$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/05287CD492B611F0841D2F21C4F9AE02.roa File: 05287CD492B611F0841D2F21C4F9AE02.roa (raw, json) Hash identifier: aZPKGOPG+1Lf391VuMHJv72RD5TC+yEcx6KaYkumZxA= Subject key identifier: 33:8A:52:57:BC:EB:D3:5B:77:F4:72:61:3A:2A:FE:B0:DE:75:59:62 Certificate issuer: /CN=A91C7B68/serialNumber=9B5A5365DA2B25FA698B703093CFBDC2A2C23FCF Certificate serial: 04 Authority key identifier: 9B:5A:53:65:DA:2B:25:FA:69:8B:70:30:93:CF:BD:C2:A2:C2:3F:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1pTZdorJfppi3Awk8-9wqLCP88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/05287CD492B611F0841D2F21C4F9AE02.roa Signing time: Tue 16 Sep 2025 04:31:32 +0000 ROA not before: Tue 16 Sep 2025 04:31:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58945 IP address blocks: 103.214.159.0/24 maxlen: 24 144.48.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/m1pTZdorJfppi3Awk8-9wqLCP88.crl rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/m1pTZdorJfppi3Awk8-9wqLCP88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1pTZdorJfppi3Awk8-9wqLCP88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B68, serialNumber=9B5A5365DA2B25FA698B703093CFBDC2A2C23FCF Validity Not Before: Sep 16 04:31:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68c8e823-4bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8c:eb:6c:4d:e5:83:76:70:a3:89:c4:31:50: 57:28:d3:8c:d1:ea:87:3f:c4:87:8b:1d:c6:95:7c: 33:7a:b3:ae:c2:d4:80:25:3c:7a:21:5f:99:1a:29: f4:f7:18:ea:66:a7:92:5f:5c:a1:d7:2b:9a:7b:df: 35:a1:9d:72:fb:d8:0f:8e:b9:7b:f5:02:a1:6a:48: c9:45:c5:cf:bd:23:3b:8d:60:60:98:f1:86:83:49: 83:fe:13:94:79:4d:4f:1b:34:7c:30:8e:dd:c5:9f: 98:78:72:42:e0:0f:36:2a:a5:03:45:42:8c:38:39: 79:6a:dc:0a:db:13:31:48:34:b1:d2:c4:d1:a6:88: 2a:d2:92:ac:51:de:8e:5f:99:42:4d:ff:91:f7:e9: eb:f6:68:90:b1:7c:45:40:55:20:0c:6a:06:40:72: fe:ee:2b:da:c5:90:4e:8b:5e:7e:94:2c:9c:2d:f4: c5:dc:3d:aa:9b:77:93:ed:47:15:1c:d8:ee:12:c2: 9b:33:22:24:72:ba:df:ed:d0:a1:bc:6b:d4:8e:e6: 23:f9:8f:aa:a7:c4:20:f7:a9:34:05:5a:d0:26:cf: 2d:93:ac:56:08:53:92:6d:db:dd:0b:89:ca:59:10: 9c:87:86:b2:80:93:df:c7:cd:57:a2:4d:41:9b:90: 1b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:8A:52:57:BC:EB:D3:5B:77:F4:72:61:3A:2A:FE:B0:DE:75:59:62 X509v3 Authority Key Identifier: keyid:9B:5A:53:65:DA:2B:25:FA:69:8B:70:30:93:CF:BD:C2:A2:C2:3F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/m1pTZdorJfppi3Awk8-9wqLCP88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m1pTZdorJfppi3Awk8-9wqLCP88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/05287CD492B611F0841D2F21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.159.0/24 144.48.115.0/24 Signature Algorithm: sha256WithRSAEncryption 06:5e:93:67:06:0f:69:4c:f0:d1:00:6d:b6:90:d6:05:74:73: e8:fa:0c:76:b9:7a:c9:f1:fa:6e:a5:0d:dc:af:52:8c:3a:88: 91:7e:64:a6:12:85:07:dc:9c:2d:75:52:85:0f:75:6c:95:95: e6:ef:c5:a6:3a:e9:25:fc:c7:d0:59:15:21:8f:cf:ce:8f:c6: 04:d0:48:4b:ce:85:73:23:5f:d3:c4:5f:ee:6a:2e:d9:36:a9: db:61:6b:bd:2f:a0:eb:ff:df:13:5a:a0:13:f9:19:0c:f1:8d: 37:5c:73:02:8f:34:a7:bd:0d:aa:74:ad:1e:44:18:d4:a7:c0: db:6c:a9:59:ac:2a:b9:1c:ca:ea:eb:12:28:bb:46:07:85:c3: 70:34:dc:4f:4d:8a:04:4e:d6:6e:5e:25:bb:f3:55:b1:91:d5: 4b:f4:dc:6f:da:6f:8e:f6:6d:6e:55:30:b5:e2:fd:94:92:d2: 2b:03:53:75:32:69:6a:66:60:54:25:8a:24:37:ae:08:74:49: 21:77:29:35:26:d6:2c:17:9a:1e:0c:69:09:0e:98:12:51:be: ea:6d:c3:18:54:1f:d9:13:83:67:a4:98:a2:7d:08:19:16:f4: 2f:10:d9:59:d5:81:d2:7e:7e:55:0c:d3:c1:76:a7:5d:06:1f: 0c:ab:43:41 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0I2ODExMC8GA1UEBRMoOUI1QTUzNjVEQTJCMjVGQTY5OEI3MDMwOTNDRkJEQzJB MkMyM0ZDRjAeFw0yNTA5MTYwNDMxMzJaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzhlODIzLTRiZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQjOtsTeWDdnCjicQxUFco04zR6oc/xIeLHcaVfDN6s67C1IAlPHohX5kaKfT3 GOpmp5JfXKHXK5p73zWhnXL72A+OuXv1AqFqSMlFxc+9IzuNYGCY8YaDSYP+E5R5 TU8bNHwwjt3Fn5h4ckLgDzYqpQNFQow4OXlq3ArbEzFINLHSxNGmiCrSkqxR3o5f mUJN/5H36ev2aJCxfEVAVSAMagZAcv7uK9rFkE6LXn6ULJwt9MXcPaqbd5PtRxUc 2O4SwpszIiRyut/t0KG8a9SO5iP5j6qnxCD3qTQFWtAmzy2TrFYIU5Jt290LicpZ EJyHhrKAk9/HzVeiTUGbkBvnAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUM4pSV7zr 01t39HJhOir+sN51WWIwHwYDVR0jBBgwFoAUm1pTZdorJfppi3Awk8+9wqLCP88w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3QjY4LzUzQTdCOTJDQjBB NTExRUE4RjkyRUQxN0M0RjlBRTAyL20xcFRaZG9ySmZwcGkzQXdrOC05d3FMQ1A4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTFwVFpkb3JKZnBwaTNBd2s4LTl3cUxDUDg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0I2OC81M0E3QjkyQ0IwQTUxMUVBOEY5MkVEMTdDNEY5QUUwMi8wNTI4N0NENDky QjYxMUYwODQxRDJGMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGfWnwMEAJAwczANBgkqhkiG9w0BAQsFAAOCAQEABl6TZwYP aUzw0QBttpDWBXRz6PoMdrl6yfH6bqUN3K9SjDqIkX5kphKFB9ycLXVShQ91bJWV 5u/FpjrpJfzH0FkVIY/Pzo/GBNBIS86FcyNf08Rf7mou2Tap22FrvS+g6//fE1qg E/kZDPGNN1xzAo80p70NqnStHkQY1KfA22ypWawquRzK6usSKLtGB4XDcDTcT02K BE7Wbl4lu/NVsZHVS/Tcb9pvjvZtblUwteL9lJLSKwNTdTJpamZgVCWKJDeuCHRJ IXcpNSbWLBeaHgxpCQ6YElG+6m3DGFQf2RODZ6SYon0IGRb0LxDZWdWB0n5+VQzT wXanXQYfDKtDQQ== -----END CERTIFICATE-----Generated at Fri Sep 19 10:40:49 2025 by rpki-client