$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/B5A7B020DBDB11EB8EC1494EC4F9AE02.roa File: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (raw, json) Hash identifier: c5w5QLZZ9to+icb8pOHSdLzZ2mnRXQw2msiixSkPrZk= Subject key identifier: 67:98:51:DB:A8:7A:0D:93:CC:3F:FF:54:2F:71:7F:AA:07:12:1E:67 Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 0634 Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/B5A7B020DBDB11EB8EC1494EC4F9AE02.roa Signing time: Mon 04 May 2026 23:28:36 +0000 ROA not before: Mon 04 May 2026 23:28:36 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 58602 IP address blocks: 103.8.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1588 (0x634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: May 4 23:28:36 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69f92ba4-3e84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8c:98:d3:a6:7e:d6:df:41:b7:1c:df:ba:71: 98:b4:1d:39:15:d1:e7:36:92:f2:c8:d9:c8:25:55: c7:39:63:a7:00:27:6b:fb:43:f5:02:00:cd:51:4e: 84:5d:e3:05:10:77:05:60:9a:6d:36:69:11:46:34: 7d:21:2e:d3:77:6d:f9:8e:3f:33:f2:e6:80:a0:45: ea:94:de:04:e6:1a:7d:d4:c6:31:91:e2:37:b1:32: e2:4e:26:02:48:2d:20:47:f6:c8:6a:48:44:c4:53: 72:2f:1d:29:c8:35:07:af:f7:c7:b2:d8:35:5c:26: 30:20:b4:5f:8c:c5:15:69:1a:14:30:ff:2e:1c:f7: 20:8d:ed:97:dc:e2:59:38:0d:fe:7a:98:6a:8c:a1: bb:77:9c:ef:ea:9f:8f:d4:f8:db:53:01:36:6a:da: 39:ab:e7:0f:d9:0a:c4:f4:20:77:1c:d2:ae:7e:b5: bf:cd:5a:68:1b:ef:4e:6a:c2:82:77:df:ae:46:12: b5:81:69:4b:45:a0:e6:81:72:55:19:f2:7a:8d:fc: d4:99:7b:10:f1:5a:b8:99:8d:0b:b8:ca:ed:9d:8f: 6f:a2:c8:12:e2:d8:28:98:c2:bb:e5:fb:66:f7:87: db:f7:74:e1:f5:8d:35:d7:cd:b0:1e:14:a6:78:06: 2c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:98:51:DB:A8:7A:0D:93:CC:3F:FF:54:2F:71:7F:AA:07:12:1E:67 X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/B5A7B020DBDB11EB8EC1494EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.8.214.0/24 Signature Algorithm: sha256WithRSAEncryption 01:89:64:aa:5e:a5:65:0f:d1:03:d8:b4:c4:e0:5d:d3:a2:74: e2:09:63:cf:8c:36:38:2b:c0:33:e4:6b:13:76:4a:cb:00:cd: 78:8c:63:eb:a9:92:69:f3:9c:7d:30:97:80:6b:e3:35:b9:c4: 31:28:f5:d9:0f:86:13:41:c8:bf:3a:d1:33:b9:8d:65:a0:0d: 8e:c0:b7:9d:de:4e:26:b1:c7:93:ad:6f:2d:b2:85:72:64:ce: 14:41:fc:98:96:08:0b:40:4a:91:88:0c:4d:ea:67:e0:03:38: ee:6b:f4:1e:3c:25:bf:ee:aa:ad:8d:bf:08:f8:76:e2:47:dc: 95:aa:48:3c:9b:11:f8:55:88:e5:b7:3a:cb:8c:63:9e:d7:ec: 33:8f:1b:27:ed:c0:d4:da:af:54:8f:25:67:b1:ba:e3:85:cb: 38:9d:d3:79:63:77:e4:a7:53:fd:38:19:cc:24:e4:66:00:0a: 40:bc:34:7a:21:43:34:ec:e6:b9:56:4a:84:5d:03:ec:41:cd: 97:a8:79:34:ac:69:64:70:cc:d2:67:a9:5a:d1:c5:9b:24:1c: be:40:8d:18:6c:41:40:0b:13:da:e0:fc:b7:ac:7e:84:59:3a: 16:df:17:be:61:61:75:3f:75:f8:ec:90:5e:15:be:69:39:41: ba:d8:11:4c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjYwNTA0MjMyODM2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY5MmJhNC0zZTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoyY06Z+1t9BtxzfunGYtB05FdHnNpLyyNnIJVXHOWOnACdr+0P1AgDNUU6E XeMFEHcFYJptNmkRRjR9IS7Td235jj8z8uaAoEXqlN4E5hp91MYxkeI3sTLiTiYC SC0gR/bIakhExFNyLx0pyDUHr/fHstg1XCYwILRfjMUVaRoUMP8uHPcgje2X3OJZ OA3+ephqjKG7d5zv6p+P1PjbUwE2ato5q+cP2QrE9CB3HNKufrW/zVpoG+9OasKC d9+uRhK1gWlLRaDmgXJVGfJ6jfzUmXsQ8Vq4mY0LuMrtnY9vosgS4tgomMK75ftm 94fb93Th9Y01182wHhSmeAYsWQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGeYUduo eg2TzD//VC9xf6oHEh5nMB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDREQzEvOTk2Rjk4RUFEQkQ3MTFFQkI5NTExNzQ1QzRGOUFFMDIvQjVBN0IwMjBE QkRCMTFFQjhFQzE0OTRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZwjWMA0GCSqGSIb3DQEBCwUAA4IBAQABiWSqXqVlD9ED2LTE4F3T onTiCWPPjDY4K8Az5GsTdkrLAM14jGPrqZJp85x9MJeAa+M1ucQxKPXZD4YTQci/ OtEzuY1loA2OwLed3k4msceTrW8tsoVyZM4UQfyYlggLQEqRiAxN6mfgAzjua/Qe PCW/7qqtjb8I+HbiR9yVqkg8mxH4VYjltzrLjGOe1+wzjxsn7cDU2q9UjyVnsbrj hcs4ndN5Y3fkp1P9OBnMJORmAApAvDR6IUM07Oa5VkqEXQPsQc2XqHk0rGlkcMzS Z6la0cWbJBy+QI0YbEFACxPa4Py3rH6EWToW3xe+YWF1P3X47JBeFb5pOUG62BFM -----END CERTIFICATE-----Generated at Wed May 13 08:59:15 2026 by rpki-client