$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/862D5B3A2C8611EEB04B7B66C4F9AE02.roa File: 862D5B3A2C8611EEB04B7B66C4F9AE02.roa (raw, json) Hash identifier: pWAjmQn5SbEE6PdoMznAj34dV0v6ZXCFUuJiYeyqVgg= Subject key identifier: F5:1F:A1:55:74:CC:D2:5F:6F:A4:76:40:57:9A:A2:26:79:ED:C5:01 Certificate issuer: /CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Certificate serial: 01FA Authority key identifier: B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/862D5B3A2C8611EEB04B7B66C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:17:09 +0000 ROA not before: Tue 03 Jun 2025 04:02:34 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150371 IP address blocks: 103.204.32.0/24 maxlen: 24 103.204.33.0/24 maxlen: 24 2001:df2:7840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3D2, serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Validity Not Before: Jun 3 04:02:34 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a41224-5f52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e4:09:68:a2:04:f4:36:7a:a6:b5:ec:20:74: c7:51:d2:e2:38:69:5f:3d:18:bd:15:0b:3a:f7:fc: 3e:78:30:03:41:2a:d1:ec:ac:b6:cc:ee:5a:f1:32: aa:84:13:c6:21:fd:64:34:da:69:80:6b:e1:8b:56: c8:6c:7a:ee:b1:c7:41:4d:c9:e1:fa:16:d1:39:7d: 16:4d:9e:78:93:19:fd:3e:4c:49:0d:aa:6d:50:2b: 48:6d:53:72:c4:f4:b1:ae:46:54:c7:8b:0e:a1:e9: 1d:f6:c9:27:22:b1:5e:9d:85:61:dc:a3:b6:a1:16: bc:37:d8:4a:ac:a8:3c:bd:6f:6d:91:cd:03:3f:66: 19:ee:1b:a4:c6:d3:cb:2e:d1:f9:f9:e3:f1:70:b3: 29:75:1e:17:01:68:20:cf:42:28:44:1e:7e:f5:a7: 68:7a:44:76:5a:89:73:e1:0d:95:62:e9:dc:da:89: 24:14:72:05:23:0b:7e:26:b8:42:66:3e:ab:9e:9f: 68:77:db:0d:50:1e:ea:b8:d1:48:bc:75:8f:9b:3a: 85:1c:a6:a2:bc:8c:41:97:ba:9d:e7:1f:81:05:be: ba:c7:ea:06:97:92:26:d5:d7:05:fd:24:9f:85:1c: 1c:74:fd:ee:52:3b:32:77:c2:41:0a:d8:aa:64:bc: d7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:1F:A1:55:74:CC:D2:5F:6F:A4:76:40:57:9A:A2:26:79:ED:C5:01 X509v3 Authority Key Identifier: keyid:B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/862D5B3A2C8611EEB04B7B66C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.204.32.0/23 IPv6: 2001:df2:7840::/48 Signature Algorithm: sha256WithRSAEncryption 16:b9:0b:73:a8:b6:e1:94:29:b5:15:13:7f:38:ed:58:cf:fc: 62:20:2f:b5:09:82:f9:fd:fb:bd:ce:e0:82:85:69:f6:db:0b: b0:fa:ae:8e:0d:70:05:89:ec:d9:76:4a:a7:c6:00:6d:47:0f: 34:da:38:7c:ce:e1:33:19:03:a9:0c:e6:40:df:2f:55:e2:7c: 34:f7:00:b5:88:d3:c2:d7:0d:46:55:7f:52:b8:f8:62:2c:a3: a6:39:8f:37:2d:3e:3e:54:5b:cd:7a:7f:4d:31:f5:e2:c3:7d: 93:ed:3d:7a:6f:53:d3:c1:8b:a2:b6:7f:98:cb:ee:cf:b8:79: 30:df:ca:f4:75:5f:8e:f1:cc:9f:cb:ff:4b:43:9d:4e:63:b2: f7:b4:75:7e:a3:ff:86:ea:e5:68:10:bb:0f:57:c1:71:45:a2: ce:e1:70:44:9a:85:83:b5:49:c3:a6:4f:09:15:f7:3b:e1:90: c7:4e:28:43:46:14:17:fa:62:c7:db:d9:21:a8:eb:34:ff:d4: b6:69:33:1f:a3:a5:f1:72:de:2c:fa:03:5a:bd:6f:a9:91:0c: 5c:3b:d8:76:50:0f:1b:f2:89:e1:69:6b:0b:7f:a4:71:fa:fa: 10:d0:ea:8f:cb:4c:48:9a:d0:ce:a7:37:b4:fc:cd:70:6c:67: 8c:8d:11:bc -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRDIxMTAvBgNVBAUTKEI2NzI3RURGRDM3RDFFMkMxNzVDMTA4MTFBMUQzOEFB MkFDNkM4OUMwHhcNMjUwNjAzMDQwMjM0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTIyNC01ZjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+QJaKIE9DZ6prXsIHTHUdLiOGlfPRi9FQs69/w+eDADQSrR7Ky2zO5a8TKq hBPGIf1kNNppgGvhi1bIbHruscdBTcnh+hbROX0WTZ54kxn9PkxJDaptUCtIbVNy xPSxrkZUx4sOoekd9sknIrFenYVh3KO2oRa8N9hKrKg8vW9tkc0DP2YZ7hukxtPL LtH5+ePxcLMpdR4XAWggz0IoRB5+9adoekR2Wolz4Q2VYunc2okkFHIFIwt+JrhC Zj6rnp9od9sNUB7quNFIvHWPmzqFHKaivIxBl7qd5x+BBb66x+oGl5Im1dcF/SSf hRwcdP3uUjsyd8JBCtiqZLzX8QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFPUfoVV0 zNJfb6R2QFeaoiZ57cUBMB8GA1UdIwQYMBaAFLZyft/TfR4sF1wQgRodOKoqxsic MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNEMi80MkMxRDhGODJD ODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhpd1hYQkNCR2gwNHFpckd5 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RuSi0zOU45SGl3WFhCQ0JHaDA0cWlyR3lKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQzRDIvNDJDMUQ4RjgyQzg2MTFFRUE5Qjc0RjQzQzRGOUFFMDIvODYyRDVCM0Ey Qzg2MTFFRUIwNEI3QjY2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ8wgMA8EAgACMAkDBwAgAQ3yeEAwDQYJKoZIhvcNAQELBQADggEB ABa5C3OotuGUKbUVE3847VjP/GIgL7UJgvn9+73O4IKFafbbC7D6ro4NcAWJ7Nl2 SqfGAG1HDzTaOHzO4TMZA6kM5kDfL1XifDT3ALWI08LXDUZVf1K4+GIso6Y5jzct Pj5UW816f00x9eLDfZPtPXpvU9PBi6K2f5jL7s+4eTDfyvR1X47xzJ/L/0tDnU5j sve0dX6j/4bq5WgQuw9XwXFFos7hcESahYO1ScOmTwkV9zvhkMdOKENGFBf6Ysfb 2SGo6zT/1LZpMx+jpfFy3iz6A1q9b6mRDFw72HZQDxvyieFpawt/pHH6+hDQ6o/L TEia0M6nN7T8zXBsZ4yNEbw= -----END CERTIFICATE-----Generated at Thu Mar 26 11:25:25 2026 by rpki-client