$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/5DD88088AF2E11F0915FDA4FC4F9AE02.roa File: 5DD88088AF2E11F0915FDA4FC4F9AE02.roa (raw, json) Hash identifier: TwAE0GwwENS3YfjFl+npdZSwgXWk0lVtJ+TPHotvZA8= Subject key identifier: A8:09:84:66:8E:A7:8B:FA:A0:63:D5:B7:15:A9:24:A8:9B:F2:5B:1E Certificate issuer: /CN=A91C4F1B/serialNumber=7B99F8D6B9413CE2A296EB1C7D7EFE6D47D0CBA4 Certificate serial: 08F0 Authority key identifier: 7B:99:F8:D6:B9:41:3C:E2:A2:96:EB:1C:7D:7E:FE:6D:47:D0:CB:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5n41rlBPOKiluscfX7-bUfQy6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/5DD88088AF2E11F0915FDA4FC4F9AE02.roa Signing time: Wed 22 Oct 2025 10:03:33 +0000 ROA not before: Wed 22 Oct 2025 10:03:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 150774 IP address blocks: 103.152.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/e5n41rlBPOKiluscfX7-bUfQy6Q.crl rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/e5n41rlBPOKiluscfX7-bUfQy6Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5n41rlBPOKiluscfX7-bUfQy6Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 20:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F1B, serialNumber=7B99F8D6B9413CE2A296EB1C7D7EFE6D47D0CBA4 Validity Not Before: Oct 22 10:03:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68f8abf4-72a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:99:1d:b8:ca:a6:0d:74:4e:57:70:ca:eb:16: 9f:14:cd:ab:d8:65:d1:5f:46:81:11:87:15:cc:5e: 82:c6:3e:ce:99:f6:86:90:e0:a6:9d:7f:5f:be:9b: 87:ae:1a:52:40:3d:a6:40:9f:a6:96:64:9b:f2:61: 1f:5d:52:f9:aa:3b:02:3c:4a:7c:17:59:bc:0a:2a: 70:90:77:0c:51:f9:33:f7:30:a2:5d:63:18:7d:1d: 64:49:e7:e5:12:ae:91:fc:00:bc:97:b2:32:99:48: c8:74:a2:9f:88:a6:df:6f:a1:06:c6:69:4b:33:79: 4e:7c:4f:cd:fd:30:fe:9c:71:cd:ba:93:05:15:d8: b3:b2:50:4e:e9:04:8b:19:d5:d6:f1:b1:cb:d0:54: 1d:39:27:4b:3a:a4:95:94:a4:17:76:e2:3e:b1:aa: 6f:1e:dc:c2:05:59:32:02:3a:97:a9:61:85:a2:45: 82:53:6f:79:29:bd:02:64:70:3b:e5:a0:56:94:00: b0:28:78:59:ec:75:d5:25:06:c6:d1:de:b4:2f:c8: 4b:be:5c:28:32:29:5d:2f:80:3a:c0:31:85:77:f0: ea:6d:a7:54:1c:98:90:23:14:2e:b4:24:f6:d9:6a: df:1e:45:c9:fc:56:a7:19:7f:f6:eb:c3:3c:55:b4: 28:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:09:84:66:8E:A7:8B:FA:A0:63:D5:B7:15:A9:24:A8:9B:F2:5B:1E X509v3 Authority Key Identifier: keyid:7B:99:F8:D6:B9:41:3C:E2:A2:96:EB:1C:7D:7E:FE:6D:47:D0:CB:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/e5n41rlBPOKiluscfX7-bUfQy6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5n41rlBPOKiluscfX7-bUfQy6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/5DD88088AF2E11F0915FDA4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.219.0/24 Signature Algorithm: sha256WithRSAEncryption d4:e1:c0:1d:50:be:e4:43:17:58:94:3c:8a:dc:c8:f8:2c:7f: 44:c9:c1:6d:c1:86:3f:c3:17:0e:9b:f9:06:bc:29:28:97:23: cd:e1:c4:2a:59:12:58:f6:3d:08:e7:03:48:8d:7d:e4:5b:8a: f7:db:f4:60:71:af:e5:09:a8:89:c6:0c:1f:3a:c4:9b:1f:b8: cf:2f:00:5f:dd:99:b9:59:c6:39:8b:52:15:81:01:f2:f3:30: 8a:42:b5:53:f8:0c:1f:14:ee:87:55:d1:8f:40:86:88:e6:c3: b5:8c:18:74:0c:ac:01:1c:03:73:ec:85:ab:e4:5f:c0:d3:ad: 65:9d:7a:20:69:47:c4:61:4b:a3:23:6c:e4:e6:ec:25:75:b8: cb:e5:62:e7:29:9a:cb:86:57:29:62:02:f8:53:7f:ae:33:e5: 81:d4:eb:b0:99:8f:61:a9:d6:3c:74:02:9d:2c:cd:fe:1b:f3: f7:12:d8:62:25:69:c8:bf:91:8c:5c:69:41:4a:58:56:fb:10: ee:26:99:06:a7:d0:cd:71:50:00:73:bd:97:d6:a8:f6:2f:a8: 48:be:66:8f:bf:96:30:3a:f4:01:99:16:03:37:37:a4:b3:5e: 0f:29:dd:43:9c:57:1a:8a:d2:e0:56:8c:76:30:c4:ad:84:8f: fd:8e:c0:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMUIxMTAvBgNVBAUTKDdCOTlGOEQ2Qjk0MTNDRTJBMjk2RUIxQzdEN0VGRTZE NDdEMENCQTQwHhcNMjUxMDIyMTAwMzMzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY4YWJmNC03MmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45kduMqmDXROV3DK6xafFM2r2GXRX0aBEYcVzF6Cxj7OmfaGkOCmnX9fvpuH rhpSQD2mQJ+mlmSb8mEfXVL5qjsCPEp8F1m8CipwkHcMUfkz9zCiXWMYfR1kSefl Eq6R/AC8l7IymUjIdKKfiKbfb6EGxmlLM3lOfE/N/TD+nHHNupMFFdizslBO6QSL GdXW8bHL0FQdOSdLOqSVlKQXduI+sapvHtzCBVkyAjqXqWGFokWCU295Kb0CZHA7 5aBWlACwKHhZ7HXVJQbG0d60L8hLvlwoMildL4A6wDGFd/DqbadUHJiQIxQutCT2 2WrfHkXJ/FanGX/268M8VbQo8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKgJhGaO p4v6oGPVtxWpJKib8lseMB8GA1UdIwQYMBaAFHuZ+Na5QTziopbrHH1+/m1H0Muk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYxQi8yM0YzMDU1MEJD NEYxMUVBQkE4Qzk2MkZDNEY5QUUwMi9lNW40MXJsQlBPS2lsdXNjZlg3LWJVZlF5 NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U1bjQxcmxCUE9LaWx1c2NmWDctYlVmUXk2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGMUIvMjNGMzA1NTBCQzRGMTFFQUJBOEM5NjJGQzRGOUFFMDIvNUREODgwODhB RjJFMTFGMDkxNUZEQTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmNswDQYJKoZIhvcNAQELBQADggEBANThwB1QvuRDF1iU PIrcyPgsf0TJwW3Bhj/DFw6b+Qa8KSiXI83hxCpZElj2PQjnA0iNfeRbivfb9GBx r+UJqInGDB86xJsfuM8vAF/dmblZxjmLUhWBAfLzMIpCtVP4DB8U7odV0Y9Ahojm w7WMGHQMrAEcA3PshavkX8DTrWWdeiBpR8RhS6MjbOTm7CV1uMvlYucpmsuGVyli AvhTf64z5YHU67CZj2Gp1jx0Ap0szf4b8/cS2GIlaci/kYxcaUFKWFb7EO4mmQan 0M1xUABzvZfWqPYvqEi+Zo+/ljA69AGZFgM3N6SzXg8p3UOcVxqK0uBWjHYwxK2E j/2OwEM= -----END CERTIFICATE-----Generated at Thu Oct 30 03:27:46 2025 by rpki-client