$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/D63D48DE604F11F0B5D8E73CC4F9AE02.roa File: D63D48DE604F11F0B5D8E73CC4F9AE02.roa (raw, json) Hash identifier: emv514v8DwKzvHJH8ilfs/YN+XFNOa2awfMLCjPK/mI= Subject key identifier: 89:14:60:53:6C:00:6D:37:19:47:6D:47:97:08:91:0A:36:DA:75:E5 Certificate issuer: /CN=A91FE769/serialNumber=14E172EBE9ED9C3104D54F11AA976223EB376907 Certificate serial: 1C Authority key identifier: 14:E1:72:EB:E9:ED:9C:31:04:D5:4F:11:AA:97:62:23:EB:37:69:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOFy6-ntnDEE1U8RqpdiI-s3aQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/D63D48DE604F11F0B5D8E73CC4F9AE02.roa Signing time: Wed 27 Aug 2025 08:43:43 +0000 ROA not before: Wed 27 Aug 2025 08:43:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 136254 IP address blocks: 103.153.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/FOFy6-ntnDEE1U8RqpdiI-s3aQc.crl rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/FOFy6-ntnDEE1U8RqpdiI-s3aQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOFy6-ntnDEE1U8RqpdiI-s3aQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE769, serialNumber=14E172EBE9ED9C3104D54F11AA976223EB376907 Validity Not Before: Aug 27 08:43:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68aec53f-0ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f8:7d:9c:24:48:45:8d:65:07:6e:fd:b4:6c: d0:63:06:1f:b0:aa:91:31:a4:54:ff:6d:8b:62:b2: 9c:e2:8c:62:d5:1b:ea:47:d8:53:db:43:db:9d:03: eb:e8:45:ad:d5:f9:5a:07:80:3c:ac:12:8b:92:b0: 34:fe:cf:75:75:f0:2c:b1:61:82:bf:4e:df:26:a6: 26:20:ad:2f:d2:11:3d:bc:fa:98:07:92:3a:16:96: db:5c:b7:f5:56:77:28:ab:58:ab:7f:0e:68:93:d2: 12:ab:7e:59:ee:0c:53:35:ce:d9:3e:be:e4:f4:30: a8:89:2e:83:61:3c:5c:7c:fd:10:46:e8:ec:a7:8b: be:82:14:54:93:ce:5a:8e:0a:b9:97:b2:41:aa:8b: 8c:bf:d9:f3:1c:34:1c:87:12:42:37:1d:c3:1b:37: 4e:75:40:07:e0:be:3d:5e:f2:e5:29:a3:86:06:7d: 0d:66:4a:80:51:38:bd:97:67:85:75:4f:99:e7:d3: cd:0c:40:a4:0e:fd:9d:19:02:03:a8:e9:aa:3f:51: 73:c3:7a:1c:82:6f:a4:cb:58:c5:fb:36:19:90:6d: 08:c2:69:eb:a8:42:78:71:75:24:74:21:cc:44:7a: c5:7b:96:64:d4:aa:61:9f:9c:89:c0:14:b6:3b:a8: 67:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:14:60:53:6C:00:6D:37:19:47:6D:47:97:08:91:0A:36:DA:75:E5 X509v3 Authority Key Identifier: keyid:14:E1:72:EB:E9:ED:9C:31:04:D5:4F:11:AA:97:62:23:EB:37:69:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/FOFy6-ntnDEE1U8RqpdiI-s3aQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOFy6-ntnDEE1U8RqpdiI-s3aQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE769/C5D6A57E604C11F090816A15C4F9AE02/D63D48DE604F11F0B5D8E73CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.59.0/24 Signature Algorithm: sha256WithRSAEncryption b7:ca:5a:fc:14:e0:36:58:47:93:28:2d:2d:fb:be:b5:01:59: 38:0c:0f:ec:0e:e8:4b:e9:15:3c:ed:f0:03:45:c4:ac:e8:11: 82:68:d8:c4:9d:6e:6f:8f:76:2d:e7:ce:cb:8e:be:ba:39:31: 5a:36:f8:29:b6:d2:bb:a0:a8:73:d4:ac:33:2b:d6:8b:93:ff: e4:dc:6a:e5:f8:f0:0d:f4:45:ed:ff:4a:5e:b3:01:ea:d4:6c: b7:84:57:f4:f0:87:a7:89:9b:f4:8c:13:ef:42:20:a8:1b:cd: cd:a8:84:ac:eb:64:11:29:df:4d:eb:50:66:3a:79:7e:e5:20: 72:45:c0:d9:e7:ed:3e:b8:52:ba:7a:4f:b0:f5:4a:7c:5f:ae: ae:65:42:6c:61:5f:d5:e0:6f:28:b5:70:0c:3f:e8:ab:93:35: a3:23:f3:4d:41:bd:ea:19:a6:c8:8a:09:88:d3:3d:f9:89:ed: 6b:d8:b6:4f:f5:e6:85:ad:60:75:5a:0d:e8:32:f0:bc:07:d4: 16:94:89:af:c7:80:4e:ac:88:35:bf:f3:eb:c8:bc:4a:7b:88: 33:4a:8f:36:97:bd:e2:82:ca:2c:aa:0e:36:6c:a3:b6:ff:d5: 8f:66:9e:8f:e8:c2:dd:a3:d2:6a:87:2a:c8:6e:13:1b:de:fa: f0:0a:dc:48 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RTc2OTExMC8GA1UEBRMoMTRFMTcyRUJFOUVEOUMzMTA0RDU0RjExQUE5NzYyMjNF QjM3NjkwNzAeFw0yNTA4MjcwODQzNDNaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YWVjNTNmLTBlZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC+H2cJEhFjWUHbv20bNBjBh+wqpExpFT/bYtispzijGLVG+pH2FPbQ9udA+vo Ra3V+VoHgDysEouSsDT+z3V18CyxYYK/Tt8mpiYgrS/SET28+pgHkjoWlttct/VW dyirWKt/DmiT0hKrflnuDFM1ztk+vuT0MKiJLoNhPFx8/RBG6Oyni76CFFSTzlqO CrmXskGqi4y/2fMcNByHEkI3HcMbN051QAfgvj1e8uUpo4YGfQ1mSoBROL2XZ4V1 T5nn080MQKQO/Z0ZAgOo6ao/UXPDehyCb6TLWMX7NhmQbQjCaeuoQnhxdSR0IcxE esV7lmTUqmGfnInAFLY7qGePAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUiRRgU2wA bTcZR21HlwiRCjbadeUwHwYDVR0jBBgwFoAUFOFy6+ntnDEE1U8RqpdiI+s3aQcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFNzY5L0M1RDZBNTdFNjA0 QzExRjA5MDgxNkExNUM0RjlBRTAyL0ZPRnk2LW50bkRFRTFVOFJxcGRpSS1zM2FR Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRk9GeTYtbnRuREVFMVU4UnFwZGlJLXMzYVFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTc2OS9DNUQ2QTU3RTYwNEMxMUYwOTA4MTZBMTVDNEY5QUUwMi9ENjNENDhERTYw NEYxMUYwQjVEOEU3M0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeZOzANBgkqhkiG9w0BAQsFAAOCAQEAt8pa/BTgNlhHkygt Lfu+tQFZOAwP7A7oS+kVPO3wA0XErOgRgmjYxJ1ub492LefOy46+ujkxWjb4KbbS u6Coc9SsMyvWi5P/5Nxq5fjwDfRF7f9KXrMB6tRst4RX9PCHp4mb9IwT70IgqBvN zaiErOtkESnfTetQZjp5fuUgckXA2eftPrhSunpPsPVKfF+urmVCbGFf1eBvKLVw DD/oq5M1oyPzTUG96hmmyIoJiNM9+Ynta9i2T/Xmha1gdVoN6DLwvAfUFpSJr8eA TqyINb/z68i8SnuIM0qPNpe94oLKLKoONmyjtv/Vj2aej+jC3aPSaocqyG4TG976 8ArcSA== -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:42 2025 by rpki-client