$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/3C15F928579311F0B296C030C4F9AE02.roa File: 3C15F928579311F0B296C030C4F9AE02.roa (raw, json) Hash identifier: kbwAloXsrTWCITEmD+odpUzfYSBQf6qqCRC37VKW0HE= Subject key identifier: 4B:0F:46:32:42:71:F7:51:0A:02:BA:92:51:01:6C:11:7A:61:C5:7D Certificate issuer: /CN=A91EF6EF/serialNumber=9A023B80ABCF4E6797D388C0DE8160A16EB15DFE Certificate serial: 2C Authority key identifier: 9A:02:3B:80:AB:CF:4E:67:97:D3:88:C0:DE:81:60:A1:6E:B1:5D:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/3C15F928579311F0B296C030C4F9AE02.roa Signing time: Thu 11 Sep 2025 08:17:18 +0000 ROA not before: Thu 11 Sep 2025 08:17:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45411 IP address blocks: 103.153.158.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.crl rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF6EF, serialNumber=9A023B80ABCF4E6797D388C0DE8160A16EB15DFE Validity Not Before: Sep 11 08:17:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c2858d-fb2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:53:17:8b:9a:d0:39:c3:0a:29:43:26:96:38: cb:e7:e6:f6:42:3c:ad:a1:22:e8:a9:25:bb:4e:62: 9f:81:26:c0:e8:63:3e:08:55:20:4b:1b:35:b4:a6: 7b:18:b3:c1:1e:3c:49:b1:44:31:06:55:43:0f:de: 86:41:ce:23:6a:81:e6:83:ca:85:84:0a:a9:26:a0: 77:4e:41:33:3f:2f:15:39:3f:9a:ce:de:36:c2:8d: a4:39:15:e7:8a:19:f7:d5:96:05:2d:f5:0a:c9:58: 09:58:27:85:ea:07:bf:bf:b4:14:40:fe:1f:7e:c4: 1a:e7:3a:4c:2b:3f:c8:3a:c0:91:60:92:1b:ed:81: ef:51:e7:18:71:e8:3e:e1:74:37:1a:81:ab:06:1f: af:41:4f:55:87:a0:ee:72:c2:f3:36:4c:e9:88:3c: 32:05:42:84:1f:f9:05:66:cf:43:ad:01:f7:3b:2b: 4d:c3:81:3a:64:e9:ee:d6:8f:5a:c6:62:0b:11:9e: 1a:cc:ed:7a:63:3e:e5:0d:c4:69:23:42:6c:28:27: f6:5d:05:0d:1d:24:b1:8a:88:81:db:79:8b:0c:ba: db:8a:a3:21:2b:ef:e1:c5:84:98:e3:34:40:ce:57: 02:31:a4:d8:92:50:21:9a:06:56:cd:d8:77:43:f8: b4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0F:46:32:42:71:F7:51:0A:02:BA:92:51:01:6C:11:7A:61:C5:7D X509v3 Authority Key Identifier: keyid:9A:02:3B:80:AB:CF:4E:67:97:D3:88:C0:DE:81:60:A1:6E:B1:5D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/mgI7gKvPTmeX04jA3oFgoW6xXf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgI7gKvPTmeX04jA3oFgoW6xXf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF6EF/ACBF6F2A574211F0BEDB455CC4F9AE02/3C15F928579311F0B296C030C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.158.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:de:64:ed:46:7c:54:36:06:0c:30:45:96:bd:24:15:72:25: 7a:04:e6:b6:97:bd:65:86:4b:cd:03:8b:66:d4:c7:ef:f8:3b: ff:2a:f0:08:76:ef:d7:72:a1:09:d4:dc:c1:bf:45:37:ef:8b: c8:b8:21:ff:9e:1d:b1:41:21:72:33:84:1c:6b:a5:4f:cd:5f: 84:ba:56:b2:3f:a8:59:ec:77:cc:9e:1c:d4:9d:2c:01:98:ea: 65:43:00:21:ca:18:62:ae:f9:ac:f9:b7:dd:af:54:a7:61:d0: 62:a5:8d:ae:78:e9:a2:82:4c:0f:bc:68:ee:c0:39:d5:d4:f9: ac:dc:44:95:e3:ec:7d:70:59:85:9a:3a:07:b3:37:13:69:c9: b9:6c:cc:af:36:48:33:19:98:db:a4:5c:a7:e1:8c:d8:98:1b: 10:e0:46:18:52:8e:0c:94:b3:d5:73:ac:dc:fa:80:68:ba:5d: 18:da:99:51:0a:08:54:ee:7f:35:fb:f0:8c:79:65:d6:2a:0e: 19:dd:4b:10:6e:52:5b:67:5b:07:70:37:05:4b:8d:0f:7f:23: 9b:48:a1:2b:5f:87:41:e4:e9:04:00:c5:58:41:41:1c:18:b5: ce:a4:99:35:55:0b:7a:03:4d:69:77:2b:3c:c8:44:54:0f:13: 9b:c0:f1:bc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RjZFRjExMC8GA1UEBRMoOUEwMjNCODBBQkNGNEU2Nzk3RDM4OEMwREU4MTYwQTE2 RUIxNURGRTAeFw0yNTA5MTEwODE3MThaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzI4NThkLWZiMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhUxeLmtA5wwopQyaWOMvn5vZCPK2hIuipJbtOYp+BJsDoYz4IVSBLGzW0pnsY s8EePEmxRDEGVUMP3oZBziNqgeaDyoWECqkmoHdOQTM/LxU5P5rO3jbCjaQ5FeeK GffVlgUt9QrJWAlYJ4XqB7+/tBRA/h9+xBrnOkwrP8g6wJFgkhvtge9R5xhx6D7h dDcagasGH69BT1WHoO5ywvM2TOmIPDIFQoQf+QVmz0OtAfc7K03DgTpk6e7Wj1rG YgsRnhrM7XpjPuUNxGkjQmwoJ/ZdBQ0dJLGKiIHbeYsMutuKoyEr7+HFhJjjNEDO VwIxpNiSUCGaBlbN2HdD+LR1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSw9GMkJx 91EKArqSUQFsEXphxX0wHwYDVR0jBBgwFoAUmgI7gKvPTmeX04jA3oFgoW6xXf4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGNkVGL0FDQkY2RjJBNTc0 MjExRjBCRURCNDU1Q0M0RjlBRTAyL21nSTdnS3ZQVG1lWDA0akEzb0Znb1c2eFhm NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWdJN2dLdlBUbWVYMDRqQTNvRmdvVzZ4WGY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjZFRi9BQ0JGNkYyQTU3NDIxMUYwQkVEQjQ1NUNDNEY5QUUwMi8zQzE1RjkyODU3 OTMxMUYwQjI5NkMwMzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeZnjANBgkqhkiG9w0BAQsFAAOCAQEASt5k7UZ8VDYGDDBF lr0kFXIlegTmtpe9ZYZLzQOLZtTH7/g7/yrwCHbv13KhCdTcwb9FN++LyLgh/54d sUEhcjOEHGulT81fhLpWsj+oWex3zJ4c1J0sAZjqZUMAIcoYYq75rPm33a9Up2HQ YqWNrnjpooJMD7xo7sA51dT5rNxElePsfXBZhZo6B7M3E2nJuWzMrzZIMxmY26Rc p+GM2JgbEOBGGFKODJSz1XOs3PqAaLpdGNqZUQoIVO5/NfvwjHll1ioOGd1LEG5S W2dbB3A3BUuND38jm0ihK1+HQeTpBADFWEFBHBi1zqSZNVULegNNaXcrPMhEVA8T m8DxvA== -----END CERTIFICATE-----Generated at Tue Oct 21 02:15:26 2025 by rpki-client