$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DBED3B7C011411EAAB0EF153C4F9AE02.roa File: DBED3B7C011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: Om0jdNklpNSJZKsNEHd4KcWViukVVvJhi2Cyd/8/qjc= Subject key identifier: 72:CD:22:74:D9:44:F4:0C:7A:CE:31:C5:AB:78:D1:FA:A3:89:6E:04 Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0C8D Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DBED3B7C011411EAAB0EF153C4F9AE02.roa Signing time: Wed 04 Jun 2025 18:41:54 +0000 ROA not before: Wed 04 Jun 2025 18:41:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24028 IP address blocks: 43.239.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:20:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3213 (0xc8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE, serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 4 18:41:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68409371-a289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:be:96:58:a7:1a:73:2e:00:8b:68:8b:ce:5a: 10:b7:40:c0:91:14:dc:6f:81:6c:28:a5:7d:44:0a: 28:1e:99:0a:0c:83:7a:b5:bf:57:87:ee:04:ca:92: f1:af:40:a1:37:de:db:24:d6:6a:7b:fc:0a:7e:98: 55:33:59:03:95:61:75:6e:3a:2a:e3:b6:7f:73:bb: 12:d8:bc:42:03:a2:18:86:71:8f:94:53:26:f0:a9: 13:f9:a5:3b:2d:cd:73:d9:1d:f1:81:cd:c9:22:d2: ac:b6:c7:f1:ba:59:2e:47:c1:80:36:43:c1:e9:b2: 79:1b:51:fc:42:90:33:c3:f2:40:b1:91:70:cf:ed: 70:7e:94:99:aa:aa:e3:e5:97:95:66:c5:ae:a1:41: b0:30:22:63:ec:11:2e:75:a0:67:10:87:d8:4f:12: be:e0:29:c9:5b:d6:84:95:91:51:fa:ee:84:9a:ab: 14:24:2c:83:15:cc:8c:74:11:7d:67:f8:60:16:b5: 45:ed:58:79:79:93:00:a6:70:00:41:1f:2d:3f:fe: 2d:40:0e:cf:3c:58:07:d1:80:19:0b:2a:bd:17:2d: 4d:0c:8c:86:46:dc:9f:f3:05:ba:d4:db:2b:54:7f: 8e:91:13:fa:3a:6e:e0:dc:d4:66:32:5d:4a:fb:0b: 7d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:CD:22:74:D9:44:F4:0C:7A:CE:31:C5:AB:78:D1:FA:A3:89:6E:04 X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DBED3B7C011411EAAB0EF153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.103.0/24 Signature Algorithm: sha256WithRSAEncryption 80:99:89:20:55:da:4f:5f:fb:85:ad:51:f7:ff:1c:30:85:b8: 83:de:eb:82:15:28:71:10:ea:d4:fc:8a:13:68:79:f1:49:ea: 69:4f:59:06:32:f7:9e:39:87:57:c5:42:7e:9a:c2:a9:9e:8d: b7:7b:0c:f6:66:09:22:a9:47:34:6d:25:24:20:49:7b:38:08: 8b:93:b7:c0:05:20:d3:2b:f9:37:f7:b2:38:8b:3a:30:2a:e5: e3:3a:42:ba:ec:5f:1c:59:d8:37:78:45:0f:92:79:62:d9:26: 8b:c1:14:fd:04:a1:61:18:88:9b:45:2f:47:6a:f0:8e:99:61: 78:46:73:c7:f0:7a:02:e1:9f:ab:12:61:c7:a7:d2:3b:ec:58: 01:e4:d0:07:b7:79:dd:6f:eb:50:8a:4b:98:61:0a:58:e7:31: 5e:f8:f9:32:8d:20:61:5d:24:95:46:95:f8:91:e2:68:cb:6c: 3d:97:d8:9d:8b:cd:64:39:66:16:38:a2:74:26:63:1c:1d:6d: 54:c0:92:d8:02:9b:f1:5a:82:03:69:c8:0a:f4:6f:1e:c1:58: 86:92:ca:01:ad:22:e3:81:0e:17:4f:37:30:a9:6b:af:c5:fd: 2e:2b:29:0e:b1:ce:be:c3:d2:29:9e:ed:af:c2:5e:6c:6c:c0: bd:9b:23:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjUwNjA0MTg0MTU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwOTM3MS1hMjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr76WWKcacy4Ai2iLzloQt0DAkRTcb4FsKKV9RAooHpkKDIN6tb9Xh+4EypLx r0ChN97bJNZqe/wKfphVM1kDlWF1bjoq47Z/c7sS2LxCA6IYhnGPlFMm8KkT+aU7 Lc1z2R3xgc3JItKstsfxulkuR8GANkPB6bJ5G1H8QpAzw/JAsZFwz+1wfpSZqqrj 5ZeVZsWuoUGwMCJj7BEudaBnEIfYTxK+4CnJW9aElZFR+u6EmqsUJCyDFcyMdBF9 Z/hgFrVF7Vh5eZMApnAAQR8tP/4tQA7PPFgH0YAZCyq9Fy1NDIyGRtyf8wW61Nsr VH+OkRP6Om7g3NRmMl1K+wt9RwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHLNInTZ RPQMes4xxat40fqjiW4EMB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvREJFRDNCN0Mw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr72cwDQYJKoZIhvcNAQELBQADggEBAICZiSBV2k9f+4Wt Uff/HDCFuIPe64IVKHEQ6tT8ihNoefFJ6mlPWQYy9545h1fFQn6awqmejbd7DPZm CSKpRzRtJSQgSXs4CIuTt8AFINMr+Tf3sjiLOjAq5eM6QrrsXxxZ2Dd4RQ+SeWLZ JovBFP0EoWEYiJtFL0dq8I6ZYXhGc8fwegLhn6sSYcen0jvsWAHk0Ae3ed1v61CK S5hhCljnMV74+TKNIGFdJJVGlfiR4mjLbD2X2J2LzWQ5ZhY4onQmYxwdbVTAktgC m/FaggNpyAr0bx7BWIaSygGtIuOBDhdPNzCpa6/F/S4rKQ6xzr7D0ime7a/CXmxs wL2bI4U= -----END CERTIFICATE-----Generated at Wed Nov 5 21:40:19 2025 by rpki-client