$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/21A9C2D4221211EF9624DB0CC4F9AE02.roa File: 21A9C2D4221211EF9624DB0CC4F9AE02.roa (raw, json) Hash identifier: lszQ8yUB/N2uYLH7nBTD6MNw6FLEt393aCgDSU4ngis= Subject key identifier: 76:29:A1:27:A2:D4:45:37:2A:26:E1:D8:08:F3:02:1E:D9:F2:09:0D Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0D69 Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/21A9C2D4221211EF9624DB0CC4F9AE02.roa Signing time: Wed 06 May 2026 18:22:29 +0000 ROA not before: Wed 06 May 2026 18:22:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133895 IP address blocks: 103.6.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3433 (0xd69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: May 6 18:22:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69fb86e5-881b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:ac:a3:c7:50:31:a6:e3:9a:ba:f1:f1:54:9a: 68:78:a2:22:a2:68:45:74:42:c7:9c:54:55:0c:c8: 61:4f:dc:f6:02:60:99:f5:21:f8:17:6d:07:e0:d0: 4c:9d:8a:42:8b:ab:52:63:fb:6c:3a:e3:a7:34:55: 58:7f:95:a4:f8:1a:87:8c:c5:c2:5b:a3:77:e1:bf: 79:ba:81:45:90:39:bd:80:0c:73:05:32:dc:e5:d5: 8e:40:97:21:d3:86:3e:eb:7b:d5:83:d9:7a:22:f4: 56:64:ec:fb:23:9e:c6:32:e7:77:5b:7a:1b:61:6e: a3:87:5d:00:0e:c4:70:c0:95:63:32:4a:d4:c1:35: 07:70:f7:38:e9:ca:ef:0d:a3:c6:f7:e8:01:01:28: 20:e4:9a:c6:8a:58:c8:93:dc:78:67:a1:d0:bd:70: b2:7f:8a:ff:a7:d2:21:1b:6f:1c:ff:a1:55:55:7c: f9:dc:74:3f:c6:6d:b2:3c:40:aa:be:b7:4d:69:30: de:52:83:4e:ca:46:88:ac:d3:32:f7:44:bb:58:d6: 8c:59:52:1e:05:42:24:f2:03:cf:e3:d8:60:0c:7d: 5e:70:bb:e8:1e:26:ab:e4:e8:2c:bc:eb:b9:2c:23: c9:4b:ed:7e:97:0b:7c:50:f4:f6:95:20:23:f6:af: 8e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:29:A1:27:A2:D4:45:37:2A:26:E1:D8:08:F3:02:1E:D9:F2:09:0D X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/21A9C2D4221211EF9624DB0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.6.209.0/24 Signature Algorithm: sha256WithRSAEncryption 25:c5:a5:9a:75:cb:14:e0:b3:18:6e:52:81:88:99:a9:40:dd: 3c:5c:d2:92:78:1b:8c:72:03:88:fd:eb:1c:0e:b8:10:d9:d6: 87:c0:31:f9:e7:8b:54:55:4c:e2:fb:0a:d3:91:80:05:2f:20: 6c:4c:40:39:79:d0:fb:24:6c:12:d0:70:b5:e2:62:18:e7:fc: d8:99:06:50:1e:2a:22:83:35:24:26:b8:84:8d:c1:4c:24:69: 37:1b:3e:bd:d4:54:f4:a4:82:a8:22:6c:51:f5:ce:50:3e:d6: e9:fd:86:01:c3:98:bc:95:0a:3b:e3:5a:f3:f6:e4:b1:b0:b5: 68:4d:f3:8c:bd:46:f1:eb:c0:f2:61:25:d0:58:fb:eb:2d:5b: 26:ef:c7:71:c2:22:2f:08:8e:1f:5a:dd:43:26:bf:02:39:8e: a4:8a:8a:a4:6d:ee:8a:60:dc:63:3a:2e:c5:66:cf:62:82:59: 87:be:f9:a0:40:e1:c6:f0:c0:37:6f:f0:91:4e:6d:0c:19:ec: b3:c8:19:99:e0:cd:3a:ec:c6:81:7b:e8:b3:10:03:e1:9c:ae: 83:b4:69:c1:90:e4:0d:46:76:e3:7a:3c:de:eb:da:d9:6c:6f: 08:ef:5f:de:5c:9b:ee:5a:4a:d8:cd:2f:43:8d:d9:e0:e0:32: 03:26:a7:70 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjYwNTA2MTgyMjI5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZiODZlNS04ODFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhayjx1AxpuOauvHxVJpoeKIiomhFdELHnFRVDMhhT9z2AmCZ9SH4F20H4NBM nYpCi6tSY/tsOuOnNFVYf5Wk+BqHjMXCW6N34b95uoFFkDm9gAxzBTLc5dWOQJch 04Y+63vVg9l6IvRWZOz7I57GMud3W3obYW6jh10ADsRwwJVjMkrUwTUHcPc46crv DaPG9+gBASgg5JrGiljIk9x4Z6HQvXCyf4r/p9IhG28c/6FVVXz53HQ/xm2yPECq vrdNaTDeUoNOykaIrNMy90S7WNaMWVIeBUIk8gPP49hgDH1ecLvoHiar5OgsvOu5 LCPJS+1+lwt8UPT2lSAj9q+OFwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHYpoSei 1EU3Kibh2AjzAh7Z8gkNMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJBODAvQjk4RTgxRDYwNUI5MTFFQTgyMDg5OTZFQzRGOUFFMDIvMjFBOUMyRDQy MjEyMTFFRjk2MjREQjBDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZwbRMA0GCSqGSIb3DQEBCwUAA4IBAQAlxaWadcsU4LMYblKBiJmp QN08XNKSeBuMcgOI/escDrgQ2daHwDH554tUVUzi+wrTkYAFLyBsTEA5edD7JGwS 0HC14mIY5/zYmQZQHioigzUkJriEjcFMJGk3Gz691FT0pIKoImxR9c5QPtbp/YYB w5i8lQo741rz9uSxsLVoTfOMvUbx68DyYSXQWPvrLVsm78dxwiIvCI4fWt1DJr8C OY6kioqkbe6KYNxjOi7FZs9iglmHvvmgQOHG8MA3b/CRTm0MGeyzyBmZ4M067MaB e+izEAPhnK6DtGnBkOQNRnbjejze69rZbG8I71/eXJvuWkrYzS9Djdng4DIDJqdw -----END CERTIFICATE-----Generated at Wed May 13 13:15:41 2026 by rpki-client