$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/5C1DBC489BEA11EFBCB36227C4F9AE02.roa File: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (raw, json) Hash identifier: p1wuomi4ih0De5e/76yoAEIXaN4ZewrXgvfIRvH8XLQ= Subject key identifier: CE:03:5A:F1:6F:B4:B8:15:48:AB:7B:78:7F:74:EA:8B:24:9C:26:C9 Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0FE3 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/5C1DBC489BEA11EFBCB36227C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:07:33 +0000 ROA not before: Tue 02 Sep 2025 18:07:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59033 IP address blocks: 45.114.236.0/22 maxlen: 24 103.71.24.0/24 maxlen: 24 2401:d640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 17:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4067 (0xfe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Sep 2 18:07:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b73265-1f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:45:62:45:f1:f9:6a:83:d8:89:b9:d6:34:62: 02:1f:4a:1f:bd:c8:7a:d2:4e:8a:33:db:64:e9:10: b2:ba:10:18:c6:e1:bc:75:9a:21:9c:a3:0b:91:4c: 12:9a:c1:8a:d3:57:bf:6d:a3:dd:9e:4e:bb:f7:b0: 47:52:bb:33:4d:e1:94:bb:51:47:82:59:36:f0:c6: 57:3d:7b:5b:e4:e4:56:18:e3:db:6d:ed:86:a3:c9: 39:77:60:26:3f:48:69:38:90:af:c2:58:d3:b3:f1: 9e:d2:13:30:46:72:6e:e2:a7:45:f0:2d:c5:77:7b: 7d:71:b1:9f:1b:28:e6:77:14:46:08:05:b2:3b:c0: 19:4c:8f:42:0c:57:dd:74:b3:08:f7:2b:33:fa:56: 10:3f:3e:d5:77:bf:bd:03:28:8c:af:0e:a4:ea:b4: 5d:21:b2:d6:99:c6:ae:b1:18:0d:0a:8b:d3:2c:4e: e0:38:c0:f4:af:bc:d8:cb:b0:9a:cf:b9:fb:a5:c0: 73:06:61:2b:2f:e4:ea:6e:56:36:19:0c:fa:9d:11: 73:fa:15:b4:89:6b:7b:b4:88:6b:c1:2c:a7:73:de: e9:e2:f7:a8:fd:5c:0e:5b:d2:e3:91:dd:26:df:0f: 54:2a:65:81:5c:64:09:90:e2:f0:37:63:c3:34:e9: 81:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:03:5A:F1:6F:B4:B8:15:48:AB:7B:78:7F:74:EA:8B:24:9C:26:C9 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/5C1DBC489BEA11EFBCB36227C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.236.0/22 103.71.24.0/24 IPv6: 2401:d640::/32 Signature Algorithm: sha256WithRSAEncryption 8b:51:12:76:b8:63:9b:0d:f8:e1:54:6b:75:33:47:02:9d:42: aa:a0:73:2d:0e:9d:92:4c:16:ac:71:ff:1e:e5:54:f1:18:39: 77:2f:22:7e:42:95:fd:aa:99:25:c4:a2:43:32:b5:2d:2e:82: c3:ee:d6:67:31:eb:86:66:eb:a6:b8:39:2b:bb:49:f7:86:2e: b0:53:31:99:34:5c:8e:23:8b:de:3d:e9:a8:65:09:86:fc:13: e1:f3:7c:f9:8d:97:ce:f2:4c:78:8a:76:6d:ad:be:df:eb:bb: ef:b4:49:cb:53:6d:51:aa:8f:13:33:39:e7:b9:70:7e:8d:6c: b0:31:87:fc:01:de:75:ae:72:bb:eb:fb:d9:f3:8a:e5:b6:cf: 0d:67:18:36:9d:81:9d:21:f2:3d:58:99:52:1f:71:0d:43:a8: e3:18:b1:d5:36:f7:a6:bc:18:3c:12:b6:6e:bb:b6:9c:0a:ad: a3:02:e6:29:1a:f9:df:d8:7a:d2:63:14:7c:ee:a2:a9:05:cd: 3c:b2:21:9b:49:58:52:d2:77:31:39:5d:b3:6f:82:b5:2a:10: 00:a1:5c:15:63:88:be:ce:e0:18:35:1e:05:58:23:8a:84:4c: 78:c2:13:cf:68:7e:ac:b2:07:1f:19:a9:df:b2:aa:9e:4e:61: 36:8d:f9:04 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICD+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwOTAyMTgwNzMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MzI2NS0xZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0ViRfH5aoPYibnWNGICH0ofvch60k6KM9tk6RCyuhAYxuG8dZohnKMLkUwS msGK01e/baPdnk6797BHUrszTeGUu1FHglk28MZXPXtb5ORWGOPbbe2Go8k5d2Am P0hpOJCvwljTs/Ge0hMwRnJu4qdF8C3Fd3t9cbGfGyjmdxRGCAWyO8AZTI9CDFfd dLMI9ysz+lYQPz7Vd7+9AyiMrw6k6rRdIbLWmcausRgNCovTLE7gOMD0r7zYy7Ca z7n7pcBzBmErL+TqblY2GQz6nRFz+hW0iWt7tIhrwSync97p4veo/VwOW9Ljkd0m 3w9UKmWBXGQJkOLwN2PDNOmB2wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFM4DWvFv tLgVSKt7eH906osknCbJMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY3RDEvNkNCQzlCNDA2MTFEMTFFOUIwMTJEQjM3QzRGOUFFMDIvNUMxREJDNDg5 QkVBMTFFRkJDQjM2MjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItcuwDBABnRxgwDQQCAAIwBwMFACQB1kAwDQYJKoZIhvcN AQELBQADggEBAItREna4Y5sN+OFUa3UzRwKdQqqgcy0OnZJMFqxx/x7lVPEYOXcv In5Clf2qmSXEokMytS0ugsPu1mcx64Zm66a4OSu7SfeGLrBTMZk0XI4ji9496ahl CYb8E+HzfPmNl87yTHiKdm2tvt/ru++0SctTbVGqjxMzOee5cH6NbLAxh/wB3nWu crvr+9nziuW2zw1nGDadgZ0h8j1YmVIfcQ1DqOMYsdU296a8GDwStm67tpwKraMC 5ika+d/YetJjFHzuoqkFzTyyIZtJWFLSdzE5XbNvgrUqEAChXBVjiL7O4Bg1HgVY I4qETHjCE89ofqyyBx8Zqd+yqp5OYTaN+QQ= -----END CERTIFICATE-----Generated at Tue Sep 9 10:19:07 2025 by rpki-client