$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa File: 5AFFB9E48C2211EDAE44DD87C4F9AE02.roa (raw, json) Hash identifier: bV8Oy6pvWhzdI41vVzxNxINTpeT1m1NJnvYB3no4MKo= Subject key identifier: 7B:8D:B0:0C:C3:FF:AD:F6:4A:D6:3C:28:D3:F8:B1:5D:A5:33:4B:80 Certificate issuer: /CN=A91E8903/serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Certificate serial: 02A2 Authority key identifier: 45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa Signing time: Sun 03 May 2026 02:33:58 +0000 ROA not before: Sun 03 May 2026 02:33:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131471 IP address blocks: 103.221.246.0/24 maxlen: 24 103.221.247.0/24 maxlen: 24 2001:df0:7880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8903, serialNumber=456AF5E5667DE248A9CF0CEB90C6D1B3D3ED6FA8 Validity Not Before: May 3 02:33:58 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69f6b416-1717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:1f:a3:91:c5:55:f4:5e:ae:28:93:e2:ef: 03:ce:e6:cb:ce:df:a1:72:2b:bb:30:c5:7f:6d:1b: 6c:2b:7d:c3:19:c8:9b:49:25:74:71:4e:68:1a:a0: 60:23:4c:23:1c:2b:bf:35:e7:c7:8d:b5:d1:48:d8: b5:0c:65:36:27:55:cf:b6:c4:c2:70:1f:57:16:dd: 80:f7:e2:91:4a:cf:d7:9b:ee:b2:17:31:c1:f8:d7: 46:29:f8:5c:d4:40:42:4e:77:51:76:f8:c7:d4:15: 99:7e:a2:15:cc:67:ff:b2:8b:c9:41:32:27:99:c3: 29:81:b7:16:c6:37:fc:ec:0a:63:5f:22:96:07:59: 64:1c:2d:e5:aa:f8:35:cb:18:52:b3:ab:30:f2:c2: 4b:b3:c3:b7:e7:d6:c4:c7:fe:b6:cd:51:5d:0f:81: bd:bd:2c:19:05:bb:eb:f4:f3:e5:65:8c:e8:32:35: 9c:dd:79:77:58:4d:76:05:e8:5a:67:ef:ee:83:34: 44:26:a9:6a:e0:54:82:fc:2e:e8:b9:67:ed:dc:84: 19:6e:da:f3:9f:9a:9a:16:d4:4f:3b:9a:91:4c:b6: 90:0f:ad:ad:ad:22:8a:ab:f9:71:b9:e8:95:b3:44: 6c:75:32:3f:a1:2c:a6:d9:e9:63:01:bf:bc:7c:1c: 4e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8D:B0:0C:C3:FF:AD:F6:4A:D6:3C:28:D3:F8:B1:5D:A5:33:4B:80 X509v3 Authority Key Identifier: keyid:45:6A:F5:E5:66:7D:E2:48:A9:CF:0C:EB:90:C6:D1:B3:D3:ED:6F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/RWr15WZ94kipzwzrkMbRs9Ptb6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RWr15WZ94kipzwzrkMbRs9Ptb6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8903/D898265A8C1F11EDAE441D87C4F9AE02/5AFFB9E48C2211EDAE44DD87C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.221.246.0/23 IPv6: 2001:df0:7880::/48 Signature Algorithm: sha256WithRSAEncryption 89:13:57:ca:6d:66:4d:ae:7f:2e:f2:f0:c1:f5:ae:77:39:b4: 68:4d:41:ee:e4:46:06:60:e1:92:e6:18:37:5e:42:ae:a4:a3: 44:0e:53:d4:1c:a5:84:97:ab:7b:f1:32:46:16:78:9c:32:c5: 67:a6:07:ef:e2:db:b8:99:cb:6a:92:73:db:db:f7:fc:be:bc: ef:57:c6:2a:46:fc:21:6c:87:08:05:7f:52:a2:e0:27:19:a4: b3:f0:65:15:8a:69:35:b5:6d:f0:44:52:6a:5c:06:65:fe:87: 1f:a6:d3:62:76:16:f4:ec:38:4f:74:1d:9d:3c:47:c5:82:0f: 1d:d0:71:13:79:95:c4:ae:69:12:32:2a:b7:d5:1c:8c:56:52: ab:97:6f:36:bb:83:d8:58:9c:08:83:0a:54:a9:72:df:c0:11: df:90:07:43:43:ec:aa:0c:2c:a7:a7:81:6e:7d:78:23:7e:7c: 30:5c:4f:04:da:fa:5c:5d:40:00:56:d2:92:68:da:e8:8b:ba: 65:e0:1b:c1:56:fd:7f:c9:b8:8e:23:31:c9:6c:c0:70:14:3c: fd:64:2f:29:c3:d1:17:0a:2f:7a:c5:c3:52:04:3a:70:49:a1: b3:f1:89:d1:c1:b4:41:03:b9:64:e4:54:ca:d8:c3:5e:ae:ad: 75:c5:83:9a -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MDMxMTAvBgNVBAUTKDQ1NkFGNUU1NjY3REUyNDhBOUNGMENFQjkwQzZEMUIz RDNFRDZGQTgwHhcNMjYwNTAzMDIzMzU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2YjQxNi0xNzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4Mfo5HFVfReriiT4u8DzubLzt+hciu7MMV/bRtsK33DGcibSSV0cU5oGqBg I0wjHCu/NefHjbXRSNi1DGU2J1XPtsTCcB9XFt2A9+KRSs/Xm+6yFzHB+NdGKfhc 1EBCTndRdvjH1BWZfqIVzGf/sovJQTInmcMpgbcWxjf87ApjXyKWB1lkHC3lqvg1 yxhSs6sw8sJLs8O359bEx/62zVFdD4G9vSwZBbvr9PPlZYzoMjWc3Xl3WE12Beha Z+/ugzREJqlq4FSC/C7ouWft3IQZbtrzn5qaFtRPO5qRTLaQD62trSKKq/lxueiV s0RsdTI/oSym2eljAb+8fBxOJwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHuNsAzD /632StY8KNP4sV2lM0uAMB8GA1UdIwQYMBaAFEVq9eVmfeJIqc8M65DG0bPT7W+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkwMy9EODk4MjY1QThD MUYxMUVEQUU0NDFEODdDNEY5QUUwMi9SV3IxNVdaOTRraXB6d3pya01iUnM5UHRi NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXcjE1V1o5NGtpcHp3enJrTWJSczlQdGI2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MDMvRDg5ODI2NUE4QzFGMTFFREFFNDQxRDg3QzRGOUFFMDIvNUFGRkI5RTQ4 QzIyMTFFREFFNDRERDg3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ932MA8EAgACMAkDBwAgAQ3weIAwDQYJKoZIhvcNAQELBQADggEB AIkTV8ptZk2ufy7y8MH1rnc5tGhNQe7kRgZg4ZLmGDdeQq6ko0QOU9QcpYSXq3vx MkYWeJwyxWemB+/i27iZy2qSc9vb9/y+vO9XxipG/CFshwgFf1Ki4CcZpLPwZRWK aTW1bfBEUmpcBmX+hx+m02J2FvTsOE90HZ08R8WCDx3QcRN5lcSuaRIyKrfVHIxW UquXbza7g9hYnAiDClSpct/AEd+QB0ND7KoMLKengW59eCN+fDBcTwTa+lxdQABW 0pJo2uiLumXgG8FW/X/JuI4jMclswHAUPP1kLynD0RcKL3rFw1IEOnBJobPxidHB tEEDuWTkVMrYw16urXXFg5o= -----END CERTIFICATE-----Generated at Wed May 13 09:35:32 2026 by rpki-client