$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/8853B5C200FF11F09AD9E43CC4F9AE02.roa File: 8853B5C200FF11F09AD9E43CC4F9AE02.roa (raw, json) Hash identifier: t8g0TTy4YGFvQXwZnct80hhfss/se7oSfHwclY8CQ4Q= Subject key identifier: 27:E5:D0:0A:EF:4D:BA:D1:91:EB:43:E3:B2:9B:50:26:1A:AE:42:EC Certificate issuer: /CN=A91EFFF0/serialNumber=AEFCE4BA24DFA6ED64E41E4F2451C9E884AE69A2 Certificate serial: 1377 Authority key identifier: AE:FC:E4:BA:24:DF:A6:ED:64:E4:1E:4F:24:51:C9:E8:84:AE:69:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/8853B5C200FF11F09AD9E43CC4F9AE02.roa Signing time: Sat 04 Oct 2025 08:41:56 +0000 ROA not before: Sat 04 Oct 2025 08:41:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153174 IP address blocks: 103.115.33.0/24 maxlen: 24 103.139.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.crl rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4983 (0x1377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFFF0, serialNumber=AEFCE4BA24DFA6ED64E41E4F2451C9E884AE69A2 Validity Not Before: Oct 4 08:41:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68e0ddd4-1cd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b3:9d:a4:8e:dd:67:61:83:e6:76:ac:58:93: ad:b7:fa:00:d4:33:1c:d7:c0:08:f2:2e:8d:9f:a9: ec:21:24:82:cd:5d:0d:a3:11:60:da:5b:e8:59:13: d4:f9:02:b1:d1:24:ee:3b:fe:b4:d7:12:b6:ba:ef: e8:b3:60:47:3b:4c:51:cb:c0:ce:3d:e2:75:3e:d2: 9f:13:d3:68:39:57:4a:0a:f8:fe:50:fc:f3:1c:7a: 16:6a:f8:bf:a7:af:9c:2b:00:39:19:65:fd:a0:04: f3:51:71:7e:76:fd:b4:9e:74:b0:e6:cf:d5:a1:b0: a2:c9:a1:59:f9:46:ea:a1:01:0c:d7:3e:c7:52:52: fb:97:8d:f4:40:07:ea:57:7e:a9:ab:5f:92:c8:84: 80:c9:b8:e0:bf:43:42:cb:98:48:35:fe:45:14:e0: 90:33:2e:28:63:fe:da:33:6e:f7:96:28:8d:a3:2a: 1f:8f:39:eb:ce:f5:29:17:66:76:04:ff:26:dd:1f: 5f:34:b3:4b:c5:25:17:13:11:eb:e5:44:e1:92:ec: 2c:dc:d7:2d:8a:62:17:e3:21:7f:ac:48:89:3a:b7: 20:73:b8:0d:57:fd:b4:e6:af:a4:62:a6:6b:4d:4f: 36:aa:70:b2:5c:ab:a1:e0:3f:aa:c7:6b:35:9e:f4: ba:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E5:D0:0A:EF:4D:BA:D1:91:EB:43:E3:B2:9B:50:26:1A:AE:42:EC X509v3 Authority Key Identifier: keyid:AE:FC:E4:BA:24:DF:A6:ED:64:E4:1E:4F:24:51:C9:E8:84:AE:69:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/8853B5C200FF11F09AD9E43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.33.0/24 103.139.80.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:87:ab:50:24:2a:c6:60:54:25:44:a3:50:f0:ad:0a:e6:0f: c1:d3:ae:cc:70:a9:5d:cd:5b:6f:1d:c2:fa:23:bb:37:f1:86: 99:05:73:58:f2:6d:63:71:86:5c:27:9b:2b:fd:26:04:18:17: 66:9e:36:15:98:4d:32:fd:eb:b0:97:ec:09:37:be:16:4c:59: d4:d7:62:2b:5b:10:74:62:27:e9:08:90:ac:e4:87:6e:11:9e: b2:75:60:f8:f4:f9:9c:fc:bc:b2:88:45:c6:1c:ae:a5:cf:ba: 28:f9:49:d8:7f:88:00:b7:36:95:44:03:fa:ea:c5:6b:b2:f2: ae:77:84:ff:35:98:36:a7:7f:85:77:ce:1e:fc:d7:df:a1:04: 4a:fb:d0:60:36:b6:76:1a:7b:79:d8:ba:2d:b3:aa:fe:fb:7c: 24:b1:44:86:28:04:76:ec:46:ba:fc:dc:fb:c0:f9:90:8e:4a: 0e:0f:f0:4c:56:a1:71:24:62:06:46:c0:5d:91:ba:ac:84:f6: b8:ec:8c:33:e4:82:2b:f4:31:ea:f1:75:4a:ff:31:2e:36:f2: fb:9f:6e:ae:6c:e4:c2:c7:96:3c:b4:75:99:1f:ff:1a:47:35: ff:f4:41:38:0c:55:5e:1c:26:f3:09:de:a0:52:a1:b1:97:69: 5b:68:6a:8b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICE3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZGRjAxMTAvBgNVBAUTKEFFRkNFNEJBMjRERkE2RUQ2NEU0MUU0RjI0NTFDOUU4 ODRBRTY5QTIwHhcNMjUxMDA0MDg0MTU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUwZGRkNC0xY2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7LOdpI7dZ2GD5nasWJOtt/oA1DMc18AI8i6Nn6nsISSCzV0NoxFg2lvoWRPU +QKx0STuO/601xK2uu/os2BHO0xRy8DOPeJ1PtKfE9NoOVdKCvj+UPzzHHoWavi/ p6+cKwA5GWX9oATzUXF+dv20nnSw5s/VobCiyaFZ+UbqoQEM1z7HUlL7l430QAfq V36pq1+SyISAybjgv0NCy5hINf5FFOCQMy4oY/7aM273liiNoyofjznrzvUpF2Z2 BP8m3R9fNLNLxSUXExHr5UThkuws3NctimIX4yF/rEiJOrcgc7gNV/205q+kYqZr TU82qnCyXKuh4D+qx2s1nvS6qwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCfl0Arv TbrRketD47KbUCYarkLsMB8GA1UdIwQYMBaAFK785Lok36btZOQeTyRRyeiErmmi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkZGMC80NEZFQkM5MkFE QjIxMUU4OUM5QjQ1NTNDNEY5QUUwMi9ydnprdWlUZnB1MWs1QjVQSkZISjZJU3Vh YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J2emt1aVRmcHUxazVCNVBKRkhKNklTdWFhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZGRjAvNDRGRUJDOTJBREIyMTFFODlDOUI0NTUzQzRGOUFFMDIvODg1M0I1QzIw MEZGMTFGMDlBRDlFNDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABncyEDBABni1AwDQYJKoZIhvcNAQELBQADggEBAA6Hq1Ak KsZgVCVEo1DwrQrmD8HTrsxwqV3NW28dwvojuzfxhpkFc1jybWNxhlwnmyv9JgQY F2aeNhWYTTL967CX7Ak3vhZMWdTXYitbEHRiJ+kIkKzkh24RnrJ1YPj0+Zz8vLKI RcYcrqXPuij5Sdh/iAC3NpVEA/rqxWuy8q53hP81mDanf4V3zh7819+hBEr70GA2 tnYae3nYui2zqv77fCSxRIYoBHbsRrr83PvA+ZCOSg4P8ExWoXEkYgZGwF2RuqyE 9rjsjDPkgiv0MerxdUr/MS428vufbq5s5MLHljy0dZkf/xpHNf/0QTgMVV4cJvMJ 3qBSobGXaVtoaos= -----END CERTIFICATE-----Generated at Mon Oct 20 21:07:36 2025 by rpki-client