$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/69318772F69C11EFBD339C7FC4F9AE02.roa File: 69318772F69C11EFBD339C7FC4F9AE02.roa (raw, json) Hash identifier: pDxe3UM6EMMRbdUo/T7lMp2JHS6kHDEjGKNwttRRiYY= Subject key identifier: CF:F3:C3:EB:9B:8F:47:4C:C7:A3:C4:D2:EF:DC:3E:A9:82:B2:F3:0D Certificate issuer: /CN=A91FDA00/serialNumber=B1EEC59ED561A0DB3D7D40C30AF2AB6FED297A98 Certificate serial: 07D6 Authority key identifier: B1:EE:C5:9E:D5:61:A0:DB:3D:7D:40:C3:0A:F2:AB:6F:ED:29:7A:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/se7FntVhoNs9fUDDCvKrb-0pepg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/69318772F69C11EFBD339C7FC4F9AE02.roa Signing time: Sun 02 Nov 2025 21:40:37 +0000 ROA not before: Sun 02 Nov 2025 21:40:37 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134712 IP address blocks: 103.158.4.0/23 maxlen: 23 103.158.4.0/24 maxlen: 24 103.158.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/se7FntVhoNs9fUDDCvKrb-0pepg.crl rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/se7FntVhoNs9fUDDCvKrb-0pepg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/se7FntVhoNs9fUDDCvKrb-0pepg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2006 (0x7d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA00, serialNumber=B1EEC59ED561A0DB3D7D40C30AF2AB6FED297A98 Validity Not Before: Nov 2 21:40:37 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6907cfd5-66c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:28:50:b8:a9:37:65:1d:d1:cc:9d:1f:bb:7a: 7c:8e:c4:34:07:c3:aa:c2:09:2d:f2:1f:af:a9:62: f9:1b:d5:42:5c:c3:22:a9:07:01:a0:30:33:e2:67: 79:4a:2a:1d:f7:48:52:df:37:00:48:bd:ae:f9:53: ab:26:9b:1a:93:eb:b4:9d:55:3b:27:7d:98:3d:2a: 62:ab:ff:7b:bc:e0:97:e1:68:98:e5:d7:b3:8c:2b: 3d:57:88:2b:31:b8:65:28:a9:7d:05:71:4d:a1:8d: ff:72:8f:34:07:ab:76:3c:96:df:07:3a:5d:36:06: b0:30:a6:48:53:52:e6:ab:cc:ef:69:2d:27:0c:66: fa:ba:1d:a2:d4:0d:b5:69:5b:80:e0:6a:58:b9:06: 17:88:3e:ef:e4:d7:78:df:50:f9:4d:13:b6:c1:d8: 44:ed:b0:3a:7f:ff:9b:0b:94:0d:78:b4:8a:3e:58: dc:d3:a8:64:b3:77:58:8c:7e:c9:b8:8b:49:67:23: 01:81:71:26:d6:57:c4:b5:16:86:ae:0b:cd:20:67: 15:b5:28:57:6b:a1:07:a4:07:ce:ce:86:34:55:6a: 1d:09:9e:99:07:ff:03:2e:66:3e:53:34:4c:3b:9e: 60:3a:bd:20:13:a3:dd:70:a0:d5:ff:12:21:ff:af: e1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F3:C3:EB:9B:8F:47:4C:C7:A3:C4:D2:EF:DC:3E:A9:82:B2:F3:0D X509v3 Authority Key Identifier: keyid:B1:EE:C5:9E:D5:61:A0:DB:3D:7D:40:C3:0A:F2:AB:6F:ED:29:7A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/se7FntVhoNs9fUDDCvKrb-0pepg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/se7FntVhoNs9fUDDCvKrb-0pepg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/69318772F69C11EFBD339C7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.4.0/23 Signature Algorithm: sha256WithRSAEncryption 41:61:ef:e6:f1:0f:fc:20:2a:ae:17:3c:56:6c:b1:84:4a:cb: 68:29:25:fe:0a:6f:bb:6b:80:74:6a:9a:7b:e2:a7:63:c0:72: 75:a2:b9:fe:97:d4:98:66:eb:0c:cd:ab:e2:c4:18:3d:94:27: 7f:a9:9c:fb:80:ec:a2:e8:83:e5:c2:90:66:af:06:4e:70:95: 71:79:50:5c:66:72:5c:ea:16:fd:cc:52:55:f7:9b:61:6c:17: e5:bc:d2:fb:17:05:68:54:1c:0d:81:0f:f0:ee:14:db:c4:73: ec:2f:25:ce:ec:2d:f6:fb:ab:6f:0a:41:9f:81:57:56:a2:bd: ff:ae:d4:31:b7:4f:c5:fd:72:d8:42:e4:31:da:84:53:84:26: fb:5c:c8:ac:38:1f:f5:09:15:65:b2:fa:56:a0:97:e5:c2:2b: c7:89:d3:77:a1:52:62:41:21:6d:52:6b:51:a8:30:01:c3:29: 68:28:2f:1f:e4:ca:e9:2d:91:67:fb:23:89:de:53:aa:54:24: 62:eb:d8:2a:05:aa:28:b8:98:11:9b:40:33:f7:ac:ad:23:2b: f9:9d:86:29:7c:bf:78:b3:a3:04:44:15:30:26:c3:fa:f9:ed: 04:1b:9c:16:0c:0e:88:c8:24:9f:c5:a3:b8:aa:24:73:bf:32: 0c:2d:64:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBMDAxMTAvBgNVBAUTKEIxRUVDNTlFRDU2MUEwREIzRDdENDBDMzBBRjJBQjZG RUQyOTdBOTgwHhcNMjUxMTAyMjE0MDM3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3Y2ZkNS02NmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyhQuKk3ZR3RzJ0fu3p8jsQ0B8Oqwgkt8h+vqWL5G9VCXMMiqQcBoDAz4md5 Siod90hS3zcASL2u+VOrJpsak+u0nVU7J32YPSpiq/97vOCX4WiY5dezjCs9V4gr MbhlKKl9BXFNoY3/co80B6t2PJbfBzpdNgawMKZIU1Lmq8zvaS0nDGb6uh2i1A21 aVuA4GpYuQYXiD7v5Nd431D5TRO2wdhE7bA6f/+bC5QNeLSKPljc06hks3dYjH7J uItJZyMBgXEm1lfEtRaGrgvNIGcVtShXa6EHpAfOzoY0VWodCZ6ZB/8DLmY+UzRM O55gOr0gE6PdcKDV/xIh/6/hbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM/zw+ub j0dMx6PE0u/cPqmCsvMNMB8GA1UdIwQYMBaAFLHuxZ7VYaDbPX1Awwryq2/tKXqY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREEwMC83REQ3NTBEQzFD RTIxMUVCOUFBQjQ5NzdDNEY5QUUwMi9zZTdGbnRWaG9OczlmVUREQ3ZLcmItMHBl cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NlN0ZudFZob05zOWZVRERDdktyYi0wcGVwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBMDAvN0RENzUwREMxQ0UyMTFFQjlBQUI0OTc3QzRGOUFFMDIvNjkzMTg3NzJG NjlDMTFFRkJEMzM5QzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnngQwDQYJKoZIhvcNAQELBQADggEBAEFh7+bxD/wgKq4X PFZssYRKy2gpJf4Kb7trgHRqmnvip2PAcnWiuf6X1Jhm6wzNq+LEGD2UJ3+pnPuA 7KLog+XCkGavBk5wlXF5UFxmclzqFv3MUlX3m2FsF+W80vsXBWhUHA2BD/DuFNvE c+wvJc7sLfb7q28KQZ+BV1aivf+u1DG3T8X9cthC5DHahFOEJvtcyKw4H/UJFWWy +lagl+XCK8eJ03ehUmJBIW1Sa1GoMAHDKWgoLx/kyuktkWf7I4neU6pUJGLr2CoF qii4mBGbQDP3rK0jK/mdhil8v3izowREFTAmw/r57QQbnBYMDojIJJ/Fo7iqJHO/ MgwtZDI= -----END CERTIFICATE-----Generated at Mon Nov 3 17:15:46 2025 by rpki-client