$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/5773966456D011EE9C8F8C56C4F9AE02.roa File: 5773966456D011EE9C8F8C56C4F9AE02.roa (raw, json) Hash identifier: x2IufiQn+o6fO8TwkuSy4JUlOZ9Y/ivtBlJ3m5qHF8E= Subject key identifier: D0:F3:C2:E3:D5:E3:B5:59:38:19:63:D6:EA:E8:9F:8C:06:A6:0C:D2 Certificate issuer: /CN=A91FD1C3/serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Certificate serial: 018B Authority key identifier: 18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/5773966456D011EE9C8F8C56C4F9AE02.roa Signing time: Tue 07 Oct 2025 23:57:27 +0000 ROA not before: Tue 07 Oct 2025 23:57:27 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151799 IP address blocks: 103.77.180.0/23 maxlen: 23 103.77.180.0/24 maxlen: 24 103.77.181.0/24 maxlen: 24 203.26.225.0/24 maxlen: 24 2401:dea0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD1C3, serialNumber=187A2D35BAF9057C0F0B8D262D2E5D6226A32382 Validity Not Before: Oct 7 23:57:27 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68e5a8e7-2d84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:74:f6:1e:54:99:0e:a0:24:bd:f3:72:ab:61: 63:db:6f:6d:c8:ca:8f:e5:6b:70:e5:7e:e0:d7:ed: bc:3a:2a:cc:19:a0:31:01:20:5b:5a:ba:cd:14:30: 6e:18:93:56:83:90:14:53:5a:90:3a:1f:cf:c3:c0: 7f:cd:79:9d:6b:c4:88:69:21:9b:ad:ea:6e:08:c8: ce:47:98:60:fa:79:fd:cf:72:8a:99:b3:3a:81:b7: 85:93:c6:79:2c:54:96:51:50:f9:42:59:ed:d7:35: 2c:a0:9a:b0:87:0f:41:6f:22:e3:09:b4:28:c6:0c: ff:76:87:92:e2:99:e7:aa:3c:3f:5e:a0:12:ad:ca: c6:46:1e:f5:a8:6a:ff:04:ad:24:5f:a9:ae:5c:29: 9e:f6:7d:c1:d1:be:ec:e6:79:69:ff:2b:45:2a:4b: f8:d6:78:f9:69:06:b4:f6:2e:8a:4c:4a:9e:fa:3a: 52:56:82:91:af:e8:72:43:6b:4b:13:59:16:37:18: ed:42:f2:7b:c6:92:81:9e:5e:5f:d4:80:9d:4c:01: 1a:19:1f:1f:df:6e:b9:ba:80:cc:8c:3c:f2:27:71: 26:3d:6c:a7:da:d4:f5:fb:bb:12:bd:3d:6b:7e:4b: 10:8b:59:e0:77:f4:b0:4e:cc:cf:0d:a0:34:cc:2c: b6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F3:C2:E3:D5:E3:B5:59:38:19:63:D6:EA:E8:9F:8C:06:A6:0C:D2 X509v3 Authority Key Identifier: keyid:18:7A:2D:35:BA:F9:05:7C:0F:0B:8D:26:2D:2E:5D:62:26:A3:23:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/GHotNbr5BXwPC40mLS5dYiajI4I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHotNbr5BXwPC40mLS5dYiajI4I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD1C3/FB71C56656CF11EEA8C50456C4F9AE02/5773966456D011EE9C8F8C56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.180.0/23 203.26.225.0/24 IPv6: 2401:dea0::/32 Signature Algorithm: sha256WithRSAEncryption b0:a7:ee:cc:e7:ba:13:b6:55:7f:f4:b8:ec:d5:b4:15:91:bf: e3:fb:2b:c3:8e:42:f7:71:f6:30:35:10:d9:b8:f9:ae:9e:7e: 7b:95:8b:42:65:e4:a7:f5:3c:ec:89:19:82:d5:48:2d:e1:a9: 7c:6b:f7:cf:11:4b:bd:0d:2e:dc:d4:37:d0:e8:07:9e:9e:b8: 33:bf:08:6e:8d:a9:c6:66:86:1c:51:90:6d:95:e1:5d:69:c9: 9c:54:1e:47:d4:50:4f:5c:b2:d3:b3:ed:ec:b8:0f:21:a0:b5: 5e:95:20:cc:d7:be:da:7f:80:00:e4:69:6b:ed:a3:51:8b:a1: 3c:df:9c:61:62:f8:f4:87:18:b3:09:6e:c4:22:4a:98:d7:c2: 59:97:8f:f3:88:d5:5e:70:bb:3e:26:af:95:89:70:17:5b:85: 5d:16:3c:a0:42:57:b8:26:bf:92:6a:7e:20:b9:1f:4f:32:06: 70:7c:19:0a:25:76:fa:14:ea:a1:58:49:75:ae:c0:fa:21:7f: 95:6b:70:8a:a4:3e:ae:a5:6a:19:cd:e9:09:4c:16:11:7a:97: ec:9f:3f:da:32:d3:d8:95:23:a7:b5:af:40:27:78:b0:64:6a: 6a:c5:75:c6:c3:59:40:af:dc:71:ed:f4:75:a0:49:47:27:e9: 91:10:de:bc -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQxQzMxMTAvBgNVBAUTKDE4N0EyRDM1QkFGOTA1N0MwRjBCOEQyNjJEMkU1RDYy MjZBMzIzODIwHhcNMjUxMDA3MjM1NzI3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU1YThlNy0yZDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnT2HlSZDqAkvfNyq2Fj229tyMqP5Wtw5X7g1+28OirMGaAxASBbWrrNFDBu GJNWg5AUU1qQOh/Pw8B/zXmda8SIaSGbrepuCMjOR5hg+nn9z3KKmbM6gbeFk8Z5 LFSWUVD5Qlnt1zUsoJqwhw9BbyLjCbQoxgz/doeS4pnnqjw/XqASrcrGRh71qGr/ BK0kX6muXCme9n3B0b7s5nlp/ytFKkv41nj5aQa09i6KTEqe+jpSVoKRr+hyQ2tL E1kWNxjtQvJ7xpKBnl5f1ICdTAEaGR8f3265uoDMjDzyJ3EmPWyn2tT1+7sSvT1r fksQi1ngd/SwTszPDaA0zCy2pQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNDzwuPV 47VZOBlj1uron4wGpgzSMB8GA1UdIwQYMBaAFBh6LTW6+QV8DwuNJi0uXWImoyOC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDFDMy9GQjcxQzU2NjU2 Q0YxMUVFQThDNTA0NTZDNEY5QUUwMi9HSG90TmJyNUJYd1BDNDBtTFM1ZFlpYWpJ NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIb3ROYnI1Qlh3UEM0MG1MUzVkWWlhakk0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQxQzMvRkI3MUM1NjY1NkNGMTFFRUE4QzUwNDU2QzRGOUFFMDIvNTc3Mzk2NjQ1 NkQwMTFFRTlDOEY4QzU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnTbQDBADLGuEwDQQCAAIwBwMFACQB3qAwDQYJKoZIhvcN AQELBQADggEBALCn7sznuhO2VX/0uOzVtBWRv+P7K8OOQvdx9jA1ENm4+a6efnuV i0Jl5Kf1POyJGYLVSC3hqXxr988RS70NLtzUN9DoB56euDO/CG6NqcZmhhxRkG2V 4V1pyZxUHkfUUE9cstOz7ey4DyGgtV6VIMzXvtp/gADkaWvto1GLoTzfnGFi+PSH GLMJbsQiSpjXwlmXj/OI1V5wuz4mr5WJcBdbhV0WPKBCV7gmv5JqfiC5H08yBnB8 GQoldvoU6qFYSXWuwPohf5VrcIqkPq6lahnN6QlMFhF6l+yfP9oy09iVI6e1r0An eLBkamrFdcbDWUCv3HHt9HWgSUcn6ZEQ3rw= -----END CERTIFICATE-----Generated at Mon Oct 20 12:39:02 2025 by rpki-client