$ rpki-client -vvf rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/CBECEF26736C11F0AB1C0331C4F9AE02.roa File: CBECEF26736C11F0AB1C0331C4F9AE02.roa (raw, json) Hash identifier: PohdabGkRRj8yF6hYAyIfaJYtFhBZ6QjhxOMrxm3cjY= Subject key identifier: C1:77:D6:38:46:B2:46:63:46:95:17:45:EC:5E:02:91:4F:31:9C:55 Certificate issuer: /CN=A91706CE/serialNumber=CAA41532B7F72AA2C3E2AD6DF40B8D4D1EB03597 Certificate serial: 01B1 Authority key identifier: CA:A4:15:32:B7:F7:2A:A2:C3:E2:AD:6D:F4:0B:8D:4D:1E:B0:35:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/CBECEF26736C11F0AB1C0331C4F9AE02.roa Signing time: Wed 03 Sep 2025 03:51:26 +0000 ROA not before: Wed 03 Sep 2025 03:51:26 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153952 IP address blocks: 103.155.90.0/23 maxlen: 23 103.155.90.0/24 maxlen: 24 103.155.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.crl rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 05:46:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706CE, serialNumber=CAA41532B7F72AA2C3E2AD6DF40B8D4D1EB03597 Validity Not Before: Sep 3 03:51:26 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7bb3e-c46b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:17:e4:f3:b9:d7:5e:dd:39:71:38:54:71:e8: b3:3a:39:49:e6:94:2b:ed:dc:f4:d0:9c:c4:40:b7: 75:1f:9d:69:06:7a:e3:49:66:5d:20:0c:4a:08:b4: 98:bc:81:b0:fb:21:19:a0:72:4c:e6:a7:36:cd:e2: 1e:f5:95:63:cf:c8:8a:64:a5:f7:8e:92:cf:f7:d2: c1:2b:78:7f:58:70:3f:df:e6:4f:4e:8b:d9:60:ce: 9b:bd:86:5f:05:a2:cf:da:06:94:80:95:5a:b2:3c: 14:c1:01:9b:e2:76:19:c9:80:17:4e:92:cf:a6:30: 19:fa:68:83:8f:fe:69:6e:d4:18:fa:66:ca:92:0c: b5:91:f2:a0:eb:c3:a4:d8:f2:85:76:c6:b4:3e:63: a7:1a:5d:c6:b4:11:5a:43:5a:0a:de:b0:80:07:5c: 3a:61:53:cd:1e:79:d9:91:4f:43:ac:da:d0:fe:fd: c3:80:d4:18:ad:6a:5a:aa:15:29:bc:bf:1e:3d:a6: 7d:88:c2:b7:9f:a2:54:92:c3:7d:bc:9f:2c:00:b2: 6b:86:07:9b:bd:67:ed:f2:64:a5:36:af:99:3e:2b: b6:7b:a4:a9:bc:5f:80:00:6e:40:3b:3d:63:21:66: f5:64:f8:34:03:f7:4e:92:03:08:de:04:6a:91:3a: e9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:77:D6:38:46:B2:46:63:46:95:17:45:EC:5E:02:91:4F:31:9C:55 X509v3 Authority Key Identifier: keyid:CA:A4:15:32:B7:F7:2A:A2:C3:E2:AD:6D:F4:0B:8D:4D:1E:B0:35:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/CBECEF26736C11F0AB1C0331C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.90.0/23 Signature Algorithm: sha256WithRSAEncryption 65:40:f7:aa:80:67:cd:89:2f:01:f0:76:5d:40:33:2e:04:cd: 5f:65:89:7f:38:02:45:2c:23:40:9b:6c:d9:d3:ea:e1:67:38: ed:db:e8:6e:71:64:98:30:5e:bb:09:22:6c:00:ea:cb:91:87: 40:65:8a:59:e1:73:6b:7a:5b:72:14:57:a8:34:d7:0b:8c:90: a8:f2:48:08:9a:4f:c8:c3:71:dd:54:60:da:48:13:be:b8:51: ab:91:e5:1c:4a:70:1a:d1:26:90:58:36:ff:ac:40:b5:ed:f0: e5:15:52:8d:a1:69:ae:b2:3a:83:25:43:24:f9:5c:31:7d:4c: bd:12:ba:12:ca:c3:b4:2f:3c:ad:fe:1a:3a:85:84:c8:91:06: fe:c6:91:21:1f:78:ce:5b:54:d5:a0:25:90:12:c5:6a:db:91: 68:d8:e0:08:e8:1f:97:08:08:2c:82:c5:55:74:94:0f:19:83: d0:02:e6:25:00:f8:ef:c9:43:fd:aa:5b:22:29:04:c7:83:7d: 2c:b6:c7:2c:3d:c0:8e:51:83:39:a2:d0:12:a5:83:6e:5a:94: 7d:40:a9:84:61:b8:f4:63:cd:f8:3c:98:12:31:4c:23:2d:a3: 67:7f:2a:45:2b:4b:02:de:88:17:96:7f:d7:13:1e:94:7d:c7: 4c:5c:6f:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2Q0UxMTAvBgNVBAUTKENBQTQxNTMyQjdGNzJBQTJDM0UyQUQ2REY0MEI4RDRE MUVCMDM1OTcwHhcNMjUwOTAzMDM1MTI2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3YmIzZS1jNDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxfk87nXXt05cThUceizOjlJ5pQr7dz00JzEQLd1H51pBnrjSWZdIAxKCLSY vIGw+yEZoHJM5qc2zeIe9ZVjz8iKZKX3jpLP99LBK3h/WHA/3+ZPTovZYM6bvYZf BaLP2gaUgJVasjwUwQGb4nYZyYAXTpLPpjAZ+miDj/5pbtQY+mbKkgy1kfKg68Ok 2PKFdsa0PmOnGl3GtBFaQ1oK3rCAB1w6YVPNHnnZkU9DrNrQ/v3DgNQYrWpaqhUp vL8ePaZ9iMK3n6JUksN9vJ8sALJrhgebvWft8mSlNq+ZPiu2e6SpvF+AAG5AOz1j IWb1ZPg0A/dOkgMI3gRqkTrpYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMF31jhG skZjRpUXRexeApFPMZxVMB8GA1UdIwQYMBaAFMqkFTK39yqiw+KtbfQLjU0esDWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZDRS9FOTBCRDY2ODBG ODYxMUVFQTU2RUJCMjJDNEY5QUUwMi95cVFWTXJmM0txTEQ0cTF0OUF1TlRSNndO WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxUVZNcmYzS3FMRDRxMXQ5QXVOVFI2d05aYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA2Q0UvRTkwQkQ2NjgwRjg2MTFFRUE1NkVCQjIyQzRGOUFFMDIvQ0JFQ0VGMjY3 MzZDMTFGMEFCMUMwMzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm1owDQYJKoZIhvcNAQELBQADggEBAGVA96qAZ82JLwHw dl1AMy4EzV9liX84AkUsI0CbbNnT6uFnOO3b6G5xZJgwXrsJImwA6suRh0Blilnh c2t6W3IUV6g01wuMkKjySAiaT8jDcd1UYNpIE764UauR5RxKcBrRJpBYNv+sQLXt 8OUVUo2haa6yOoMlQyT5XDF9TL0SuhLKw7QvPK3+GjqFhMiRBv7GkSEfeM5bVNWg JZASxWrbkWjY4AjoH5cICCyCxVV0lA8Zg9AC5iUA+O/JQ/2qWyIpBMeDfSy2xyw9 wI5Rgzmi0BKlg25alH1AqYRhuPRjzfg8mBIxTCMto2d/KkUrSwLeiBeWf9cTHpR9 x0xcbzw= -----END CERTIFICATE-----Generated at Tue Oct 14 09:10:04 2025 by rpki-client