$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/88F562E83DAD11EFAA46E417C4F9AE02.roa File: 88F562E83DAD11EFAA46E417C4F9AE02.roa (raw, json) Hash identifier: HG3oXa5WRW8n13BJ73mfkhHNv2TpvyHSb+awWkOaGA0= Subject key identifier: C2:E7:91:72:2B:78:7E:5E:8E:F6:A6:B5:BC:0D:C5:2A:00:BB:76:03 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: 0142 Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/88F562E83DAD11EFAA46E417C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:39:31 +0000 ROA not before: Tue 29 Jul 2025 06:42:20 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137209 IP address blocks: 103.104.232.0/22 maxlen: 22 2402:1dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618, serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: Jul 29 06:42:20 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58503-c3a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fa:1a:ad:3f:1b:aa:e5:c9:a8:83:64:fc:7c: a7:d8:e2:e7:53:6b:d0:1f:c7:b3:39:0c:f3:93:b4: a5:44:85:51:0c:06:34:11:0d:77:4e:10:e8:ae:3f: 73:a9:d2:8f:22:e9:1d:56:ed:ce:0b:ca:98:5d:b5: 33:b5:5e:48:fd:d7:91:58:0b:90:d1:0b:0f:8f:06: 20:46:86:76:d7:85:62:71:e4:ee:a5:5b:9d:b2:2f: 58:08:fe:15:d8:13:93:3e:a8:73:48:be:53:2f:40: 7b:ef:5e:c3:c7:50:0b:db:de:65:42:e1:47:f6:35: 0f:23:1c:27:db:b0:42:27:72:35:3b:b6:15:5f:3e: 7a:8a:cb:ec:30:89:69:ed:2c:9d:31:a4:31:f9:75: e1:2f:86:c0:6b:91:90:21:74:c1:e2:42:db:cc:e6: b6:8e:cd:52:4e:68:02:45:bd:6e:bf:17:4d:c5:88: c4:c2:80:db:50:4e:d9:34:99:13:a9:8f:78:90:f8: 15:f7:38:0c:c3:6b:9f:93:49:26:71:94:f5:02:13: 9e:33:4b:b3:94:89:a2:3a:ec:41:14:9b:4b:4e:5d: dc:17:14:70:8f:62:e8:4e:5d:39:e8:f5:b5:45:fa: 4e:d1:ea:c7:0c:4d:07:8c:e7:2c:fc:47:a7:ef:1d: 96:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:E7:91:72:2B:78:7E:5E:8E:F6:A6:B5:BC:0D:C5:2A:00:BB:76:03 X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/88F562E83DAD11EFAA46E417C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.104.232.0/22 IPv6: 2402:1dc0::/32 Signature Algorithm: sha256WithRSAEncryption 94:d6:e4:da:c4:79:3a:ed:29:62:89:84:25:0b:20:8a:92:06: 3e:34:60:ec:02:ea:2b:bd:97:01:d5:dc:9d:11:f2:20:c3:e3: 4f:a6:af:51:10:34:06:36:85:2a:31:15:0d:02:a8:b1:03:d1: 0c:3b:99:d7:75:91:ad:9a:5b:a4:74:46:4a:e8:b4:92:9b:fb: 79:01:3b:6f:26:80:f5:9f:94:ca:f7:f3:63:e4:5e:52:9f:4b: 9b:be:83:8d:71:d0:22:c2:d2:62:4a:ca:58:10:3f:1b:c0:c7: e2:c4:7b:20:0b:93:0f:ff:fa:57:31:cb:87:86:d6:fa:dd:8f: e5:30:5c:78:ac:a3:82:9c:3a:ca:a7:9f:ee:f5:f6:4d:5f:ac: 4c:c7:65:b0:0c:6a:5b:26:9a:09:97:ce:6c:d8:c6:bc:03:f9: 06:13:4c:e1:59:e6:a9:6e:4c:b7:9a:61:b4:34:25:8b:c5:6e: fd:d7:06:46:0f:74:1b:57:18:78:f6:12:5c:c6:6b:b6:81:8b: f5:6c:43:bf:74:f0:78:aa:0d:f8:7d:c3:0f:ee:36:1e:f8:a0: 46:ef:07:6d:03:5a:d7:2e:5b:ac:e4:2c:88:79:06:4d:e2:a0: 73:65:a0:fa:57:60:37:77:1d:f0:f7:01:29:55:1b:c7:32:79: 0a:b9:a1:40 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE2MTgxMTAvBgNVBAUTKEE1MkJGMDI4NzcxOTE5NDk3MTJEM0RBRDI5RDRBQjdB Mjc3OUVDNDMwHhcNMjUwNzI5MDY0MjIwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODUwMy1jM2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PoarT8bquXJqINk/Hyn2OLnU2vQH8ezOQzzk7SlRIVRDAY0EQ13ThDorj9z qdKPIukdVu3OC8qYXbUztV5I/deRWAuQ0QsPjwYgRoZ214ViceTupVudsi9YCP4V 2BOTPqhzSL5TL0B7717Dx1AL295lQuFH9jUPIxwn27BCJ3I1O7YVXz56isvsMIlp 7SydMaQx+XXhL4bAa5GQIXTB4kLbzOa2js1STmgCRb1uvxdNxYjEwoDbUE7ZNJkT qY94kPgV9zgMw2ufk0kmcZT1AhOeM0uzlImiOuxBFJtLTl3cFxRwj2LoTl056PW1 RfpO0erHDE0HjOcs/Een7x2WlQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMLnkXIr eH5ejvamtbwNxSoAu3YDMB8GA1UdIwQYMBaAFKUr8Ch3GRlJcS09rSnUq3oneexD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTYxOC81NTdFQUIzQzNB QkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdVbHhMVDJ0S2RTcmVpZDU3 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE2MTgvNTU3RUFCM0MzQUJFMTFFRjg2MTlEMjIwQzRGOUFFMDIvODhGNTYyRTgz REFEMTFFRkFBNDZFNDE3QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ2joMA0EAgACMAcDBQAkAh3AMA0GCSqGSIb3DQEBCwUAA4IBAQCU 1uTaxHk67SliiYQlCyCKkgY+NGDsAuorvZcB1dydEfIgw+NPpq9REDQGNoUqMRUN AqixA9EMO5nXdZGtmlukdEZK6LSSm/t5ATtvJoD1n5TK9/Nj5F5Sn0ubvoONcdAi wtJiSspYED8bwMfixHsgC5MP//pXMcuHhtb63Y/lMFx4rKOCnDrKp5/u9fZNX6xM x2WwDGpbJpoJl85s2Ma8A/kGE0zhWeapbky3mmG0NCWLxW791wZGD3QbVxh49hJc xmu2gYv1bEO/dPB4qg34fcMP7jYe+KBG7wdtA1rXLlus5CyIeQZN4qBzZaD6V2A3 dx3w9wEpVRvHMnkKuaFA -----END CERTIFICATE-----Generated at Thu Mar 26 08:54:02 2026 by rpki-client