$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/656CB24EC9F611ED9853C583C4F9AE02.roa File: 656CB24EC9F611ED9853C583C4F9AE02.roa (raw, json) Hash identifier: w9f85Y+KRBnRa0YJSmsDyyhylh1UfaYw453pU7HjF1A= Subject key identifier: 9B:CB:ED:85:66:94:8A:C9:B4:41:BB:6B:7D:3A:C7:A1:7C:B0:0B:45 Certificate issuer: /CN=A91BBF7F/serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA Certificate serial: 0EEA Authority key identifier: D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/656CB24EC9F611ED9853C583C4F9AE02.roa Signing time: Fri 06 Jun 2025 18:21:25 +0000 ROA not before: Fri 06 Jun 2025 18:21:25 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149855 IP address blocks: 103.138.252.0/24 maxlen: 24 2001:df0:5f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.crl rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3818 (0xeea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBF7F, serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA Validity Not Before: Jun 6 18:21:25 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684331a4-4b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a8:81:e4:c5:86:55:e1:79:b3:f3:ff:5f:36: 3e:15:d9:75:50:ac:b1:49:75:8e:0c:e9:13:62:6d: ca:7f:ec:69:3b:3f:0c:e8:26:55:34:6a:f1:2c:28: cd:d7:83:8c:14:d8:c8:59:43:d8:1d:cd:e9:61:2b: 68:26:b1:07:95:98:2e:89:11:22:1e:e2:37:0d:ad: c4:7d:44:0f:5d:0b:dd:b3:7d:dc:a0:15:ea:7b:7f: 82:2d:c9:d8:21:a3:e8:2d:ce:12:67:10:29:66:00: 46:7d:11:10:f3:9f:c1:9d:8d:e9:d2:b7:fa:fe:90: 97:89:ea:6c:30:bb:d8:31:3e:7c:e2:3a:91:75:c0: e9:bf:4d:e2:c4:7d:73:b1:ac:c8:d9:83:82:50:54: fe:91:b5:f2:9c:85:fe:5e:e3:93:bd:e6:98:29:86: 0b:21:f0:d5:d0:9a:74:36:d0:97:3a:58:6d:e0:77: 14:b8:12:36:77:ce:ad:2e:88:13:42:62:9e:9d:ae: 2d:cf:34:8a:76:5b:c5:28:35:59:6f:75:1b:63:72: dd:d5:f9:78:d0:9a:e4:d8:d0:a8:df:51:91:71:40: 89:fb:91:45:d0:61:e2:e6:e7:be:5a:62:ef:3c:c1: f7:8e:33:b4:1c:d2:45:90:92:cb:63:f4:33:0c:23: 50:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CB:ED:85:66:94:8A:C9:B4:41:BB:6B:7D:3A:C7:A1:7C:B0:0B:45 X509v3 Authority Key Identifier: keyid:D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/656CB24EC9F611ED9853C583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.252.0/24 IPv6: 2001:df0:5f80::/48 Signature Algorithm: sha256WithRSAEncryption c8:aa:02:b9:d3:e0:51:33:4c:8e:b4:01:da:40:a1:42:29:fb: 91:04:0b:35:e5:a2:a5:15:55:fd:58:bb:65:75:09:73:4c:02: 93:11:0f:67:63:ac:62:25:cb:8a:ae:51:8b:69:90:96:e1:70: 62:6c:20:5f:05:06:bf:83:91:3a:8e:71:ef:ae:32:41:80:6d: 60:90:db:db:79:52:64:95:32:02:76:63:74:ff:a7:25:e2:e2: 18:c9:ee:00:88:63:99:11:9d:a2:3d:84:56:8c:53:c6:7d:7c: b5:46:ef:74:04:a3:fb:f1:b4:3a:1f:f3:22:69:1c:b3:7c:ea: 15:63:e2:19:81:9d:47:2a:6f:19:d0:6e:3b:d9:01:85:1c:f9: b8:37:b3:87:51:24:2f:79:24:b2:76:51:5f:72:26:d8:c5:82: fd:85:d6:ce:a2:06:d7:e6:f1:29:09:88:93:0c:90:95:12:80: e3:f1:d6:69:a0:26:f4:1c:5d:ae:cb:d6:17:97:70:8c:ab:39: 16:6b:bb:ad:d5:e0:9b:d5:e0:37:6d:85:d4:1b:1e:fa:03:36: ea:10:6b:a4:b6:0d:d8:80:c8:f3:bd:f2:7f:33:9e:c4:a7:d5: 34:4e:fc:90:74:e5:a8:5f:f0:88:50:98:68:e5:aa:55:bc:e2: 50:6b:b8:d6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJGN0YxMTAvBgNVBAUTKEQ1RjZERDYzQzAzODEwNjBBRkZCQzlEMjBFRDMwRjA3 RkJERTg4RUEwHhcNMjUwNjA2MTgyMTI1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzMzFhNC00Yjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaiB5MWGVeF5s/P/XzY+Fdl1UKyxSXWODOkTYm3Kf+xpOz8M6CZVNGrxLCjN 14OMFNjIWUPYHc3pYStoJrEHlZguiREiHuI3Da3EfUQPXQvds33coBXqe3+CLcnY IaPoLc4SZxApZgBGfREQ85/BnY3p0rf6/pCXiepsMLvYMT584jqRdcDpv03ixH1z sazI2YOCUFT+kbXynIX+XuOTveaYKYYLIfDV0Jp0NtCXOlht4HcUuBI2d86tLogT QmKena4tzzSKdlvFKDVZb3UbY3Ld1fl40Jrk2NCo31GRcUCJ+5FF0GHi5ue+WmLv PMH3jjO0HNJFkJLLY/QzDCNQJQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJvL7YVm lIrJtEG7a306x6F8sAtFMB8GA1UdIwQYMBaAFNX23WPAOBBgr/vJ0g7TDwf73ojq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkY3Ri80NTNFQjZGNDg3 NDUxMUU5QkY4NjQ0NUNDNEY5QUUwMi8xZmJkWThBNEVHQ3YtOG5TRHRNUEJfdmVp T28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmYmRZOEE0RUdDdi04blNEdE1QQl92ZWlPby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJGN0YvNDUzRUI2RjQ4NzQ1MTFFOUJGODY0NDVDQzRGOUFFMDIvNjU2Q0IyNEVD OUY2MTFFRDk4NTNDNTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnivwwDwQCAAIwCQMHACABDfBfgDANBgkqhkiG9w0BAQsF AAOCAQEAyKoCudPgUTNMjrQB2kChQin7kQQLNeWipRVV/Vi7ZXUJc0wCkxEPZ2Os YiXLiq5Ri2mQluFwYmwgXwUGv4OROo5x764yQYBtYJDb23lSZJUyAnZjdP+nJeLi GMnuAIhjmRGdoj2EVoxTxn18tUbvdASj+/G0Oh/zImkcs3zqFWPiGYGdRypvGdBu O9kBhRz5uDezh1EkL3kksnZRX3Im2MWC/YXWzqIG1+bxKQmIkwyQlRKA4/HWaaAm 9BxdrsvWF5dwjKs5Fmu7rdXgm9XgN22F1Bse+gM26hBrpLYN2IDI873yfzOexKfV NE78kHTlqF/wiFCYaOWqVbziUGu41g== -----END CERTIFICATE-----Generated at Wed Nov 5 00:59:45 2025 by rpki-client