$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/6AE50E1C21E011EBBF36CD21C4F9AE02.roa File: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (raw, json) Hash identifier: lMhUzM6SrZqnaSb3sq+PG5FZ88KlD5XwOD16PSgtpr8= Subject key identifier: E7:33:48:CA:8F:9A:A1:4E:09:65:58:6D:3B:AA:5B:5E:E8:C2:86:65 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 095B Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/6AE50E1C21E011EBBF36CD21C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:02:59 +0000 ROA not before: Mon 04 Aug 2025 21:01:45 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.152.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2395 (0x95b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Aug 4 21:01:45 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a47143-888d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:47:9d:b0:53:15:a2:ba:11:51:77:af:f0:a1: 5d:76:dc:2f:e4:fa:cc:c8:06:c5:93:6f:91:a6:41: 65:b3:8e:43:f7:48:58:b4:ad:26:26:81:69:4a:bc: a9:db:a9:f4:75:a0:f5:45:59:45:fb:0e:6b:73:13: b0:19:a7:de:c6:80:49:a0:34:c0:66:b4:86:c5:b7: cf:71:11:54:54:7a:60:e3:31:cb:00:ec:9b:0d:22: cf:3e:57:a4:83:be:16:bf:9e:70:a5:ba:fb:d7:7b: c2:3b:06:ab:92:fd:93:ae:a6:1e:9f:1a:45:9a:c2: 17:8a:61:8b:b8:8e:27:9d:83:c1:72:d4:62:ef:a4: 2e:66:08:fc:1f:96:30:7f:49:71:d2:b6:01:65:ce: 10:6b:3a:aa:4b:c0:95:c0:85:bb:ea:b6:8f:bf:08: 1c:79:98:ff:a3:c5:71:04:00:28:2c:5d:f9:30:8d: 33:43:e3:16:f7:c2:2f:fc:64:e1:18:be:c2:31:b0: a4:f5:a3:1e:73:ab:fa:7a:ac:2f:cd:11:a9:b5:b0: fb:3e:62:9c:09:2b:af:f4:d4:2b:be:21:74:2c:e9: 4c:41:8e:b1:c8:e0:7d:20:68:1a:cd:ec:5e:c6:dd: 5e:1c:f1:14:51:c5:a1:5c:3f:d2:91:b9:5d:46:52: a9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:33:48:CA:8F:9A:A1:4E:09:65:58:6D:3B:AA:5B:5E:E8:C2:86:65 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/6AE50E1C21E011EBBF36CD21C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.170.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:1c:ec:68:26:5d:dd:c8:ad:bc:c9:7a:e6:76:19:32:b4:df: 21:84:13:4d:96:db:d0:b5:db:b4:17:03:d9:19:fa:be:65:da: 6b:c2:90:84:8c:45:8d:9a:9f:da:af:f6:e6:c3:1a:1f:d1:d1: 16:f5:97:6f:aa:13:3e:d8:64:32:e4:83:46:3a:3f:e2:cf:16: 45:2f:61:94:c5:d8:c7:93:56:9f:6f:c7:b1:b4:bc:65:b3:6f: bd:16:94:45:06:94:ee:97:98:ed:09:64:4b:66:a6:88:97:08: d0:10:f7:44:16:9b:10:3d:d4:10:8b:02:97:63:e7:96:df:ec: d8:0d:b5:b4:b7:9f:39:04:f4:81:7c:e0:9e:52:52:bf:32:bd: 97:b5:a7:14:4c:c9:5c:b0:ad:57:45:fc:8f:54:ca:b4:f4:74: c9:09:f0:6a:97:b2:99:ed:5f:a8:ca:99:d8:32:ac:ef:d1:c3: 85:97:72:37:c8:f4:80:79:0c:5d:28:d8:38:2a:83:f7:e7:03: 37:06:e0:f7:5a:76:c3:72:82:f8:f0:f5:97:3a:8b:37:03:a1: 31:f8:d7:32:c3:8c:5b:4f:4d:f7:d0:47:e9:74:f2:5f:6a:e6: 7c:0c:0d:67:31:52:1a:9e:45:bd:a2:08:b3:88:08:43:89:f4: 01:f4:37:d6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwODA0MjEwMTQ1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzE0My04ODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEedsFMVoroRUXev8KFddtwv5PrMyAbFk2+RpkFls45D90hYtK0mJoFpSryp 26n0daD1RVlF+w5rcxOwGafexoBJoDTAZrSGxbfPcRFUVHpg4zHLAOybDSLPPlek g74Wv55wpbr713vCOwarkv2TrqYenxpFmsIXimGLuI4nnYPBctRi76QuZgj8H5Yw f0lx0rYBZc4QazqqS8CVwIW76raPvwgceZj/o8VxBAAoLF35MI0zQ+MW98Iv/GTh GL7CMbCk9aMec6v6eqwvzRGptbD7PmKcCSuv9NQrviF0LOlMQY6xyOB9IGgazexe xt1eHPEUUcWhXD/SkbldRlKp/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOczSMqP mqFOCWVYbTuqW17owoZlMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJGRDkvNEFFODA0MUVCOUQ3MTFFQTlDRjUxRTVGQzRGOUFFMDIvNkFFNTBFMUMy MUUwMTFFQkJGMzZDRDIxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5iqMA0GCSqGSIb3DQEBCwUAA4IBAQB/HOxoJl3dyK28yXrmdhky tN8hhBNNltvQtdu0FwPZGfq+ZdprwpCEjEWNmp/ar/bmwxof0dEW9ZdvqhM+2GQy 5INGOj/izxZFL2GUxdjHk1afb8extLxls2+9FpRFBpTul5jtCWRLZqaIlwjQEPdE FpsQPdQQiwKXY+eW3+zYDbW0t585BPSBfOCeUlK/Mr2XtacUTMlcsK1XRfyPVMq0 9HTJCfBql7KZ7V+oypnYMqzv0cOFl3I3yPSAeQxdKNg4KoP35wM3BuD3WnbDcoL4 8PWXOos3A6Ex+Ncyw4xbT0330EfpdPJfauZ8DA1nMVIankW9ogiziAhDifQB9DfW -----END CERTIFICATE-----Generated at Thu Mar 26 06:55:34 2026 by rpki-client