$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/5DCB0A0C410C11EA8A6C412DC4F9AE02.roa File: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (raw, json) Hash identifier: +N5jmkplHBxyDznfmd7ebgnemm9ct5hvDRURAbbUFuc= Subject key identifier: 5B:D5:D7:92:BC:03:F8:32:54:C9:22:21:24:CE:37:EC:F4:A7:BA:21 Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 0B65 Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/5DCB0A0C410C11EA8A6C412DC4F9AE02.roa Signing time: Tue 04 Nov 2025 19:38:06 +0000 ROA not before: Tue 04 Nov 2025 19:38:06 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 63844 IP address blocks: 103.41.244.0/23 maxlen: 24 103.77.252.0/23 maxlen: 24 116.206.252.0/22 maxlen: 24 2405:9140::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2917 (0xb65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE, serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: Nov 4 19:38:06 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690a561e-4565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:80:53:de:df:cb:8a:3f:d5:a2:a4:91:53:8d: 60:ca:4d:9e:c9:5e:52:12:f7:f4:23:ae:60:7f:37: 23:dc:89:16:0d:9a:33:60:93:1b:ed:c7:b4:30:9a: 8e:59:dd:eb:15:2e:b6:4d:bf:e3:b3:bc:f7:82:e0: cf:31:34:c8:18:a9:e6:2a:27:15:8e:31:f8:62:de: 20:02:53:f5:7d:97:aa:ca:7a:0d:e4:48:b5:c3:11: 9c:5d:fa:37:c9:17:3d:4b:57:c3:93:f1:9f:0b:d6: e9:2c:25:24:6d:2a:bc:fc:0c:a0:3f:4d:f3:19:b8: 9f:80:26:8a:58:0e:a3:a1:31:9f:03:85:f4:19:e5: dd:e9:62:ea:91:e8:1d:60:9b:da:cb:0a:0b:f3:6f: 79:4a:15:1b:52:6d:71:1c:74:04:f3:94:01:40:ac: d5:68:da:f4:63:60:87:97:66:50:27:6e:e3:e9:98: 09:7d:92:8b:87:72:df:e5:eb:82:0f:e4:81:7a:2d: fb:10:61:05:e8:39:88:40:67:b0:d9:e9:47:67:c7: 03:59:34:a1:ae:1e:63:1d:20:7c:39:c4:2e:55:2d: 32:ee:48:9b:ff:cb:7b:b9:6b:8f:42:5c:60:16:a1: 50:36:99:b1:b3:74:6e:de:c5:f1:73:ca:27:d8:96: 0e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D5:D7:92:BC:03:F8:32:54:C9:22:21:24:CE:37:EC:F4:A7:BA:21 X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/5DCB0A0C410C11EA8A6C412DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.244.0/23 103.77.252.0/23 116.206.252.0/22 IPv6: 2405:9140::/32 Signature Algorithm: sha256WithRSAEncryption 86:bd:d4:93:fa:d8:81:6b:0a:76:e0:0b:df:5d:52:34:2b:60: 2a:4f:60:6a:5e:7f:17:c5:13:c6:2c:d8:6e:c1:07:df:17:5d: d2:17:e1:ab:5d:11:78:ea:d3:1e:4b:ed:d0:3d:8d:ae:73:83: 5f:53:4b:0b:c8:aa:c4:05:27:d6:1e:9d:88:6f:3d:77:86:3f: 77:45:2b:3a:df:9b:5a:8b:43:90:ad:e0:8b:3a:57:a0:91:3d: 55:5d:71:2e:06:65:ee:f3:01:e3:1a:f1:22:8e:93:5b:d1:70: de:ca:03:73:09:ea:ed:40:55:91:46:58:5d:8f:e8:b0:61:07: 9f:3e:9c:67:08:16:47:53:91:9b:1e:09:a4:f5:ba:d1:03:44: df:f8:52:65:ac:50:df:3f:7c:79:a1:01:54:86:a0:0b:22:fb: f2:e5:01:c4:12:41:df:dc:fc:51:d8:0a:5c:0d:ce:6c:ee:08: a3:ee:4d:65:e9:f8:05:03:bf:77:2f:c7:7f:c5:d3:ea:1e:6a: f3:ba:f3:ce:1d:e2:d2:00:c2:ed:ff:aa:6a:e3:48:fd:08:1f: e9:93:92:a6:8c:e1:4c:f3:e0:30:b5:d0:dc:84:8b:03:a0:f0: 66:fb:58:ff:63:26:7c:82:65:1c:97:2f:bb:c3:dd:99:14:83: d2:f7:ae:a4 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICC2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjUxMTA0MTkzODA2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNTYxZS00NTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8IBT3t/Lij/VoqSRU41gyk2eyV5SEvf0I65gfzcj3IkWDZozYJMb7ce0MJqO Wd3rFS62Tb/js7z3guDPMTTIGKnmKicVjjH4Yt4gAlP1fZeqynoN5Ei1wxGcXfo3 yRc9S1fDk/GfC9bpLCUkbSq8/AygP03zGbifgCaKWA6joTGfA4X0GeXd6WLqkegd YJvaywoL8295ShUbUm1xHHQE85QBQKzVaNr0Y2CHl2ZQJ27j6ZgJfZKLh3Lf5euC D+SBei37EGEF6DmIQGew2elHZ8cDWTShrh5jHSB8OcQuVS0y7kib/8t7uWuPQlxg FqFQNpmxs3Ru3sXxc8on2JYOFwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFFvV15K8 A/gyVMkiISTON+z0p7ohMB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA4QkUvQTJDODI3RUU0MTBCMTFFQUI2OTU0QTJDQzRGOUFFMDIvNURDQjBBMEM0 MTBDMTFFQThBNkM0MTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnKfQDBAFnTfwDBAJ0zvwwDQQCAAIwBwMFACQFkUAwDQYJ KoZIhvcNAQELBQADggEBAIa91JP62IFrCnbgC99dUjQrYCpPYGpefxfFE8Ys2G7B B98XXdIX4atdEXjq0x5L7dA9ja5zg19TSwvIqsQFJ9YenYhvPXeGP3dFKzrfm1qL Q5Ct4Is6V6CRPVVdcS4GZe7zAeMa8SKOk1vRcN7KA3MJ6u1AVZFGWF2P6LBhB58+ nGcIFkdTkZseCaT1utEDRN/4UmWsUN8/fHmhAVSGoAsi+/LlAcQSQd/c/FHYClwN zmzuCKPuTWXp+AUDv3cvx3/F0+oeavO6884d4tIAwu3/qmrjSP0IH+mTkqaM4Uzz 4DC10NyEiwOg8Gb7WP9jJnyCZRyXL7vD3ZkUg9L3rqQ= -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:17 2025 by rpki-client