$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/8E4BBF50F5C511EF89110646C4F9AE02.roa File: 8E4BBF50F5C511EF89110646C4F9AE02.roa (raw, json) Hash identifier: khC3NWIbwkvutKI6Vqs7kfio6cgD4nvnuDwfjQlSlpw= Subject key identifier: 8E:70:C1:C7:A3:FF:82:B4:37:01:98:32:33:92:0E:2F:30:28:A5:36 Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 0441 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/8E4BBF50F5C511EF89110646C4F9AE02.roa Signing time: Sun 10 Aug 2025 21:01:54 +0000 ROA not before: Sun 10 Aug 2025 21:01:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140950 IP address blocks: 103.153.174.0/24 maxlen: 24 2001:df4:5380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1089 (0x441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Aug 10 21:01:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689908c2-a5e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:06:05:5e:c5:25:08:db:63:2a:31:2d:54: a4:8e:92:0d:dd:bd:45:9d:45:75:56:4f:0a:28:ce: 5a:54:2d:c1:7b:09:d4:3d:6c:32:a0:e4:3c:d6:bb: c2:68:be:f2:d7:f1:89:cb:3b:2e:7d:9c:c7:3c:03: 37:6b:9b:22:cc:55:85:e9:eb:0a:0f:39:e7:f4:5c: 51:54:86:9c:5a:d9:70:60:ee:05:37:67:9b:87:80: 4e:bc:49:c5:bf:1b:31:1d:e8:bd:fe:fd:d3:16:dc: 4e:69:69:0b:94:98:0a:d0:05:72:f7:6f:a3:2a:50: 7e:25:0c:57:66:d5:d3:56:6d:b6:fd:4d:6c:86:cc: 19:06:66:43:c2:27:87:a6:f7:3e:59:44:c3:73:0f: 02:4d:9d:59:f5:92:b8:86:7c:90:39:50:87:81:03: 83:fc:01:4f:76:97:6f:02:35:a6:68:32:67:db:0e: 7f:e9:ec:69:9f:ca:67:c9:3f:f9:dd:a0:d3:3a:2e: da:59:cb:e3:b2:64:bc:17:8f:67:51:97:e4:5d:b9: b7:56:a4:47:1b:d3:f7:d3:f7:d0:9c:30:96:10:c6: 08:21:d6:49:c1:2d:e2:dc:8d:db:bd:8b:60:c5:fd: 75:68:15:4c:b2:63:d0:1b:25:15:f6:1a:8a:28:6d: d2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:70:C1:C7:A3:FF:82:B4:37:01:98:32:33:92:0E:2F:30:28:A5:36 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/8E4BBF50F5C511EF89110646C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.174.0/24 IPv6: 2001:df4:5380::/48 Signature Algorithm: sha256WithRSAEncryption 6f:b4:1c:97:fb:8c:26:fc:fb:40:32:bb:f8:21:fd:7b:23:03: 62:13:1d:dd:b4:48:a3:a5:52:31:60:e6:48:c3:ce:5c:08:2f: 8c:b4:6f:6d:b1:9b:71:b5:b5:86:38:dc:71:24:e0:94:4b:96: e7:e5:3a:e8:fa:c0:96:fc:cb:8a:0e:fb:22:75:fa:22:6a:06: 07:a5:94:93:d1:3c:a3:3b:be:ee:6f:b5:76:39:7d:67:14:ca: 3c:fd:0a:62:2c:ab:63:93:40:74:38:5e:7f:8e:a1:74:33:da: 97:45:85:2b:c9:fa:60:82:c1:c5:ee:1d:2c:48:98:2a:a5:e1: 6d:c4:aa:f8:61:e9:c9:3d:c2:b0:c7:43:d9:fb:81:e6:dc:88: d4:14:fe:4c:b4:94:6c:37:1c:a4:c0:53:03:bd:14:eb:af:d8: ec:bd:4f:a6:a9:61:c3:5f:73:01:f9:c3:a5:49:73:3e:08:82: ab:c4:11:5c:41:1d:44:36:64:0a:bf:7b:03:3b:08:a8:43:2b: 2e:4d:65:9d:d4:8d:ef:c4:fa:c0:3d:63:f6:13:09:f1:8b:0f: 5a:32:be:14:e7:4b:85:17:95:d4:ab:8a:32:4c:b6:be:9f:0f: 5e:62:5f:71:57:06:46:c3:0e:f1:79:2f:1c:25:3b:00:07:6b: 2e:57:5b:6e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUwODEwMjEwMTU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5MDhjMi1hNWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUUGBV7FJQjbYyoxLVSkjpIN3b1FnUV1Vk8KKM5aVC3BewnUPWwyoOQ81rvC aL7y1/GJyzsufZzHPAM3a5sizFWF6esKDznn9FxRVIacWtlwYO4FN2ebh4BOvEnF vxsxHei9/v3TFtxOaWkLlJgK0AVy92+jKlB+JQxXZtXTVm22/U1shswZBmZDwieH pvc+WUTDcw8CTZ1Z9ZK4hnyQOVCHgQOD/AFPdpdvAjWmaDJn2w5/6expn8pnyT/5 3aDTOi7aWcvjsmS8F49nUZfkXbm3VqRHG9P30/fQnDCWEMYIIdZJwS3i3I3bvYtg xf11aBVMsmPQGyUV9hqKKG3ShwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFI5wwcej /4K0NwGYMjOSDi8wKKU2MB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZBQjIvMEFGMkVBQUFDRjcwMTFFQThBRTU1RDQ4QzRGOUFFMDIvOEU0QkJGNTBG NUM1MTFFRjg5MTEwNjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnma4wDwQCAAIwCQMHACABDfRTgDANBgkqhkiG9w0BAQsF AAOCAQEAb7Qcl/uMJvz7QDK7+CH9eyMDYhMd3bRIo6VSMWDmSMPOXAgvjLRvbbGb cbW1hjjccSTglEuW5+U66PrAlvzLig77InX6ImoGB6WUk9E8ozu+7m+1djl9ZxTK PP0KYiyrY5NAdDhef46hdDPal0WFK8n6YILBxe4dLEiYKqXhbcSq+GHpyT3CsMdD 2fuB5tyI1BT+TLSUbDccpMBTA70U66/Y7L1Ppqlhw19zAfnDpUlzPgiCq8QRXEEd RDZkCr97AzsIqEMrLk1lndSN78T6wD1j9hMJ8YsPWjK+FOdLhReV1KuKMky2vp8P XmJfcVcGRsMO8XkvHCU7AAdrLldbbg== -----END CERTIFICATE-----Generated at Wed Nov 5 13:33:38 2025 by rpki-client