$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/8CD5FC2253A011EDAC40531BC4F9AE02.roa File: 8CD5FC2253A011EDAC40531BC4F9AE02.roa (raw, json) Hash identifier: JPPg4axF52fUr6Imwg/bjNt0uzHT0+P65yVOXCd9Qfg= Subject key identifier: 58:BC:9D:13:55:40:0C:CF:51:D4:AF:7A:CD:98:2F:C1:FC:E2:25:93 Certificate issuer: /CN=A91BEBB1/serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Certificate serial: 023B Authority key identifier: EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/8CD5FC2253A011EDAC40531BC4F9AE02.roa Signing time: Mon 27 Oct 2025 03:46:14 +0000 ROA not before: Mon 27 Oct 2025 03:46:14 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150379 IP address blocks: 103.23.254.0/23 maxlen: 24 2001:df1:6d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:49:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEBB1, serialNumber=EA419A796299625A074A65B7CACEFF18B8066C8B Validity Not Before: Oct 27 03:46:14 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68feeb05-00c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:db:42:db:ac:a7:71:87:b9:1b:70:f0:67:bf: 3a:71:59:69:a4:05:fe:e5:66:35:04:f7:19:76:4b: 3e:d5:f9:60:40:c3:44:b9:a5:6c:49:0a:e4:ed:0f: 17:1f:27:e0:29:3c:2b:1e:8f:64:d6:c0:46:2c:21: 90:b5:d0:e9:ac:86:c7:42:5c:9a:ef:34:ea:5c:af: 86:51:4c:35:cd:25:49:af:a5:53:97:7a:68:7a:b2: b4:80:06:56:ae:84:d7:2c:b3:aa:e7:9d:30:0e:d1: 5e:ed:2b:75:73:d8:36:63:9d:eb:76:0a:c4:dc:89: 68:15:05:67:94:e3:83:62:f1:f9:5e:8c:90:65:f2: 62:29:dc:dd:d2:e3:0f:4a:41:a6:90:a2:82:74:a8: a9:cf:0b:08:98:dd:79:06:c8:68:a9:ea:34:48:8c: df:c9:71:7d:93:38:a3:9b:cb:68:46:48:dd:e0:90: b6:7f:f5:bf:e3:bd:8b:36:bf:67:d4:b7:74:dc:85: b0:35:b1:61:51:ee:e7:ae:3a:aa:35:97:6d:9c:1c: e5:cc:4b:9d:90:be:67:2e:fb:03:2e:76:6d:08:ef: a2:b0:b1:d4:7c:f3:a4:75:ce:c8:06:8e:63:1b:18: 1a:b4:e4:21:66:6c:48:2e:70:88:44:96:b3:39:8b: d7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:BC:9D:13:55:40:0C:CF:51:D4:AF:7A:CD:98:2F:C1:FC:E2:25:93 X509v3 Authority Key Identifier: keyid:EA:41:9A:79:62:99:62:5A:07:4A:65:B7:CA:CE:FF:18:B8:06:6C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/6kGaeWKZYloHSmW3ys7_GLgGbIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6kGaeWKZYloHSmW3ys7_GLgGbIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEBB1/67BEA406539C11EDAE004E17C4F9AE02/8CD5FC2253A011EDAC40531BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.254.0/23 IPv6: 2001:df1:6d40::/48 Signature Algorithm: sha256WithRSAEncryption 53:9a:97:48:60:72:b3:cd:46:79:90:70:77:41:7b:20:3d:56: 84:21:d5:dd:76:3b:83:82:dd:f7:3b:39:a3:e8:c5:12:71:7c: ac:67:82:98:93:c8:bb:02:76:94:43:57:2d:b0:d1:f3:48:bc: e7:a7:7f:83:90:9e:24:0a:79:8e:02:8c:da:89:c3:3a:b5:f4: 25:ff:02:44:38:f1:25:c0:ec:95:80:e5:27:81:90:2a:9b:14: 66:92:f3:c0:df:9f:4f:63:9a:f4:b4:07:12:17:46:92:48:52: 02:08:8a:63:59:82:75:04:73:e2:56:18:18:9a:17:4c:04:3a: 82:21:dd:75:4d:3c:05:b5:1e:5b:f4:98:9e:e1:19:36:d0:f3: 48:0f:2d:a0:e0:14:8f:2d:9c:df:c1:45:67:68:99:5c:f4:b8: 53:95:47:73:2a:1d:5a:cd:24:7e:e1:c2:23:77:f2:71:42:9d: 29:81:65:e4:4b:81:4c:ab:8c:ff:f5:6d:e8:8b:14:a6:29:19: 01:fc:8f:52:10:82:54:43:45:35:9f:a7:8f:77:17:60:a8:22: 6f:88:88:c8:76:c4:cb:15:4a:93:ba:50:c2:8a:29:06:03:70: b2:6f:03:4f:24:12:d6:1c:29:51:7d:4d:d3:6a:d4:01:bb:f0: 25:fa:4e:3e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCQjExMTAvBgNVBAUTKEVBNDE5QTc5NjI5OTYyNUEwNzRBNjVCN0NBQ0VGRjE4 QjgwNjZDOEIwHhcNMjUxMDI3MDM0NjE0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZlZWIwNS0wMGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwttC26yncYe5G3DwZ786cVlppAX+5WY1BPcZdks+1flgQMNEuaVsSQrk7Q8X HyfgKTwrHo9k1sBGLCGQtdDprIbHQlya7zTqXK+GUUw1zSVJr6VTl3poerK0gAZW roTXLLOq550wDtFe7St1c9g2Y53rdgrE3IloFQVnlOODYvH5XoyQZfJiKdzd0uMP SkGmkKKCdKipzwsImN15Bshoqeo0SIzfyXF9kzijm8toRkjd4JC2f/W/472LNr9n 1Ld03IWwNbFhUe7nrjqqNZdtnBzlzEudkL5nLvsDLnZtCO+isLHUfPOkdc7IBo5j GxgatOQhZmxILnCIRJazOYvXtQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFi8nRNV QAzPUdSves2YL8H84iWTMB8GA1UdIwQYMBaAFOpBmnlimWJaB0plt8rO/xi4BmyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUJCMS82N0JFQTQwNjUz OUMxMUVEQUUwMDRFMTdDNEY5QUUwMi82a0dhZVdLWllsb0hTbVczeXM3X0dMZ0di SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZrR2FlV0taWWxvSFNtVzN5czdfR0xnR2JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVCQjEvNjdCRUE0MDY1MzlDMTFFREFFMDA0RTE3QzRGOUFFMDIvOENENUZDMjI1 M0EwMTFFREFDNDA1MzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnF/4wDwQCAAIwCQMHACABDfFtQDANBgkqhkiG9w0BAQsF AAOCAQEAU5qXSGBys81GeZBwd0F7ID1WhCHV3XY7g4Ld9zs5o+jFEnF8rGeCmJPI uwJ2lENXLbDR80i856d/g5CeJAp5jgKM2onDOrX0Jf8CRDjxJcDslYDlJ4GQKpsU ZpLzwN+fT2Oa9LQHEhdGkkhSAgiKY1mCdQRz4lYYGJoXTAQ6giHddU08BbUeW/SY nuEZNtDzSA8toOAUjy2c38FFZ2iZXPS4U5VHcyodWs0kfuHCI3fycUKdKYFl5EuB TKuM//Vt6IsUpikZAfyPUhCCVENFNZ+nj3cXYKgib4iIyHbEyxVKk7pQwoopBgNw sm8DTyQS1hwpUX1N02rUAbvwJfpOPg== -----END CERTIFICATE-----Generated at Tue Nov 4 01:11:48 2025 by rpki-client