$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFADF/585320DE8BD811EA95AAEB83C4F9AE02/651384A6766811EF96E4115EC4F9AE02.roa File: 651384A6766811EF96E4115EC4F9AE02.roa (raw, json) Hash identifier: 4tvOJ0DlZvwroxMkIv2YzecHFGQeqL4hT/QTBep3keQ= Subject key identifier: 30:71:3F:2D:6C:00:88:A8:02:26:17:BC:21:D0:F0:CB:D5:13:37:F5 Certificate issuer: /CN=A91DFADF/serialNumber=2E7283A8FDD5CF0B3D9FAA2BE9742881989193A5 Certificate serial: 0A50 Authority key identifier: 2E:72:83:A8:FD:D5:CF:0B:3D:9F:AA:2B:E9:74:28:81:98:91:93:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnKDqP3Vzws9n6or6XQogZiRk6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFADF/585320DE8BD811EA95AAEB83C4F9AE02/651384A6766811EF96E4115EC4F9AE02.roa Signing time: Fri 20 Mar 2026 20:25:55 +0000 ROA not before: Fri 20 Mar 2026 20:25:55 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 140612 IP address blocks: 103.151.0.0/23 maxlen: 24 2400:8860::/32 maxlen: 32 2400:8860::/33 maxlen: 33 2400:8860:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFADF/585320DE8BD811EA95AAEB83C4F9AE02/LnKDqP3Vzws9n6or6XQogZiRk6U.crl rsync://rpki.apnic.net/member_repository/A91DFADF/585320DE8BD811EA95AAEB83C4F9AE02/LnKDqP3Vzws9n6or6XQogZiRk6U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnKDqP3Vzws9n6or6XQogZiRk6U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:32:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFADF, serialNumber=2E7283A8FDD5CF0B3D9FAA2BE9742881989193A5 Validity Not Before: Mar 20 20:25:55 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69bdad53-4d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:aa:de:03:38:15:90:b4:9f:0e:6b:37:40:01: f2:5d:13:0f:1a:45:82:91:b9:16:57:f1:be:56:05: 34:43:26:dd:24:4b:b9:c1:8d:d3:80:c5:cf:31:1f: b5:b5:24:36:18:62:47:73:95:8b:68:ff:95:b4:fd: c7:b9:ee:64:73:47:24:67:13:a7:03:46:2a:99:a2: be:cf:4a:7b:1e:a1:be:fd:11:5a:3c:94:c3:ac:f2: a7:36:5e:09:43:a6:1a:ec:95:e0:72:5f:87:3c:6c: a7:d5:cd:b7:f0:2e:ae:01:74:57:16:72:84:2d:3d: 14:6b:d7:e7:86:a5:ee:65:36:7f:05:d5:37:49:15: 02:a4:c8:51:44:c6:a9:36:97:1c:75:9a:44:bb:70: e6:93:56:57:f4:f8:cc:4d:9b:64:3e:57:16:7b:a8: b8:92:a8:16:ec:bd:b2:00:d8:3d:97:2f:02:d1:f6: a9:28:1a:f7:5b:5e:15:a1:39:16:2d:ea:41:9e:eb: cb:15:ef:c8:3e:71:2c:63:65:c0:7d:61:94:4e:35: bb:2c:98:de:d5:85:43:99:6e:15:fd:32:78:a9:25: df:aa:01:05:d0:f8:d1:a5:49:57:48:e8:e2:0d:eb: 59:37:a6:78:85:b3:de:82:f2:9d:7d:3c:04:fd:ef: 92:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:71:3F:2D:6C:00:88:A8:02:26:17:BC:21:D0:F0:CB:D5:13:37:F5 X509v3 Authority Key Identifier: keyid:2E:72:83:A8:FD:D5:CF:0B:3D:9F:AA:2B:E9:74:28:81:98:91:93:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFADF/585320DE8BD811EA95AAEB83C4F9AE02/LnKDqP3Vzws9n6or6XQogZiRk6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnKDqP3Vzws9n6or6XQogZiRk6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFADF/585320DE8BD811EA95AAEB83C4F9AE02/651384A6766811EF96E4115EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.151.0.0/23 IPv6: 2400:8860::/32 Signature Algorithm: sha256WithRSAEncryption 90:db:34:a2:1a:57:f4:54:13:ca:14:bc:62:d6:b0:bd:c5:39: c4:fd:d2:18:31:ce:e6:72:c7:79:02:17:ad:74:2a:bc:6c:8f: 6f:ad:77:7d:f6:5d:d5:67:e7:c4:f2:20:6b:15:a3:65:3c:59: ea:96:b4:75:8e:18:48:d9:15:2e:b1:9a:18:f5:c3:ea:57:bd: ea:a2:33:8a:89:1f:b7:03:b5:75:98:de:5e:bf:5d:e7:04:00: a8:dc:37:0f:04:d8:3a:3a:1b:f6:14:81:f0:56:94:ab:9b:90: 8d:cb:47:97:ad:28:54:26:02:67:74:7e:84:92:f8:5c:36:0b: 55:10:ba:74:33:45:cb:74:9a:ad:fa:58:51:c3:91:af:5c:e1: 29:a7:3b:f5:80:77:cc:91:9d:71:ad:36:02:1b:59:a4:97:9f: 7d:b4:40:a7:54:2b:92:94:d9:46:8d:a6:c7:f3:81:9e:31:e1: 3b:92:1a:3c:e9:fd:2f:89:89:cd:07:ff:8e:0b:63:4e:ec:43: fc:8d:71:36:55:e6:6e:ad:52:0d:f3:2e:da:7f:18:f9:12:5f: f9:37:a2:ba:c9:17:cd:ae:08:9f:8b:e4:0e:34:51:cc:d9:17: 47:8d:35:ca:7d:ba:c4:8b:51:de:1a:71:1d:7d:30:ce:a2:ef: 9d:84:ba:01 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZBREYxMTAvBgNVBAUTKDJFNzI4M0E4RkRENUNGMEIzRDlGQUEyQkU5NzQyODgx OTg5MTkzQTUwHhcNMjYwMzIwMjAyNTU1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWJkYWQ1My00ZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0areAzgVkLSfDms3QAHyXRMPGkWCkbkWV/G+VgU0QybdJEu5wY3TgMXPMR+1 tSQ2GGJHc5WLaP+VtP3Hue5kc0ckZxOnA0YqmaK+z0p7HqG+/RFaPJTDrPKnNl4J Q6Ya7JXgcl+HPGyn1c238C6uAXRXFnKELT0Ua9fnhqXuZTZ/BdU3SRUCpMhRRMap NpccdZpEu3Dmk1ZX9PjMTZtkPlcWe6i4kqgW7L2yANg9ly8C0fapKBr3W14VoTkW LepBnuvLFe/IPnEsY2XAfWGUTjW7LJje1YVDmW4V/TJ4qSXfqgEF0PjRpUlXSOji DetZN6Z4hbPegvKdfTwE/e+StQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDBxPy1s AIioAiYXvCHQ8MvVEzf1MB8GA1UdIwQYMBaAFC5yg6j91c8LPZ+qK+l0KIGYkZOl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkFERi81ODUzMjBERThC RDgxMUVBOTVBQUVCODNDNEY5QUUwMi9MbktEcVAzVnp3czluNm9yNlhRb2daaVJr NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuS0RxUDNWendzOW42b3I2WFFvZ1ppUms2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZBREYvNTg1MzIwREU4QkQ4MTFFQTk1QUFFQjgzQzRGOUFFMDIvNjUxMzg0QTY3 NjY4MTFFRjk2RTQxMTVFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ5cAMA0EAgACMAcDBQAkAIhgMA0GCSqGSIb3DQEBCwUAA4IBAQCQ 2zSiGlf0VBPKFLxi1rC9xTnE/dIYMc7mcsd5AhetdCq8bI9vrXd99l3VZ+fE8iBr FaNlPFnqlrR1jhhI2RUusZoY9cPqV73qojOKiR+3A7V1mN5ev13nBACo3DcPBNg6 Ohv2FIHwVpSrm5CNy0eXrShUJgJndH6EkvhcNgtVELp0M0XLdJqt+lhRw5GvXOEp pzv1gHfMkZ1xrTYCG1mkl599tECnVCuSlNlGjabH84GeMeE7kho86f0viYnNB/+O C2NO7EP8jXE2VeZurVIN8y7afxj5El/5N6K6yRfNrgifi+QONFHM2RdHjTXKfbrE i1HeGnEdfTDOou+dhLoB -----END CERTIFICATE-----Generated at Thu Mar 26 19:40:05 2026 by rpki-client