$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/4551BE2CD19D11EAA120EE14C4F9AE02.roa File: 4551BE2CD19D11EAA120EE14C4F9AE02.roa (raw, json) Hash identifier: hm02D0CoN1wXYmBN20AJ0Eit445l76gPSN2cqsUGYq0= Subject key identifier: FB:E3:84:B9:BA:F4:26:E1:FF:38:92:41:F9:F1:0A:56:FE:CC:25:DE Certificate issuer: /CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Certificate serial: 124E Authority key identifier: 37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/4551BE2CD19D11EAA120EE14C4F9AE02.roa Signing time: Fri 26 Sep 2025 17:46:41 +0000 ROA not before: Fri 26 Sep 2025 17:46:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134520 IP address blocks: 103.81.247.0/24 maxlen: 24 103.82.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4686 (0x124e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E33, serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Validity Not Before: Sep 26 17:46:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68d6d181-e9c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a6:99:7f:3b:37:5f:b6:3f:67:72:3b:86:8d: 16:d6:79:e2:cf:3b:9b:bc:4d:de:61:eb:92:97:db: 1c:0c:07:63:c0:c2:da:0c:d3:1c:5d:04:84:06:4b: b9:5a:bd:07:b0:bd:f6:b6:25:67:6e:d7:54:fd:33: 84:57:ae:14:a5:98:d6:ad:4c:5b:d3:3e:09:4a:f4: 85:77:d9:dc:1b:e4:8d:7b:e7:dc:51:5a:8a:a8:46: d1:f9:38:aa:11:2f:71:10:8c:ab:23:e8:4c:43:02: 93:74:f4:b7:42:7f:9f:61:d1:fa:a6:28:5c:15:c8: 71:bb:a2:bc:89:bd:3a:c2:ae:4f:75:7a:84:e3:13: 6e:27:06:1c:6a:40:29:ad:b6:dc:c2:08:53:8e:6e: 3c:8d:ac:8a:43:d5:95:c3:48:b3:12:40:f8:65:72: f2:8b:d4:7a:42:c3:d2:a2:f4:be:b6:10:32:7f:e1: 01:78:a4:76:6b:26:60:ec:6e:24:94:50:0b:f8:e7: d6:00:c4:28:e9:28:c9:1a:57:e7:d3:57:3f:73:ed: f8:5c:53:f9:05:1a:6b:ac:c5:d7:15:f7:fe:c7:59: 8d:4d:25:00:c9:3b:8a:a5:e3:f3:ab:77:47:54:20: c4:74:dc:f4:d8:36:68:d0:af:50:e0:5d:f5:b9:19: a2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E3:84:B9:BA:F4:26:E1:FF:38:92:41:F9:F1:0A:56:FE:CC:25:DE X509v3 Authority Key Identifier: keyid:37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/4551BE2CD19D11EAA120EE14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.247.0/24 103.82.4.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:69:c2:f6:64:ce:55:32:87:5e:a8:94:71:35:8c:44:17:b0: 17:5d:8f:d0:48:b1:59:78:8a:88:51:e0:14:da:96:8e:39:1d: a7:e1:5a:97:4e:b3:2a:c5:39:dd:53:da:86:21:ae:09:93:09: ff:16:8c:ab:a3:02:38:69:9d:f7:cb:ae:d3:07:5c:b1:44:e4: 2e:ec:7a:ca:fb:44:30:e6:af:92:d3:49:b4:6a:17:53:ae:2c: 09:88:f3:9b:69:78:b2:ca:e4:a2:f0:de:25:46:56:b1:0d:57: 81:9d:da:ed:ca:1a:90:66:c4:f1:aa:5f:14:a5:ae:76:19:2d: 2e:a8:73:8c:80:d2:6d:f1:cd:3c:35:9e:b7:15:0e:b0:c2:72: 39:df:b1:c9:40:2b:35:85:76:9e:fd:66:c5:2d:b5:ed:47:8b: b2:25:2c:e5:77:47:18:cc:c1:27:62:c6:af:ce:ab:1f:21:c3: 13:a0:7e:77:90:85:31:3b:b8:bc:3c:99:22:f3:c1:26:d4:20: bc:5e:a7:13:dd:25:d8:29:d7:6f:62:f4:3a:20:6b:e6:68:ba: ab:09:7b:8e:0c:1c:53:12:bf:9b:71:a9:93:9d:ef:46:da:e0: 05:22:e0:d5:ae:9c:c8:4a:c5:c4:d9:17:74:00:f9:b1:05:ff: d9:8b:9e:20 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMzMxMTAvBgNVBAUTKDM3OTc0MzcxNENFMDEyMjMwQUE5NzhCQjFBQThDNzkw RTcwNjY3QUIwHhcNMjUwOTI2MTc0NjQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ2ZDE4MS1lOWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KaZfzs3X7Y/Z3I7ho0W1nnizzubvE3eYeuSl9scDAdjwMLaDNMcXQSEBku5 Wr0HsL32tiVnbtdU/TOEV64UpZjWrUxb0z4JSvSFd9ncG+SNe+fcUVqKqEbR+Tiq ES9xEIyrI+hMQwKTdPS3Qn+fYdH6pihcFchxu6K8ib06wq5PdXqE4xNuJwYcakAp rbbcwghTjm48jayKQ9WVw0izEkD4ZXLyi9R6QsPSovS+thAyf+EBeKR2ayZg7G4k lFAL+OfWAMQo6SjJGlfn01c/c+34XFP5BRprrMXXFff+x1mNTSUAyTuKpePzq3dH VCDEdNz02DZo0K9Q4F31uRmiZQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPvjhLm6 9Cbh/ziSQfnxClb+zCXeMB8GA1UdIwQYMBaAFDeXQ3FM4BIjCql4uxqox5DnBmer MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UzMy84NzdBNzlCNkU5 RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0VpTUtxWGk3R3FqSGtPY0da NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041ZERjVXpnRWlNS3FYaTdHcWpIa09jR1o2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNFMzMvODc3QTc5QjZFOUQxMTFFOEFDODkyNzcwQzRGOUFFMDIvNDU1MUJFMkNE MTlEMTFFQUExMjBFRTE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnUfcDBAFnUgQwDQYJKoZIhvcNAQELBQADggEBAF5pwvZk zlUyh16olHE1jEQXsBddj9BIsVl4iohR4BTalo45HafhWpdOsyrFOd1T2oYhrgmT Cf8WjKujAjhpnffLrtMHXLFE5C7sesr7RDDmr5LTSbRqF1OuLAmI85tpeLLK5KLw 3iVGVrENV4Gd2u3KGpBmxPGqXxSlrnYZLS6oc4yA0m3xzTw1nrcVDrDCcjnfsclA KzWFdp79ZsUtte1Hi7IlLOV3RxjMwSdixq/Oqx8hwxOgfneQhTE7uLw8mSLzwSbU ILxepxPdJdgp129i9Doga+ZouqsJe44MHFMSv5txqZOd70ba4AUi4NWunMhKxcTZ F3QA+bEF/9mLniA= -----END CERTIFICATE-----Generated at Mon Oct 20 16:43:51 2025 by rpki-client