$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa File: D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa (raw, json) Hash identifier: TavcsNbKSaSDXkcGP72u+jTcP48G3Su8SEY/uwppPwI= Subject key identifier: 55:4B:BD:CA:9A:B5:50:FD:B6:96:18:83:4B:52:AA:FC:68:76:5E:BE Certificate issuer: /CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Certificate serial: 0ACB Authority key identifier: AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa Signing time: Thu 10 Apr 2025 19:29:24 +0000 ROA not before: Thu 10 Apr 2025 19:29:24 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140087 IP address blocks: 103.148.82.0/23 maxlen: 24 2001:df2:c580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2763 (0xacb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA0F, serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Validity Not Before: Apr 10 19:29:24 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67f81c14-b0ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:13:d9:59:74:55:e1:36:00:4c:88:08:d6:f2: 48:5b:65:af:1c:f0:1a:3f:91:2b:95:da:fd:59:16: b3:e5:fd:a9:42:e9:64:27:41:59:ec:fe:6d:f6:58: 00:3e:84:01:2d:fb:34:82:65:a4:da:fb:63:d6:6c: 6e:86:33:c1:46:39:02:db:f2:71:fd:f7:7e:14:8d: 55:85:d3:ba:d8:ff:1d:e9:eb:4c:4d:05:cb:f8:0b: 48:98:b1:c8:95:4d:65:af:56:d6:a3:ba:6a:fb:55: 9b:5d:78:fe:67:f2:e2:d1:95:0c:a5:b5:f1:b2:42: 17:fe:17:28:de:da:d2:52:b5:be:8a:2a:b2:8c:11: cc:b1:2a:1c:ac:3d:ea:cf:b9:57:1c:75:af:39:8d: d2:94:6b:dd:3a:f5:b1:07:02:27:1b:f8:00:75:21: db:53:4e:4d:a9:dd:1f:34:04:cc:e3:e2:ec:47:6f: ee:7b:f0:7b:17:0b:50:75:5f:f1:b5:cd:c6:f6:51: ce:5e:bd:ef:27:44:c4:8a:c3:04:78:6f:7f:52:09: ad:c8:73:57:46:92:b5:fd:e2:8e:df:4a:44:5b:73: 1c:d4:ca:8e:df:30:88:70:77:f4:03:99:9a:80:2a: 80:51:9a:71:5d:7e:aa:3b:0d:91:b8:ec:73:2d:46: 07:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4B:BD:CA:9A:B5:50:FD:B6:96:18:83:4B:52:AA:FC:68:76:5E:BE X509v3 Authority Key Identifier: keyid:AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.82.0/23 IPv6: 2001:df2:c580::/48 Signature Algorithm: sha256WithRSAEncryption 64:c2:1f:7a:58:d8:92:00:60:96:5b:88:f8:72:de:5f:08:b3: 29:9f:2c:ec:66:75:1c:e8:e7:d6:8f:b7:85:f7:23:81:4e:da: 77:e0:3d:26:0c:5b:f3:85:76:5a:a8:6f:9a:a9:9e:d4:ba:1f: 93:2c:f2:f5:22:a0:45:77:2b:94:0d:98:63:2a:f9:a5:90:10: 75:6b:2b:ef:fd:48:7e:75:e0:5b:07:9f:2b:6b:01:18:1b:0e: 77:19:7e:98:08:1e:e6:cc:e9:e6:fb:ac:e3:7a:d1:9c:7f:c5: 14:34:61:c1:38:f1:49:05:96:c7:b8:8d:c3:e1:75:78:2e:23: 45:67:53:af:fe:95:b3:5c:40:78:f5:92:e2:9b:6c:2a:89:f4: d9:b3:78:df:32:51:7d:b5:0b:bf:39:82:2f:e2:54:e2:05:5c: 7a:6e:96:15:e5:78:8a:c8:21:fb:e1:20:8f:7d:a8:d6:0f:b0: 5b:ab:96:89:49:3b:6e:71:f5:ef:13:6a:a8:5d:0f:d8:92:2a: 39:35:29:b7:0b:fb:9b:d3:53:b4:3e:22:bd:6f:c6:f9:65:85: 25:f9:10:af:67:83:77:da:b0:35:53:94:f7:1e:0a:27:1c:c7: e1:53:70:3a:4e:0c:11:9f:88:e6:fe:e6:1b:bb:fb:d8:2a:34: a0:42:41:07 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBMEYxMTAvBgNVBAUTKEFEMTZBOTE5QjMyREVCOTQ1MEQyRUE2M0M3OUQ1MDMx NUQ5MTgxNTUwHhcNMjUwNDEwMTkyOTI0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4MWMxNC1iMGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRPZWXRV4TYATIgI1vJIW2WvHPAaP5Erldr9WRaz5f2pQulkJ0FZ7P5t9lgA PoQBLfs0gmWk2vtj1mxuhjPBRjkC2/Jx/fd+FI1VhdO62P8d6etMTQXL+AtImLHI lU1lr1bWo7pq+1WbXXj+Z/Li0ZUMpbXxskIX/hco3trSUrW+iiqyjBHMsSocrD3q z7lXHHWvOY3SlGvdOvWxBwInG/gAdSHbU05Nqd0fNATM4+LsR2/ue/B7FwtQdV/x tc3G9lHOXr3vJ0TEisMEeG9/UgmtyHNXRpK1/eKO30pEW3Mc1MqO3zCIcHf0A5ma gCqAUZpxXX6qOw2RuOxzLUYHDQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFVLvcqa tVD9tpYYg0tSqvxodl6+MB8GA1UdIwQYMBaAFK0WqRmzLeuUUNLqY8edUDFdkYFV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkEwRi9EOTAwNjdGRTRD RDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1UlEwdXBqeDUxUU1WMlJn VlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JSYXBHYk10NjVSUTB1cGp4NTFRTVYyUmdWVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJBMEYvRDkwMDY3RkU0Q0Q3MTFFQUI0NTU1ODQ1QzRGOUFFMDIvRDU0QzhFNkM0 REJEMTFFQUFGNDI3RjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlFIwDwQCAAIwCQMHACABDfLFgDANBgkqhkiG9w0BAQsF AAOCAQEAZMIfeljYkgBglluI+HLeXwizKZ8s7GZ1HOjn1o+3hfcjgU7ad+A9Jgxb 84V2Wqhvmqme1Lofkyzy9SKgRXcrlA2YYyr5pZAQdWsr7/1IfnXgWwefK2sBGBsO dxl+mAge5szp5vus43rRnH/FFDRhwTjxSQWWx7iNw+F1eC4jRWdTr/6Vs1xAePWS 4ptsKon02bN43zJRfbULvzmCL+JU4gVcem6WFeV4isgh++Egj32o1g+wW6uWiUk7 bnH17xNqqF0P2JIqOTUptwv7m9NTtD4ivW/G+WWFJfkQr2eDd9qwNVOU9x4KJxzH 4VNwOk4MEZ+I5v7mG7v72Co0oEJBBw== -----END CERTIFICATE-----Generated at Wed Nov 5 16:43:19 2025 by rpki-client