$ rpki-client -vvf rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/150C1686283511EDABF49D69C4F9AE02.roa File: 150C1686283511EDABF49D69C4F9AE02.roa (raw, json) Hash identifier: Zce2wxLFr23nDLh8W8BWEzhc/V5I0IdU7WmQTf6T42c= Subject key identifier: 84:FB:F6:DB:0E:8F:F2:23:E0:71:A9:20:6F:00:7C:2C:1B:F3:C2:C2 Certificate issuer: /CN=A91F26F1/serialNumber=76CD12AD9E608CAA2C1997B636F450577BE937BC Certificate serial: 0261 Authority key identifier: 76:CD:12:AD:9E:60:8C:AA:2C:19:97:B6:36:F4:50:57:7B:E9:37:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0SrZ5gjKosGZe2NvRQV3vpN7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/150C1686283511EDABF49D69C4F9AE02.roa Signing time: Wed 13 Aug 2025 02:39:11 +0000 ROA not before: Wed 13 Aug 2025 02:39:11 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 150182 IP address blocks: 103.209.108.0/23 maxlen: 23 103.209.108.0/24 maxlen: 24 103.209.109.0/24 maxlen: 24 2001:df1:31c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/ds0SrZ5gjKosGZe2NvRQV3vpN7w.crl rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/ds0SrZ5gjKosGZe2NvRQV3vpN7w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0SrZ5gjKosGZe2NvRQV3vpN7w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F26F1, serialNumber=76CD12AD9E608CAA2C1997B636F450577BE937BC Validity Not Before: Aug 13 02:39:11 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=689bfacf-c821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:94:55:ec:bf:19:f2:9b:12:e7:1e:19:4e:70: df:d6:4d:23:e7:d6:eb:b9:dd:ea:64:76:4e:bb:1b: 04:03:91:8f:a4:be:66:a7:7c:63:03:03:4b:30:43: 28:b4:21:0c:4d:2d:fb:06:9a:ce:74:81:3c:33:89: 72:bd:12:f6:2c:c0:8e:49:41:e6:30:9d:d4:86:58: ca:23:b4:bf:4d:b4:7f:78:99:1d:13:ed:6f:e8:23: 53:88:19:36:a2:f6:a0:2e:04:1b:9d:ba:4a:a0:6b: c5:06:4e:c3:1e:75:7a:25:fb:15:b9:63:fb:32:9d: b3:f8:18:9c:31:1a:19:30:bb:3c:18:ee:67:87:6b: 41:3b:2b:a7:9c:b2:07:21:20:78:3c:53:b5:c0:a2: 98:86:cf:e0:ec:25:c4:67:a5:73:e2:1b:c6:99:d4: 8a:67:ea:b3:f9:0b:45:e9:08:03:ca:a6:80:35:c4: a0:bb:44:2f:c0:bd:4f:fa:ce:1b:37:2a:a9:b5:61: c3:7c:1b:bf:13:7b:c7:6a:0d:79:31:b0:0c:82:06: 5d:ea:df:a8:c9:70:57:76:71:f7:65:35:e5:79:30: 4f:5b:ec:d5:aa:55:5a:42:f3:23:ae:b7:a7:06:6c: 8e:10:0c:14:28:8e:52:36:ee:f3:72:15:f7:2a:b2: 76:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FB:F6:DB:0E:8F:F2:23:E0:71:A9:20:6F:00:7C:2C:1B:F3:C2:C2 X509v3 Authority Key Identifier: keyid:76:CD:12:AD:9E:60:8C:AA:2C:19:97:B6:36:F4:50:57:7B:E9:37:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/ds0SrZ5gjKosGZe2NvRQV3vpN7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ds0SrZ5gjKosGZe2NvRQV3vpN7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F26F1/88F1C784283111ED9495D42AC4F9AE02/150C1686283511EDABF49D69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.108.0/23 IPv6: 2001:df1:31c0::/48 Signature Algorithm: sha256WithRSAEncryption 4e:37:38:28:63:2b:70:07:fd:1d:9e:40:f4:ed:7e:70:fe:b5: e9:ce:0e:8b:4c:b8:b4:3a:af:c6:3b:e1:b8:a6:96:5c:c7:78: f6:b1:38:60:4f:ec:53:33:1d:eb:48:a5:01:39:8f:f2:69:73: b3:be:ef:fd:5c:cf:0a:d0:2a:3d:97:b4:02:fc:27:b7:11:41: 06:62:cb:ae:41:96:84:25:c2:11:ab:ba:d1:54:f2:17:ce:db: a0:78:eb:9a:b1:46:c1:bd:24:44:25:14:c9:ce:a4:a4:44:ec: 6d:47:dd:ca:b8:89:5f:48:61:5d:c5:d1:51:e1:a7:c3:9c:06: 34:7d:26:8c:89:84:83:91:bf:5b:26:2e:79:04:e1:d4:40:79: ac:04:dc:72:b9:7d:17:e1:28:19:1c:b6:d7:39:fc:24:fa:f1: e1:58:ae:68:22:70:d6:3d:27:07:db:86:19:ca:89:1e:f4:76: 82:20:9c:98:f0:cb:4e:3f:27:2c:d7:96:ac:b0:19:2d:cb:87: 01:28:39:6a:c4:c4:87:83:82:04:ae:f5:53:17:a8:a1:c3:bc: 96:0d:32:ac:1c:3f:2d:ba:e7:dc:30:1e:e1:bc:1a:34:26:1c: a6:34:36:60:f1:f9:5b:f7:71:5a:e6:20:25:e2:cc:4e:ff:9f: 50:6c:22:b6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI2RjExMTAvBgNVBAUTKDc2Q0QxMkFEOUU2MDhDQUEyQzE5OTdCNjM2RjQ1MDU3 N0JFOTM3QkMwHhcNMjUwODEzMDIzOTExWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliZmFjZi1jODIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJRV7L8Z8psS5x4ZTnDf1k0j59brud3qZHZOuxsEA5GPpL5mp3xjAwNLMEMo tCEMTS37BprOdIE8M4lyvRL2LMCOSUHmMJ3UhljKI7S/TbR/eJkdE+1v6CNTiBk2 ovagLgQbnbpKoGvFBk7DHnV6JfsVuWP7Mp2z+BicMRoZMLs8GO5nh2tBOyunnLIH ISB4PFO1wKKYhs/g7CXEZ6Vz4hvGmdSKZ+qz+QtF6QgDyqaANcSgu0QvwL1P+s4b NyqptWHDfBu/E3vHag15MbAMggZd6t+oyXBXdnH3ZTXleTBPW+zVqlVaQvMjrren BmyOEAwUKI5SNu7zchX3KrJ28QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIT79tsO j/Ij4HGpIG8AfCwb88LCMB8GA1UdIwQYMBaAFHbNEq2eYIyqLBmXtjb0UFd76Te8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjZGMS84OEYxQzc4NDI4 MzExMUVEOTQ5NUQ0MkFDNEY5QUUwMi9kczBTclo1Z2pLb3NHWmUyTnZSUVYzdnBO N3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzMFNyWjVnaktvc0daZTJOdlJRVjN2cE43dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI2RjEvODhGMUM3ODQyODMxMTFFRDk0OTVENDJBQzRGOUFFMDIvMTUwQzE2ODYy ODM1MTFFREFCRjQ5RDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn0WwwDwQCAAIwCQMHACABDfExwDANBgkqhkiG9w0BAQsF AAOCAQEATjc4KGMrcAf9HZ5A9O1+cP616c4Oi0y4tDqvxjvhuKaWXMd49rE4YE/s UzMd60ilATmP8mlzs77v/VzPCtAqPZe0AvwntxFBBmLLrkGWhCXCEau60VTyF87b oHjrmrFGwb0kRCUUyc6kpETsbUfdyriJX0hhXcXRUeGnw5wGNH0mjImEg5G/WyYu eQTh1EB5rATccrl9F+EoGRy21zn8JPrx4ViuaCJw1j0nB9uGGcqJHvR2giCcmPDL Tj8nLNeWrLAZLcuHASg5asTEh4OCBK71UxeoocO8lg0yrBw/Lbrn3DAe4bwaNCYc pjQ2YPH5W/dxWuYgJeLMTv+fUGwitg== -----END CERTIFICATE-----Generated at Wed Nov 5 15:39:15 2025 by rpki-client