$ rpki-client -vvf rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/63B4DD1ADA2311EB8A4EC13BC4F9AE02.roa File: 63B4DD1ADA2311EB8A4EC13BC4F9AE02.roa (raw, json) Hash identifier: PnvDWjWzjaNuJRVmvtkfv01lOJ4mbsRef16ZNQueyWM= Subject key identifier: D5:2A:0C:C0:34:E1:5C:48:EA:99:7D:E5:E0:C5:3E:D0:87:24:A7:67 Certificate issuer: /CN=A91D46B0/serialNumber=9761FF5F3F8416BE01E23FC705847DFA94484DB6 Certificate serial: 083C Authority key identifier: 97:61:FF:5F:3F:84:16:BE:01:E2:3F:C7:05:84:7D:FA:94:48:4D:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2H_Xz-EFr4B4j_HBYR9-pRITbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/63B4DD1ADA2311EB8A4EC13BC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:24:02 +0000 ROA not before: Sun 30 Nov 2025 20:21:20 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133770 IP address blocks: 103.156.238.0/23 maxlen: 23 103.156.238.0/24 maxlen: 24 103.156.239.0/24 maxlen: 24 2001:df5:180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.crl rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2H_Xz-EFr4B4j_HBYR9-pRITbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2108 (0x83c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D46B0, serialNumber=9761FF5F3F8416BE01E23FC705847DFA94484DB6 Validity Not Before: Nov 30 20:21:20 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a42fe2-1241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:12:96:aa:5a:0f:b2:64:07:61:e5:a5:2b:ff: ee:b1:82:7b:de:73:ae:55:1e:8c:a8:b8:3a:ff:e8: 00:c1:60:ae:f0:f8:dc:51:8b:68:46:25:be:43:fc: cc:a9:0b:41:22:63:c7:fe:dd:44:ca:fd:1e:33:e4: 2e:70:e4:50:b4:b8:d1:94:7d:68:69:35:d7:de:9b: 82:83:9d:c7:a4:d5:61:7e:63:82:de:2f:eb:d0:5d: 5a:6c:9c:4a:bd:3a:1a:cf:d4:f0:a6:84:23:ba:f8: 3e:c5:d2:95:3d:68:d4:b6:55:88:08:9f:68:ce:00: 05:5c:43:33:d1:d4:ad:09:6a:c4:e5:8e:39:a4:c6: fd:64:4b:00:b8:e1:24:74:78:a1:7b:56:67:38:a1: 76:ca:26:90:ac:d5:48:39:c3:b5:fd:15:95:06:2d: 61:88:7d:20:bd:cf:7d:98:dd:a5:b1:e3:92:48:23: 05:e5:26:8c:2e:76:fa:49:7a:8e:93:0b:0d:95:aa: 3d:b8:e2:e5:39:48:c7:a4:59:d3:a8:b9:c7:96:2b: fd:97:4c:3e:1c:4a:82:ff:d4:72:b9:fb:2e:cd:5a: 8b:4e:60:23:e2:20:2c:75:23:66:a6:c6:62:d2:78: 7b:79:cd:8c:24:5e:a6:cd:3b:39:60:e4:3f:1b:ee: ad:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:2A:0C:C0:34:E1:5C:48:EA:99:7D:E5:E0:C5:3E:D0:87:24:A7:67 X509v3 Authority Key Identifier: keyid:97:61:FF:5F:3F:84:16:BE:01:E2:3F:C7:05:84:7D:FA:94:48:4D:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/l2H_Xz-EFr4B4j_HBYR9-pRITbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2H_Xz-EFr4B4j_HBYR9-pRITbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D46B0/E50902B6079B11EB8A1F2732C4F9AE02/63B4DD1ADA2311EB8A4EC13BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.156.238.0/23 IPv6: 2001:df5:180::/48 Signature Algorithm: sha256WithRSAEncryption 7d:32:b7:d4:db:a6:75:76:47:26:10:4c:d6:f7:b8:76:4d:e4: 19:d3:98:8e:b5:cb:a2:be:53:1e:a2:68:30:0d:42:a6:f0:fc: a9:e8:1b:0d:78:33:bf:f6:4b:da:36:81:c1:94:6e:d1:e8:cf: f1:ba:d0:df:31:05:8f:12:48:51:8d:28:7a:75:46:1c:1a:d5: d6:72:1e:8b:aa:bd:b0:58:71:1e:b5:a7:33:63:a1:3d:3c:a7: c0:92:40:78:25:bf:b2:70:8a:b4:80:db:57:9c:21:a6:02:26: 78:4f:c2:02:f9:3e:e8:50:ae:67:9d:ff:01:c3:5a:92:02:cc: 63:d6:57:e0:93:47:d2:f6:cc:a8:59:32:b3:65:3c:fc:48:89: 44:0b:53:9b:03:b7:2b:86:f4:2c:e2:42:e2:61:7e:cb:3c:72: 21:39:d6:41:5b:62:49:44:2d:04:6d:27:f3:04:60:31:10:4a: ca:a3:36:d7:88:a7:24:dd:3e:d0:e0:fd:f4:c2:3c:b2:6f:02: a2:2f:5f:32:cc:92:05:c3:31:7f:29:88:b1:a6:a9:da:3e:a5: a8:3f:94:20:54:b9:f7:9d:a8:af:59:72:4c:c2:8f:ec:01:7b: 19:f1:e7:a6:d7:eb:ee:77:69:d0:45:22:bb:b0:e1:a7:e8:69: 76:4d:06:80 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2QjAxMTAvBgNVBAUTKDk3NjFGRjVGM0Y4NDE2QkUwMUUyM0ZDNzA1ODQ3REZB OTQ0ODREQjYwHhcNMjUxMTMwMjAyMTIwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmZlMi0xMjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgxKWqloPsmQHYeWlK//usYJ73nOuVR6MqLg6/+gAwWCu8PjcUYtoRiW+Q/zM qQtBImPH/t1Eyv0eM+QucORQtLjRlH1oaTXX3puCg53HpNVhfmOC3i/r0F1abJxK vToaz9TwpoQjuvg+xdKVPWjUtlWICJ9ozgAFXEMz0dStCWrE5Y45pMb9ZEsAuOEk dHihe1ZnOKF2yiaQrNVIOcO1/RWVBi1hiH0gvc99mN2lseOSSCMF5SaMLnb6SXqO kwsNlao9uOLlOUjHpFnTqLnHliv9l0w+HEqC/9RyufsuzVqLTmAj4iAsdSNmpsZi 0nh7ec2MJF6mzTs5YOQ/G+6tFQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNUqDMA0 4VxI6pl95eDFPtCHJKdnMB8GA1UdIwQYMBaAFJdh/18/hBa+AeI/xwWEffqUSE22 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDZCMC9FNTA5MDJCNjA3 OUIxMUVCOEExRjI3MzJDNEY5QUUwMi9sMkhfWHotRUZyNEI0al9IQllSOS1wUklU YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wySF9Yei1FRnI0QjRqX0hCWVI5LXBSSVRiWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ2QjAvRTUwOTAyQjYwNzlCMTFFQjhBMUYyNzMyQzRGOUFFMDIvNjNCNEREMUFE QTIzMTFFQjhBNEVDMTNCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5zuMA8EAgACMAkDBwAgAQ31AYAwDQYJKoZIhvcNAQELBQADggEB AH0yt9TbpnV2RyYQTNb3uHZN5BnTmI61y6K+Ux6iaDANQqbw/KnoGw14M7/2S9o2 gcGUbtHoz/G60N8xBY8SSFGNKHp1Rhwa1dZyHouqvbBYcR61pzNjoT08p8CSQHgl v7JwirSA21ecIaYCJnhPwgL5PuhQrmed/wHDWpICzGPWV+CTR9L2zKhZMrNlPPxI iUQLU5sDtyuG9CziQuJhfss8ciE51kFbYklELQRtJ/MEYDEQSsqjNteIpyTdPtDg /fTCPLJvAqIvXzLMkgXDMX8piLGmqdo+pag/lCBUufedqK9ZckzCj+wBexnx56bX 6+53adBFIruw4afoaXZNBoA= -----END CERTIFICATE-----Generated at Thu Mar 26 04:05:27 2026 by rpki-client