$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/D2312B583F0511ECA6E6BB80C4F9AE02.roa File: D2312B583F0511ECA6E6BB80C4F9AE02.roa (raw, json) Hash identifier: ytiI82E6VCnTYlGo/bVg7G4jwjvMMnWPkOJQayi3ook= Subject key identifier: EB:55:BA:0D:F4:1B:15:E0:40:72:CD:02:D0:05:DD:86:6A:80:79:94 Certificate issuer: /CN=A91BB508/serialNumber=FFC284AC1B1A5F0843EB575B8B05DE224FFAE1FA Certificate serial: 04E5 Authority key identifier: FF:C2:84:AC:1B:1A:5F:08:43:EB:57:5B:8B:05:DE:22:4F:FA:E1:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_8KErBsaXwhD61dbiwXeIk_64fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/D2312B583F0511ECA6E6BB80C4F9AE02.roa Signing time: Sat 25 Oct 2025 02:43:20 +0000 ROA not before: Sat 25 Oct 2025 02:43:20 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 147063 IP address blocks: 103.174.0.0/23 maxlen: 23 103.174.0.0/24 maxlen: 24 103.174.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/_8KErBsaXwhD61dbiwXeIk_64fo.crl rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/_8KErBsaXwhD61dbiwXeIk_64fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_8KErBsaXwhD61dbiwXeIk_64fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1253 (0x4e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB508, serialNumber=FFC284AC1B1A5F0843EB575B8B05DE224FFAE1FA Validity Not Before: Oct 25 02:43:20 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68fc3948-3ca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:29:64:ea:30:05:ce:cd:37:9e:00:5b:a5:6b: f3:ce:5b:2b:06:86:a9:b6:33:19:81:2e:66:6d:6d: 75:f7:e6:1c:66:0b:39:7b:4d:27:97:e6:b6:76:e5: 5a:b7:42:09:82:1a:86:3a:12:e7:15:64:71:c2:e2: e0:f0:dd:f4:33:56:03:fc:70:47:1d:36:6c:19:20: 38:5b:6f:1c:6c:cc:5b:a6:dd:8b:b5:9f:69:76:60: 01:dc:4d:fe:eb:61:22:c6:4c:bf:d0:4b:92:1e:b0: d9:7b:1a:72:4c:08:34:f5:67:87:e3:02:16:37:0d: 3c:59:b2:1d:fc:ae:0c:0b:a9:ad:1d:f9:a9:b1:77: 09:eb:94:0d:42:aa:2f:b2:96:2a:1f:ed:49:15:db: 6b:57:a8:17:2c:fb:1c:33:b1:19:0e:4f:65:1f:8b: 0b:64:1a:7a:de:aa:c2:58:52:91:fd:49:69:e4:4b: 5d:c6:64:e9:2e:df:0c:31:78:d7:0d:b9:c9:3f:17: a0:70:12:62:b3:9e:e9:d4:ac:9b:ee:ca:cd:de:27: 1e:86:6c:55:3f:39:52:61:5a:2f:f9:62:a6:9d:7c: 2b:c8:59:5c:bd:43:63:43:a7:d4:58:a7:6c:26:76: a6:e1:53:de:37:03:71:6b:5b:62:c6:60:16:65:7b: eb:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:55:BA:0D:F4:1B:15:E0:40:72:CD:02:D0:05:DD:86:6A:80:79:94 X509v3 Authority Key Identifier: keyid:FF:C2:84:AC:1B:1A:5F:08:43:EB:57:5B:8B:05:DE:22:4F:FA:E1:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/_8KErBsaXwhD61dbiwXeIk_64fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_8KErBsaXwhD61dbiwXeIk_64fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/D2312B583F0511ECA6E6BB80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.0.0/23 Signature Algorithm: sha256WithRSAEncryption 21:3d:c3:e7:96:f6:99:b5:05:41:34:01:db:13:6a:9d:92:49: 8e:a9:1d:5e:8d:4a:8a:ff:b7:1b:aa:9a:ba:01:f0:ab:59:ee: ed:3e:92:1b:e8:65:b6:f1:2e:13:50:9c:34:e2:4a:0a:c4:a3: d1:35:e2:5a:ef:11:b4:73:4f:83:72:70:d1:3f:13:dd:21:98: 79:54:df:e0:90:d6:3c:c1:92:18:aa:84:9d:b8:da:41:6d:74: 80:8a:03:e0:64:2f:11:9c:cb:19:de:42:cf:b7:db:10:73:ad: 4b:55:a2:ce:37:bc:6e:08:de:0d:1f:c1:5e:8b:07:73:5d:99: ae:c7:38:19:86:bd:7e:f9:d1:c2:6c:16:bd:76:fa:f7:8a:d6: 57:40:12:25:c0:d6:85:ce:42:89:e4:da:96:dc:68:c8:c8:70: 9e:53:fa:1f:d9:60:35:80:69:a1:0d:dd:46:34:e1:4d:c4:52: fb:d8:35:5f:6b:30:a6:bf:f7:1e:62:04:91:2a:fe:e0:00:a0: 2e:53:9e:43:0e:07:aa:64:47:4a:e9:07:88:5f:b2:40:d0:06: 78:f0:1f:41:e8:bc:61:f0:ba:58:40:24:1c:41:f6:f0:95:8a: 2c:09:fd:c2:c5:b1:e5:6e:48:44:72:03:d2:61:53:d2:ac:78: 86:08:ba:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1MDgxMTAvBgNVBAUTKEZGQzI4NEFDMUIxQTVGMDg0M0VCNTc1QjhCMDVERTIy NEZGQUUxRkEwHhcNMjUxMDI1MDI0MzIwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZjMzk0OC0zY2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtylk6jAFzs03ngBbpWvzzlsrBoaptjMZgS5mbW119+YcZgs5e00nl+a2duVa t0IJghqGOhLnFWRxwuLg8N30M1YD/HBHHTZsGSA4W28cbMxbpt2LtZ9pdmAB3E3+ 62Eixky/0EuSHrDZexpyTAg09WeH4wIWNw08WbId/K4MC6mtHfmpsXcJ65QNQqov spYqH+1JFdtrV6gXLPscM7EZDk9lH4sLZBp63qrCWFKR/Ulp5EtdxmTpLt8MMXjX DbnJPxegcBJis57p1Kyb7srN3icehmxVPzlSYVov+WKmnXwryFlcvUNjQ6fUWKds Jnam4VPeNwNxa1tixmAWZXvrnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOtVug30 GxXgQHLNAtAF3YZqgHmUMB8GA1UdIwQYMBaAFP/ChKwbGl8IQ+tXW4sF3iJP+uH6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjUwOC83QTMzNzkxRTM5 NTcxMUVDQUJENDM3NkVDNEY5QUUwMi9fOEtFckJzYVh3aEQ2MWRiaXdYZUlrXzY0 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL184S0VyQnNhWHdoRDYxZGJpd1hlSWtfNjRmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI1MDgvN0EzMzc5MUUzOTU3MTFFQ0FCRDQzNzZFQzRGOUFFMDIvRDIzMTJCNTgz RjA1MTFFQ0E2RTZCQjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrgAwDQYJKoZIhvcNAQELBQADggEBACE9w+eW9pm1BUE0 AdsTap2SSY6pHV6NSor/txuqmroB8KtZ7u0+khvoZbbxLhNQnDTiSgrEo9E14lrv EbRzT4NycNE/E90hmHlU3+CQ1jzBkhiqhJ242kFtdICKA+BkLxGcyxneQs+32xBz rUtVos43vG4I3g0fwV6LB3Ndma7HOBmGvX750cJsFr12+veK1ldAEiXA1oXOQonk 2pbcaMjIcJ5T+h/ZYDWAaaEN3UY04U3EUvvYNV9rMKa/9x5iBJEq/uAAoC5TnkMO B6pkR0rpB4hfskDQBnjwH0HovGHwulhAJBxB9vCViiwJ/cLFseVuSERyA9JhU9Ks eIYIulY= -----END CERTIFICATE-----Generated at Tue Nov 4 01:05:28 2025 by rpki-client