$ rpki-client -vvf rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/6015E82861B411EEBAA6AD59C4F9AE02.roa File: 6015E82861B411EEBAA6AD59C4F9AE02.roa (raw, json) Hash identifier: LwGVKFP/xTdHf/wYi8eVp6yJDAuRI5jefu1jxHK93RU= Subject key identifier: 7B:17:CC:25:63:D4:9B:29:30:58:7C:4D:45:26:67:97:91:67:C8:EE Certificate issuer: /CN=A91A394B/serialNumber=9408E9D7B6CEB834CA90901E45786010C069C32B Certificate serial: 016A Authority key identifier: 94:08:E9:D7:B6:CE:B8:34:CA:90:90:1E:45:78:60:10:C0:69:C3:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/6015E82861B411EEBAA6AD59C4F9AE02.roa Signing time: Fri 29 Aug 2025 04:52:40 +0000 ROA not before: Fri 29 Aug 2025 04:52:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133131 IP address blocks: 103.167.252.0/23 maxlen: 23 103.167.252.0/24 maxlen: 24 103.167.253.0/24 maxlen: 24 2001:df2:c340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.crl rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A394B, serialNumber=9408E9D7B6CEB834CA90901E45786010C069C32B Validity Not Before: Aug 29 04:52:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b13218-be84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ae:f6:8d:63:5c:c6:95:4a:dd:84:f0:aa:6c: c0:0a:c8:12:b0:7a:81:83:ca:ca:39:00:a3:83:43: a3:bb:12:84:3d:c7:0b:28:1a:17:0a:a2:a3:e1:ee: 53:3d:57:56:72:02:ac:6a:3a:f9:86:cd:ab:c3:7d: 89:7e:25:ec:38:a0:23:03:5b:cc:0a:28:8f:c8:90: 71:41:fa:c1:a9:6a:61:fb:0a:d7:0c:4d:b0:9e:ec: 61:cb:67:9e:4f:b3:d5:0e:f0:80:7c:18:96:46:c8: ed:23:81:db:cd:e1:93:87:20:e0:62:67:89:fe:6c: d2:0b:14:1e:30:83:a2:be:b8:2e:f0:61:49:47:19: 5a:c3:93:ba:c4:3c:5c:4c:2b:fc:fa:83:65:2f:15: 09:e9:ba:cd:50:ae:df:0d:ab:7d:99:25:f8:dc:5e: 0a:a1:5e:c1:55:0a:6e:7e:27:c9:d6:7e:ce:fc:86: 6f:c5:03:40:57:a8:55:a3:54:91:5a:4b:3f:8a:59: af:8a:ae:89:fa:fc:b6:9b:24:8f:ce:3e:e3:51:36: 1a:0a:06:67:c5:c5:6e:f7:0b:2c:cc:ef:12:3d:2a: 37:63:8d:17:d4:8a:64:98:50:9e:e1:94:4c:f1:98: 89:e5:4e:e7:53:50:c4:9f:04:26:48:d9:6d:6b:ee: ac:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:17:CC:25:63:D4:9B:29:30:58:7C:4D:45:26:67:97:91:67:C8:EE X509v3 Authority Key Identifier: keyid:94:08:E9:D7:B6:CE:B8:34:CA:90:90:1E:45:78:60:10:C0:69:C3:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/lAjp17bOuDTKkJAeRXhgEMBpwys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAjp17bOuDTKkJAeRXhgEMBpwys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A394B/10ACAB0A61B411EE80CE1846C4F9AE02/6015E82861B411EEBAA6AD59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.252.0/23 IPv6: 2001:df2:c340::/48 Signature Algorithm: sha256WithRSAEncryption 0e:5b:03:c4:ea:ba:dc:b0:69:73:0d:c1:a1:7d:d5:95:5b:37: 12:e9:6d:ff:81:e5:b1:e2:60:87:8b:d5:c1:0c:32:60:76:ea: 5d:27:e5:11:e0:d2:60:d3:80:36:30:43:17:8a:82:db:7b:86: f0:3f:54:88:b1:13:8b:91:c9:4b:c1:7b:04:10:40:d2:9b:4a: 9f:27:a6:21:16:40:13:af:25:c8:04:38:23:aa:d6:ac:cf:7f: ac:49:bb:5f:04:58:21:78:42:4c:a0:b8:48:37:bd:fe:aa:b2: 53:98:cc:00:5c:89:c4:62:06:91:c6:1d:f3:3c:9e:bc:c2:e2: 14:6a:18:9c:d9:c3:e5:c0:81:cb:3b:29:cd:0e:af:af:6b:4e: 40:53:82:7f:73:7b:95:3b:3e:06:1e:8d:06:ff:18:52:cd:4b: ab:dc:8b:67:91:a0:7e:22:35:25:7d:3d:79:3d:3f:21:0d:41: ae:78:f6:c1:41:3a:68:44:7d:b5:65:f6:3d:7c:33:94:98:27: ca:03:c6:9f:d6:c6:9e:9f:7f:5d:54:da:90:0e:24:69:0d:14: 64:b3:53:48:f2:4f:80:db:14:e7:5d:31:eb:b9:47:cc:35:e5: 93:84:b2:51:da:98:46:6e:60:f7:dd:e3:cd:7e:a6:3c:61:49: cb:b0:29:52 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NEIxMTAvBgNVBAUTKDk0MDhFOUQ3QjZDRUI4MzRDQTkwOTAxRTQ1Nzg2MDEw QzA2OUMzMkIwHhcNMjUwODI5MDQ1MjQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMzIxOC1iZTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3672jWNcxpVK3YTwqmzACsgSsHqBg8rKOQCjg0OjuxKEPccLKBoXCqKj4e5T PVdWcgKsajr5hs2rw32JfiXsOKAjA1vMCiiPyJBxQfrBqWph+wrXDE2wnuxhy2ee T7PVDvCAfBiWRsjtI4HbzeGThyDgYmeJ/mzSCxQeMIOivrgu8GFJRxlaw5O6xDxc TCv8+oNlLxUJ6brNUK7fDat9mSX43F4KoV7BVQpufifJ1n7O/IZvxQNAV6hVo1SR Wks/ilmviq6J+vy2mySPzj7jUTYaCgZnxcVu9wsszO8SPSo3Y40X1IpkmFCe4ZRM 8ZiJ5U7nU1DEnwQmSNlta+6srwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHsXzCVj 1JspMFh8TUUmZ5eRZ8juMB8GA1UdIwQYMBaAFJQI6de2zrg0ypCQHkV4YBDAacMr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk0Qi8xMEFDQUIwQTYx QjQxMUVFODBDRTE4NDZDNEY5QUUwMi9sQWpwMTdiT3VEVEtrSkFlUlhoZ0VNQnB3 eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBanAxN2JPdURUS2tKQWVSWGhnRU1CcHd5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM5NEIvMTBBQ0FCMEE2MUI0MTFFRTgwQ0UxODQ2QzRGOUFFMDIvNjAxNUU4Mjg2 MUI0MTFFRUJBQTZBRDU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnp/wwDwQCAAIwCQMHACABDfLDQDANBgkqhkiG9w0BAQsF AAOCAQEADlsDxOq63LBpcw3BoX3VlVs3Eult/4HlseJgh4vVwQwyYHbqXSflEeDS YNOANjBDF4qC23uG8D9UiLETi5HJS8F7BBBA0ptKnyemIRZAE68lyAQ4I6rWrM9/ rEm7XwRYIXhCTKC4SDe9/qqyU5jMAFyJxGIGkcYd8zyevMLiFGoYnNnD5cCByzsp zQ6vr2tOQFOCf3N7lTs+Bh6NBv8YUs1Lq9yLZ5GgfiI1JX09eT0/IQ1Brnj2wUE6 aER9tWX2PXwzlJgnygPGn9bGnp9/XVTakA4kaQ0UZLNTSPJPgNsU510x67lHzDXl k4SyUdqYRm5g993jzX6mPGFJy7ApUg== -----END CERTIFICATE-----Generated at Wed Nov 5 18:01:03 2025 by rpki-client