$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/F3484DBA34CE11EEBBA9D046C4F9AE02.roa File: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (raw, json) Hash identifier: ret8DZA0fJaU/TB1w1dKPyomuzKd4IYw0TW4cHdfxIo= Subject key identifier: 61:9C:DD:CC:FE:17:97:59:52:94:45:78:70:FE:FB:C8:F6:1B:34:67 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 020D Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/F3484DBA34CE11EEBBA9D046C4F9AE02.roa Signing time: Wed 29 Apr 2026 04:36:40 +0000 ROA not before: Wed 29 Apr 2026 04:36:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 141766 IP address blocks: 103.152.24.0/24 maxlen: 24 103.152.25.0/24 maxlen: 24 103.163.156.0/24 maxlen: 24 103.184.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 03:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9, serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: Apr 29 04:36:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f18ad7-85cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:15:71:a7:83:e2:03:8d:57:76:9f:ad:2a:49: 07:d1:6c:62:4e:f8:60:2d:e1:d8:20:65:f7:3f:0a: df:5a:2a:f3:94:96:c8:9e:61:61:36:cd:cb:0e:66: 1b:e3:7b:44:30:c7:43:7b:4b:1d:c4:5b:0a:52:f5: 7b:45:5f:65:81:aa:58:67:93:74:8f:2e:b0:5f:64: 06:d4:44:77:23:cf:2e:f4:51:fe:08:7a:85:fd:4a: b8:20:d7:9f:42:a4:c4:74:51:6d:8c:ce:ef:1c:2d: 1c:40:42:78:6f:c6:15:1f:45:58:24:88:0d:a9:b3: 3c:44:11:2a:b8:eb:60:e9:58:ad:ba:d9:5d:88:40: 95:0b:8e:f7:05:b9:d5:1f:6a:7e:34:8f:15:43:01: 8f:3b:60:e1:f1:60:f2:e0:dd:7b:18:59:5b:4d:5f: 55:e6:ef:0d:a7:28:fa:fb:f2:a5:c3:9f:9d:b4:d6: e8:11:66:bd:7a:ab:b2:ed:c9:d4:8a:e8:a3:c2:a3: 19:2e:92:cf:35:f8:78:69:f2:1a:08:c5:a5:28:bd: 6d:ab:e4:87:a5:d4:88:fc:bb:b7:df:27:e9:f1:7a: f3:a7:89:81:c8:e3:61:3d:bd:34:b6:3f:7c:ae:e4: f2:08:49:2d:4a:3f:cb:30:a9:31:89:15:63:93:50: aa:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9C:DD:CC:FE:17:97:59:52:94:45:78:70:FE:FB:C8:F6:1B:34:67 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/F3484DBA34CE11EEBBA9D046C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.24.0/23 103.163.156.0/24 103.184.129.0/24 Signature Algorithm: sha256WithRSAEncryption b7:db:d4:19:af:61:83:ff:65:3c:71:ed:a7:2b:51:b8:7d:2f: 2d:39:53:ef:71:f6:ac:ce:55:99:c7:7c:d5:3b:36:56:96:56: 9b:46:09:f8:a9:2a:45:79:c7:e7:8a:70:18:7e:a6:fa:36:bc: 92:15:35:75:f1:46:a9:21:87:d1:b6:b9:d0:00:5b:ce:22:12: ae:9f:b2:c1:95:c4:6b:72:79:05:8b:d9:64:26:77:27:a1:90: a0:b8:cf:7d:28:73:31:73:0a:94:13:cc:fc:b1:29:48:2b:db: 67:63:a9:6d:12:a0:bd:0f:5b:2d:b4:e9:da:30:ca:6e:2e:90: 93:ad:b6:c0:02:42:f7:2b:6e:5c:ef:eb:76:27:d5:30:ab:c5: 85:f1:4b:a4:90:fd:e8:f5:01:4d:6b:9f:47:e0:ee:2e:c0:f0: 67:d6:a2:1b:96:57:4b:d8:03:a3:2c:b5:71:76:78:1f:3b:8d: d8:3d:0b:d3:e2:82:f8:17:ff:d8:b7:ae:38:d7:a6:89:f0:6f: a9:a4:4d:e9:0d:90:ca:7c:36:f4:19:dc:af:63:a2:e7:71:af: 9c:ca:a4:e0:ac:63:8a:1c:48:11:40:4a:32:de:d8:b2:71:19: 24:99:5c:fd:cd:bc:ed:77:ea:a5:a6:a7:03:41:75:ae:92:be: a7:63:02:d2 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjYwNDI5MDQzNjQwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYxOGFkNy04NWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhVxp4PiA41Xdp+tKkkH0WxiTvhgLeHYIGX3PwrfWirzlJbInmFhNs3LDmYb 43tEMMdDe0sdxFsKUvV7RV9lgapYZ5N0jy6wX2QG1ER3I88u9FH+CHqF/Uq4INef QqTEdFFtjM7vHC0cQEJ4b8YVH0VYJIgNqbM8RBEquOtg6VitutldiECVC473BbnV H2p+NI8VQwGPO2Dh8WDy4N17GFlbTV9V5u8Npyj6+/Klw5+dtNboEWa9equy7cnU iuijwqMZLpLPNfh4afIaCMWlKL1tq+SHpdSI/Lu33yfp8Xrzp4mByONhPb00tj98 ruTyCEktSj/LMKkxiRVjk1Cq1wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFGGc3cz+ F5dZUpRFeHD++8j2GzRnMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5QjkvOTUxRjk4RUEzMkQyMTFFRTg2OUZEQjcxQzRGOUFFMDIvRjM0ODREQkEz NENFMTFFRUJCQTlEMDQ2QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQBZ5gYAwQAZ6OcAwQAZ7iBMA0GCSqGSIb3DQEBCwUAA4IBAQC329QZ r2GD/2U8ce2nK1G4fS8tOVPvcfaszlWZx3zVOzZWllabRgn4qSpFecfninAYfqb6 NrySFTV18UapIYfRtrnQAFvOIhKun7LBlcRrcnkFi9lkJncnoZCguM99KHMxcwqU E8z8sSlIK9tnY6ltEqC9D1sttOnaMMpuLpCTrbbAAkL3K25c7+t2J9Uwq8WF8Uuk kP3o9QFNa59H4O4uwPBn1qIblldL2AOjLLVxdngfO43YPQvT4oL4F//Yt64416aJ 8G+ppE3pDZDKfDb0GdyvY6Lnca+cyqTgrGOKHEgRQEoy3tiycRkkmVz9zbztd+ql pqcDQXWukr6nYwLS -----END CERTIFICATE-----Generated at Wed May 13 07:39:48 2026 by rpki-client