$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/5576D030D61711EEB983D919C4F9AE02.roa File: 5576D030D61711EEB983D919C4F9AE02.roa (raw, json) Hash identifier: UaaSyqLY1EU1feMuBNb93HrMgg8A6BJd78TyE8+TiZU= Subject key identifier: 4A:D0:54:BE:5F:86:0C:8A:3F:E4:B7:C6:A9:1D:2C:31:80:D9:B2:19 Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: 01EE Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/5576D030D61711EEB983D919C4F9AE02.roa Signing time: Fri 17 Oct 2025 05:38:47 +0000 ROA not before: Fri 17 Oct 2025 05:38:47 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 4618 IP address blocks: 103.125.92.0/22 maxlen: 22 103.125.92.0/24 maxlen: 24 103.125.93.0/24 maxlen: 24 103.125.94.0/24 maxlen: 24 103.125.95.0/24 maxlen: 24 2403:f040::/32 maxlen: 32 2403:f040:14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:31:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE, serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Validity Not Before: Oct 17 05:38:47 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f1d666-68d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e3:0c:37:22:ed:e2:bc:80:7f:05:f6:04:80: d9:c0:1a:47:fe:37:78:fb:2d:80:be:72:d3:8c:0d: 72:d7:8f:03:83:b4:3e:af:38:c9:0a:9d:dd:35:37: a9:f9:40:51:bf:ae:c6:a7:56:9c:9c:97:b4:cb:54: ca:b1:99:78:60:5b:6a:a3:2d:68:74:61:8f:89:41: 18:25:ff:fb:bd:a6:d9:43:19:84:77:4e:df:ef:ef: 51:7b:ae:55:fb:ee:cb:d2:14:2d:f9:41:a4:87:73: 82:4f:6a:9a:1e:f6:d9:95:a3:54:2c:35:8b:60:e7: 69:9e:ae:e5:14:b9:17:f4:98:6c:3e:93:79:43:84: 49:cb:97:1e:aa:34:83:3d:cf:f2:eb:63:3c:5c:15: 96:54:8f:2b:56:f5:a3:ad:f6:aa:f5:c2:0c:77:46: a9:fa:b9:ed:da:89:9f:7e:78:96:35:56:65:f1:da: de:52:cd:8a:7c:7b:13:a8:6a:77:a1:65:71:b8:03: 34:e8:30:e0:ff:5e:77:ab:0d:7a:bd:3b:f5:a0:e2: bc:4a:28:9a:b8:6b:a2:e4:e6:2e:90:14:fa:af:ba: 32:10:3e:6f:3c:66:b1:13:50:dc:26:ad:63:f7:7a: 91:4c:ca:05:b4:18:ad:79:0e:2c:5a:e2:20:98:37: 04:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D0:54:BE:5F:86:0C:8A:3F:E4:B7:C6:A9:1D:2C:31:80:D9:B2:19 X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/5576D030D61711EEB983D919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.92.0/22 IPv6: 2403:f040::/32 Signature Algorithm: sha256WithRSAEncryption 22:b1:46:2e:9a:a4:07:f3:3f:01:ae:83:27:40:41:78:9a:f8: d7:82:1a:cd:66:cc:62:34:9d:68:03:cc:18:6b:b3:11:69:b4: ee:d3:32:34:a2:b0:b4:0f:3d:18:21:cf:b2:9c:14:74:3e:00: 4a:0b:e0:73:6e:56:3f:8a:90:f5:7b:d3:d9:a0:37:bd:5c:e1: bc:21:d0:22:56:f9:fb:dd:e0:e9:9a:d1:19:a8:ca:74:d9:c1: 20:42:56:ea:15:32:dc:07:1a:db:f6:76:c3:31:3c:e8:1f:a5: 77:70:41:a0:dd:d7:6f:f6:f0:22:f4:20:52:20:94:55:2b:97: 47:dc:6d:a1:2b:9f:4f:08:75:4f:b4:6e:8a:95:68:72:83:7a: db:6e:0b:f0:a9:9b:8e:f5:e9:ce:f2:e8:09:f0:a9:14:3e:60: c4:67:30:5d:78:ce:53:d2:05:38:a5:3c:58:9c:0a:cb:3f:30: 8b:be:87:3e:68:6d:3a:bb:9d:a5:fb:00:d8:d9:5c:f1:5c:fb: a3:c8:2a:53:16:87:fa:35:b4:36:7c:1c:c5:fb:28:aa:95:14: 85:f1:05:83:95:7a:54:1f:ea:46:48:45:ca:fc:8a:7b:84:14: a6:c2:cb:d1:9d:54:fd:ac:4a:12:ec:61:2c:d9:d3:c5:2f:27: bf:dd:fd:1f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjUxMDE3MDUzODQ3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxZDY2Ni02OGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuMMNyLt4ryAfwX2BIDZwBpH/jd4+y2AvnLTjA1y148Dg7Q+rzjJCp3dNTep +UBRv67Gp1acnJe0y1TKsZl4YFtqoy1odGGPiUEYJf/7vabZQxmEd07f7+9Re65V ++7L0hQt+UGkh3OCT2qaHvbZlaNULDWLYOdpnq7lFLkX9JhsPpN5Q4RJy5ceqjSD Pc/y62M8XBWWVI8rVvWjrfaq9cIMd0ap+rnt2omffniWNVZl8dreUs2KfHsTqGp3 oWVxuAM06DDg/153qw16vTv1oOK8SiiauGui5OYukBT6r7oyED5vPGaxE1DcJq1j 93qRTMoFtBiteQ4sWuIgmDcEmwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFErQVL5f hgyKP+S3xqkdLDGA2bIZMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU4QkUvN0M3RkIyRkVDMjE5MTFFRDgwMjU2RjRFQzRGOUFFMDIvNTU3NkQwMzBE NjE3MTFFRUI5ODNEOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfVwwDQQCAAIwBwMFACQD8EAwDQYJKoZIhvcNAQELBQAD ggEBACKxRi6apAfzPwGugydAQXia+NeCGs1mzGI0nWgDzBhrsxFptO7TMjSisLQP PRghz7KcFHQ+AEoL4HNuVj+KkPV709mgN71c4bwh0CJW+fvd4Oma0RmoynTZwSBC VuoVMtwHGtv2dsMxPOgfpXdwQaDd12/28CL0IFIglFUrl0fcbaErn08IdU+0boqV aHKDettuC/Cpm4716c7y6AnwqRQ+YMRnMF14zlPSBTilPFicCss/MIu+hz5obTq7 naX7ANjZXPFc+6PIKlMWh/o1tDZ8HMX7KKqVFIXxBYOVelQf6kZIRcr8inuEFKbC y9GdVP2sShLsYSzZ08UvJ7/d/R8= -----END CERTIFICATE-----Generated at Tue Nov 4 17:18:18 2025 by rpki-client