$ rpki-client -vvf rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/870C2B58B47811E788EC7E65C4F9AE02.roa File: 870C2B58B47811E788EC7E65C4F9AE02.roa (raw, json) Hash identifier: Cy9jIf+CyOis8YIH5a0sOi5OoR3Vm1n2YEe3NcN+W00= Subject key identifier: B6:C0:A1:D3:01:DB:19:8F:51:E3:CC:13:DC:C8:FF:44:66:F1:82:9A Certificate issuer: /CN=A91881D9/serialNumber=6C1B638EA9D7C6CE023CB5E57E3CAE16A11B4505 Certificate serial: 18A8 Authority key identifier: 6C:1B:63:8E:A9:D7:C6:CE:02:3C:B5:E5:7E:3C:AE:16:A1:1B:45:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/870C2B58B47811E788EC7E65C4F9AE02.roa Signing time: Wed 04 Mar 2026 17:20:33 +0000 ROA not before: Wed 04 Mar 2026 17:20:33 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 136404 IP address blocks: 103.86.184.0/22 maxlen: 22 103.86.184.0/24 maxlen: 24 103.86.185.0/24 maxlen: 24 103.86.186.0/24 maxlen: 24 103.86.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 16:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6312 (0x18a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91881D9, serialNumber=6C1B638EA9D7C6CE023CB5E57E3CAE16A11B4505 Validity Not Before: Mar 4 17:20:33 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a869e1-5a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:36:c2:ca:9a:e2:56:11:36:80:cc:f1:14:d9: 17:95:65:c7:7a:20:26:58:d3:91:c0:38:c5:f0:48: 73:93:e4:d7:4b:c6:06:eb:ec:a1:64:3d:4f:4c:f2: 68:7e:b1:f6:22:65:04:ca:5b:2d:f1:8b:bb:cb:b2: 78:2a:e9:f6:65:97:98:c0:73:fb:63:c1:12:3e:12: c1:67:50:a6:3e:1d:fe:e6:a8:fa:c0:ed:d5:2a:6f: 0a:3f:af:d1:c9:e2:69:32:cc:83:43:15:71:ad:ac: 7c:e6:52:c2:3a:ed:77:6a:45:28:29:39:db:ea:dd: 5b:6b:65:80:d6:0e:e8:a9:30:61:1f:09:48:2c:3c: 83:f4:5c:2e:36:fb:4d:15:f2:34:a1:61:16:47:d6: 69:1a:54:38:36:cd:bf:0a:15:0e:f1:3d:f3:ec:2c: 92:9b:7b:8f:85:32:49:bb:36:f0:bc:0d:4d:b4:02: cd:2e:e5:e2:21:2e:90:0c:95:ac:17:38:4d:a7:7c: f9:46:11:bc:22:f9:b6:1a:23:ed:ec:dc:2b:b8:d5: d8:1a:07:a4:3d:7e:22:ad:e9:86:0c:2e:3f:cd:89: 90:6c:ea:d5:67:09:c1:d3:47:61:15:9e:5b:63:cc: 8d:ee:ac:ff:f5:f7:25:50:51:a7:68:84:19:51:37: 93:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:C0:A1:D3:01:DB:19:8F:51:E3:CC:13:DC:C8:FF:44:66:F1:82:9A X509v3 Authority Key Identifier: keyid:6C:1B:63:8E:A9:D7:C6:CE:02:3C:B5:E5:7E:3C:AE:16:A1:1B:45:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/870C2B58B47811E788EC7E65C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.184.0/22 Signature Algorithm: sha256WithRSAEncryption 77:23:03:bb:18:57:b8:dc:1b:1b:e6:3d:99:bf:9b:bd:19:4d: 6b:e7:90:04:da:97:3f:fc:67:d7:d6:a8:5f:f4:0f:0d:18:56: e8:0a:ba:fa:7f:a1:53:54:f9:38:22:1d:a8:93:eb:f0:53:1a: fa:04:fa:93:a6:b1:d1:32:86:f2:99:03:f1:e5:26:58:0d:17: 61:84:ed:fd:88:e0:ee:d6:0a:cb:41:59:d0:4d:a1:5a:1a:3d: ca:e7:92:3c:1f:46:9a:c9:21:62:6b:e3:c7:d0:cb:97:13:b0: e1:f5:73:25:85:f2:fe:d3:aa:64:b8:c6:54:03:f7:54:33:22: 20:bf:2a:49:b9:38:cb:78:f4:88:8c:75:0c:95:5d:1d:48:cb: cc:c6:77:f9:2d:61:cb:6c:15:87:2e:fc:67:7a:66:cb:9b:1c: ff:ed:63:0b:64:1b:d8:c2:5d:05:02:4e:5e:7d:25:44:05:4b: f6:62:cc:d4:2a:d4:88:27:08:25:55:43:8e:c5:4f:eb:ae:18: 82:35:53:6b:c6:f7:cf:5d:41:9c:b3:0d:0d:e0:b3:3f:f0:e2: 8b:cd:73:ee:fc:92:1b:25:29:0f:56:9c:ee:3c:92:1e:8c:6a: d7:8a:41:12:ca:ff:03:68:89:3d:8a:d0:b0:00:4d:37:c7:50: 88:47:b5:4d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICGKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODgxRDkxMTAvBgNVBAUTKDZDMUI2MzhFQTlEN0M2Q0UwMjNDQjVFNTdFM0NBRTE2 QTExQjQ1MDUwHhcNMjYwMzA0MTcyMDMzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4NjllMS01YTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTbCypriVhE2gMzxFNkXlWXHeiAmWNORwDjF8Ehzk+TXS8YG6+yhZD1PTPJo frH2ImUEylst8Yu7y7J4Kun2ZZeYwHP7Y8ESPhLBZ1CmPh3+5qj6wO3VKm8KP6/R yeJpMsyDQxVxrax85lLCOu13akUoKTnb6t1ba2WA1g7oqTBhHwlILDyD9FwuNvtN FfI0oWEWR9ZpGlQ4Ns2/ChUO8T3z7CySm3uPhTJJuzbwvA1NtALNLuXiIS6QDJWs FzhNp3z5RhG8Ivm2GiPt7NwruNXYGgekPX4iremGDC4/zYmQbOrVZwnB00dhFZ5b Y8yN7qz/9fclUFGnaIQZUTeTKwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLbAodMB 2xmPUePME9zI/0Rm8YKaMB8GA1UdIwQYMBaAFGwbY46p18bOAjy15X48rhahG0UF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODFEOS9EODlCQjMwRUI0 NzcxMUU3QUQ1NEI2NjRDNEY5QUUwMi9iQnRqanFuWHhzNENQTFhsZmp5dUZxRWJS UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCdGpqcW5YeHM0Q1BMWGxmanl1RnFFYlJRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODgxRDkvRDg5QkIzMEVCNDc3MTFFN0FENTRCNjY0QzRGOUFFMDIvODcwQzJCNThC NDc4MTFFNzg4RUM3RTY1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ1a4MA0GCSqGSIb3DQEBCwUAA4IBAQB3IwO7GFe43Bsb5j2Zv5u9 GU1r55AE2pc//GfX1qhf9A8NGFboCrr6f6FTVPk4Ih2ok+vwUxr6BPqTprHRMoby mQPx5SZYDRdhhO39iODu1grLQVnQTaFaGj3K55I8H0aaySFia+PH0MuXE7Dh9XMl hfL+06pkuMZUA/dUMyIgvypJuTjLePSIjHUMlV0dSMvMxnf5LWHLbBWHLvxnembL mxz/7WMLZBvYwl0FAk5efSVEBUv2YszUKtSIJwglVUOOxU/rrhiCNVNrxvfPXUGc sw0N4LM/8OKLzXPu/JIbJSkPVpzuPJIejGrXikESyv8DaIk9itCwAE03x1CIR7VN -----END CERTIFICATE-----Generated at Fri Mar 27 08:48:39 2026 by rpki-client