$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/67F6AC6C2BD911F09AF6B821C4F9AE02.roa File: 67F6AC6C2BD911F09AF6B821C4F9AE02.roa (raw, json) Hash identifier: h8My7kHHxTir1n7YjOpu1k0UspYcJlhUdG9c241e5p0= Subject key identifier: 02:77:F0:F2:98:5C:BA:8E:33:ED:AD:F8:3E:FF:B8:D4:CB:83:9A:31 Certificate issuer: /CN=A91E5481/serialNumber=F4B7D0443B8CFF9B4098BB8CECBED87FCEA9BAD2 Certificate serial: 56 Authority key identifier: F4:B7:D0:44:3B:8C:FF:9B:40:98:BB:8C:EC:BE:D8:7F:CE:A9:BA:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9LfQRDuM_5tAmLuM7L7Yf86putI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/67F6AC6C2BD911F09AF6B821C4F9AE02.roa Signing time: Mon 13 Oct 2025 11:04:21 +0000 ROA not before: Mon 13 Oct 2025 11:04:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 30058 IP address blocks: 103.173.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/9LfQRDuM_5tAmLuM7L7Yf86putI.crl rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/9LfQRDuM_5tAmLuM7L7Yf86putI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9LfQRDuM_5tAmLuM7L7Yf86putI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5481, serialNumber=F4B7D0443B8CFF9B4098BB8CECBED87FCEA9BAD2 Validity Not Before: Oct 13 11:04:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ecdcb5-4e65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:37:33:92:45:fc:e9:85:e4:bf:93:02:23:63: 20:42:7a:18:8f:64:2a:ab:14:42:05:0f:2d:b9:15: a7:34:f5:f9:0b:7d:b0:80:64:87:10:b6:11:0d:1e: 84:49:60:d7:b2:10:03:32:1b:2f:84:50:e7:70:4b: 23:e5:4f:1b:ed:83:3c:f0:7f:bc:65:28:9d:ca:c9: 9f:a7:c2:51:c0:4e:4d:ad:eb:d5:c9:4d:62:90:a6: 72:03:8a:81:45:68:ad:e0:ec:88:be:23:88:58:25: 06:51:6e:6d:0e:51:d6:c6:94:76:d8:df:d3:d6:d8: 37:79:af:b8:5a:a3:ba:c8:4b:53:1f:bb:51:db:73: c0:91:cb:52:b0:60:21:88:23:ba:34:d3:63:2c:22: d0:7b:97:51:02:a8:5a:07:b0:59:5b:7f:ff:1b:bf: 36:5d:da:30:71:34:fe:30:3a:f4:de:f0:2c:3b:a2: b6:1a:3a:5a:0d:ab:48:59:b7:aa:11:70:75:ae:36: 31:fe:50:e1:ce:a4:03:af:f8:ed:74:34:f8:7f:c2: b5:fc:ed:f6:7a:c5:da:5c:47:22:9c:e4:7d:46:8a: 4b:5d:36:b2:49:32:5b:74:f1:e9:ba:b4:a2:d2:be: ed:cc:65:e0:ab:0d:d9:1f:97:44:ee:a5:26:c0:eb: d1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:77:F0:F2:98:5C:BA:8E:33:ED:AD:F8:3E:FF:B8:D4:CB:83:9A:31 X509v3 Authority Key Identifier: keyid:F4:B7:D0:44:3B:8C:FF:9B:40:98:BB:8C:EC:BE:D8:7F:CE:A9:BA:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/9LfQRDuM_5tAmLuM7L7Yf86putI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9LfQRDuM_5tAmLuM7L7Yf86putI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5481/A1854DE02BD811F0AB617320C4F9AE02/67F6AC6C2BD911F09AF6B821C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.225.0/24 Signature Algorithm: sha256WithRSAEncryption 06:f6:d5:c9:aa:89:dd:0a:bb:db:e7:ce:07:24:8b:87:09:47: 3d:43:69:b0:af:79:29:0b:5c:0d:ff:f5:b2:bd:20:b2:70:8c: e9:7d:8d:57:9c:5b:13:c4:4c:ef:e3:5d:af:eb:d6:53:a2:31: a1:c0:8a:ee:7c:f7:8e:3d:4c:30:fa:fe:3f:62:71:db:5b:d0: f5:92:5e:b4:b8:c0:59:ff:57:69:74:6e:e4:73:94:ed:3a:8f: 3d:39:41:0c:d7:38:91:bd:de:f1:c3:e3:fd:ed:97:1b:e7:36: 8b:fd:a0:a9:86:31:7d:93:24:e7:19:44:28:9b:f3:ba:3a:62: 92:29:91:5a:c5:e6:ca:05:98:c1:ca:0a:4c:5e:a4:5b:b4:2d: cb:ad:1b:85:92:28:58:11:42:cc:83:9c:b0:93:ba:46:0b:45: ce:81:77:d6:42:6f:b2:e6:e7:5c:6f:3e:16:1f:18:82:a0:05: 39:f2:e8:df:af:24:bf:78:e6:cb:d6:f5:fb:e3:49:5a:fc:19: 40:93:9d:b2:de:43:8c:bb:aa:2b:5f:da:2e:0e:26:c0:79:6c: 50:5b:4c:ad:20:2c:8a:d6:f9:87:ae:31:24:b4:ff:9a:d6:af: dd:2e:04:c4:82:46:b4:91:6a:c0:da:f0:45:90:a8:38:a7:ed: 3a:21:46:a6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTQ4MTExMC8GA1UEBRMoRjRCN0QwNDQzQjhDRkY5QjQwOThCQjhDRUNCRUQ4N0ZD RUE5QkFEMjAeFw0yNTEwMTMxMTA0MjFaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZWNkY2I1LTRlNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+NzOSRfzpheS/kwIjYyBCehiPZCqrFEIFDy25Fac09fkLfbCAZIcQthENHoRJ YNeyEAMyGy+EUOdwSyPlTxvtgzzwf7xlKJ3KyZ+nwlHATk2t69XJTWKQpnIDioFF aK3g7Ii+I4hYJQZRbm0OUdbGlHbY39PW2Dd5r7hao7rIS1Mfu1Hbc8CRy1KwYCGI I7o002MsItB7l1ECqFoHsFlbf/8bvzZd2jBxNP4wOvTe8Cw7orYaOloNq0hZt6oR cHWuNjH+UOHOpAOv+O10NPh/wrX87fZ6xdpcRyKc5H1GiktdNrJJMlt08em6tKLS vu3MZeCrDdkfl0TupSbA69GzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUAnfw8phc uo4z7a34Pv+41MuDmjEwHwYDVR0jBBgwFoAU9LfQRDuM/5tAmLuM7L7Yf86putIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1NDgxL0ExODU0REUwMkJE ODExRjBBQjYxNzMyMEM0RjlBRTAyLzlMZlFSRHVNXzV0QW1MdU03TDdZZjg2cHV0 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOUxmUVJEdU1fNXRBbUx1TTdMN1lmODZwdXRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ4MS9BMTg1NERFMDJCRDgxMUYwQUI2MTczMjBDNEY5QUUwMi82N0Y2QUM2QzJC RDkxMUYwOUFGNkI4MjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGet4TANBgkqhkiG9w0BAQsFAAOCAQEABvbVyaqJ3Qq72+fO BySLhwlHPUNpsK95KQtcDf/1sr0gsnCM6X2NV5xbE8RM7+Ndr+vWU6IxocCK7nz3 jj1MMPr+P2Jx21vQ9ZJetLjAWf9XaXRu5HOU7TqPPTlBDNc4kb3e8cPj/e2XG+c2 i/2gqYYxfZMk5xlEKJvzujpikimRWsXmygWYwcoKTF6kW7Qty60bhZIoWBFCzIOc sJO6RgtFzoF31kJvsubnXG8+Fh8YgqAFOfLo368kv3jmy9b1++NJWvwZQJOdst5D jLuqK1/aLg4mwHlsUFtMrSAsitb5h64xJLT/mtav3S4ExIJGtJFqwNrwRZCoOKft OiFGpg== -----END CERTIFICATE-----Generated at Mon Oct 20 08:55:52 2025 by rpki-client