$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/B5A7B020DBDB11EB8EC1494EC4F9AE02.roa File: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (raw, json) Hash identifier: fYlbPfEs4vpEZMOqbZxRLfV0ETlA1noV8iqWKcS9gO4= Subject key identifier: 1D:5D:56:D2:3A:32:73:92:43:1C:CA:10:07:BB:E5:6F:D5:06:40:78 Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 060F Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/B5A7B020DBDB11EB8EC1494EC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:49:40 +0000 ROA not before: Thu 22 May 2025 23:14:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58602 IP address blocks: 103.8.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:40:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1551 (0x60f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: May 22 23:14:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fda4-6c5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0d:eb:e9:52:3b:1c:0b:23:06:79:a5:50:07: 2b:c9:38:4b:5f:d0:bf:47:1c:6e:18:e1:f7:ed:3e: 02:61:86:eb:f4:d8:fe:fa:c9:05:f3:5f:f8:37:b9: 2c:ed:a7:d3:0c:77:9b:a7:66:17:e1:2d:e9:ad:09: 1d:b4:25:30:e7:0d:8f:a2:97:fd:c9:f7:00:4c:55: 52:6c:f3:64:b9:15:c2:06:e8:3b:ff:73:9b:49:21: 7a:b8:43:b5:66:65:a6:0f:77:5a:94:70:26:40:35: f5:88:40:3e:61:43:a3:4c:22:69:e4:d6:5a:d5:92: d0:45:3e:98:4e:fb:9f:13:6c:05:8d:53:55:48:f7: 92:5b:da:3e:14:2b:49:56:86:28:cf:be:dc:74:f3: 99:e5:21:2a:14:6b:a3:96:4b:bc:b8:30:fe:d5:1d: c2:a6:93:89:e2:05:89:c1:e0:c4:fe:dd:08:68:ae: 29:65:6c:89:7c:35:3b:89:ab:b1:3d:99:a4:88:fd: dc:06:20:72:43:02:be:22:41:78:69:ad:bd:72:e6: 72:9c:e9:4d:32:ae:4b:66:8a:4b:ac:7d:f3:45:f7: 70:5a:79:e0:05:1c:e5:e6:f2:40:36:48:4c:8e:46: 27:d4:90:6d:42:df:05:80:46:67:38:8d:4e:06:67: 75:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:5D:56:D2:3A:32:73:92:43:1C:CA:10:07:BB:E5:6F:D5:06:40:78 X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/B5A7B020DBDB11EB8EC1494EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.8.214.0/24 Signature Algorithm: sha256WithRSAEncryption 55:d7:23:4c:ec:d6:43:29:6e:3b:0c:ea:d7:ac:ab:53:f9:65: 6a:7a:e0:76:b1:45:95:6a:c2:90:ff:5c:85:50:e8:c2:ef:1b: 05:43:1a:52:11:1f:62:ba:2e:dd:62:16:37:f6:84:38:f7:ae: 3a:5e:69:29:f7:2d:0b:4d:4f:f1:7d:3f:74:7f:e5:cb:fd:55: 08:ec:ba:5a:14:e8:09:80:78:a5:26:3c:e5:a6:f9:ac:7f:7a: a7:3c:64:c2:3b:e5:37:51:50:2c:b7:d2:7a:29:59:2e:df:74: f4:88:d7:23:02:03:0f:32:a2:8b:b3:69:e1:21:e1:a6:fc:af: 72:26:ad:2d:97:1e:2e:36:fc:82:cc:a6:1e:14:46:77:23:dd: 01:5d:54:b6:fb:7b:98:9a:cc:b2:fd:50:5b:9e:3f:0e:c9:95: 7b:1a:76:2d:82:d3:2a:c9:c0:74:d8:e7:b4:3a:dd:b2:e0:47: 1e:5f:f0:6c:0d:2a:1d:6b:e3:8e:db:78:59:ee:74:50:dc:d2: 2c:dc:77:c8:c0:b9:59:3b:35:d2:12:d1:f6:17:a7:df:7d:84: 57:99:a4:cf:27:87:41:c6:8a:9a:11:25:09:89:40:55:66:bd: 70:15:2a:95:fb:1b:09:18:a7:d6:3d:fa:89:b0:b1:d0:a0:10: 5f:09:41:e3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUwNTIyMjMxNDE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmRhNC02YzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvg3r6VI7HAsjBnmlUAcryThLX9C/RxxuGOH37T4CYYbr9Nj++skF81/4N7ks 7afTDHebp2YX4S3prQkdtCUw5w2Popf9yfcATFVSbPNkuRXCBug7/3ObSSF6uEO1 ZmWmD3dalHAmQDX1iEA+YUOjTCJp5NZa1ZLQRT6YTvufE2wFjVNVSPeSW9o+FCtJ VoYoz77cdPOZ5SEqFGujlku8uDD+1R3CppOJ4gWJweDE/t0IaK4pZWyJfDU7iaux PZmkiP3cBiByQwK+IkF4aa29cuZynOlNMq5LZopLrH3zRfdwWnngBRzl5vJANkhM jkYn1JBtQt8FgEZnOI1OBmd1dwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB1dVtI6 MnOSQxzKEAe75W/VBkB4MB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDREQzEvOTk2Rjk4RUFEQkQ3MTFFQkI5NTExNzQ1QzRGOUFFMDIvQjVBN0IwMjBE QkRCMTFFQjhFQzE0OTRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZwjWMA0GCSqGSIb3DQEBCwUAA4IBAQBV1yNM7NZDKW47DOrXrKtT +WVqeuB2sUWVasKQ/1yFUOjC7xsFQxpSER9iui7dYhY39oQ49646Xmkp9y0LTU/x fT90f+XL/VUI7LpaFOgJgHilJjzlpvmsf3qnPGTCO+U3UVAst9J6KVku33T0iNcj AgMPMqKLs2nhIeGm/K9yJq0tlx4uNvyCzKYeFEZ3I90BXVS2+3uYmsyy/VBbnj8O yZV7GnYtgtMqycB02Oe0Ot2y4EceX/BsDSoda+OO23hZ7nRQ3NIs3HfIwLlZOzXS EtH2F6fffYRXmaTPJ4dBxoqaESUJiUBVZr1wFSqV+xsJGKfWPfqJsLHQoBBfCUHj -----END CERTIFICATE-----Generated at Sat Mar 28 13:40:59 2026 by rpki-client