$ rpki-client -vvf rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/DFCE0CFC387311EBA0AC593EC4F9AE02.roa File: DFCE0CFC387311EBA0AC593EC4F9AE02.roa (raw, json) Hash identifier: TnSaLf+xgZHXFIsS72cUr6qVZqPyupzxKL+9myIDylQ= Subject key identifier: 76:13:BB:E4:BE:97:E6:C0:40:6E:65:9D:A3:CD:FD:C3:6B:2D:AA:53 Certificate issuer: /CN=A91B189B/serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Certificate serial: 07D8 Authority key identifier: FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/DFCE0CFC387311EBA0AC593EC4F9AE02.roa Signing time: Sat 02 May 2026 22:26:52 +0000 ROA not before: Sat 02 May 2026 22:26:52 +0000 ROA not after: Wed 02 Sep 2026 00:00:00 +0000 asID: 141447 IP address blocks: 103.159.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 21:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B189B, serialNumber=FD2A9D5EFAB9111B0A5A3013F34C2CBDAFD01FC2 Validity Not Before: May 2 22:26:52 2026 GMT Not After : Sep 2 00:00:00 2026 GMT Subject: CN=69f67a2c-4b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1b:80:dc:3a:43:4e:e3:cd:bf:85:b2:1e:52: 92:44:ac:67:a6:26:18:20:27:50:41:6c:bd:87:b6: 34:90:28:da:9b:8c:f4:d7:fc:e2:13:3c:90:a2:4c: 83:e6:c8:6f:0f:9a:2e:fb:2d:3b:d3:b6:aa:77:5c: ad:2e:11:aa:04:1a:54:8d:ff:57:f1:a0:51:7a:b6: bc:60:6d:83:10:c0:f4:ae:2b:f9:f4:cd:1f:f6:c5: e2:0d:7f:f6:10:71:83:c5:bc:d6:f0:bc:43:d6:17: 43:f8:98:5a:60:83:ca:c3:c9:42:e3:7f:aa:3a:02: 92:3a:43:e5:d4:02:43:1e:d8:8d:80:8d:c0:be:1e: c8:51:a4:4f:7d:30:83:b4:64:c9:7c:a2:a4:f9:74: 85:12:5b:94:ab:d0:6c:a7:17:78:d6:1c:0e:5e:e7: e8:f5:c2:d9:77:5c:95:d6:c7:5e:93:f0:75:41:0f: 1d:bc:7d:91:e9:76:b9:d2:ef:15:14:37:a6:c9:af: 76:01:40:a0:cf:5c:87:7b:34:da:64:6c:90:ed:4f: 33:2b:c4:6d:75:ee:f5:a9:18:3c:ee:1d:90:8e:bc: 3f:6a:4d:3b:27:8a:ac:d4:64:80:01:46:70:29:44: 63:58:f2:d9:9f:ab:8d:0c:68:3a:e2:a7:e1:43:e2: a8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:13:BB:E4:BE:97:E6:C0:40:6E:65:9D:A3:CD:FD:C3:6B:2D:AA:53 X509v3 Authority Key Identifier: keyid:FD:2A:9D:5E:FA:B9:11:1B:0A:5A:30:13:F3:4C:2C:BD:AF:D0:1F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/_SqdXvq5ERsKWjAT80wsva_QH8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SqdXvq5ERsKWjAT80wsva_QH8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B189B/328BDD40387211EB997AA23AC4F9AE02/DFCE0CFC387311EBA0AC593EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.159.163.0/24 Signature Algorithm: sha256WithRSAEncryption 84:89:18:11:38:63:92:f3:0b:77:f1:91:99:33:b2:ea:0a:10: 4f:0c:cc:33:f8:30:92:d1:4c:11:8f:5b:2c:6f:2e:5e:5c:c0: 63:03:46:4d:bb:87:04:41:40:65:33:99:62:74:c2:b7:a9:fd: d9:8f:73:c7:c9:21:9a:6a:e5:fa:77:3c:40:9c:44:32:f0:97: d8:6f:dd:ce:8b:76:dc:71:aa:36:78:ba:36:a2:af:59:48:98: 15:36:6b:56:5e:7a:70:ad:27:d7:64:31:5d:1d:ca:4c:37:73: 75:c6:a3:67:7b:61:8e:15:d5:c8:98:09:49:b9:6b:92:34:e7: d4:29:24:cb:6b:a6:d4:23:76:6b:de:60:71:6b:39:f5:ba:89: e4:f4:7a:ac:91:c8:3b:4f:d7:ec:b9:9e:0a:2d:95:4e:a6:7e: 63:4a:24:c9:4b:6a:6d:ed:b8:1c:48:c0:c5:a4:a1:62:29:c9: 5a:eb:ed:e1:f1:a0:e3:93:7d:93:e7:7b:7c:be:48:56:24:28: 90:b3:df:97:e4:a9:9d:d7:bc:8d:cb:61:92:9a:c4:86:0b:4a: d8:4e:12:1c:e8:31:c1:90:d8:c2:63:8a:aa:bf:2d:eb:d9:71: 76:4e:88:fd:37:0d:c6:32:25:a5:b6:f3:bb:08:38:4c:0c:4d: 5e:c9:43:d9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4OUIxMTAvBgNVBAUTKEZEMkE5RDVFRkFCOTExMUIwQTVBMzAxM0YzNEMyQ0JE QUZEMDFGQzIwHhcNMjYwNTAyMjIyNjUyWhcNMjYwOTAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2N2EyYy00YjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhuA3DpDTuPNv4WyHlKSRKxnpiYYICdQQWy9h7Y0kCjam4z01/ziEzyQokyD 5shvD5ou+y0707aqd1ytLhGqBBpUjf9X8aBRera8YG2DEMD0riv59M0f9sXiDX/2 EHGDxbzW8LxD1hdD+JhaYIPKw8lC43+qOgKSOkPl1AJDHtiNgI3Avh7IUaRPfTCD tGTJfKKk+XSFEluUq9Bspxd41hwOXufo9cLZd1yV1sdek/B1QQ8dvH2R6Xa50u8V FDemya92AUCgz1yHezTaZGyQ7U8zK8Rtde71qRg87h2Qjrw/ak07J4qs1GSAAUZw KURjWPLZn6uNDGg64qfhQ+KoeQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHYTu+S+ l+bAQG5lnaPN/cNrLapTMB8GA1UdIwQYMBaAFP0qnV76uREbClowE/NMLL2v0B/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTg5Qi8zMjhCREQ0MDM4 NzIxMUVCOTk3QUEyM0FDNEY5QUUwMi9fU3FkWHZxNUVSc0tXakFUODB3c3ZhX1FI OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TcWRYdnE1RVJzS1dqQVQ4MHdzdmFfUUg4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE4OUIvMzI4QkRENDAzODcyMTFFQjk5N0FBMjNBQzRGOUFFMDIvREZDRTBDRkMz ODczMTFFQkEwQUM1OTNFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5+jMA0GCSqGSIb3DQEBCwUAA4IBAQCEiRgROGOS8wt38ZGZM7Lq ChBPDMwz+DCS0UwRj1ssby5eXMBjA0ZNu4cEQUBlM5lidMK3qf3Zj3PHySGaauX6 dzxAnEQy8JfYb93Oi3bccao2eLo2oq9ZSJgVNmtWXnpwrSfXZDFdHcpMN3N1xqNn e2GOFdXImAlJuWuSNOfUKSTLa6bUI3Zr3mBxazn1uonk9Hqskcg7T9fsuZ4KLZVO pn5jSiTJS2pt7bgcSMDFpKFiKcla6+3h8aDjk32T53t8vkhWJCiQs9+X5Kmd17yN y2GSmsSGC0rYThIc6DHBkNjCY4qqvy3r2XF2Toj9Nw3GMiWltvO7CDhMDE1eyUPZ -----END CERTIFICATE-----Generated at Wed May 13 10:48:06 2026 by rpki-client