$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/1B2E0738BB7011EA93F7DE4EC4F9AE02.roa File: 1B2E0738BB7011EA93F7DE4EC4F9AE02.roa (raw, json) Hash identifier: DH2TgfKB8NohjnBrZDPqDwBioU/uRY/Ew7yARHh+9qg= Subject key identifier: 98:E2:9F:C1:17:BB:0B:C2:8C:E1:87:FD:F3:EC:01:F7:D7:F9:C7:04 Certificate issuer: /CN=A91E4743/serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Certificate serial: 08DB Authority key identifier: 65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/1B2E0738BB7011EA93F7DE4EC4F9AE02.roa Signing time: Sat 30 Aug 2025 21:11:48 +0000 ROA not before: Sat 30 Aug 2025 21:11:48 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 140865 IP address blocks: 103.152.154.0/23 maxlen: 24 2001:df4:1380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:29:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2267 (0x8db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4743, serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Validity Not Before: Aug 30 21:11:48 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b36914-8ae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:52:29:9d:79:48:33:c2:88:47:0f:6f:3b:93: 49:ff:24:38:1c:50:2d:31:e1:0a:e0:96:0a:32:6b: 56:ae:ee:b5:f9:fa:67:7d:be:5c:58:da:f7:ab:78: be:a1:0f:f8:8c:db:f0:3a:40:20:1d:b5:9d:d2:cc: 9c:b8:15:de:e7:1f:c3:31:cd:1a:47:e7:8b:e4:8f: 27:7d:18:38:f7:0b:6e:ed:60:0a:87:21:58:b9:ae: 82:a2:6d:92:05:80:83:f5:41:dc:46:70:2f:d8:17: aa:a1:f6:bc:14:f4:fb:61:71:cd:5e:3d:1b:14:5b: d0:57:fa:77:a1:2e:90:b1:3d:99:5e:59:5f:2b:a1: c3:73:34:14:75:83:8a:e1:bd:3d:fa:c9:30:13:c9: 59:fb:c5:82:fd:e1:81:b6:e1:93:a1:db:4c:2a:06: 65:32:c8:ae:c2:5a:bf:1d:60:51:d1:2f:95:70:c9: 8a:bb:0d:8e:37:5e:5c:9c:ff:b3:df:ac:5c:00:02: 22:cf:9d:61:bd:e1:2e:55:07:87:8c:69:f1:d2:1a: 62:1d:ad:9e:8e:37:a9:71:eb:9e:ff:8c:c2:c9:e0: 0e:c7:a6:e9:9b:44:11:18:6b:04:2c:b7:33:c0:b2: 74:6e:2d:ad:6e:f5:74:a8:d8:40:5e:86:8a:7c:b2: 3f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E2:9F:C1:17:BB:0B:C2:8C:E1:87:FD:F3:EC:01:F7:D7:F9:C7:04 X509v3 Authority Key Identifier: keyid:65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/1B2E0738BB7011EA93F7DE4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.154.0/23 IPv6: 2001:df4:1380::/48 Signature Algorithm: sha256WithRSAEncryption 65:39:b2:5d:3b:e2:76:b5:23:30:43:a5:95:57:15:ff:50:b8: 44:0f:b1:7a:4b:a4:a7:f3:6a:e9:67:48:ba:f1:50:64:09:50: c4:56:88:59:df:e9:77:83:00:74:da:a0:57:bd:01:96:dd:ba: 14:9f:55:d5:df:be:b7:ac:d3:72:bd:ad:5e:f8:95:ac:d2:9a: 4b:c4:9f:74:e0:15:b6:3f:13:a7:5d:cd:56:8b:3f:2b:cc:4e: 6f:30:73:97:32:2d:70:61:28:bf:a0:4c:05:cb:86:59:01:d9: 82:e4:75:1b:e4:9a:f2:a0:a0:65:fc:0a:77:ad:6c:f8:d3:8f: 7b:04:04:bc:d7:cb:35:f0:69:9b:bd:ac:7d:f3:ae:4f:9d:44: db:1d:9e:0b:de:1f:3b:42:5d:96:4f:88:4f:f7:db:19:75:f7: 8f:36:0b:23:28:0b:69:62:e7:a5:fb:d3:96:b1:cb:07:a6:1a: 04:3b:74:b2:bf:30:ed:43:6b:7e:c4:99:4a:06:97:e0:d0:b1: 42:67:39:92:d3:5d:83:a5:3e:e0:f5:59:1b:58:b5:28:7c:73: 56:9f:3b:2e:4e:2c:13:7d:a1:82:df:30:ca:fc:88:3c:cd:d1: 53:0b:d2:fc:f6:d7:43:81:11:c4:de:d6:42:2a:99:7d:8d:40: 08:48:10:ba -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ3NDMxMTAvBgNVBAUTKDY1NTQyQ0VDMjgxMTFGQzU0QkEzRDJBRUUzM0Y0Q0U4 N0I3RjkwQUQwHhcNMjUwODMwMjExMTQ4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzNjkxNC04YWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVIpnXlIM8KIRw9vO5NJ/yQ4HFAtMeEK4JYKMmtWru61+fpnfb5cWNr3q3i+ oQ/4jNvwOkAgHbWd0sycuBXe5x/DMc0aR+eL5I8nfRg49wtu7WAKhyFYua6Com2S BYCD9UHcRnAv2Beqofa8FPT7YXHNXj0bFFvQV/p3oS6QsT2ZXllfK6HDczQUdYOK 4b09+skwE8lZ+8WC/eGBtuGTodtMKgZlMsiuwlq/HWBR0S+VcMmKuw2ON15cnP+z 36xcAAIiz51hveEuVQeHjGnx0hpiHa2ejjepceue/4zCyeAOx6bpm0QRGGsELLcz wLJ0bi2tbvV0qNhAXoaKfLI/vwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJjin8EX uwvCjOGH/fPsAffX+ccEMB8GA1UdIwQYMBaAFGVULOwoER/FS6PSruM/TOh7f5Ct MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDc0My82NzBGODA5MkJC NkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4VkxvOUt1NHo5TTZIdF9r SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUXM3Q2dSSDhWTG85S3U0ejlNNkh0X2tLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ3NDMvNjcwRjgwOTJCQjZGMTFFQTk2MUZCODRFQzRGOUFFMDIvMUIyRTA3MzhC QjcwMTFFQTkzRjdERTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmJowDwQCAAIwCQMHACABDfQTgDANBgkqhkiG9w0BAQsF AAOCAQEAZTmyXTvidrUjMEOllVcV/1C4RA+xekukp/Nq6WdIuvFQZAlQxFaIWd/p d4MAdNqgV70Blt26FJ9V1d++t6zTcr2tXviVrNKaS8SfdOAVtj8Tp13NVos/K8xO bzBzlzItcGEov6BMBcuGWQHZguR1G+Sa8qCgZfwKd61s+NOPewQEvNfLNfBpm72s ffOuT51E2x2eC94fO0Jdlk+IT/fbGXX3jzYLIygLaWLnpfvTlrHLB6YaBDt0sr8w 7UNrfsSZSgaX4NCxQmc5ktNdg6U+4PVZG1i1KHxzVp87Lk4sE32hgt8wyvyIPM3R UwvS/PbXQ4ERxN7WQiqZfY1ACEgQug== -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:11 2025 by rpki-client