$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/531EFB4A8DD311EFAF53373AC4F9AE02.roa File: 531EFB4A8DD311EFAF53373AC4F9AE02.roa (raw, json) Hash identifier: jbPAsce3/CaxJsDiVyGY9asLOedO0k1vjixFMjzshzg= Subject key identifier: AE:7D:51:21:9B:F4:68:5D:C0:CB:F6:B1:C4:48:CB:46:88:77:9E:4B Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 0238 Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/531EFB4A8DD311EFAF53373AC4F9AE02.roa Signing time: Mon 03 Nov 2025 02:17:21 +0000 ROA not before: Mon 03 Nov 2025 02:17:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151373 IP address blocks: 103.101.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Nov 3 02:17:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690810b1-dac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:fb:05:d4:bb:fd:46:e3:ad:ab:88:e3:af:33: 91:a3:f9:52:38:2e:f4:a0:26:aa:1c:a9:c9:0b:49: 28:ab:f0:69:6c:04:f9:fe:4e:3b:77:fc:d9:be:89: 66:09:bf:9c:88:72:a9:c1:8d:5a:03:4c:bd:a8:99: 0e:3c:59:17:bb:d9:cf:49:a9:b2:10:b8:a4:4e:c1: 44:9a:1c:ff:fe:6d:b8:47:74:d6:a2:3a:00:1c:05: 8f:37:c8:2e:ae:70:99:a2:76:e3:a0:4d:9f:4f:9e: c0:cc:9b:1c:ba:f9:07:c5:82:4e:73:3e:24:62:50: 53:83:25:aa:26:08:87:1c:ed:5f:16:1d:fe:c0:a7: a5:a7:3f:70:82:f7:6a:c2:e3:3a:23:5e:97:3d:1d: f3:37:93:e9:7b:32:48:c1:30:fb:2d:b9:66:c4:52: b1:87:77:ff:6a:ce:7e:2f:f5:6b:52:b8:d8:67:45: 45:79:51:91:d8:93:cf:32:90:d3:07:27:9d:d2:cf: 0a:49:6c:99:5a:05:d9:42:04:19:6a:de:d4:b5:fc: 2e:64:65:2b:bf:5b:5a:ea:d0:ee:8b:82:ee:e4:f9: 91:e4:e0:61:28:46:e6:24:25:c3:d1:d0:a2:50:8c: 34:44:a3:04:31:16:74:ee:76:c5:4b:7e:64:b5:8e: fe:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:7D:51:21:9B:F4:68:5D:C0:CB:F6:B1:C4:48:CB:46:88:77:9E:4B X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/531EFB4A8DD311EFAF53373AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.221.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:a5:66:06:74:15:49:4d:1f:55:9a:25:ae:86:02:2d:35:fc: 86:04:06:c2:67:ec:d9:2d:6c:11:b7:60:9e:fc:f8:25:c9:f5: 0b:9a:13:98:7b:e1:02:6c:b3:66:96:d5:43:6f:12:b2:ff:3d: f8:c3:38:85:10:f6:ff:b8:39:c4:af:db:1e:91:a0:19:28:b9: 28:33:c1:54:27:cc:b3:13:2c:a9:43:c2:f9:f0:cf:80:f5:56: 5d:7e:20:e1:0b:23:ab:27:07:be:44:15:31:d1:9e:ab:5d:21: 78:07:51:94:bc:1d:f1:44:b0:fd:0f:e6:30:15:e4:fc:9c:3e: da:20:60:de:c5:40:48:25:14:45:1e:20:c9:47:cc:ab:87:be: 86:58:cf:09:cd:2f:fa:b9:36:50:c3:27:6e:67:11:7d:f5:6d: a7:5c:f5:df:15:30:ed:78:b1:1c:47:ba:2c:c9:cb:55:97:f2: 93:a5:f9:85:c6:bf:3e:22:63:05:30:9f:b4:95:33:b3:94:4b: 04:07:bb:5e:48:dd:2e:e6:da:c6:14:af:eb:6c:ec:e6:57:b3: 78:c7:ea:26:ac:dd:db:73:5a:2e:33:97:78:cf:65:e0:76:54: 15:11:54:ba:f5:fb:2e:ba:12:27:28:9a:a3:55:d7:d9:e2:e5: ca:00:15:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUxMTAzMDIxNzIxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MTBiMS1kYWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7vsF1Lv9RuOtq4jjrzORo/lSOC70oCaqHKnJC0koq/BpbAT5/k47d/zZvolm Cb+ciHKpwY1aA0y9qJkOPFkXu9nPSamyELikTsFEmhz//m24R3TWojoAHAWPN8gu rnCZonbjoE2fT57AzJscuvkHxYJOcz4kYlBTgyWqJgiHHO1fFh3+wKelpz9wgvdq wuM6I16XPR3zN5PpezJIwTD7LblmxFKxh3f/as5+L/VrUrjYZ0VFeVGR2JPPMpDT Byed0s8KSWyZWgXZQgQZat7UtfwuZGUrv1ta6tDui4Lu5PmR5OBhKEbmJCXD0dCi UIw0RKMEMRZ07nbFS35ktY7+cwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK59USGb 9GhdwMv2scRIy0aId55LMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNUZBMzZFMzQ4OTIzMTFFREJDQTI5NjEzQzRGOUFFMDIvNTMxRUZCNEE4 REQzMTFFRkFGNTMzNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZd0wDQYJKoZIhvcNAQELBQADggEBADqlZgZ0FUlNH1Wa Ja6GAi01/IYEBsJn7NktbBG3YJ78+CXJ9QuaE5h74QJss2aW1UNvErL/PfjDOIUQ 9v+4OcSv2x6RoBkouSgzwVQnzLMTLKlDwvnwz4D1Vl1+IOELI6snB75EFTHRnqtd IXgHUZS8HfFEsP0P5jAV5PycPtogYN7FQEglFEUeIMlHzKuHvoZYzwnNL/q5NlDD J25nEX31badc9d8VMO14sRxHuizJy1WX8pOl+YXGvz4iYwUwn7SVM7OUSwQHu15I 3S7m2sYUr+ts7OZXs3jH6ias3dtzWi4zl3jPZeB2VBURVLr1+y66EicomqNV19ni 5coAFf4= -----END CERTIFICATE-----Generated at Wed Nov 5 13:34:51 2025 by rpki-client