$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/D2A57AD8DDF111EF969ABC1CC4F9AE02.roa File: D2A57AD8DDF111EF969ABC1CC4F9AE02.roa (raw, json) Hash identifier: eoTb51P+t/j4kZh52b3zmJyrvFvaeaq6DjMaAos1Ol0= Subject key identifier: 7F:25:39:63:DF:EA:75:B6:66:AA:85:EF:40:E8:DB:4C:F0:45:81:A6 Certificate issuer: /CN=A91C9A8D/serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Certificate serial: D2 Authority key identifier: 82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/D2A57AD8DDF111EF969ABC1CC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:27:44 +0000 ROA not before: Thu 03 Jul 2025 01:04:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135594 IP address blocks: 103.67.165.0/24 maxlen: 24 103.152.4.0/24 maxlen: 24 2001:df3:4a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=82D818861DD4A70F7708D205E4B89E8514CA1F6C Validity Not Before: Jul 3 01:04:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58240-091d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d7:d6:8c:d8:ab:34:b4:8c:34:b2:e7:f7:60: 1c:86:c4:1a:4c:1a:54:14:7a:69:32:4b:6d:f7:45: 54:d8:d7:42:f7:68:4d:30:a6:dd:a8:f5:78:1a:be: 8e:ad:3e:90:42:00:07:21:b7:ed:3b:b5:a6:ba:2a: d2:c5:94:37:3a:98:ed:f1:8a:d7:78:6a:d1:b8:45: 9d:14:96:dc:12:41:62:99:eb:4c:e0:f8:bd:9d:0c: 12:1f:62:00:59:5e:dc:eb:03:8c:19:60:3d:47:aa: da:0e:f6:70:10:bf:fc:d0:f3:86:57:c0:31:49:1d: 25:0e:3f:88:0c:d4:af:95:7d:99:0f:e4:0c:1c:e3: 13:7e:5b:7d:15:83:28:63:d6:1b:14:c1:4f:43:7a: d7:b1:d8:5d:8c:48:0d:c2:c3:c4:1f:9a:07:ec:af: 23:c7:0b:42:10:57:b4:23:83:cb:e0:b9:cb:45:10: a2:89:57:0f:a2:7b:d8:89:e9:92:3a:c9:10:b1:4c: 2c:44:74:59:d2:62:34:37:78:a5:f0:81:a7:ee:96: 9c:c8:9e:c0:fa:79:67:64:7c:36:ad:34:ad:30:5d: e1:30:0b:ab:1d:0c:dc:90:c7:98:c7:4c:f3:e1:c6: 45:13:a5:95:46:29:d4:65:1c:dc:1d:37:7c:3d:9c: d9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:25:39:63:DF:EA:75:B6:66:AA:85:EF:40:E8:DB:4C:F0:45:81:A6 X509v3 Authority Key Identifier: keyid:82:D8:18:86:1D:D4:A7:0F:77:08:D2:05:E4:B8:9E:85:14:CA:1F:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/gtgYhh3Upw93CNIF5LiehRTKH2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gtgYhh3Upw93CNIF5LiehRTKH2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/D2A57AD8DDF111EF969ABC1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.67.165.0/24 103.152.4.0/24 IPv6: 2001:df3:4a00::/48 Signature Algorithm: sha256WithRSAEncryption 6a:81:26:50:f5:51:fc:33:90:2c:4f:bb:0b:4f:6c:bc:79:ad: 7d:45:fc:47:de:fc:d2:a7:0d:24:5b:c2:a3:07:9e:a1:99:3c: c9:44:b0:da:e4:90:8f:5e:ea:74:c5:be:83:b4:5f:9c:c2:d8: 6c:5c:8b:71:97:af:af:fe:0c:8a:f6:fe:42:02:d5:bf:95:03: b3:29:9c:2b:53:20:2d:e1:94:aa:60:d3:14:98:f8:bd:a0:da: b6:b5:a9:01:d5:ee:2f:92:17:43:23:8f:19:8e:ba:6e:00:bd: 63:eb:a3:6e:5e:c0:d7:d9:90:6d:7f:9f:0b:4b:96:57:39:24: 61:62:e9:24:ea:b5:26:a7:5f:0f:9d:88:91:63:da:13:e3:7b: 1e:c9:0a:6a:c1:33:32:47:61:90:a1:4b:bb:0b:73:dd:52:ae: e8:8e:65:26:10:54:9b:5b:86:f1:b9:72:10:7c:40:61:fe:8e: 72:19:e2:47:9e:22:68:9a:94:b7:9e:57:f4:f2:c4:32:fb:81: 1f:8a:0c:52:94:c2:55:1a:f8:ea:14:6a:1f:98:15:39:bf:31: 32:ac:05:e1:57:92:fc:8d:69:88:ac:98:e7:fd:e8:29:f1:6a: 80:67:30:c8:af:04:15:66:b0:a5:a8:57:a4:3c:1e:4b:65:fc: b1:f3:c5:bf -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKDgyRDgxODg2MURENEE3MEY3NzA4RDIwNUU0Qjg5RTg1 MTRDQTFGNkMwHhcNMjUwNzAzMDEwNDMzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODI0MC0wOTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutfWjNirNLSMNLLn92AchsQaTBpUFHppMktt90VU2NdC92hNMKbdqPV4Gr6O rT6QQgAHIbftO7WmuirSxZQ3Opjt8YrXeGrRuEWdFJbcEkFimetM4Pi9nQwSH2IA WV7c6wOMGWA9R6raDvZwEL/80POGV8AxSR0lDj+IDNSvlX2ZD+QMHOMTflt9FYMo Y9YbFMFPQ3rXsdhdjEgNwsPEH5oH7K8jxwtCEFe0I4PL4LnLRRCiiVcPonvYiemS OskQsUwsRHRZ0mI0N3il8IGn7pacyJ7A+nlnZHw2rTStMF3hMAurHQzckMeYx0zz 4cZFE6WVRinUZRzcHTd8PZzZYQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFH8lOWPf 6nW2ZqqF70Do20zwRYGmMB8GA1UdIwQYMBaAFILYGIYd1KcPdwjSBeS4noUUyh9s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi9ndGdZaGgzVXB3OTNDTklGNUxpZWhSVEtI MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d0Z1loaDNVcHc5M0NOSUY1TGllaFJUS0gydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlBOEQvMzJGMUY0QzI4M0U5MTFFQ0I4NzNDODcxQzRGOUFFMDIvRDJBNTdBRDhE REYxMTFFRjk2OUFCQzFDQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAZ0OlAwQAZ5gEMA8EAgACMAkDBwAgAQ3zSgAwDQYJKoZIhvcNAQEL BQADggEBAGqBJlD1UfwzkCxPuwtPbLx5rX1F/Efe/NKnDSRbwqMHnqGZPMlEsNrk kI9e6nTFvoO0X5zC2Gxci3GXr6/+DIr2/kIC1b+VA7MpnCtTIC3hlKpg0xSY+L2g 2ra1qQHV7i+SF0MjjxmOum4AvWPro25ewNfZkG1/nwtLllc5JGFi6STqtSanXw+d iJFj2hPjex7JCmrBMzJHYZChS7sLc91SruiOZSYQVJtbhvG5chB8QGH+jnIZ4kee ImialLeeV/TyxDL7gR+KDFKUwlUa+OoUah+YFTm/MTKsBeFXkvyNaYismOf96Cnx aoBnMMivBBVmsKWoV6Q8Hktl/LHzxb8= -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:08 2026 by rpki-client