$ rpki-client -vvf rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/76EBD456F72011EA8776EC28C4F9AE02.roa File: 76EBD456F72011EA8776EC28C4F9AE02.roa (raw, json) Hash identifier: 9LJKIwXdcyYkVupcdiZ+JpUY7SOiyN67bapZPwlLn04= Subject key identifier: 59:E0:EE:E4:E3:5C:71:A3:E6:DD:A9:1E:C3:7A:58:5D:42:05:55:CF Certificate issuer: /CN=A91B253D/serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Certificate serial: 0804 Authority key identifier: 00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/76EBD456F72011EA8776EC28C4F9AE02.roa Signing time: Mon 22 Sep 2025 21:13:23 +0000 ROA not before: Mon 22 Sep 2025 21:13:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38203 IP address blocks: 103.155.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 21:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2052 (0x804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B253D, serialNumber=00C131E668B5FE94ECB43931847A728AACE82D4B Validity Not Before: Sep 22 21:13:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d1bbf3-8d94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7c:96:50:30:5f:27:73:7f:ba:4c:8e:69:fc: b6:46:f4:4a:41:8b:99:4e:8f:4c:76:7e:2e:53:ec: 78:1b:6d:1e:15:8e:5d:c1:3d:2a:65:57:10:06:74: 74:f3:d2:3e:5c:13:2d:30:1d:8b:b8:37:5d:6f:c1: 66:d0:e7:ec:de:e5:ff:27:28:60:9e:b3:a2:85:ce: 91:c2:fd:03:7d:01:d7:53:a5:c3:4a:fa:e4:4f:0e: 68:ea:e8:b1:8b:cf:74:6e:2b:f4:9f:57:27:5f:b5: 38:81:d4:a4:98:b1:08:30:ac:81:cb:9d:0b:ac:e8: fd:df:ba:0e:c0:07:aa:88:b9:1c:7b:10:9b:cb:dd: 64:cb:35:76:14:3a:04:43:38:5a:0d:77:be:7e:d0: 8d:a6:7b:26:de:68:91:d1:c8:b5:21:e9:5c:5f:bc: 83:96:c5:c8:6e:6b:25:ac:2d:5a:a2:15:c7:54:ff: 32:64:86:d7:7b:e6:e4:43:73:58:58:39:56:4c:62: 85:bf:01:38:6f:5f:94:63:50:a0:2c:84:80:8b:9d: 8d:05:df:61:8f:50:3d:d7:23:be:f4:6f:68:34:e0: 1a:14:dc:f5:d3:ee:bf:95:38:bd:23:f2:fe:7d:58: 25:fe:65:40:b7:32:9d:5f:82:89:0f:ea:a4:c1:12: b2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E0:EE:E4:E3:5C:71:A3:E6:DD:A9:1E:C3:7A:58:5D:42:05:55:CF X509v3 Authority Key Identifier: keyid:00:C1:31:E6:68:B5:FE:94:EC:B4:39:31:84:7A:72:8A:AC:E8:2D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/AMEx5mi1_pTstDkxhHpyiqzoLUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AMEx5mi1_pTstDkxhHpyiqzoLUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B253D/86B0D73EF71F11EAAE96B225C4F9AE02/76EBD456F72011EA8776EC28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.178.0/23 Signature Algorithm: sha256WithRSAEncryption 08:ac:3e:37:73:ec:0a:58:24:87:66:45:e9:ac:a4:c0:f0:d6: 89:02:66:3b:85:67:37:2d:e3:40:4e:34:e0:f5:28:48:5b:82: 5b:25:2c:5c:0c:f9:ca:4d:b8:a0:4a:29:77:9a:f2:38:70:2e: df:e7:9f:ae:05:6c:ed:14:73:dd:73:ed:69:c1:8e:08:5d:4f: 40:26:8f:80:ba:23:06:e0:d2:35:10:f0:df:65:78:a3:c7:5d: 1a:02:89:31:17:49:cd:c7:c3:2e:88:13:77:48:f2:12:ce:8a: c7:42:9b:dd:f0:8c:8e:a2:bc:6f:82:46:ba:34:81:b7:b2:19: 16:13:fe:33:62:96:57:f7:b4:59:d6:54:3a:d1:73:1f:e0:78: 05:21:b6:0a:2d:07:8e:22:93:b2:57:58:82:52:11:8b:56:93: 15:4f:12:0c:d9:2b:96:ed:27:a5:0d:ad:0c:14:b4:a0:ae:7a: 0c:b7:1b:10:a7:5c:c6:eb:b4:9b:c3:92:e2:7c:f9:26:39:89: 53:fa:ef:b3:dd:1a:7d:62:4b:37:e7:5a:ff:c2:17:ec:5b:58: 54:00:f9:38:b0:d7:3e:80:33:6c:31:72:74:d8:48:ee:d7:75: d0:0a:25:7f:5e:22:2a:6f:be:a6:ee:d8:ef:18:b9:81:41:34: 11:49:36:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1M0QxMTAvBgNVBAUTKDAwQzEzMUU2NjhCNUZFOTRFQ0I0MzkzMTg0N0E3MjhB QUNFODJENEIwHhcNMjUwOTIyMjExMzIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxYmJmMy04ZDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HyWUDBfJ3N/ukyOafy2RvRKQYuZTo9Mdn4uU+x4G20eFY5dwT0qZVcQBnR0 89I+XBMtMB2LuDddb8Fm0Ofs3uX/JyhgnrOihc6Rwv0DfQHXU6XDSvrkTw5o6uix i890biv0n1cnX7U4gdSkmLEIMKyBy50LrOj937oOwAeqiLkcexCby91kyzV2FDoE QzhaDXe+ftCNpnsm3miR0ci1IelcX7yDlsXIbmslrC1aohXHVP8yZIbXe+bkQ3NY WDlWTGKFvwE4b1+UY1CgLISAi52NBd9hj1A91yO+9G9oNOAaFNz10+6/lTi9I/L+ fVgl/mVAtzKdX4KJD+qkwRKy5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFng7uTj XHGj5t2pHsN6WF1CBVXPMB8GA1UdIwQYMBaAFADBMeZotf6U7LQ5MYR6coqs6C1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjUzRC84NkIwRDczRUY3 MUYxMUVBQUU5NkIyMjVDNEY5QUUwMi9BTUV4NW1pMV9wVHN0RGt4aEhweWlxem9M VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FNRXg1bWkxX3BUc3REa3hoSHB5aXF6b0xVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI1M0QvODZCMEQ3M0VGNzFGMTFFQUFFOTZCMjI1QzRGOUFFMDIvNzZFQkQ0NTZG NzIwMTFFQTg3NzZFQzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm7IwDQYJKoZIhvcNAQELBQADggEBAAisPjdz7ApYJIdm RemspMDw1okCZjuFZzct40BONOD1KEhbglslLFwM+cpNuKBKKXea8jhwLt/nn64F bO0Uc91z7WnBjghdT0Amj4C6Iwbg0jUQ8N9leKPHXRoCiTEXSc3Hwy6IE3dI8hLO isdCm93wjI6ivG+CRro0gbeyGRYT/jNillf3tFnWVDrRcx/geAUhtgotB44ik7JX WIJSEYtWkxVPEgzZK5btJ6UNrQwUtKCuegy3GxCnXMbrtJvDkuJ8+SY5iVP677Pd Gn1iSzfnWv/CF+xbWFQA+Tiw1z6AM2wxcnTYSO7XddAKJX9eIipvvqbu2O8YuYFB NBFJNnc= -----END CERTIFICATE-----Generated at Sat Oct 25 03:12:55 2025 by rpki-client