$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C25659465C9D11EC99F7D10BC4F9AE02.roa File: C25659465C9D11EC99F7D10BC4F9AE02.roa (raw, json) Hash identifier: gBnTTYjyqczZgDb3uD73c44S0Waa5svUhRxTsEIxWDk= Subject key identifier: BD:06:DC:F0:84:CE:ED:F5:FD:2B:A6:49:7E:E4:6E:C0:E7:4E:0A:F4 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0563 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C25659465C9D11EC99F7D10BC4F9AE02.roa Signing time: Sat 19 Jul 2025 00:05:51 +0000 ROA not before: Sat 19 Jul 2025 00:05:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136969 IP address blocks: 103.167.162.0/24 maxlen: 24 103.167.163.0/24 maxlen: 24 2001:df6:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:20:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1379 (0x563) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Jul 19 00:05:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687ae15e-5b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:2b:20:46:39:c7:38:f9:47:f0:a5:ca:0e:c9: e8:e7:94:1e:82:a3:4f:42:09:09:b1:34:5e:92:27: 76:d8:66:29:4f:4d:fa:5b:e7:e3:3e:7f:78:d3:d7: 91:4a:dd:be:0e:67:4e:2b:84:b0:d7:6b:fb:7c:1e: 19:31:20:4b:25:9a:a6:18:fd:c8:0d:23:5e:bb:89: 7c:4b:43:06:db:20:d4:4d:d9:47:36:92:2c:51:47: f7:62:0c:ec:3b:f0:81:ef:50:f0:e5:d8:40:bf:f2: 62:b7:ce:6b:a0:5f:2d:e5:e8:ea:d2:01:3a:20:a7: a7:db:e2:80:40:65:99:f8:07:9e:7b:ac:b3:d8:ec: d1:fd:a7:8c:ca:9e:ce:b6:a0:4d:0a:46:53:4c:61: 4b:ff:6a:50:ff:49:a3:07:ba:e6:ba:e7:95:0b:71: 76:e3:24:e6:c7:af:13:d3:16:3c:a8:e5:ab:17:1f: 9d:6b:c9:cc:e3:9c:71:b7:b3:e8:b7:1e:f1:95:53: b8:76:7d:d7:32:91:71:7d:93:54:71:1b:55:e3:bb: a4:27:10:b0:41:13:6f:a3:e7:8b:2d:dd:78:bd:22: 8e:de:a6:58:ac:bd:1e:1d:eb:a8:0c:23:94:dc:80: b5:54:db:4e:fe:39:b5:f7:a7:c4:31:0f:86:0a:f8: 1b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:06:DC:F0:84:CE:ED:F5:FD:2B:A6:49:7E:E4:6E:C0:E7:4E:0A:F4 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C25659465C9D11EC99F7D10BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.162.0/23 IPv6: 2001:df6:b980::/48 Signature Algorithm: sha256WithRSAEncryption 5f:58:19:9d:d6:a3:c9:b6:0b:8d:ec:cc:48:06:b2:39:56:d5: 37:7a:38:3f:d7:37:4d:4d:cb:dc:34:b3:eb:4f:ce:b1:5e:06: 4c:08:08:b9:97:85:df:32:c2:8c:4a:30:a8:70:7d:8d:b1:e0: 3d:9b:17:30:28:0b:83:e3:e3:9f:c3:5d:ee:90:88:e3:2a:98: 2f:63:86:94:9b:a9:75:c8:da:d1:91:bd:5f:ff:6e:4f:14:ef: cb:80:0f:f7:88:d4:b8:47:aa:e3:be:73:75:d8:f4:56:c4:e6: 66:ab:e6:9b:34:43:a8:ad:d8:fb:a6:b7:8d:54:31:80:02:fa: 5a:d4:7d:a4:e1:b6:66:7c:fe:f5:dd:4e:74:3c:9f:cc:c2:9a: 00:6a:66:b1:5d:67:4a:69:28:d6:e0:a2:b9:1b:94:fe:02:25: 5e:03:89:71:48:a1:a3:ac:c0:c0:cb:c9:66:df:2a:8f:78:15: d9:f0:22:17:e3:e0:e7:d6:f4:c3:9c:1a:e1:e8:f2:63:8a:c0: d0:e2:b8:af:18:8c:b1:61:6d:19:33:3d:29:81:54:e2:74:51: 83:98:7f:7e:41:68:e8:36:79:c9:a3:ac:60:c3:6c:b9:0c:8b: 24:4a:9e:ae:04:1b:e0:a0:26:3c:d8:cf:c8:87:a7:50:3c:8c: 39:f6:33:5b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwNzE5MDAwNTUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdhZTE1ZS01YjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9SsgRjnHOPlH8KXKDsno55QegqNPQgkJsTRekid22GYpT036W+fjPn9409eR St2+DmdOK4Sw12v7fB4ZMSBLJZqmGP3IDSNeu4l8S0MG2yDUTdlHNpIsUUf3Ygzs O/CB71Dw5dhAv/Jit85roF8t5ejq0gE6IKen2+KAQGWZ+Aeee6yz2OzR/aeMyp7O tqBNCkZTTGFL/2pQ/0mjB7rmuueVC3F24yTmx68T0xY8qOWrFx+da8nM45xxt7Po tx7xlVO4dn3XMpFxfZNUcRtV47ukJxCwQRNvo+eLLd14vSKO3qZYrL0eHeuoDCOU 3IC1VNtO/jm196fEMQ+GCvgbQQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFL0G3PCE zu31/SumSX7kbsDnTgr0MB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE3QTkvNUY4OUY2RUNGQjMxMTFFQjhGQkZBNTU5QzRGOUFFMDIvQzI1NjU5NDY1 QzlEMTFFQzk5RjdEMTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnp6IwDwQCAAIwCQMHACABDfa5gDANBgkqhkiG9w0BAQsF AAOCAQEAX1gZndajybYLjezMSAayOVbVN3o4P9c3TU3L3DSz60/OsV4GTAgIuZeF 3zLCjEowqHB9jbHgPZsXMCgLg+Pjn8Nd7pCI4yqYL2OGlJupdcja0ZG9X/9uTxTv y4AP94jUuEeq475zddj0VsTmZqvmmzRDqK3Y+6a3jVQxgAL6WtR9pOG2Znz+9d1O dDyfzMKaAGpmsV1nSmko1uCiuRuU/gIlXgOJcUiho6zAwMvJZt8qj3gV2fAiF+Pg 59b0w5wa4ejyY4rA0OK4rxiMsWFtGTM9KYFU4nRRg5h/fkFo6DZ5yaOsYMNsuQyL JEqergQb4KAmPNjPyIenUDyMOfYzWw== -----END CERTIFICATE-----Generated at Wed Nov 5 10:59:33 2025 by rpki-client