$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/D1054582A0C111EEA54E2F0BC4F9AE02.roa File: D1054582A0C111EEA54E2F0BC4F9AE02.roa (raw, json) Hash identifier: LiqmtbZL/k65yoRZh2qeTmSOnyQ0Qghej6NC1OoEsfo= Subject key identifier: 6B:7D:AD:61:B8:1C:8F:4C:5A:01:77:59:34:80:03:7D:E5:16:26:47 Certificate issuer: /CN=A91F0695/serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Certificate serial: 0154 Authority key identifier: D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/D1054582A0C111EEA54E2F0BC4F9AE02.roa Signing time: Thu 09 Oct 2025 05:03:56 +0000 ROA not before: Thu 09 Oct 2025 05:03:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151828 IP address blocks: 103.173.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0695, serialNumber=D69F8650D97A524C299453CCB48D77B4E65FDF22 Validity Not Before: Oct 9 05:03:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e7423c-a163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:19:82:3f:a5:38:4a:eb:9d:6d:af:eb:95:71: ac:08:cf:a8:69:e7:58:4d:91:a2:b5:08:85:0b:bd: cf:1d:77:87:cf:75:e2:b0:74:6e:1b:91:f9:44:31: 2f:39:56:c8:e0:fb:9e:cd:b3:b9:f7:ae:f0:be:19: 48:15:fd:fa:25:c8:d8:24:ee:ba:9f:c1:9c:e5:a4: f6:d4:01:30:ae:53:ab:fb:34:0f:0d:e8:d5:88:8d: 57:07:06:ce:58:17:28:f5:f4:4a:82:34:4d:9d:b2: 61:93:5d:6b:9b:d2:4a:86:0f:f1:35:9d:06:55:40: 44:e8:43:a8:b9:55:71:12:fe:71:c0:84:0c:54:bd: 64:ae:ed:1e:4d:fb:57:16:34:f9:5f:bc:75:ff:fb: da:68:4e:71:c8:2d:e9:94:a1:28:b3:79:b6:b4:cc: 10:b3:2d:86:16:a2:db:2b:65:1e:d2:fe:d3:69:86: 0c:bf:5c:59:83:d1:64:cb:83:e7:b0:49:bb:62:4b: a4:50:23:73:18:8e:06:06:2b:2c:dd:90:04:d5:f5: e9:f4:4a:23:4d:65:be:a3:d0:fa:13:f4:2d:26:d0: bf:60:fa:3c:6e:3a:1e:47:34:50:06:f4:65:5e:52: 2c:28:d0:51:d2:b0:2a:90:fb:97:48:cb:69:36:d2: 5e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7D:AD:61:B8:1C:8F:4C:5A:01:77:59:34:80:03:7D:E5:16:26:47 X509v3 Authority Key Identifier: keyid:D6:9F:86:50:D9:7A:52:4C:29:94:53:CC:B4:8D:77:B4:E6:5F:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/1p-GUNl6UkwplFPMtI13tOZf3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1p-GUNl6UkwplFPMtI13tOZf3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0695/7C678148A0C111EEB223294AC4F9AE02/D1054582A0C111EEA54E2F0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.145.0/24 Signature Algorithm: sha256WithRSAEncryption 69:bd:23:a4:d4:5f:e0:b7:ee:16:57:aa:e2:86:3a:cf:bd:27: f0:45:ba:00:17:bb:fe:56:38:42:ad:9d:5c:b7:60:ba:18:57: f9:38:fb:24:ed:c3:02:8a:42:b1:d6:13:6c:f4:78:3b:67:62: 3e:6b:60:55:dc:3b:22:ec:aa:df:f6:ac:24:5a:93:ec:73:c2: 84:ae:2e:16:03:6d:26:08:5d:9a:2d:e6:2e:eb:3c:cc:73:45: 26:09:2f:c0:2c:c3:af:c0:56:9b:55:ba:0a:4c:38:b8:10:75: 23:47:b1:e6:65:ea:c2:d8:a7:f9:b4:86:ec:56:09:fc:41:83: 10:3e:8c:74:92:2d:29:0a:91:d3:4d:83:4c:cd:36:db:3e:67: c0:c7:a2:b7:3e:4b:bd:d0:52:36:05:ae:17:86:8f:9b:46:a2: 93:6b:42:92:35:74:f7:a7:0f:64:4f:41:6e:69:b8:bd:32:24: 43:02:a9:62:a3:94:af:c9:ef:7e:b7:d0:e5:aa:5f:da:29:a3: c3:a7:ce:15:54:b2:15:e7:4f:3b:5f:e9:cc:da:36:53:6c:0c: fc:68:e9:0b:19:5f:3b:36:d2:36:b3:33:c8:06:69:1a:66:77: 0c:93:f3:9b:21:af:a0:b9:b2:66:07:83:38:d3:c7:cc:7f:61: 20:70:36:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA2OTUxMTAvBgNVBAUTKEQ2OUY4NjUwRDk3QTUyNEMyOTk0NTNDQ0I0OEQ3N0I0 RTY1RkRGMjIwHhcNMjUxMDA5MDUwMzU2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3NDIzYy1hMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhmCP6U4Suudba/rlXGsCM+oaedYTZGitQiFC73PHXeHz3XisHRuG5H5RDEv OVbI4PuezbO5967wvhlIFf36JcjYJO66n8Gc5aT21AEwrlOr+zQPDejViI1XBwbO WBco9fRKgjRNnbJhk11rm9JKhg/xNZ0GVUBE6EOouVVxEv5xwIQMVL1kru0eTftX FjT5X7x1//vaaE5xyC3plKEos3m2tMwQsy2GFqLbK2Ue0v7TaYYMv1xZg9Fky4Pn sEm7YkukUCNzGI4GBiss3ZAE1fXp9EojTWW+o9D6E/QtJtC/YPo8bjoeRzRQBvRl XlIsKNBR0rAqkPuXSMtpNtJedwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGt9rWG4 HI9MWgF3WTSAA33lFiZHMB8GA1UdIwQYMBaAFNafhlDZelJMKZRTzLSNd7TmX98i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDY5NS83QzY3ODE0OEEw QzExMUVFQjIyMzI5NEFDNEY5QUUwMi8xcC1HVU5sNlVrd3BsRlBNdEkxM3RPWmYz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwLUdVTmw2VWt3cGxGUE10STEzdE9aZjN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjA2OTUvN0M2NzgxNDhBMEMxMTFFRUIyMjMyOTRBQzRGOUFFMDIvRDEwNTQ1ODJB MEMxMTFFRUE1NEUyRjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrZEwDQYJKoZIhvcNAQELBQADggEBAGm9I6TUX+C37hZX quKGOs+9J/BFugAXu/5WOEKtnVy3YLoYV/k4+yTtwwKKQrHWE2z0eDtnYj5rYFXc OyLsqt/2rCRak+xzwoSuLhYDbSYIXZot5i7rPMxzRSYJL8Asw6/AVptVugpMOLgQ dSNHseZl6sLYp/m0huxWCfxBgxA+jHSSLSkKkdNNg0zNNts+Z8DHorc+S73QUjYF rheGj5tGopNrQpI1dPenD2RPQW5puL0yJEMCqWKjlK/J73630OWqX9opo8OnzhVU shXnTztf6czaNlNsDPxo6QsZXzs20jazM8gGaRpmdwyT85shr6C5smYHgzjTx8x/ YSBwNvE= -----END CERTIFICATE-----Generated at Mon Oct 20 17:13:23 2025 by rpki-client