$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/048E963C92B611F0841D2F21C4F9AE02.roa File: 048E963C92B611F0841D2F21C4F9AE02.roa (raw, json) Hash identifier: N4gw2f/bDc4vAICNgZt17fcv5vKiGHjdnsBTX4dpjPM= Subject key identifier: 08:56:96:B1:EF:63:CB:73:11:40:DE:84:92:26:A8:6C:61:F5:0A:2A Certificate issuer: /CN=A91C7B68/serialNumber=9B5A5365DA2B25FA698B703093CFBDC2A2C23FCF Certificate serial: 03 Authority key identifier: 9B:5A:53:65:DA:2B:25:FA:69:8B:70:30:93:CF:BD:C2:A2:C2:3F:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1pTZdorJfppi3Awk8-9wqLCP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/048E963C92B611F0841D2F21C4F9AE02.roa Signing time: Tue 16 Sep 2025 04:31:31 +0000 ROA not before: Tue 16 Sep 2025 04:31:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152177 IP address blocks: 103.214.156.0/22 maxlen: 22 103.214.156.0/23 maxlen: 23 103.214.156.0/24 maxlen: 24 103.214.157.0/24 maxlen: 24 103.214.158.0/24 maxlen: 24 144.48.112.0/22 maxlen: 22 144.48.112.0/23 maxlen: 23 144.48.112.0/24 maxlen: 24 144.48.113.0/24 maxlen: 24 144.48.114.0/24 maxlen: 24 2407:ea40::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/m1pTZdorJfppi3Awk8-9wqLCP88.crl rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/m1pTZdorJfppi3Awk8-9wqLCP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1pTZdorJfppi3Awk8-9wqLCP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B68, serialNumber=9B5A5365DA2B25FA698B703093CFBDC2A2C23FCF Validity Not Before: Sep 16 04:31:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68c8e822-d0eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:0d:1a:e0:52:79:ad:26:ce:a2:9d:00:64: 2b:39:59:2b:13:89:3e:86:17:82:ff:e8:23:3e:3d: d1:73:ec:24:1b:86:a3:19:f6:4a:04:5e:39:15:af: 69:e7:4f:a0:d8:28:dd:2c:db:12:65:be:7d:b8:6d: 59:17:a3:ec:34:b1:9d:20:01:e9:1d:ad:4c:b3:9f: ff:d3:e5:e2:09:5b:b9:37:fa:4e:8b:71:e3:89:67: b7:74:b4:a9:04:a9:64:62:51:92:17:64:68:3d:88: 61:65:79:7b:3a:f7:c6:22:a7:71:9d:86:25:18:88: 4d:94:87:dd:9a:d5:4b:cf:54:cd:36:80:65:7b:c6: 49:79:e0:45:68:8d:cd:ae:31:be:ba:39:98:f7:e1: b9:3b:46:73:73:38:82:40:05:f8:3d:21:ba:a3:c5: 6a:6c:4e:54:1b:ff:49:c1:f4:45:99:80:65:cd:ac: dd:01:5d:67:07:62:b3:63:9e:4c:2b:57:fc:79:c6: a5:cc:e7:07:31:cd:48:24:ac:d9:53:18:58:3e:07: c8:93:ba:9b:36:9f:7b:b0:d5:ad:94:0c:6f:a6:c3: d6:da:b5:7f:ed:b7:89:9a:c7:62:e2:45:9c:88:67: 69:b8:59:14:e9:2c:f5:93:50:7a:8b:23:da:43:f0: b9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:56:96:B1:EF:63:CB:73:11:40:DE:84:92:26:A8:6C:61:F5:0A:2A X509v3 Authority Key Identifier: keyid:9B:5A:53:65:DA:2B:25:FA:69:8B:70:30:93:CF:BD:C2:A2:C2:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/m1pTZdorJfppi3Awk8-9wqLCP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1pTZdorJfppi3Awk8-9wqLCP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/048E963C92B611F0841D2F21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.156.0/22 144.48.112.0/22 IPv6: 2407:ea40::/32 Signature Algorithm: sha256WithRSAEncryption 74:e5:f9:32:ad:49:2e:04:ef:fc:4d:2f:e7:a5:12:4b:8e:ff: 83:09:14:d1:dd:61:11:65:9f:d9:66:85:16:db:b6:e8:c8:c0: b7:8f:21:47:77:ad:a8:c0:cf:1d:fe:1c:0d:7f:18:56:8e:61: 32:13:2d:01:f0:b0:16:23:6a:67:55:9b:ed:28:5f:50:6a:53: b0:5c:a4:47:15:95:ef:29:ca:7d:9a:7c:78:da:a6:53:cf:62: 4d:f8:44:09:4b:3f:f2:42:d7:6d:b9:b4:49:dc:7e:6d:0e:0c: e2:a0:1c:27:bf:83:5c:58:c5:1b:4e:dc:15:dd:bd:46:c0:88: 62:24:f1:a1:90:8f:64:2e:5d:61:d9:46:10:a3:5b:1a:11:34: 48:52:0e:11:85:61:3f:dd:89:cf:21:39:7e:49:cd:b1:f9:c5: af:23:bc:41:e7:d4:a4:76:c7:4a:b5:e8:4f:76:f1:46:1d:06: 5b:70:ec:6d:76:f8:1e:0b:38:9d:f7:98:32:1d:bc:23:e9:06: 7c:21:4c:ed:fe:25:22:92:ef:05:3f:aa:c9:95:1d:34:94:ed: db:19:29:92:f3:a6:e9:f7:e1:16:36:ba:5c:dd:d0:c9:e0:c6: d2:66:9b:4b:cb:bf:ff:a2:d7:23:89:74:2f:fe:ac:4a:cc:61: e9:f1:77:68 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0I2ODExMC8GA1UEBRMoOUI1QTUzNjVEQTJCMjVGQTY5OEI3MDMwOTNDRkJEQzJB MkMyM0ZDRjAeFw0yNTA5MTYwNDMxMzFaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzhlODIyLWQwZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD9g0a4FJ5rSbOop0AZCs5WSsTiT6GF4L/6CM+PdFz7CQbhqMZ9koEXjkVr2nn T6DYKN0s2xJlvn24bVkXo+w0sZ0gAekdrUyzn//T5eIJW7k3+k6LceOJZ7d0tKkE qWRiUZIXZGg9iGFleXs698Yip3GdhiUYiE2Uh92a1UvPVM02gGV7xkl54EVojc2u Mb66OZj34bk7RnNzOIJABfg9IbqjxWpsTlQb/0nB9EWZgGXNrN0BXWcHYrNjnkwr V/x5xqXM5wcxzUgkrNlTGFg+B8iTups2n3uw1a2UDG+mw9batX/tt4max2LiRZyI Z2m4WRTpLPWTUHqLI9pD8LmbAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUCFaWse9j y3MRQN6EkiaobGH1CiowHwYDVR0jBBgwFoAUm1pTZdorJfppi3Awk8+9wqLCP88w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3QjY4LzUzQTdCOTJDQjBB NTExRUE4RjkyRUQxN0M0RjlBRTAyL20xcFRaZG9ySmZwcGkzQXdrOC05d3FMQ1A4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTFwVFpkb3JKZnBwaTNBd2s4LTl3cUxDUDg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0I2OC81M0E3QjkyQ0IwQTUxMUVBOEY5MkVEMTdDNEY5QUUwMi8wNDhFOTYzQzky QjYxMUYwODQxRDJGMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAmfWnAMEApAwcDANBAIAAjAHAwUAJAfqQDANBgkqhkiG9w0B AQsFAAOCAQEAdOX5Mq1JLgTv/E0v56USS47/gwkU0d1hEWWf2WaFFtu26MjAt48h R3etqMDPHf4cDX8YVo5hMhMtAfCwFiNqZ1Wb7ShfUGpTsFykRxWV7ynKfZp8eNqm U89iTfhECUs/8kLXbbm0Sdx+bQ4M4qAcJ7+DXFjFG07cFd29RsCIYiTxoZCPZC5d YdlGEKNbGhE0SFIOEYVhP92JzyE5fknNsfnFryO8QefUpHbHSrXoT3bxRh0GW3Ds bXb4Hgs4nfeYMh28I+kGfCFM7f4lIpLvBT+qyZUdNJTt2xkpkvOm6ffhFja6XN3Q yeDG0mabS8u//6LXI4l0L/6sSsxh6fF3aA== -----END CERTIFICATE-----Generated at Fri Sep 19 04:08:02 2025 by rpki-client