$ rpki-client -vvf rpki.apnic.net/member_repository/A91197BC/A8CAFBC2AA2811EA81B19681C4F9AE02/51408896A3E211EF8DAB713BC4F9AE02.roa File: 51408896A3E211EF8DAB713BC4F9AE02.roa (raw, json) Hash identifier: nnJopRuWF4IPI2CoSPvt+TdVM1R3rgDYOUPBMtlzCqI= Subject key identifier: 67:48:C2:11:E9:D3:08:FD:C4:32:48:58:79:22:F4:46:C5:9E:ED:D2 Certificate issuer: /CN=A91197BC/serialNumber=DB6250657FEBC164EB821C7652ABE3A85FA9ACD4 Certificate serial: 098B Authority key identifier: DB:62:50:65:7F:EB:C1:64:EB:82:1C:76:52:AB:E3:A8:5F:A9:AC:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/22JQZX_rwWTrghx2UqvjqF-prNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91197BC/A8CAFBC2AA2811EA81B19681C4F9AE02/51408896A3E211EF8DAB713BC4F9AE02.roa Signing time: Fri 31 Oct 2025 20:40:16 +0000 ROA not before: Fri 31 Oct 2025 20:40:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 38805 IP address blocks: 103.71.100.0/23 maxlen: 23 124.158.104.0/21 maxlen: 21 124.158.119.0/24 maxlen: 24 124.158.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91197BC/A8CAFBC2AA2811EA81B19681C4F9AE02/22JQZX_rwWTrghx2UqvjqF-prNQ.crl rsync://rpki.apnic.net/member_repository/A91197BC/A8CAFBC2AA2811EA81B19681C4F9AE02/22JQZX_rwWTrghx2UqvjqF-prNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/22JQZX_rwWTrghx2UqvjqF-prNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2443 (0x98b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91197BC, serialNumber=DB6250657FEBC164EB821C7652ABE3A85FA9ACD4 Validity Not Before: Oct 31 20:40:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69051eaf-bca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:87:8a:10:45:f3:6f:ae:6c:7a:3a:7e:16:b2: 67:9f:92:19:36:ec:21:a2:1b:55:f7:62:c7:8e:6a: 8f:78:f6:d8:b9:4f:2c:51:55:58:14:de:0e:7a:fd: 03:1c:8d:50:ff:dd:81:98:79:b5:71:d8:89:fa:b8: 2f:d9:c0:f5:82:85:6b:a4:09:3c:51:59:80:d6:fb: c2:2e:49:78:2b:e6:79:43:4a:06:62:5a:de:c8:b2: 4f:63:ed:f1:18:4c:86:24:1c:75:77:82:8b:db:ef: 4c:bb:56:3a:83:c7:ec:c5:a2:a4:b8:4d:9f:92:65: fe:dc:eb:cb:77:06:f8:35:4b:58:9d:4e:13:4f:1c: 0b:a8:f5:10:21:27:53:5c:d7:09:05:d2:9e:a4:b7: fb:93:ce:de:9d:e5:24:ff:15:f7:e0:ae:cf:30:11: 5e:38:b8:ab:6a:af:10:c1:f7:08:31:b6:02:99:81: e7:c6:15:ab:32:ac:aa:15:b7:1f:e5:83:37:82:ba: 55:d6:2e:fd:e9:1a:0b:73:29:6b:aa:9b:4a:5d:d1: 85:d4:8e:56:01:6f:3f:08:52:0c:8f:06:4b:8f:40: 57:59:e2:56:e0:64:1e:43:45:45:0a:17:db:97:b6: 46:de:da:b9:1a:df:19:a0:e0:f0:4e:ac:9f:e4:01: bd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:48:C2:11:E9:D3:08:FD:C4:32:48:58:79:22:F4:46:C5:9E:ED:D2 X509v3 Authority Key Identifier: keyid:DB:62:50:65:7F:EB:C1:64:EB:82:1C:76:52:AB:E3:A8:5F:A9:AC:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91197BC/A8CAFBC2AA2811EA81B19681C4F9AE02/22JQZX_rwWTrghx2UqvjqF-prNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/22JQZX_rwWTrghx2UqvjqF-prNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91197BC/A8CAFBC2AA2811EA81B19681C4F9AE02/51408896A3E211EF8DAB713BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.100.0/23 124.158.104.0/21 124.158.119.0-124.158.127.255 Signature Algorithm: sha256WithRSAEncryption 78:61:ec:8a:eb:5f:9f:fa:01:89:d5:a3:56:ea:b3:cc:da:6c: e9:ab:da:9d:6f:bb:f9:00:99:cc:eb:f0:9b:06:74:34:6d:22: ac:82:31:b3:29:25:e8:cf:8c:77:66:bd:f7:80:c6:d9:4f:e5: c8:8b:7f:47:aa:3c:df:be:0b:96:b7:e2:84:0f:a9:dc:13:cb: c5:32:3e:1b:29:95:d6:81:f3:e5:2e:cc:5c:86:63:ee:03:82: 76:03:ea:bd:a3:d2:27:de:26:a5:6b:60:a9:82:5d:5e:b3:12: f5:93:fc:ef:17:0b:d8:bc:ea:4f:2d:fb:43:04:6d:51:75:71: 6a:2f:5b:ef:74:77:c4:9e:0b:d2:db:4d:6c:73:3f:b3:db:4a: ce:3f:26:38:af:54:e8:2d:a4:5a:58:ff:2e:a2:7c:bd:d6:cc: 4c:ec:de:f9:82:da:e1:e2:4e:b2:6f:47:4b:73:14:4f:26:b7: 12:ab:50:2e:5c:4a:6d:f9:7c:b1:c4:05:76:d5:c3:34:71:76: 53:b4:aa:be:d1:5d:52:a3:e6:ab:e9:cb:a3:b3:b0:02:9a:71: 60:70:11:dc:90:04:e3:b5:5d:f9:2c:d4:81:c8:dc:0c:eb:98: 09:87:6b:a7:69:05:5b:5b:0e:31:e5:08:72:a7:1b:e1:da:61: 65:f8:41:f8 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3QkMxMTAvBgNVBAUTKERCNjI1MDY1N0ZFQkMxNjRFQjgyMUM3NjUyQUJFM0E4 NUZBOUFDRDQwHhcNMjUxMDMxMjA0MDE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA1MWVhZi1iY2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4eKEEXzb65sejp+FrJnn5IZNuwhohtV92LHjmqPePbYuU8sUVVYFN4Oev0D HI1Q/92BmHm1cdiJ+rgv2cD1goVrpAk8UVmA1vvCLkl4K+Z5Q0oGYlreyLJPY+3x GEyGJBx1d4KL2+9Mu1Y6g8fsxaKkuE2fkmX+3OvLdwb4NUtYnU4TTxwLqPUQISdT XNcJBdKepLf7k87eneUk/xX34K7PMBFeOLiraq8QwfcIMbYCmYHnxhWrMqyqFbcf 5YM3grpV1i796RoLcylrqptKXdGF1I5WAW8/CFIMjwZLj0BXWeJW4GQeQ0VFChfb l7ZG3tq5Gt8ZoODwTqyf5AG9AwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFGdIwhHp 0wj9xDJIWHki9EbFnu3SMB8GA1UdIwQYMBaAFNtiUGV/68Fk64IcdlKr46hfqazU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTdCQy9BOENBRkJDMkFB MjgxMUVBODFCMTk2ODFDNEY5QUUwMi8yMkpRWlhfcndXVHJnaHgyVXF2anFGLXBy TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIySlFaWF9yd1dUcmdoeDJVcXZqcUYtcHJOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTk3QkMvQThDQUZCQzJBQTI4MTFFQTgxQjE5NjgxQzRGOUFFMDIvNTE0MDg4OTZB M0UyMTFFRjhEQUI3MTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAFnR2QDBAN8nmgwDAMEAHyedwMEB3yeADANBgkqhkiG9w0B AQsFAAOCAQEAeGHsiutfn/oBidWjVuqzzNps6avanW+7+QCZzOvwmwZ0NG0irIIx sykl6M+Md2a994DG2U/lyIt/R6o8374LlrfihA+p3BPLxTI+GymV1oHz5S7MXIZj 7gOCdgPqvaPSJ94mpWtgqYJdXrMS9ZP87xcL2LzqTy37QwRtUXVxai9b73R3xJ4L 0ttNbHM/s9tKzj8mOK9U6C2kWlj/LqJ8vdbMTOze+YLa4eJOsm9HS3MUTya3EqtQ LlxKbfl8scQFdtXDNHF2U7SqvtFdUqPmq+nLo7OwAppxYHAR3JAE47Vd+SzUgcjc DOuYCYdrp2kFW1sOMeUIcqcb4dphZfhB+A== -----END CERTIFICATE-----Generated at Tue Nov 4 01:11:45 2025 by rpki-client