$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/5AF669B4FFC811E9B70CA176C4F9AE02.roa File: 5AF669B4FFC811E9B70CA176C4F9AE02.roa (raw, json) Hash identifier: CRSEbG93yP/OLxFWNQlVZkdk1+UwwnU68vGA6YSFBzM= Subject key identifier: 62:EA:D8:25:84:21:CD:ED:4B:3A:49:45:49:13:BB:53:BF:29:08:A3 Certificate issuer: /CN=A91B4D1F/serialNumber=24F8CA0BE08E1C61EC8F7B7A8A9C5CC53DD14534 Certificate serial: 0CF5 Authority key identifier: 24:F8:CA:0B:E0:8E:1C:61:EC:8F:7B:7A:8A:9C:5C:C5:3D:D1:45:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPjKC-COHGHsj3t6ipxcxT3RRTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/5AF669B4FFC811E9B70CA176C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:22:36 +0000 ROA not before: Mon 12 May 2025 18:42:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136514 IP address blocks: 103.91.128.0/22 maxlen: 24 123.253.36.0/22 maxlen: 24 2401:6c0::/32 maxlen: 32 2401:6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/JPjKC-COHGHsj3t6ipxcxT3RRTQ.crl rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/JPjKC-COHGHsj3t6ipxcxT3RRTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPjKC-COHGHsj3t6ipxcxT3RRTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 18:04:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3317 (0xcf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4D1F, serialNumber=24F8CA0BE08E1C61EC8F7B7A8A9C5CC53DD14534 Validity Not Before: May 12 18:42:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4055c-f0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ad:e5:9b:cd:6c:d9:56:27:8e:87:22:a2:dc: 94:22:8e:eb:b4:c9:64:c3:38:24:f6:15:46:cb:f8: ae:56:90:b3:f1:0d:bc:59:43:6e:02:53:53:5d:10: ad:29:f1:8c:bc:f6:a8:9c:8a:98:81:ba:73:1e:1c: 88:46:81:5b:a0:d0:d1:7f:b9:ef:21:f8:3a:42:0e: ae:2f:25:b6:8b:87:60:f8:c0:54:c1:eb:b6:67:45: 88:a0:d0:4e:05:f7:8b:11:27:91:ab:75:62:4c:a9: 6d:e1:9a:9e:3f:5a:b6:8a:2d:1e:42:1c:f0:ab:c5: de:2c:a7:6f:9b:f2:56:ec:5d:de:5a:90:78:82:ee: e1:9d:16:7c:d9:d6:a4:67:bc:70:66:78:f0:30:19: fc:1b:a9:aa:8f:90:28:fd:1f:3e:2c:5e:45:14:87: e9:0e:19:78:49:03:b6:44:4c:56:94:90:b3:2f:72: cf:09:e1:1c:6e:21:f1:5b:cc:5f:0b:02:c2:a1:c9: 6c:94:f0:b6:e6:b6:02:0f:98:8a:78:c0:c7:f6:44: 59:3a:37:09:38:12:69:f8:8a:23:b5:a5:27:5c:f6: d6:c7:da:d2:b5:81:81:1e:45:21:0a:be:00:51:48: 6b:6c:23:b0:05:a5:29:5d:bd:6a:5d:73:c3:e5:76: cf:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:EA:D8:25:84:21:CD:ED:4B:3A:49:45:49:13:BB:53:BF:29:08:A3 X509v3 Authority Key Identifier: keyid:24:F8:CA:0B:E0:8E:1C:61:EC:8F:7B:7A:8A:9C:5C:C5:3D:D1:45:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/JPjKC-COHGHsj3t6ipxcxT3RRTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPjKC-COHGHsj3t6ipxcxT3RRTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/5AF669B4FFC811E9B70CA176C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.128.0/22 123.253.36.0/22 IPv6: 2401:6c0::/32 Signature Algorithm: sha256WithRSAEncryption 39:07:a3:cf:01:da:d0:e4:03:7d:ff:7a:f7:81:f2:0d:2d:17: b6:e8:cc:0a:b4:7a:b5:2a:da:6b:9e:99:aa:0e:f9:c4:db:4b: 78:a2:48:81:54:f4:b8:0e:cf:68:36:19:15:2a:f2:a5:ac:ea: ed:67:6f:61:bb:28:8c:99:37:a0:f0:5b:f2:cd:a0:18:44:60: ed:7b:9c:00:e7:de:dc:db:40:35:f0:29:31:0a:7b:8e:11:f0: e0:66:28:08:0b:6a:7f:a5:35:5c:fd:94:22:a2:70:0f:66:9c: 80:df:ad:7d:f9:0d:e9:96:fa:54:0a:6b:fa:87:2e:2b:c7:80: fe:be:35:7b:86:9c:f8:80:67:49:8a:61:27:18:99:c4:94:19: 3f:cb:6b:5c:0b:d0:a5:00:f7:6d:0d:00:46:13:b8:c0:e2:1b: 64:97:9c:03:7a:e4:48:c7:d1:0d:42:10:81:1e:bc:a2:0a:ea: 83:72:98:0d:ab:4b:45:92:a9:23:74:ce:e0:93:ae:ef:eb:46: 8f:13:ee:69:01:10:65:14:ad:98:4a:4d:10:26:45:ec:3f:9e: 19:60:a6:70:c0:16:e1:9d:69:a9:f8:40:08:3f:35:21:4c:c2: 0e:ef:62:75:5c:ae:9c:21:27:96:7e:6c:e7:34:2a:ee:ba:96: 88:a6:91:cc -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjREMUYxMTAvBgNVBAUTKDI0RjhDQTBCRTA4RTFDNjFFQzhGN0I3QThBOUM1Q0M1 M0REMTQ1MzQwHhcNMjUwNTEyMTg0MjQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDU1Yy1mMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApa3lm81s2VYnjociotyUIo7rtMlkwzgk9hVGy/iuVpCz8Q28WUNuAlNTXRCt KfGMvPaonIqYgbpzHhyIRoFboNDRf7nvIfg6Qg6uLyW2i4dg+MBUweu2Z0WIoNBO BfeLESeRq3ViTKlt4ZqeP1q2ii0eQhzwq8XeLKdvm/JW7F3eWpB4gu7hnRZ82dak Z7xwZnjwMBn8G6mqj5Ao/R8+LF5FFIfpDhl4SQO2RExWlJCzL3LPCeEcbiHxW8xf CwLCoclslPC25rYCD5iKeMDH9kRZOjcJOBJp+IojtaUnXPbWx9rStYGBHkUhCr4A UUhrbCOwBaUpXb1qXXPD5XbPDQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFGLq2CWE Ic3tSzpJRUkTu1O/KQijMB8GA1UdIwQYMBaAFCT4ygvgjhxh7I97eoqcXMU90UU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEQxRi9CMzM0MjkxNkZG QzUxMUU5QTk2Q0QwNzBDNEY5QUUwMi9KUGpLQy1DT0hHSHNqM3Q2aXB4Y3hUM1JS VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pQaktDLUNPSEdIc2ozdDZpcHhjeFQzUlJUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjREMUYvQjMzNDI5MTZGRkM1MTFFOUE5NkNEMDcwQzRGOUFFMDIvNUFGNjY5QjRG RkM4MTFFOUI3MENBMTc2QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ1uAAwQCe/0kMA0EAgACMAcDBQAkAQbAMA0GCSqGSIb3DQEBCwUA A4IBAQA5B6PPAdrQ5AN9/3r3gfINLRe26MwKtHq1KtprnpmqDvnE20t4okiBVPS4 Ds9oNhkVKvKlrOrtZ29huyiMmTeg8FvyzaAYRGDte5wA597c20A18CkxCnuOEfDg ZigIC2p/pTVc/ZQionAPZpyA3619+Q3plvpUCmv6hy4rx4D+vjV7hpz4gGdJimEn GJnElBk/y2tcC9ClAPdtDQBGE7jA4htkl5wDeuRIx9ENQhCBHryiCuqDcpgNq0tF kqkjdM7gk67v60aPE+5pARBlFK2YSk0QJkXsP54ZYKZwwBbhnWmp+EAIPzUhTMIO 72J1XK6cISeWfmznNCruupaIppHM -----END CERTIFICATE-----Generated at Sat Mar 28 13:39:52 2026 by rpki-client