$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/146FD366653611EB99BE491DC4F9AE02.roa File: 146FD366653611EB99BE491DC4F9AE02.roa (raw, json) Hash identifier: vDTtnYK0urRCnkWdVJaHunlHhYBCBiIEuZyHl4rL/x4= Subject key identifier: DB:A6:F6:A1:5C:09:9D:DE:1A:49:90:94:2C:BE:7E:2D:62:3B:11:D7 Certificate issuer: /CN=A91E0D8B/serialNumber=568D179152473C809A62E585E5ADC942866BE659 Certificate serial: 0689 Authority key identifier: 56:8D:17:91:52:47:3C:80:9A:62:E5:85:E5:AD:C9:42:86:6B:E6:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/146FD366653611EB99BE491DC4F9AE02.roa Signing time: Wed 12 Mar 2025 22:23:06 +0000 ROA not before: Wed 12 Mar 2025 22:23:06 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137487 IP address blocks: 103.110.75.0/24 maxlen: 24 103.119.134.0/24 maxlen: 24 103.119.135.0/24 maxlen: 24 103.119.136.0/24 maxlen: 24 2001:df4:6300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D8B, serialNumber=568D179152473C809A62E585E5ADC942866BE659 Validity Not Before: Mar 12 22:23:06 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d2094a-ea21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:15:d0:01:b1:bb:65:a0:c4:68:b6:d2:39:72: 89:b2:97:25:18:b0:d0:db:d2:52:2d:13:7b:e3:b9: 2a:48:f5:68:fe:ab:70:fe:b8:08:18:3e:a4:87:5a: 17:ca:20:6c:fa:f4:b6:b4:2e:94:65:17:77:91:55: f4:b4:c1:0f:53:a7:1a:43:26:3d:51:0f:08:50:b6: 80:6d:94:5c:08:15:11:db:49:96:2f:57:4a:41:83: 33:65:2b:35:b3:99:df:45:a4:78:cc:99:e2:66:0a: 1d:29:74:1f:d6:03:f4:68:5d:14:aa:e3:45:4f:e4: 00:8e:42:b3:d9:f8:76:da:a1:f7:be:12:0e:89:39: 42:8b:61:09:33:9e:38:b1:8c:dc:0d:b5:20:53:81: 17:c7:68:78:bf:4a:2c:ca:c8:94:28:2f:3c:95:0c: 1e:31:f6:9e:31:5e:e9:b6:fa:4f:a6:af:54:71:1b: 2a:24:37:9e:5a:8a:6e:72:a0:80:01:0c:93:1c:0a: c6:43:47:8f:77:2b:83:4a:fe:71:40:a2:2c:4c:51: 55:4c:03:bb:57:9e:a7:57:5f:33:e0:fd:53:8a:6d: a5:86:9a:f4:0e:d2:1c:52:44:59:9e:c7:fa:a6:a7: e0:50:46:cf:c9:1b:28:6c:65:0d:e9:5b:20:48:00: f9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A6:F6:A1:5C:09:9D:DE:1A:49:90:94:2C:BE:7E:2D:62:3B:11:D7 X509v3 Authority Key Identifier: keyid:56:8D:17:91:52:47:3C:80:9A:62:E5:85:E5:AD:C9:42:86:6B:E6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/146FD366653611EB99BE491DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.75.0/24 103.119.134.0-103.119.136.255 IPv6: 2001:df4:6300::/48 Signature Algorithm: sha256WithRSAEncryption 5a:cb:04:97:ec:b6:9d:83:e4:87:fd:cf:eb:a8:6d:54:ae:4b: e7:f3:f8:68:e7:4c:e5:d3:2a:03:0d:97:29:46:cf:d9:73:09: ef:57:33:4e:b7:a4:14:be:90:82:5d:2f:c9:71:f0:f4:65:9e: fc:37:9a:00:38:81:75:93:78:42:3f:ce:90:45:3c:6f:88:c9: d3:00:1a:2f:57:26:36:97:fc:6d:d6:bd:c6:81:f1:8d:a0:7a: 7f:36:b8:91:0a:f8:e0:d4:fa:59:a0:e7:f1:9a:44:c9:c9:fd: 7f:71:78:91:64:ef:42:fa:62:3b:9f:c7:a5:64:7c:90:d9:e5: b6:6f:99:16:54:e7:26:fe:01:c8:d8:bf:26:bb:3e:2e:28:95: 47:35:1b:ac:47:58:05:84:bd:f4:07:57:68:ca:f5:00:c6:14: 67:2f:a2:ff:44:35:2e:26:40:ed:0e:9b:cf:77:43:39:94:be: d4:63:a3:47:32:6c:c2:26:04:78:c9:3c:c4:69:9e:68:00:e9: 23:1f:09:99:93:18:98:cb:f7:3c:fb:b6:4b:ee:5f:4b:6b:32: bb:63:93:d1:d3:af:40:c6:30:1c:78:3f:ec:e1:f5:ec:fa:99: 68:36:52:51:b5:c2:07:fa:e0:66:04:1d:d5:02:bd:a2:13:62: fc:b9:c6:02 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEOEIxMTAvBgNVBAUTKDU2OEQxNzkxNTI0NzNDODA5QTYyRTU4NUU1QURDOTQy ODY2QkU2NTkwHhcNMjUwMzEyMjIyMzA2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2QyMDk0YS1lYTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRXQAbG7ZaDEaLbSOXKJspclGLDQ29JSLRN747kqSPVo/qtw/rgIGD6kh1oX yiBs+vS2tC6UZRd3kVX0tMEPU6caQyY9UQ8IULaAbZRcCBUR20mWL1dKQYMzZSs1 s5nfRaR4zJniZgodKXQf1gP0aF0UquNFT+QAjkKz2fh22qH3vhIOiTlCi2EJM544 sYzcDbUgU4EXx2h4v0osysiUKC88lQweMfaeMV7ptvpPpq9UcRsqJDeeWopucqCA AQyTHArGQ0ePdyuDSv5xQKIsTFFVTAO7V56nV18z4P1Tim2lhpr0DtIcUkRZnsf6 pqfgUEbPyRsobGUN6VsgSAD5uQIDAQABo4ICtDCCArAwHQYDVR0OBBYEFNum9qFc CZ3eGkmQlCy+fi1iOxHXMB8GA1UdIwQYMBaAFFaNF5FSRzyAmmLlheWtyUKGa+ZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Qi80QTZENkMwQTY1 MzQxMUVCQjZCOEYwMTlDNEY5QUUwMi9WbzBYa1ZKSFBJQ2FZdVdGNWEzSlFvWnI1 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZvMFhrVkpIUElDYVl1V0Y1YTNKUW9acjVsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBEOEIvNEE2RDZDMEE2NTM0MTFFQkI2QjhGMDE5QzRGOUFFMDIvMTQ2RkQzNjY2 NTM2MTFFQjk5QkU0OTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMBoEAgABMBQDBABnbkswDAMEAWd3hgMEAGd3iDAPBAIAAjAJAwcAIAEN9GMA MA0GCSqGSIb3DQEBCwUAA4IBAQBaywSX7Ladg+SH/c/rqG1Urkvn8/ho50zl0yoD DZcpRs/ZcwnvVzNOt6QUvpCCXS/JcfD0ZZ78N5oAOIF1k3hCP86QRTxviMnTABov VyY2l/xt1r3GgfGNoHp/NriRCvjg1PpZoOfxmkTJyf1/cXiRZO9C+mI7n8elZHyQ 2eW2b5kWVOcm/gHI2L8muz4uKJVHNRusR1gFhL30B1doyvUAxhRnL6L/RDUuJkDt DpvPd0M5lL7UY6NHMmzCJgR4yTzEaZ5oAOkjHwmZkxiYy/c8+7ZL7l9LazK7Y5PR 069AxjAceD/s4fXs+ploNlJRtcIH+uBmBB3VAr2iE2L8ucYC -----END CERTIFICATE-----Generated at Wed Nov 5 16:40:51 2025 by rpki-client