$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/4EC550229F7911F0892F6680C4F9AE02.roa File: 4EC550229F7911F0892F6680C4F9AE02.roa (raw, json) Hash identifier: 8V07zUVOskE1wa+gVr+yuKqZDgrgYU/QSi8IILKEhL0= Subject key identifier: 59:B4:65:51:70:91:C6:8E:85:F9:9B:E7:41:E6:53:F1:A0:43:85:94 Certificate issuer: /CN=A91DFD4C/serialNumber=63833A241E3E4959EBA19C701D04887DB4B1FC74 Certificate serial: 19 Authority key identifier: 63:83:3A:24:1E:3E:49:59:EB:A1:9C:70:1D:04:88:7D:B4:B1:FC:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/4EC550229F7911F0892F6680C4F9AE02.roa Signing time: Thu 02 Oct 2025 10:19:41 +0000 ROA not before: Thu 02 Oct 2025 10:19:41 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133605 IP address blocks: 103.252.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.crl rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:22:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFD4C, serialNumber=63833A241E3E4959EBA19C701D04887DB4B1FC74 Validity Not Before: Oct 2 10:19:41 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68de51bd-8469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ee:63:ad:7b:30:5c:61:e5:0b:48:e2:1a:1c: a2:17:ef:bd:a0:42:4b:70:10:38:a0:70:4f:b2:07: f3:dd:97:74:54:a1:14:9c:f0:65:5f:94:e6:d2:e9: 4f:cd:36:63:ed:f2:23:85:29:27:86:8c:ad:d5:f7: c0:de:a5:60:3e:67:1e:fd:da:93:e2:7c:01:e7:a0: 9f:02:c8:92:b2:31:ff:d6:02:1f:bb:7b:ab:f1:a8: 23:19:5e:a0:31:e2:c2:0e:ab:1d:7b:b7:ba:82:a2: 8f:27:ad:5f:8d:14:18:42:53:c8:69:66:83:25:ed: d7:47:9a:9f:de:6b:62:c9:11:ac:4f:19:29:b2:70: 3a:4e:c1:ec:fa:2c:d7:b9:be:cd:69:f4:c3:86:1b: 09:b1:c0:e1:4e:08:11:14:26:56:2d:35:6d:da:2c: 0e:be:10:88:e3:43:9e:50:12:20:43:82:f7:f0:1b: 1b:a2:3c:2d:b9:18:ff:d0:e3:5d:49:b8:0a:71:0a: 66:5e:86:51:40:8e:22:8c:00:a7:8a:1c:aa:b3:8f: 92:74:a7:fe:e3:a5:4c:f2:d6:4a:57:8f:39:75:f5: 78:6c:f2:98:b8:d7:60:f6:b1:6a:8e:81:93:de:5f: 02:c1:b2:52:90:ed:29:2b:d9:5a:e5:ba:41:1b:2c: 69:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B4:65:51:70:91:C6:8E:85:F9:9B:E7:41:E6:53:F1:A0:43:85:94 X509v3 Authority Key Identifier: keyid:63:83:3A:24:1E:3E:49:59:EB:A1:9C:70:1D:04:88:7D:B4:B1:FC:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y4M6JB4-SVnroZxwHQSIfbSx_HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFD4C/56EC3D9C836D11F08816006AC4F9AE02/4EC550229F7911F0892F6680C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.127.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:9c:4a:1b:d3:af:ba:d7:a8:62:ac:f7:f5:2d:bd:fe:7c:d4: b8:e3:2d:97:0c:4e:06:a2:d8:96:54:e9:39:5a:34:97:f8:df: f1:75:8e:7c:7e:dc:94:c1:1e:42:be:1a:6f:c0:a1:e6:82:fa: 9f:94:d9:df:a7:b3:55:d2:c0:7e:b4:8c:c8:4c:a2:a8:5c:f2: ef:53:f9:40:a0:47:5e:94:91:b9:88:a6:20:e3:dc:03:bb:38: 91:a2:25:9e:81:bb:04:2f:d3:9a:2c:a2:c0:6b:2c:6b:23:91: c2:b4:eb:13:61:91:a6:64:95:ed:85:be:a0:c9:7c:45:74:c0: 1e:d4:ef:00:16:5a:a2:61:7f:be:b9:b4:11:07:c4:33:f1:89: f3:2f:2a:35:bf:93:55:dd:bc:f4:39:f7:bd:af:50:8d:ec:28: bb:75:68:0a:fb:08:df:df:8f:35:b5:70:72:69:aa:f0:2b:c7: c4:7f:7f:7d:cb:d7:17:75:d3:dc:ab:f0:ad:6a:17:1e:8d:a7: 64:43:5a:6a:1e:9d:b8:b8:a8:da:86:0f:e5:5b:19:43:16:ee: 83:e1:b4:1d:30:14:7c:72:a0:d6:51:34:28:6e:52:5c:ff:73: e3:da:88:ed:32:91:2a:8e:b6:4f:82:73:1e:3d:77:c3:4d:bf: b2:1c:17:00 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RkQ0QzExMC8GA1UEBRMoNjM4MzNBMjQxRTNFNDk1OUVCQTE5QzcwMUQwNDg4N0RC NEIxRkM3NDAeFw0yNTEwMDIxMDE5NDFaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGU1MWJkLTg0NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC17mOtezBcYeULSOIaHKIX772gQktwEDigcE+yB/Pdl3RUoRSc8GVflObS6U/N NmPt8iOFKSeGjK3V98DepWA+Zx792pPifAHnoJ8CyJKyMf/WAh+7e6vxqCMZXqAx 4sIOqx17t7qCoo8nrV+NFBhCU8hpZoMl7ddHmp/ea2LJEaxPGSmycDpOwez6LNe5 vs1p9MOGGwmxwOFOCBEUJlYtNW3aLA6+EIjjQ55QEiBDgvfwGxuiPC25GP/Q411J uApxCmZehlFAjiKMAKeKHKqzj5J0p/7jpUzy1kpXjzl19Xhs8pi412D2sWqOgZPe XwLBslKQ7Skr2VrlukEbLGktAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWbRlUXCR xo6F+ZvnQeZT8aBDhZQwHwYDVR0jBBgwFoAUY4M6JB4+SVnroZxwHQSIfbSx/HQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGRDRDLzU2RUMzRDlDODM2 RDExRjA4ODE2MDA2QUM0RjlBRTAyL1k0TTZKQjQtU1Zucm9aeHdIUVNJZmJTeF9I US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTRNNkpCNC1TVm5yb1p4d0hRU0lmYlN4X0hRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RkQ0Qy81NkVDM0Q5QzgzNkQxMUYwODgxNjAwNkFDNEY5QUUwMi80RUM1NTAyMjlG NzkxMUYwODkyRjY2ODBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf8fzANBgkqhkiG9w0BAQsFAAOCAQEAipxKG9OvuteoYqz3 9S29/nzUuOMtlwxOBqLYllTpOVo0l/jf8XWOfH7clMEeQr4ab8Ch5oL6n5TZ36ez VdLAfrSMyEyiqFzy71P5QKBHXpSRuYimIOPcA7s4kaIlnoG7BC/TmiyiwGssayOR wrTrE2GRpmSV7YW+oMl8RXTAHtTvABZaomF/vrm0EQfEM/GJ8y8qNb+TVd289Dn3 va9Qjewou3VoCvsI39+PNbVwcmmq8CvHxH9/fcvXF3XT3KvwrWoXHo2nZENaah6d uLio2oYP5VsZQxbug+G0HTAUfHKg1lE0KG5SXP9z49qI7TKRKo62T4JzHj13w02/ shwXAA== -----END CERTIFICATE-----Generated at Mon Oct 20 11:43:10 2025 by rpki-client