$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa File: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (raw, json) Hash identifier: GU459Ktdz/fz1ECmCeSCz7LdQF+jjHxhZbRp7cylRSE= Subject key identifier: 7B:94:A1:95:31:0E:56:F8:0E:BE:B7:EA:C5:2A:51:D4:C0:8B:E7:E1 Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 0404 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:24:21 +0000 ROA not before: Thu 01 Jan 2026 00:20:49 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136520 IP address blocks: 103.91.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:19:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1028 (0x404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: Jan 1 00:20:49 2026 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a44c15-8f89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:dc:e3:a6:dc:c3:31:77:30:8a:4b:71:a7:b7: 0d:3f:43:24:27:a3:09:37:4b:3b:de:81:e0:cf:88: 07:c8:f2:01:83:bd:25:6b:90:b5:cb:86:bc:44:2c: fa:ea:6b:a2:74:87:02:70:83:a8:ab:7f:ee:16:b1: 31:9b:af:dd:1e:3a:64:80:be:2b:59:2c:75:61:2c: 1b:55:0d:77:4a:c0:a4:1e:34:f9:02:b8:74:ad:0e: 18:96:8a:92:89:80:b7:70:6a:41:25:a1:66:de:c4: 0e:11:cd:44:2e:ce:f0:3d:44:90:69:4a:70:b7:4b: 28:6b:2b:1a:90:53:7f:e0:d4:5f:d0:86:d1:4f:83: f7:a4:0c:89:78:3e:d8:94:7e:ce:42:65:03:34:52: 08:20:04:7e:24:da:78:c3:11:e6:ac:69:c0:78:3c: b5:43:2c:b2:9c:c1:bd:bb:42:56:1b:c5:09:08:47: 0c:b9:1e:58:20:bf:99:c9:11:bd:5b:ac:f5:22:31: 7f:a1:9b:ed:18:46:d7:b6:e0:07:65:0f:bb:2b:95: 3b:76:84:86:e5:bf:07:d7:cc:eb:62:9e:91:5d:c5: 10:5a:76:d9:a7:99:c1:76:ee:11:71:64:1b:b6:dc: 5c:fb:7c:1b:a9:92:86:98:4c:b6:16:53:ac:da:51: 7c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:94:A1:95:31:0E:56:F8:0E:BE:B7:EA:C5:2A:51:D4:C0:8B:E7:E1 X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.194.0/24 Signature Algorithm: sha256WithRSAEncryption 69:ae:e1:26:aa:a2:60:f3:80:d5:a7:48:8a:61:92:98:e7:d0: 36:54:c7:8d:cd:8a:64:8f:be:cb:24:f5:b8:03:5c:be:e4:d6: f7:eb:5c:b7:b6:d5:c2:47:ab:24:0c:3c:8f:3f:99:89:f6:f8: 88:ab:91:73:2b:95:df:43:20:90:b6:eb:29:68:5e:4d:1a:b4: e7:d3:37:b3:71:f3:3c:e4:f2:65:46:f9:26:b3:17:b9:52:d0: 36:50:c8:c8:13:49:55:fa:50:1b:2d:30:4e:84:ed:d1:f1:e3: 2a:cc:5f:a8:2c:f1:aa:41:4b:94:0a:1e:f2:fb:9e:77:ec:c8: 65:50:b2:fc:b5:89:60:d4:07:ba:e4:c5:c3:97:8d:58:39:6b: 4e:7b:ee:03:21:21:ec:b9:1b:3e:c5:57:71:21:53:04:1f:4d: 1f:c3:03:26:ee:8f:d1:7e:f4:7c:48:48:42:d2:1e:75:fe:61: fe:11:95:be:26:dc:3f:f1:09:17:de:4c:9c:ac:3f:a5:eb:14: ca:ad:99:16:7d:e8:c5:93:cb:ed:bc:dd:da:b6:1a:8b:4f:b1: 6f:14:6f:8b:b8:cb:d4:3e:e2:69:9d:1d:1a:fb:f0:60:8c:1b: 26:3b:bf:82:27:12:82:bc:92:e6:d3:a6:c3:69:b8:ee:8d:5e: 1b:cf:da:37 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjYwMTAxMDAyMDQ5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGMxNS04Zjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9zjptzDMXcwiktxp7cNP0MkJ6MJN0s73oHgz4gHyPIBg70la5C1y4a8RCz6 6muidIcCcIOoq3/uFrExm6/dHjpkgL4rWSx1YSwbVQ13SsCkHjT5Arh0rQ4YloqS iYC3cGpBJaFm3sQOEc1ELs7wPUSQaUpwt0soaysakFN/4NRf0IbRT4P3pAyJeD7Y lH7OQmUDNFIIIAR+JNp4wxHmrGnAeDy1QyyynMG9u0JWG8UJCEcMuR5YIL+ZyRG9 W6z1IjF/oZvtGEbXtuAHZQ+7K5U7doSG5b8H18zrYp6RXcUQWnbZp5nBdu4RcWQb ttxc+3wbqZKGmEy2FlOs2lF8MwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHuUoZUx Dlb4Dr636sUqUdTAi+fhMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE5NkEvMjg3ODVGNjBCRkJGMTFFQ0FFRDQ4QzcxQzRGOUFFMDIvMkRFNEM4QUE5 QjYxMTFFRjk5QTk3QjUyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1vCMA0GCSqGSIb3DQEBCwUAA4IBAQBpruEmqqJg84DVp0iKYZKY 59A2VMeNzYpkj77LJPW4A1y+5Nb361y3ttXCR6skDDyPP5mJ9viIq5FzK5XfQyCQ tuspaF5NGrTn0zezcfM85PJlRvkmsxe5UtA2UMjIE0lV+lAbLTBOhO3R8eMqzF+o LPGqQUuUCh7y+5537MhlULL8tYlg1Ae65MXDl41YOWtOe+4DISHsuRs+xVdxIVME H00fwwMm7o/RfvR8SEhC0h51/mH+EZW+Jtw/8QkX3kycrD+l6xTKrZkWfejFk8vt vN3athqLT7FvFG+LuMvUPuJpnR0a+/BgjBsmO7+CJxKCvJLm06bDabjujV4bz9o3 -----END CERTIFICATE-----Generated at Sat Mar 28 10:43:33 2026 by rpki-client