$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/DEB112EC6BC211F09D0F2629C4F9AE02.roa File: DEB112EC6BC211F09D0F2629C4F9AE02.roa (raw, json) Hash identifier: yn6h5w5tWqc/+G/2zrDsQx2qIuIxGIy+QXkxWWkUIxY= Subject key identifier: DB:26:6F:71:DD:91:71:CC:AE:B4:2C:48:CD:EF:DC:C2:B1:B2:AE:9F Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Certificate serial: 03DB Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/DEB112EC6BC211F09D0F2629C4F9AE02.roa Signing time: Tue 29 Jul 2025 10:56:32 +0000 ROA not before: Tue 29 Jul 2025 10:56:32 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 151640 IP address blocks: 103.151.4.0/23 maxlen: 23 103.151.4.0/24 maxlen: 24 103.151.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDCF1, serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Validity Not Before: Jul 29 10:56:32 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6888a8e0-0ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0f:de:47:28:f7:fe:35:3e:bb:f7:cd:6a:1b: 74:c9:57:da:6b:55:c7:f4:9f:b9:d6:e9:c5:17:0f: a5:c1:85:f9:10:c8:5b:28:a2:74:48:f6:8b:2d:70: 5b:23:f7:36:df:9b:df:04:9b:23:38:6e:92:db:74: c1:7b:b9:d9:ec:03:70:af:23:0c:f8:d9:1b:ee:94: 5d:e4:63:21:c0:71:a0:f6:c8:ec:68:81:82:a5:1f: 89:4f:9e:76:13:99:09:c9:76:5f:e7:fb:f8:de:e8: 22:83:9b:0d:25:c6:97:55:bf:27:60:65:4d:75:d5: 2b:77:60:16:17:b7:42:9e:5f:f8:88:cd:50:f2:9f: 45:f6:4e:d3:ff:bf:e0:3e:0b:cf:86:9c:eb:d3:d1: 07:2e:8f:35:5c:92:b7:28:c3:86:96:a1:54:f0:8a: a7:5c:83:91:92:06:85:0d:3d:60:eb:fd:6a:94:05: 28:40:8f:33:cb:9a:9a:05:4e:b8:3d:b7:b1:80:8b: 26:66:0b:f6:93:24:0e:e9:e1:07:92:0e:0f:26:38: 51:3f:26:a0:32:12:ef:76:91:dd:d4:71:72:44:67: 03:bd:47:6c:15:91:cb:f9:09:ed:7a:55:14:6d:6d: ec:e4:c0:ab:62:e2:1a:51:a8:35:25:f3:1c:49:ee: 3e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:26:6F:71:DD:91:71:CC:AE:B4:2C:48:CD:EF:DC:C2:B1:B2:AE:9F X509v3 Authority Key Identifier: keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/DEB112EC6BC211F09D0F2629C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.4.0/23 Signature Algorithm: sha256WithRSAEncryption 26:78:00:bf:86:d2:9f:5d:7b:54:36:74:a7:aa:d3:1d:63:91: ed:14:1c:cc:da:f1:b2:cc:10:c6:dc:ca:3b:48:f3:b2:d4:fb: 46:1f:7a:49:28:fd:17:1f:73:92:b7:fb:2c:d4:48:6e:64:5f: 5b:e7:1f:d7:e3:68:26:e0:ec:c7:03:16:ba:21:5d:63:f5:bc: 42:cd:6b:5c:b4:5e:14:25:61:b6:75:aa:1c:7a:f8:13:c9:28: eb:c6:dc:ce:1a:be:88:3d:5d:c7:40:a3:46:26:75:d6:d8:b1: 02:4f:91:8a:e6:72:5a:42:f6:78:4f:8c:39:2c:ad:b3:67:08: 13:59:ee:07:f8:3c:01:83:ad:f4:7d:1c:54:28:3b:ce:8b:e1: 98:44:3d:91:30:68:45:0f:a0:0b:d9:86:f0:5d:f5:cc:4c:23: c5:67:f2:2c:16:cd:3a:b8:46:42:f7:e5:99:7c:41:56:4a:d7: d6:3a:0e:46:80:13:9d:54:cf:3d:6a:28:92:7e:36:61:89:b8: 48:e9:c1:88:76:10:ab:65:27:55:97:cf:39:ef:4a:9f:89:40: f5:bc:05:ba:84:cb:d2:0d:5a:a8:90:52:7c:48:25:59:0d:61: a7:c6:bd:7f:99:a7:bf:52:ae:62:34:6b:78:3e:70:7c:0d:6b: 92:2e:07:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDRjExMTAvBgNVBAUTKEM0NEYyQUNBQjJBNzc5OTk0MzE1QUE5M0IzMjNEQTlC NDc1QzdCOUEwHhcNMjUwNzI5MTA1NjMyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg4YThlMC0wYWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA/eRyj3/jU+u/fNaht0yVfaa1XH9J+51unFFw+lwYX5EMhbKKJ0SPaLLXBb I/c235vfBJsjOG6S23TBe7nZ7ANwryMM+Nkb7pRd5GMhwHGg9sjsaIGCpR+JT552 E5kJyXZf5/v43ugig5sNJcaXVb8nYGVNddUrd2AWF7dCnl/4iM1Q8p9F9k7T/7/g PgvPhpzr09EHLo81XJK3KMOGlqFU8IqnXIORkgaFDT1g6/1qlAUoQI8zy5qaBU64 PbexgIsmZgv2kyQO6eEHkg4PJjhRPyagMhLvdpHd1HFyRGcDvUdsFZHL+QntelUU bW3s5MCrYuIaUag1JfMcSe4+DQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNsmb3Hd kXHMrrQsSM3v3MKxsq6fMB8GA1UdIwQYMBaAFMRPKsqyp3mZQxWqk7Mj2ptHXHua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRENGMS9FQjU5MTEyMkE4 M0MxMUVDQTNBNEYzMjVDNEY5QUUwMi94RThxeXJLbmVabERGYXFUc3lQYW0wZGNl NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hFOHF5cktuZVpsREZhcVRzeVBhbTBkY2U1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRDRjEvRUI1OTExMjJBODNDMTFFQ0EzQTRGMzI1QzRGOUFFMDIvREVCMTEyRUM2 QkMyMTFGMDlEMEYyNjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlwQwDQYJKoZIhvcNAQELBQADggEBACZ4AL+G0p9de1Q2 dKeq0x1jke0UHMza8bLMEMbcyjtI87LU+0Yfekko/Rcfc5K3+yzUSG5kX1vnH9fj aCbg7McDFrohXWP1vELNa1y0XhQlYbZ1qhx6+BPJKOvG3M4avog9XcdAo0YmddbY sQJPkYrmclpC9nhPjDksrbNnCBNZ7gf4PAGDrfR9HFQoO86L4ZhEPZEwaEUPoAvZ hvBd9cxMI8Vn8iwWzTq4RkL35Zl8QVZK19Y6DkaAE51Uzz1qKJJ+NmGJuEjpwYh2 EKtlJ1WXzznvSp+JQPW8BbqEy9INWqiQUnxIJVkNYafGvX+Zp79SrmI0a3g+cHwN a5IuB20= -----END CERTIFICATE-----Generated at Sun Aug 10 18:52:55 2025 by rpki-client