:85:0d:67:a5:93:a2:78:5d:85:6d:91:f2: e4:82:1e:d9:c4:19:41:52:c4:64:2e:58:94:44:23: ea:82:b8:ef:e6:dc:fe:02:80:95:74:4f:50:87:e1: 78:3f:a0:a8:14:37:a2:96:d5:e7:51:bc:6d:8d:e1: 1b:cf:d1:cd:66:83:2a:15:fb:e5:09:29:14:1d:75: db:24:c1:a8:48:95:f2:ea:ba:d6:48:7a:cc:0c:c6: e7:97:b2:73:f0:0c:29:ef:67:94:ae:91:83:b7:da: 3b:fb:11:d0:4d:6f:82:95:59:bb:58:f8:6e:07:54: 1d:94:7f:98:7c:2f:6a:f0:98:2d:bb:89:06:f7:a2: 05:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:7F:93:46:EA:BA:FE:CF:B5:B4:A5:BD:86:44:FB:CC:02:6E:0F:03 X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/5153E9DAC0B911ED99A12312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.46.0/23 IPv6: 2001:df4:6780::/48 Signature Algorithm: sha256WithRSAEncryption 62:cc:a9:43:32:a4:40:88:a3:53:62:e3:55:9a:af:56:3a:d3: 9a:a5:de:96:ec:a9:f1:f1:74:dc:4c:3c:81:70:97:d3:fe:c7: a0:e3:74:06:df:d5:f8:2a:cd:1d:4c:6a:c0:e5:3c:24:26:8a: a4:a7:51:48:90:91:4b:d3:e5:74:87:f6:b9:61:bc:73:96:e9: 2c:d1:7e:60:51:e6:c5:a4:05:ef:e7:66:6a:e6:e3:d6:81:c9: 42:6c:a2:d0:88:9a:6a:bf:19:38:ef:ec:c7:8e:57:aa:9f:c2: 67:1a:ad:80:19:7b:f7:c8:f4:65:43:29:65:4f:e9:da:e5:18: 09:1b:f8:e4:b0:c4:35:d0:5f:05:cf:a5:10:b3:08:30:c6:44: f2:46:0a:30:b7:b6:b8:74:72:92:93:79:31:47:2e:93:ed:ca: 53:37:34:bb:dd:0b:a5:e4:af:64:d6:41:d7:91:6f:d3:8b:d5: 02:86:64:48:62:5f:71:59:56:3d:dd:77:d5:5f:2c:df:d1:5f: 80:ce:e8:d0:74:68:62:87:55:25:08:a6:06:b2:2c:66:62:d3: 7b:30:c2:40:b1:2e:a0:27:79:46:10:45:e2:0b:1e:e4:be:06: 2b:11:f7:61:ee:f5:d3:b1:48:99:9a:83:30:fa:3c:c6:b9:55: 4d:70:d4:6a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUxMDExMDUyOTUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU5ZWI1MC0zOTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA040grFZ1ybC1/Rh80INi9mBINACX3A+E8Q6ZQJPMd/rJCl7l7qVQaIWd0cz+ lBalecDwhj44VJqSbm8wHidoVyo2mlqCvXHTEQhjPdC+dq2dnIxt3qUZ5kHn951r gf6LNaXaEBORqFSX4ufsqW6BQvOcIyRb+4BwIWCFDWelk6J4XYVtkfLkgh7ZxBlB UsRkLliURCPqgrjv5tz+AoCVdE9Qh+F4P6CoFDeiltXnUbxtjeEbz9HNZoMqFfvl CSkUHXXbJMGoSJXy6rrWSHrMDMbnl7Jz8Awp72eUrpGDt9o7+xHQTW+ClVm7WPhu B1QdlH+YfC9q8Jgtu4kG96IF5wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM9/k0bq uv7PtbSlvYZE+8wCbg8DMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVDM0MvRjYzMDgwOTRDMEI0MTFFREE3N0Y3MDBFQzRGOUFFMDIvNTE1M0U5REFD MEI5MTFFRDk5QTEyMzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmi4wDwQCAAIwCQMHACABDfRngDANBgkqhkiG9w0BAQsF AAOCAQEAYsypQzKkQIijU2LjVZqvVjrTmqXeluyp8fF03Ew8gXCX0/7HoON0Bt/V +CrNHUxqwOU8JCaKpKdRSJCRS9PldIf2uWG8c5bpLNF+YFHmxaQF7+dmaubj1oHJ Qmyi0Iiaar8ZOO/sx45Xqp/CZxqtgBl798j0ZUMpZU/p2uUYCRv45LDENdBfBc+l ELMIMMZE8kYKMLe2uHRykpN5MUcuk+3KUzc0u90LpeSvZNZB15Fv04vVAoZkSGJf cVlWPd131V8s39FfgM7o0HRoYodVJQimBrIsZmLTezDCQLEuoCd5RhBF4gse5L4G KxH3Ye7107FImZqDMPo8xrlVTXDUag== -----END CERTIFICATE-----Generated at Mon Oct 20 08:56:42 2025 by rpki-client