$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/0E49D1E024CC11EFB113A27BC4F9AE02.roa File: 0E49D1E024CC11EFB113A27BC4F9AE02.roa (raw, json) Hash identifier: zHkwstjBU9okILb/X+WL5mE12pvjEZDjhxeOKIBOBNY= Subject key identifier: CE:10:F9:C4:26:7B:CE:7D:57:5F:71:AC:81:9D:7B:E4:65:94:92:96 Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: 011B Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/0E49D1E024CC11EFB113A27BC4F9AE02.roa Signing time: Thu 23 Oct 2025 07:19:21 +0000 ROA not before: Thu 23 Oct 2025 07:19:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 137268 IP address blocks: 103.55.52.0/24 maxlen: 24 103.55.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 07:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A, serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Validity Not Before: Oct 23 07:19:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f9d6f9-7e85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8b:05:5a:38:e9:4b:f8:d3:c9:aa:26:ac:31: f5:1f:18:68:6c:36:06:0e:29:21:ce:f4:11:3e:44: 0b:b2:69:86:7e:47:68:7d:f2:cf:7a:16:23:4b:0e: 46:7f:c4:f7:89:d9:1a:c4:b2:66:9b:eb:f1:74:26: 36:8b:45:f8:d0:32:a6:4d:b2:b9:3d:2f:4b:e5:71: f8:86:eb:7e:71:bd:30:16:82:30:be:d5:9d:e1:fa: 0a:68:c8:45:eb:35:5a:f5:f7:54:90:d3:de:80:d9: 64:36:6b:4e:51:da:fb:81:16:6a:3d:4f:95:c0:c3: fe:89:50:d1:82:bc:fe:3c:9a:8b:57:0d:d3:44:98: 97:09:ca:18:fc:cc:2f:17:08:56:72:4d:db:41:ad: 5a:85:26:d0:9c:5f:4d:ec:d8:70:51:7a:da:0c:9a: 49:1e:48:47:a4:57:ee:30:a2:8f:40:7e:0e:6a:b0: 0d:a2:83:4e:d2:72:12:68:07:c3:b0:64:82:2e:32: db:c0:9c:8f:b8:21:ee:d1:96:4d:85:40:7e:38:d1: e8:5e:dd:a3:6d:7f:63:f9:50:8c:6c:18:6a:61:a2: 8f:43:22:23:bf:52:9e:b5:f1:cd:b2:13:a0:ae:72: b4:d4:cd:23:9a:f3:c1:d8:6e:62:f8:4d:28:d6:7e: 7a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:10:F9:C4:26:7B:CE:7D:57:5F:71:AC:81:9D:7B:E4:65:94:92:96 X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/0E49D1E024CC11EFB113A27BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.52.0/23 Signature Algorithm: sha256WithRSAEncryption b4:cd:6f:72:fb:c8:41:a4:68:4d:01:7c:16:6c:b2:42:33:bf: 82:39:b1:70:0a:bd:ed:44:80:72:e8:09:87:54:98:bf:43:50: 05:f8:f0:89:c6:a0:d1:80:a1:47:32:2a:15:2c:23:c6:0b:0b: eb:bd:f2:86:2a:04:5a:a4:ee:05:25:4f:5d:38:22:ee:a4:b0: 00:28:3d:d8:98:68:f8:fe:38:4d:d5:c1:6e:7d:b0:1b:79:29: 8c:57:67:ad:90:14:3f:3e:8b:d7:67:86:28:35:e2:f2:a2:26: e6:b3:60:d2:89:53:e9:76:e8:02:57:49:b8:b0:c4:ad:7a:c7: 5d:52:a6:99:a7:3f:37:ab:44:54:08:a2:60:35:40:fd:11:36: 7f:41:e8:92:3b:13:c2:68:f9:99:1f:f2:36:a5:55:e1:78:24: b4:eb:38:4a:d2:47:2d:e5:de:b9:63:54:2b:02:b0:b0:c8:a9: 81:2f:30:cb:c2:4a:37:65:81:1b:df:68:bd:4c:a1:d5:07:ea: 8d:e8:7b:50:cd:a7:5c:94:2b:54:c6:93:ed:51:b1:2f:fc:14: 39:3d:25:4a:71:e6:64:dc:c0:17:35:51:5a:61:2f:17:e5:48: 59:b7:ca:a6:32:36:65:bf:a7:0b:db:24:b1:c6:bd:0b:f6:fd: 06:77:34:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDOEExMTAvBgNVBAUTKDZDRTdCNTc1MEU2RTE3RDNEMzlFQjVCMDg3RkQzRkFE NTk1OUYzMjUwHhcNMjUxMDIzMDcxOTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5ZDZmOS03ZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIsFWjjpS/jTyaomrDH1HxhobDYGDikhzvQRPkQLsmmGfkdoffLPehYjSw5G f8T3idkaxLJmm+vxdCY2i0X40DKmTbK5PS9L5XH4hut+cb0wFoIwvtWd4foKaMhF 6zVa9fdUkNPegNlkNmtOUdr7gRZqPU+VwMP+iVDRgrz+PJqLVw3TRJiXCcoY/Mwv FwhWck3bQa1ahSbQnF9N7NhwUXraDJpJHkhHpFfuMKKPQH4OarANooNO0nISaAfD sGSCLjLbwJyPuCHu0ZZNhUB+ONHoXt2jbX9j+VCMbBhqYaKPQyIjv1KetfHNshOg rnK01M0jmvPB2G5i+E0o1n562wIDAQABo4IClTCCApEwHQYDVR0OBBYEFM4Q+cQm e859V19xrIGde+RllJKWMB8GA1UdIwQYMBaAFGzntXUObhfT0561sIf9P61ZWfMl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkM4QS82MUVDNDkxNjI0 QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi9iT2UxZFE1dUY5UFRucld3aF8wX3JWbFo4 eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJDOEEvNjFFQzQ5MTYyNEM5MTFFRjlDOEM2MjU5QzRGOUFFMDIvMEU0OUQxRTAy NENDMTFFRkIxMTNBMjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnNzQwDQYJKoZIhvcNAQELBQADggEBALTNb3L7yEGkaE0B fBZsskIzv4I5sXAKve1EgHLoCYdUmL9DUAX48InGoNGAoUcyKhUsI8YLC+u98oYq BFqk7gUlT104Iu6ksAAoPdiYaPj+OE3VwW59sBt5KYxXZ62QFD8+i9dnhig14vKi JuazYNKJU+l26AJXSbiwxK16x11SppmnPzerRFQIomA1QP0RNn9B6JI7E8Jo+Zkf 8jalVeF4JLTrOErSRy3l3rljVCsCsLDIqYEvMMvCSjdlgRvfaL1ModUH6o3oe1DN p1yUK1TGk+1RsS/8FDk9JUpx5mTcwBc1UVphLxflSFm3yqYyNmW/pwvbJLHGvQv2 /QZ3NKQ= -----END CERTIFICATE-----Generated at Fri Oct 24 12:57:54 2025 by rpki-client