$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/153EBE3ADEF711EF84C57421C4F9AE02.roa File: 153EBE3ADEF711EF84C57421C4F9AE02.roa (raw, json) Hash identifier: d2fZwjk/kReWJf7o+GQOO5RAjKTwIQ1B0ld4lPrAcBY= Subject key identifier: 0E:9E:BB:F1:3F:AD:76:04:B2:FE:AF:0C:D1:B0:DA:AA:51:EB:3D:09 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 021B Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/153EBE3ADEF711EF84C57421C4F9AE02.roa Signing time: Thu 07 Aug 2025 02:38:54 +0000 ROA not before: Thu 07 Aug 2025 02:38:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55636 IP address blocks: 27.116.60.0/22 maxlen: 24 103.73.164.0/22 maxlen: 24 202.172.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 02:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4, serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Aug 7 02:38:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689411be-a42f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:84:63:23:2f:33:0a:76:43:a8:c5:0b:d2:b9: 6f:fe:d7:fb:a3:a0:67:79:26:ba:79:7d:4f:5b:fd: f8:e2:1b:1b:79:c0:72:1d:6c:73:c1:14:d5:d8:f8: a2:87:cc:cd:a6:67:de:ed:1f:68:d4:3f:b1:3d:2e: f5:2b:c6:1f:3b:42:b9:33:b1:42:f5:e1:b0:41:9e: f7:ba:43:50:5d:67:f6:e9:b5:32:12:60:2f:36:d5: e0:e8:d7:e5:99:30:ed:02:75:8c:18:bd:b5:c5:58: a0:4d:1e:4c:74:be:0d:d4:9d:1f:9b:43:b4:87:17: f9:7e:eb:d0:02:ab:3d:9f:20:30:4f:18:47:aa:a2: f7:a1:a4:4b:bf:1b:e0:4e:e9:04:2f:b7:ab:95:02: 9b:db:2c:c3:b2:6b:c0:d0:47:82:fe:0f:98:32:72: 83:21:dc:1a:80:39:d2:64:42:8f:25:c2:06:fa:98: 44:e5:82:49:da:5f:c8:4a:cc:eb:8e:df:fd:16:c7: f4:0e:d6:ac:56:33:f0:a0:dd:12:e2:21:79:92:00: a9:42:04:46:fa:1f:b9:30:13:a2:3a:6e:c3:f1:d6: 49:45:d4:00:a1:48:48:8f:0b:4a:fa:c2:ae:d9:00: b6:05:56:f4:83:3c:f0:20:e0:f5:e8:47:39:97:36: 57:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:9E:BB:F1:3F:AD:76:04:B2:FE:AF:0C:D1:B0:DA:AA:51:EB:3D:09 X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/153EBE3ADEF711EF84C57421C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.116.60.0/22 103.73.164.0/22 202.172.20.0/22 Signature Algorithm: sha256WithRSAEncryption 49:1c:a8:59:2a:2f:65:9b:49:b9:7d:19:e2:c6:c7:d6:64:73: 8e:91:73:a6:18:c3:5a:1c:3e:d3:e1:b4:de:1e:b2:22:71:97: 35:ca:57:0e:fd:c4:c8:88:65:a3:ad:b4:2c:40:4f:66:cf:84: 0d:d5:91:63:3c:e7:99:d1:22:55:6e:15:74:3d:5d:12:d9:b7: 91:21:7e:23:a5:fc:16:61:f7:1a:2b:76:fc:a2:77:04:d5:5d: 38:5e:32:89:3d:6d:c4:42:a4:55:56:66:ff:bf:31:86:c7:dc: bf:96:c4:96:a8:27:e7:d1:fc:e2:b3:c8:88:3c:9b:8f:4f:b9: 1b:b0:54:37:e8:1c:f6:01:78:c0:02:7e:c6:cf:61:a5:99:e4: d4:27:81:26:b7:0f:53:db:8f:98:59:89:53:62:55:7a:90:90: 0d:1e:a4:29:9f:68:03:87:2e:e0:71:8f:d5:6b:bd:58:3c:f3: ee:2b:bc:82:d0:45:ef:6d:63:08:6d:54:fe:37:81:e4:9a:94: 3f:90:ce:75:5d:bd:31:42:a5:0e:95:2c:0e:6f:be:34:50:07: 3f:45:6b:d6:0f:2d:27:e0:04:26:e8:94:b4:7d:1b:0b:c8:4c: 43:20:7c:8e:38:9b:8e:25:5c:98:4c:7e:64:de:0f:29:c7:c3: 5c:53:25:5c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjUwODA3MDIzODU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0MTFiZS1hNDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4RjIy8zCnZDqMUL0rlv/tf7o6BneSa6eX1PW/344hsbecByHWxzwRTV2Pii h8zNpmfe7R9o1D+xPS71K8YfO0K5M7FC9eGwQZ73ukNQXWf26bUyEmAvNtXg6Nfl mTDtAnWMGL21xVigTR5MdL4N1J0fm0O0hxf5fuvQAqs9nyAwTxhHqqL3oaRLvxvg TukEL7erlQKb2yzDsmvA0EeC/g+YMnKDIdwagDnSZEKPJcIG+phE5YJJ2l/ISszr jt/9Fsf0DtasVjPwoN0S4iF5kgCpQgRG+h+5MBOiOm7D8dZJRdQAoUhIjwtK+sKu 2QC2BVb0gzzwIOD16Ec5lzZXBwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFA6eu/E/ rXYEsv6vDNGw2qpR6z0JMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM5QzQvMUE3MERDODY0RTkzMTFFREE3MzBFRDMyQzRGOUFFMDIvMTUzRUJFM0FE RUY3MTFFRjg0QzU3NDIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIbdDwDBAJnSaQDBALKrBQwDQYJKoZIhvcNAQELBQADggEB AEkcqFkqL2WbSbl9GeLGx9Zkc46Rc6YYw1ocPtPhtN4esiJxlzXKVw79xMiIZaOt tCxAT2bPhA3VkWM855nRIlVuFXQ9XRLZt5EhfiOl/BZh9xordvyidwTVXTheMok9 bcRCpFVWZv+/MYbH3L+WxJaoJ+fR/OKzyIg8m49PuRuwVDfoHPYBeMACfsbPYaWZ 5NQngSa3D1Pbj5hZiVNiVXqQkA0epCmfaAOHLuBxj9VrvVg88+4rvILQRe9tYwht VP43geSalD+QznVdvTFCpQ6VLA5vvjRQBz9Fa9YPLSfgBCbolLR9GwvITEMgfI44 m44lXJhMfmTeDynHw1xTJVw= -----END CERTIFICATE-----Generated at Wed Aug 13 02:16:40 2025 by rpki-client