$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/5728551C6E9611EF8FEC9C1BC4F9AE02.roa File: 5728551C6E9611EF8FEC9C1BC4F9AE02.roa (raw, json) Hash identifier: utIpka2m9g7rscMzHbDTXQACJUoOh2JMTGT7Uylt93Q= Subject key identifier: B1:6F:17:20:BA:DD:5E:E0:29:CE:5F:48:67:EF:72:17:16:D4:73:E8 Certificate issuer: /CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Certificate serial: 2D1B Authority key identifier: 3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/5728551C6E9611EF8FEC9C1BC4F9AE02.roa Signing time: Sat 06 Sep 2025 15:52:37 +0000 ROA not before: Sat 06 Sep 2025 15:52:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138650 IP address blocks: 103.102.43.0/24 maxlen: 24 2405:1500:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11547 (0x2d1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA2D5, serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Validity Not Before: Sep 6 15:52:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68bc58c5-0b76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:d2:25:f0:4c:62:73:b1:16:70:8d:6b:6b: d3:47:f5:e3:dc:26:d9:4e:21:b8:6f:d0:82:d7:36: 93:5e:61:b7:ee:22:92:21:a8:fc:40:54:07:8e:45: ea:57:d8:88:e3:dc:8f:02:74:bc:ec:f8:84:ba:fa: 6f:8f:8d:fa:d1:ad:14:82:d8:12:c9:97:8f:f7:c5: 77:62:62:8f:1a:e0:07:8d:b3:51:56:7c:44:60:d6: f9:0f:52:6d:da:19:e6:0f:4e:31:73:82:70:ee:40: 22:97:01:89:e7:5e:57:0e:a1:07:21:0f:93:e6:30: bd:48:35:bd:0d:ec:7d:fb:0b:9a:13:7a:53:8a:67: fe:67:f1:8f:92:ae:d6:09:9c:fe:16:b2:5b:8d:82: d8:d0:a3:9e:a2:03:a6:0f:0c:e9:d2:8b:f0:34:58: 0d:76:fa:97:02:8e:17:44:3b:ec:d9:0c:b7:de:fa: 4e:21:65:97:c2:4a:c9:6f:c5:c5:20:eb:15:b7:30: f2:f3:0a:6b:0e:40:4f:50:58:37:33:5d:90:5c:19: 43:83:03:d3:72:2f:c4:22:50:a5:77:a1:a1:53:09: 87:f1:f6:8b:b5:a8:24:69:e3:33:5f:63:25:68:f4: d2:b4:dc:15:b0:54:e5:e9:c5:34:34:79:ae:63:fc: 93:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6F:17:20:BA:DD:5E:E0:29:CE:5F:48:67:EF:72:17:16:D4:73:E8 X509v3 Authority Key Identifier: keyid:3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/5728551C6E9611EF8FEC9C1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.43.0/24 IPv6: 2405:1500:300::/48 Signature Algorithm: sha256WithRSAEncryption 63:12:f3:1c:51:c1:de:d9:49:1a:7c:a7:05:4c:8e:27:c2:71: 5e:db:d9:16:27:6d:fc:b5:fb:c1:fb:28:43:70:dc:2b:9d:c5: 40:ec:3f:a6:82:e4:af:f2:18:88:d3:11:8c:27:36:98:2c:cd: 0f:e2:11:d0:16:df:40:4f:f3:06:d6:0f:d5:b9:b4:94:55:b7: c0:03:15:ae:80:27:ae:4b:88:3a:a9:4a:bc:ea:95:85:65:e0: 12:8b:c2:69:d2:d3:6b:fa:26:48:5a:e4:96:06:65:45:1f:02: fd:0f:cd:4a:bc:21:c7:7d:7a:2d:20:71:70:f9:5f:41:d3:92: 30:2a:52:5e:29:cf:ad:36:55:93:fd:d1:25:76:b6:17:2e:ce: 9b:fd:34:e0:3a:d7:0d:ac:e8:f3:ca:ca:58:8d:3c:6f:97:2d: 2f:b9:8f:b1:9d:76:db:7c:83:b4:e2:d4:b4:bc:ec:ee:fe:06: 62:d3:f2:b2:50:7b:c8:3a:84:76:05:e0:88:9d:29:fa:ee:6a: 92:e4:33:79:dc:09:d9:6f:f6:90:27:82:c0:56:2c:cb:f4:4f: 00:98:68:e9:25:ac:e5:26:65:64:e7:ce:9f:97:fc:d3:d5:44: 72:de:ef:71:78:b8:45:a1:07:b6:54:15:ac:61:ce:18:ad:c4: 7f:f9:e0:d6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICLRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyRDUxMTAvBgNVBAUTKDNDMUM4NzczNDdFRTgyNzI5NjM2QUYwRjNBMzc1RDM5 MTA5MEY5MjEwHhcNMjUwOTA2MTU1MjM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJjNThjNS0wYjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvx7SJfBMYnOxFnCNa2vTR/Xj3CbZTiG4b9CC1zaTXmG37iKSIaj8QFQHjkXq V9iI49yPAnS87PiEuvpvj4360a0UgtgSyZeP98V3YmKPGuAHjbNRVnxEYNb5D1Jt 2hnmD04xc4Jw7kAilwGJ515XDqEHIQ+T5jC9SDW9Dex9+wuaE3pTimf+Z/GPkq7W CZz+FrJbjYLY0KOeogOmDwzp0ovwNFgNdvqXAo4XRDvs2Qy33vpOIWWXwkrJb8XF IOsVtzDy8wprDkBPUFg3M12QXBlDgwPTci/EIlCld6GhUwmH8faLtagkaeMzX2Ml aPTStNwVsFTl6cU0NHmuY/yTjwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLFvFyC6 3V7gKc5fSGfvchcW1HPoMB8GA1UdIwQYMBaAFDwch3NH7oJyljavDzo3XTkQkPkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTJENS81Rjg2MUVFNkI4 OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWduS1dOcThQT2pkZE9SQ1Et U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCeUhjMGZ1Z25LV05xOFBPamRkT1JDUS1TRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEyRDUvNUY4NjFFRTZCODlBMTFFM0I0QUM3RTc4NTkxMUVBMzIvNTcyODU1MUM2 RTk2MTFFRjhGRUM5QzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnZiswDwQCAAIwCQMHACQFFQADADANBgkqhkiG9w0BAQsF AAOCAQEAYxLzHFHB3tlJGnynBUyOJ8JxXtvZFidt/LX7wfsoQ3DcK53FQOw/poLk r/IYiNMRjCc2mCzND+IR0BbfQE/zBtYP1bm0lFW3wAMVroAnrkuIOqlKvOqVhWXg EovCadLTa/omSFrklgZlRR8C/Q/NSrwhx316LSBxcPlfQdOSMCpSXinPrTZVk/3R JXa2Fy7Om/004DrXDazo88rKWI08b5ctL7mPsZ1223yDtOLUtLzs7v4GYtPyslB7 yDqEdgXgiJ0p+u5qkuQzedwJ2W/2kCeCwFYsy/RPAJho6SWs5SZlZOfOn5f809VE ct7vcXi4RaEHtlQVrGHOGK3Ef/ng1g== -----END CERTIFICATE-----Generated at Fri Sep 19 10:51:03 2025 by rpki-client