$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/DEBDCECAC2CF11EFA805380FC4F9AE02.roa File: DEBDCECAC2CF11EFA805380FC4F9AE02.roa (raw, json) Hash identifier: fbHNG5VnI5vBavVCzw8LniM5caV6eOPIQLCn1UeldBc= Subject key identifier: 30:C8:4F:2A:E3:2D:76:CE:18:6C:41:9F:C5:2A:CF:C9:8A:BC:FD:04 Certificate issuer: /CN=A91EEE06/serialNumber=5073951E5C1582693A87072EE548C65485B05A2C Certificate serial: 04C4 Authority key identifier: 50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/DEBDCECAC2CF11EFA805380FC4F9AE02.roa Signing time: Sun 05 Oct 2025 00:26:40 +0000 ROA not before: Sun 05 Oct 2025 00:26:40 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135046 IP address blocks: 103.152.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1220 (0x4c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE06, serialNumber=5073951E5C1582693A87072EE548C65485B05A2C Validity Not Before: Oct 5 00:26:40 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68e1bb40-1919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c0:99:d2:b3:c7:6e:07:d7:cd:34:e4:cd:f0: ed:6d:ad:80:af:d2:aa:99:7e:00:70:9b:7f:81:e2: ac:c7:6e:3b:ef:db:e1:e9:71:82:91:37:ef:09:31: d9:12:ba:12:e2:d8:3c:0a:5c:18:bf:c1:34:04:be: c1:35:4c:92:ce:c8:26:27:65:b5:1d:03:14:23:f8: 6d:78:2f:f9:1c:7e:52:19:2a:cf:50:1e:31:2b:c2: b0:36:80:74:ec:af:9b:f0:12:b7:13:dc:0c:ef:90: 6f:9d:2c:f8:d0:4d:b1:83:95:b1:cd:c5:52:49:67: ea:8a:4b:f9:b5:f2:95:17:51:5f:c8:27:97:ad:e7: c6:92:b9:6b:d8:3a:48:ea:5f:93:60:71:6d:ba:d1: 65:ba:87:6f:eb:44:57:f0:de:28:a3:32:66:21:3f: b6:55:55:f2:c2:c3:f5:d8:53:52:2e:2f:07:11:85: fb:85:2b:75:23:e9:e6:da:73:61:9d:2b:e1:5f:bd: 28:80:65:e3:cb:42:36:30:2a:b5:46:ce:10:67:23: 00:e9:2e:fc:09:31:2c:27:4c:5e:2d:80:88:80:5a: d5:36:0f:b1:39:a4:3a:7a:54:ea:a1:ff:2f:97:cc: 9d:ad:e0:7a:84:b7:0f:36:63:28:1a:95:d3:98:03: 2f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C8:4F:2A:E3:2D:76:CE:18:6C:41:9F:C5:2A:CF:C9:8A:BC:FD:04 X509v3 Authority Key Identifier: keyid:50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/DEBDCECAC2CF11EFA805380FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.116.0/24 Signature Algorithm: sha256WithRSAEncryption 62:41:b8:d3:61:4f:53:ea:e2:15:98:eb:ee:c2:00:73:6a:d7: 4c:db:56:32:e3:fe:bc:8d:6e:c5:7d:c3:29:68:98:95:37:13: 07:3d:74:75:dc:d3:49:6b:f5:6f:47:c3:66:28:b0:6a:b0:c7: 9c:f7:7b:ad:6f:f9:cd:3a:ed:02:8b:6d:2a:36:09:c1:c0:8b: 20:85:21:34:97:1b:2f:72:79:ac:32:d9:80:2d:cc:74:21:be: dd:da:30:e1:24:d8:c8:2b:b6:a9:b1:d2:f6:09:85:f9:56:5e: 6d:7a:5a:02:0c:0a:d5:59:06:5f:40:e0:fb:d5:fc:df:87:78: 92:ac:4f:db:ba:0d:ce:67:50:63:1f:62:af:f5:59:99:60:ca: 81:fe:40:b9:11:21:4a:89:7b:32:22:8a:2b:4f:a8:f8:44:39: 81:06:a1:b2:ba:aa:70:de:f1:ed:99:90:e0:96:ef:a0:5e:e5: 4f:47:0a:bd:41:c4:5d:bc:2d:4f:da:b1:78:b0:b3:d2:d7:f6: b0:9e:94:43:40:17:4f:82:3f:cf:e9:81:66:2a:87:98:b3:13: be:c2:36:bd:fc:7d:ac:dd:a4:a9:fa:c9:33:85:ae:09:24:b5: ca:41:a9:ce:a3:4e:f6:61:a6:40:4d:6a:01:46:a1:7b:81:dc: a2:d3:0c:a6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFMDYxMTAvBgNVBAUTKDUwNzM5NTFFNUMxNTgyNjkzQTg3MDcyRUU1NDhDNjU0 ODVCMDVBMkMwHhcNMjUxMDA1MDAyNjQwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxYmI0MC0xOTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcCZ0rPHbgfXzTTkzfDtba2Ar9KqmX4AcJt/geKsx24779vh6XGCkTfvCTHZ EroS4tg8ClwYv8E0BL7BNUySzsgmJ2W1HQMUI/hteC/5HH5SGSrPUB4xK8KwNoB0 7K+b8BK3E9wM75BvnSz40E2xg5WxzcVSSWfqikv5tfKVF1FfyCeXrefGkrlr2DpI 6l+TYHFtutFluodv60RX8N4oozJmIT+2VVXywsP12FNSLi8HEYX7hSt1I+nm2nNh nSvhX70ogGXjy0I2MCq1Rs4QZyMA6S78CTEsJ0xeLYCIgFrVNg+xOaQ6elTqof8v l8ydreB6hLcPNmMoGpXTmAMvewIDAQABo4IClTCCApEwHQYDVR0OBBYEFDDITyrj LXbOGGxBn8Uqz8mKvP0EMB8GA1UdIwQYMBaAFFBzlR5cFYJpOocHLuVIxlSFsFos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUUwNi8wNTU5RUVBRTVD QkUxMUVDQjI3M0RDN0NDNEY5QUUwMi9VSE9WSGx3VmdtazZod2N1NVVqR1ZJV3dX aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VIT1ZIbHdWZ21rNmh3Y3U1VWpHVklXd1dpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVFMDYvMDU1OUVFQUU1Q0JFMTFFQ0IyNzNEQzdDQzRGOUFFMDIvREVCRENFQ0FD MkNGMTFFRkE4MDUzODBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmHQwDQYJKoZIhvcNAQELBQADggEBAGJBuNNhT1Pq4hWY 6+7CAHNq10zbVjLj/ryNbsV9wylomJU3Ewc9dHXc00lr9W9Hw2YosGqwx5z3e61v +c067QKLbSo2CcHAiyCFITSXGy9yeawy2YAtzHQhvt3aMOEk2Mgrtqmx0vYJhflW Xm16WgIMCtVZBl9A4PvV/N+HeJKsT9u6Dc5nUGMfYq/1WZlgyoH+QLkRIUqJezIi iitPqPhEOYEGobK6qnDe8e2ZkOCW76Be5U9HCr1BxF28LU/asXiws9LX9rCelENA F0+CP8/pgWYqh5izE77CNr38fazdpKn6yTOFrgkktcpBqc6jTvZhpkBNagFGoXuB 3KLTDKY= -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:58 2025 by rpki-client