$ rpki-client -vvf rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/E86C4B1E04AE11EC92C8D079C4F9AE02.roa File: E86C4B1E04AE11EC92C8D079C4F9AE02.roa (raw, json) Hash identifier: lavhkAfv8hYziRuA8AuHoJeOdZGCo7Jbpk55GeOTHz0= Subject key identifier: E1:13:C6:DF:FE:6D:35:75:4D:9B:7F:C6:D5:EC:E7:C6:9D:E7:7D:08 Certificate issuer: /CN=A91E13D0/serialNumber=FC80B49B507332FD4C9C92DD5E27A2DFCA8064DA Certificate serial: 054C Authority key identifier: FC:80:B4:9B:50:73:32:FD:4C:9C:92:DD:5E:27:A2:DF:CA:80:64:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/E86C4B1E04AE11EC92C8D079C4F9AE02.roa Signing time: Tue 19 Aug 2025 00:05:15 +0000 ROA not before: Tue 19 Aug 2025 00:05:15 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 139588 IP address blocks: 103.142.5.0/24 maxlen: 24 103.208.64.0/24 maxlen: 24 2001:df1:2280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.crl rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1356 (0x54c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E13D0, serialNumber=FC80B49B507332FD4C9C92DD5E27A2DFCA8064DA Validity Not Before: Aug 19 00:05:15 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a3bfbb-862d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c5:cc:19:c7:cf:18:ea:cf:6b:20:ce:da:79: 23:8d:4e:7c:94:aa:2c:9c:28:60:17:b6:42:9d:d8: f9:5c:9e:e1:be:e9:bd:a5:66:35:14:53:9d:57:ed: cb:6a:02:72:58:91:04:6c:40:51:bd:08:34:12:71: d6:5a:74:20:08:7c:70:48:3a:6f:0b:22:1a:5f:0d: 19:2a:0f:4f:ef:d2:0b:d2:a6:c9:27:6e:2e:66:e3: b0:eb:24:a4:b9:c4:5a:b7:fc:4f:c3:e8:a4:07:ad: b4:32:35:6d:f1:2f:e0:4c:02:38:95:86:b9:9c:bd: 30:00:4d:15:08:9a:37:01:9b:4a:a3:99:33:f1:73: ff:34:ec:9e:aa:a3:c9:72:f8:c8:3f:3d:1c:e0:40: 2f:a6:32:39:e4:9b:56:16:94:c6:e9:6b:75:a7:5c: de:6d:22:c1:c4:e0:6a:8a:07:38:82:4e:db:4d:66: 35:e9:90:05:f9:90:70:10:f7:71:4a:57:53:7c:7d: 4e:46:52:18:55:42:c8:8c:6d:cc:28:54:d8:1a:a7: 77:9d:b2:4c:1f:25:ad:eb:0f:43:43:5e:3e:12:f3: e7:00:2a:92:da:6c:e2:43:1a:c2:13:c7:0e:e0:f0: 8c:70:d1:f0:8d:55:38:7d:6d:a2:11:4d:32:c1:96: 4a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:13:C6:DF:FE:6D:35:75:4D:9B:7F:C6:D5:EC:E7:C6:9D:E7:7D:08 X509v3 Authority Key Identifier: keyid:FC:80:B4:9B:50:73:32:FD:4C:9C:92:DD:5E:27:A2:DF:CA:80:64:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/_IC0m1BzMv1MnJLdXiei38qAZNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IC0m1BzMv1MnJLdXiei38qAZNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E13D0/D7A4BB5604AC11ECBEB50C79C4F9AE02/E86C4B1E04AE11EC92C8D079C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.5.0/24 103.208.64.0/24 IPv6: 2001:df1:2280::/48 Signature Algorithm: sha256WithRSAEncryption 9f:aa:0c:f9:50:bf:d2:0f:31:56:ba:e1:c6:f0:5e:61:e4:30: 89:11:be:74:33:1d:6e:3b:43:96:2f:51:bd:de:02:3d:b7:ff: d7:f5:19:5d:a4:6b:77:8a:2e:fe:2e:e5:ca:6a:70:66:7d:76: 2d:f6:e5:f0:76:77:fc:31:76:09:d8:47:0b:fa:f8:97:62:97: 3e:d9:54:d4:10:83:97:91:9b:76:9c:11:72:f6:ca:c0:46:b9: eb:94:22:38:8f:f3:0b:56:00:4d:81:69:48:49:f3:98:b8:61: 57:b3:e8:ca:ee:18:5f:a1:10:61:09:1a:44:bb:fc:ab:71:fd: f5:c5:bd:8b:19:ae:59:ff:f0:92:47:03:c2:ab:ac:9a:79:0c: 30:df:3d:04:17:45:9d:e0:ec:cc:97:f9:ee:ca:5e:5b:f0:d0: 53:a2:e8:45:9a:4e:bc:1b:0d:9c:2f:18:a3:7c:b0:81:b8:7a: a1:7c:85:9c:43:4d:41:8d:4e:73:a2:ad:3e:af:c3:a5:cb:2e: b4:be:c1:66:71:0b:24:c1:6d:45:31:27:98:0f:e0:8b:2e:0c: 55:b4:77:43:2c:de:8e:ca:3a:43:bb:37:47:49:5d:16:6a:57: 87:c8:84:fb:54:c9:7a:29:c1:ac:c5:0d:07:21:91:de:81:89: 4a:81:2d:70 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEzRDAxMTAvBgNVBAUTKEZDODBCNDlCNTA3MzMyRkQ0QzlDOTJERDVFMjdBMkRG Q0E4MDY0REEwHhcNMjUwODE5MDAwNTE1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzYmZiYi04NjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcXMGcfPGOrPayDO2nkjjU58lKosnChgF7ZCndj5XJ7hvum9pWY1FFOdV+3L agJyWJEEbEBRvQg0EnHWWnQgCHxwSDpvCyIaXw0ZKg9P79IL0qbJJ24uZuOw6ySk ucRat/xPw+ikB620MjVt8S/gTAI4lYa5nL0wAE0VCJo3AZtKo5kz8XP/NOyeqqPJ cvjIPz0c4EAvpjI55JtWFpTG6Wt1p1zebSLBxOBqigc4gk7bTWY16ZAF+ZBwEPdx SldTfH1ORlIYVULIjG3MKFTYGqd3nbJMHyWt6w9DQ14+EvPnACqS2mziQxrCE8cO 4PCMcNHwjVU4fW2iEU0ywZZKfwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOETxt/+ bTV1TZt/xtXs58ad530IMB8GA1UdIwQYMBaAFPyAtJtQczL9TJyS3V4not/KgGTa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTNEMC9EN0E0QkI1NjA0 QUMxMUVDQkVCNTBDNzlDNEY5QUUwMi9fSUMwbTFCek12MU1uSkxkWGllaTM4cUFa Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JQzBtMUJ6TXYxTW5KTGRYaWVpMzhxQVpOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTEzRDAvRDdBNEJCNTYwNEFDMTFFQ0JFQjUwQzc5QzRGOUFFMDIvRTg2QzRCMUUw NEFFMTFFQzkyQzhEMDc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjgUDBABn0EAwDwQCAAIwCQMHACABDfEigDANBgkqhkiG 9w0BAQsFAAOCAQEAn6oM+VC/0g8xVrrhxvBeYeQwiRG+dDMdbjtDli9Rvd4CPbf/ 1/UZXaRrd4ou/i7lympwZn12Lfbl8HZ3/DF2CdhHC/r4l2KXPtlU1BCDl5GbdpwR cvbKwEa565QiOI/zC1YATYFpSEnzmLhhV7Poyu4YX6EQYQkaRLv8q3H99cW9ixmu Wf/wkkcDwqusmnkMMN89BBdFneDszJf57speW/DQU6LoRZpOvBsNnC8Yo3ywgbh6 oXyFnENNQY1Oc6KtPq/DpcsutL7BZnELJMFtRTEnmA/giy4MVbR3Qyzejso6Q7s3 R0ldFmpXh8iE+1TJeinBrMUNByGR3oGJSoEtcA== -----END CERTIFICATE-----Generated at Tue Nov 4 01:04:17 2025 by rpki-client