$ rpki-client -vvf rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/5BFDCF8C05FE11EFA2A14B6DC4F9AE02.roa File: 5BFDCF8C05FE11EFA2A14B6DC4F9AE02.roa (raw, json) Hash identifier: zw1ksNYvuYvz/L+PTYal5s6UlMhRxYj97KDb6gSbQJk= Subject key identifier: A9:79:91:D3:52:1A:27:5C:E8:6E:EE:C8:62:08:48:B3:F7:2F:B5:AD Certificate issuer: /CN=A91C13E1/serialNumber=077BEA9BFE300646165C3436C7D4CC38346C6BA3 Certificate serial: CF Authority key identifier: 07:7B:EA:9B:FE:30:06:46:16:5C:34:36:C7:D4:CC:38:34:6C:6B:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B3vqm_4wBkYWXDQ2x9TMODRsa6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/5BFDCF8C05FE11EFA2A14B6DC4F9AE02.roa Signing time: Sat 31 May 2025 06:06:08 +0000 ROA not before: Sat 31 May 2025 06:06:08 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152718 IP address blocks: 103.51.128.0/23 maxlen: 24 2001:df3:bcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/B3vqm_4wBkYWXDQ2x9TMODRsa6M.crl rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/B3vqm_4wBkYWXDQ2x9TMODRsa6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B3vqm_4wBkYWXDQ2x9TMODRsa6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C13E1, serialNumber=077BEA9BFE300646165C3436C7D4CC38346C6BA3 Validity Not Before: May 31 06:06:08 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a9c50-57be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2c:4d:fd:e4:f8:1b:84:b9:8d:2c:3b:03:f1: 18:0f:86:21:db:19:4b:40:18:3a:ab:1c:66:b3:ce: de:f1:f1:1e:b0:f6:b2:d0:20:a2:45:f3:56:33:f5: f2:96:ae:f5:b9:a1:46:1c:75:c7:d2:02:6c:01:ae: 6f:fc:29:6a:0c:c1:8f:e3:ef:30:39:4d:13:cb:af: c5:73:5b:8e:31:af:85:13:5c:90:f5:ee:68:bb:6f: 94:3e:58:8b:c5:c3:0c:a0:7d:ad:70:02:40:94:e5: ac:b9:64:12:a1:93:18:4f:21:e0:20:77:59:1c:2c: 9f:7d:c0:1f:14:f1:cc:f8:10:90:78:98:b1:04:11: 8d:30:98:e0:0f:95:ec:cf:4d:7d:52:d7:32:12:18: 50:07:e2:b9:c7:27:99:9d:42:06:42:de:c7:1d:c7: 3c:5c:5e:b0:bf:fe:75:af:12:d1:c2:3b:64:05:59: 88:76:29:99:11:a6:7f:88:d8:32:b0:73:eb:c0:03: a2:b0:2d:aa:4b:86:20:2b:7b:a3:30:c2:e8:80:69: f4:32:d5:4c:f3:77:70:34:39:88:1a:03:dd:96:ad: d7:f6:fb:6a:e4:3e:b9:8c:78:89:9a:36:49:fc:1e: 42:1c:2e:c2:33:8d:73:f9:91:6c:d0:0f:78:94:a1: 92:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:79:91:D3:52:1A:27:5C:E8:6E:EE:C8:62:08:48:B3:F7:2F:B5:AD X509v3 Authority Key Identifier: keyid:07:7B:EA:9B:FE:30:06:46:16:5C:34:36:C7:D4:CC:38:34:6C:6B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/B3vqm_4wBkYWXDQ2x9TMODRsa6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B3vqm_4wBkYWXDQ2x9TMODRsa6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/5BFDCF8C05FE11EFA2A14B6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.128.0/23 IPv6: 2001:df3:bcc0::/48 Signature Algorithm: sha256WithRSAEncryption 13:e4:c3:ea:25:7c:79:34:fd:16:e4:22:7b:68:fe:16:a8:ef: a7:1b:44:42:70:dc:b2:8e:08:52:64:f6:81:63:66:c0:03:0c: e4:e2:61:38:42:0b:08:66:78:77:a8:52:53:1a:b9:5c:99:d7: 09:64:79:cc:0a:82:7c:a3:17:18:31:cb:99:77:4a:e1:80:17: 37:13:82:cb:a3:8f:2c:c1:3a:f1:53:2e:e9:e1:e5:ee:ed:a9: 5c:80:85:99:f8:5d:2c:15:ba:f9:23:1b:c0:26:bf:51:54:1a: 4a:58:48:d8:66:d8:a4:5d:d6:c7:6f:70:72:48:14:37:ce:4e: cc:69:56:b1:f5:17:30:39:a2:b0:53:b8:0a:e3:df:83:b1:95: 02:ff:b5:3c:17:4b:a4:2b:94:82:7e:db:e5:3e:68:12:3c:72: bd:2e:5b:6c:bf:97:38:4b:93:ba:07:c0:e8:11:63:f7:ec:23: a0:2b:97:7b:26:db:09:e0:80:0a:3c:64:f0:9a:d8:d9:ac:11: f0:b3:ac:78:41:0b:11:12:20:54:35:ac:4c:70:e1:0c:a7:07: e7:31:15:43:c9:6a:0f:7e:05:8a:ba:69:7a:1e:24:3f:ee:50: b9:24:77:90:fc:cc:e0:a3:c3:7e:55:ad:5a:2a:ce:40:79:27: 80:69:5c:dd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzRTExMTAvBgNVBAUTKDA3N0JFQTlCRkUzMDA2NDYxNjVDMzQzNkM3RDRDQzM4 MzQ2QzZCQTMwHhcNMjUwNTMxMDYwNjA4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhOWM1MC01N2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCxN/eT4G4S5jSw7A/EYD4Yh2xlLQBg6qxxms87e8fEesPay0CCiRfNWM/Xy lq71uaFGHHXH0gJsAa5v/ClqDMGP4+8wOU0Ty6/Fc1uOMa+FE1yQ9e5ou2+UPliL xcMMoH2tcAJAlOWsuWQSoZMYTyHgIHdZHCyffcAfFPHM+BCQeJixBBGNMJjgD5Xs z019UtcyEhhQB+K5xyeZnUIGQt7HHcc8XF6wv/51rxLRwjtkBVmIdimZEaZ/iNgy sHPrwAOisC2qS4YgK3ujMMLogGn0MtVM83dwNDmIGgPdlq3X9vtq5D65jHiJmjZJ /B5CHC7CM41z+ZFs0A94lKGS1wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKl5kdNS Gidc6G7uyGIISLP3L7WtMB8GA1UdIwQYMBaAFAd76pv+MAZGFlw0NsfUzDg0bGuj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTNFMS84MkZERjkxQTA1 RkMxMUVGOEE1RkMzNjhDNEY5QUUwMi9CM3ZxbV80d0JrWVdYRFEyeDlUTU9EUnNh Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IzdnFtXzR3QmtZV1hEUTJ4OVRNT0RSc2E2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzRTEvODJGREY5MUEwNUZDMTFFRjhBNUZDMzY4QzRGOUFFMDIvNUJGRENGOEMw NUZFMTFFRkEyQTE0QjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnM4AwDwQCAAIwCQMHACABDfO8wDANBgkqhkiG9w0BAQsF AAOCAQEAE+TD6iV8eTT9FuQie2j+FqjvpxtEQnDcso4IUmT2gWNmwAMM5OJhOEIL CGZ4d6hSUxq5XJnXCWR5zAqCfKMXGDHLmXdK4YAXNxOCy6OPLME68VMu6eHl7u2p XICFmfhdLBW6+SMbwCa/UVQaSlhI2GbYpF3Wx29wckgUN85OzGlWsfUXMDmisFO4 CuPfg7GVAv+1PBdLpCuUgn7b5T5oEjxyvS5bbL+XOEuTugfA6BFj9+wjoCuXeybb CeCACjxk8JrY2awR8LOseEELERIgVDWsTHDhDKcH5zEVQ8lqD34Firppeh4kP+5Q uSR3kPzM4KPDflWtWirOQHkngGlc3Q== -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:20 2025 by rpki-client