$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/2A52AB54138811F0BA2C056DC4F9AE02.roa File: 2A52AB54138811F0BA2C056DC4F9AE02.roa (raw, json) Hash identifier: 0AvanG6lwhnjCogGu+WtHXRuTCMKYEBdG6vznbvbdAY= Subject key identifier: C1:B2:1A:DE:86:0B:57:C6:7C:E8:43:CA:2F:BB:B1:B9:B2:7F:94:E7 Certificate issuer: /CN=A91C5323/serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Certificate serial: 0556 Authority key identifier: 14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/2A52AB54138811F0BA2C056DC4F9AE02.roa Signing time: Mon 07 Apr 2025 08:17:25 +0000 ROA not before: Mon 07 Apr 2025 08:17:25 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135031 IP address blocks: 103.206.160.0/24 maxlen: 24 103.206.161.0/24 maxlen: 24 103.206.163.0/24 maxlen: 24 106.0.56.0/22 maxlen: 24 2404:7f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:12:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5323, serialNumber=143788D235FD69DB2F25B777225F7AB769DA350B Validity Not Before: Apr 7 08:17:25 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67f38a15-774a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2e:c8:f5:09:db:af:61:c0:4b:96:16:d3:69: ce:f1:25:b6:27:97:a0:0f:b7:12:82:0e:4f:b1:d5: 89:c0:61:1a:f8:97:94:65:da:37:c5:24:4f:6e:20: 3f:c3:c5:eb:a3:d3:68:a5:71:ef:32:e3:ce:55:e6: a8:61:18:f8:27:7a:7d:57:88:b8:a8:96:c6:52:a8: 83:52:22:b6:cb:01:1c:63:da:93:48:81:12:1b:06: 02:0c:7c:99:5a:f2:61:76:35:ad:96:1a:9a:39:f0: 8f:d3:4a:d2:6f:1c:53:7b:4f:82:88:03:60:5f:77: 6d:b4:b7:e8:04:32:65:c9:33:0c:e9:ea:68:80:fb: 37:45:bf:1c:d9:02:d1:50:d1:ab:22:ed:3a:83:ba: 9c:5f:64:18:c9:dd:73:96:1d:fe:61:75:8b:fa:63: 04:97:1a:6a:2a:94:f2:8a:ed:ea:04:32:cb:20:35: 2b:28:8d:51:71:84:bd:ba:01:5a:3a:57:30:86:01: 5e:3e:6e:9d:58:8f:1a:b7:4e:29:1c:51:72:fb:5d: 7e:25:25:27:03:d3:b0:d6:6e:ad:ae:44:fd:31:39: 3f:ac:1b:0a:0d:3a:7b:7e:6b:ef:c9:31:b5:1e:18: 04:b9:c7:7b:b4:c2:85:5f:1d:21:5c:98:75:7f:3d: 34:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B2:1A:DE:86:0B:57:C6:7C:E8:43:CA:2F:BB:B1:B9:B2:7F:94:E7 X509v3 Authority Key Identifier: keyid:14:37:88:D2:35:FD:69:DB:2F:25:B7:77:22:5F:7A:B7:69:DA:35:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/FDeI0jX9adsvJbd3Il96t2naNQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FDeI0jX9adsvJbd3Il96t2naNQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5323/DF66DE24E56111EB84BFE820C4F9AE02/2A52AB54138811F0BA2C056DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.160.0/23 103.206.163.0/24 106.0.56.0/22 IPv6: 2404:7f80::/32 Signature Algorithm: sha256WithRSAEncryption 73:1f:f2:ad:bd:cc:5f:10:d7:4c:bc:18:91:89:12:49:10:c5: b9:34:82:9f:18:24:7d:70:2b:5c:09:26:3d:89:bb:ba:d6:b2: 24:33:10:df:20:f1:b3:40:59:5c:23:6a:95:7e:24:75:c4:48: ad:91:5f:eb:b7:56:b7:64:63:8b:89:20:a5:f5:95:18:bd:b7: 52:68:c2:d2:04:33:c9:d2:53:6f:13:dc:33:56:10:c6:9e:7c: 8b:68:3b:42:dc:38:3f:59:22:94:0c:c4:8f:eb:75:a1:0d:9f: f6:81:0d:34:9a:5f:b5:81:d4:78:44:79:8b:c2:79:2e:98:5d: 7f:ff:79:85:39:ab:29:92:f0:f3:8c:b6:60:14:db:20:62:c3: ad:44:a6:8c:64:b5:18:49:93:93:b9:f4:af:f4:d6:81:31:eb: 26:ae:db:db:12:80:22:20:fd:e5:eb:0c:83:5c:b8:6a:4a:84: 2c:57:a2:87:1a:3a:fd:f7:1c:f3:6d:18:22:07:f4:5f:04:17: 2c:70:5a:59:fa:71:42:3f:b3:79:b1:23:98:d8:6b:80:9f:ec: 3e:2e:35:29:d1:a9:a7:9b:eb:21:81:43:76:66:45:8e:fb:87: 33:04:33:09:c2:98:25:23:fe:bc:0d:88:77:e8:b0:1b:3b:27: 99:03:b9:8a -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzMjMxMTAvBgNVBAUTKDE0Mzc4OEQyMzVGRDY5REIyRjI1Qjc3NzIyNUY3QUI3 NjlEQTM1MEIwHhcNMjUwNDA3MDgxNzI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YzOGExNS03NzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0S7I9Qnbr2HAS5YW02nO8SW2J5egD7cSgg5PsdWJwGEa+JeUZdo3xSRPbiA/ w8Xro9NopXHvMuPOVeaoYRj4J3p9V4i4qJbGUqiDUiK2ywEcY9qTSIESGwYCDHyZ WvJhdjWtlhqaOfCP00rSbxxTe0+CiANgX3dttLfoBDJlyTMM6epogPs3Rb8c2QLR UNGrIu06g7qcX2QYyd1zlh3+YXWL+mMElxpqKpTyiu3qBDLLIDUrKI1RcYS9ugFa OlcwhgFePm6dWI8at04pHFFy+11+JSUnA9Ow1m6trkT9MTk/rBsKDTp7fmvvyTG1 HhgEucd7tMKFXx0hXJh1fz00DwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFMGyGt6G C1fGfOhDyi+7sbmyf5TnMB8GA1UdIwQYMBaAFBQ3iNI1/WnbLyW3dyJferdp2jUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTMyMy9ERjY2REUyNEU1 NjExMUVCODRCRkU4MjBDNEY5QUUwMi9GRGVJMGpYOWFkc3ZKYmQzSWw5NnQybmFO UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZEZUkwalg5YWRzdkpiZDNJbDk2dDJuYU5Rcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzUzMjMvREY2NkRFMjRFNTYxMTFFQjg0QkZFODIwQzRGOUFFMDIvMkE1MkFCNTQx Mzg4MTFGMEJBMkMwNTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnzqADBABnzqMDBAJqADgwDQQCAAIwBwMFACQEf4AwDQYJ KoZIhvcNAQELBQADggEBAHMf8q29zF8Q10y8GJGJEkkQxbk0gp8YJH1wK1wJJj2J u7rWsiQzEN8g8bNAWVwjapV+JHXESK2RX+u3VrdkY4uJIKX1lRi9t1JowtIEM8nS U28T3DNWEMaefItoO0LcOD9ZIpQMxI/rdaENn/aBDTSaX7WB1HhEeYvCeS6YXX// eYU5qymS8POMtmAU2yBiw61EpoxktRhJk5O59K/01oEx6yau29sSgCIg/eXrDINc uGpKhCxXoocaOv33HPNtGCIH9F8EFyxwWln6cUI/s3mxI5jYa4Cf7D4uNSnRqaeb 6yGBQ3ZmRY77hzMEMwnCmCUj/rwNiHfosBs7J5kDuYo= -----END CERTIFICATE-----Generated at Wed Nov 5 19:17:32 2025 by rpki-client