$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/9D9B2E7A6D3211F0A68A8A58C4F9AE02.roa File: 9D9B2E7A6D3211F0A68A8A58C4F9AE02.roa (raw, json) Hash identifier: KD8sbQxVGc6+o0NWvmiwxFni81JXRae+CNqEs/9OB/s= Subject key identifier: 16:4E:47:C4:CC:2D:9E:F4:15:06:3A:A2:D4:2F:9A:5C:12:7B:CF:DB Certificate issuer: /CN=A91E9467/serialNumber=52BE9DDE9568FE4ADCA0F345B3617A63C3075845 Certificate serial: 054E Authority key identifier: 52:BE:9D:DE:95:68:FE:4A:DC:A0:F3:45:B3:61:7A:63:C3:07:58:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/9D9B2E7A6D3211F0A68A8A58C4F9AE02.roa Signing time: Wed 04 Mar 2026 08:31:38 +0000 ROA not before: Wed 04 Mar 2026 08:31:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136308 IP address blocks: 103.150.152.0/23 maxlen: 23 103.150.152.0/24 maxlen: 24 103.150.153.0/24 maxlen: 24 202.12.80.0/22 maxlen: 22 202.12.80.0/23 maxlen: 23 202.12.80.0/24 maxlen: 24 202.12.81.0/24 maxlen: 24 202.12.82.0/23 maxlen: 23 202.12.82.0/24 maxlen: 24 202.12.83.0/24 maxlen: 24 2405:3e40::/32 maxlen: 32 2405:3e40::/48 maxlen: 48 2405:3e40:1::/48 maxlen: 48 2405:3e40:2::/48 maxlen: 48 2405:3e40:3::/48 maxlen: 48 2405:3e40:4::/48 maxlen: 48 2405:3e40:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.crl rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1358 (0x54e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9467, serialNumber=52BE9DDE9568FE4ADCA0F345B3617A63C3075845 Validity Not Before: Mar 4 08:31:38 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a7edea-d310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8e:4f:f9:33:a0:89:40:94:53:24:40:e6:c8: f1:d6:b5:f4:e6:ec:95:27:f7:c3:58:a8:78:d0:0a: 67:21:6d:20:09:71:3f:5b:52:b0:95:37:a1:96:32: 16:28:74:f3:d1:84:e2:d2:33:1a:c3:86:4b:55:cc: c3:a8:b4:cd:9a:72:51:b8:3e:45:67:09:dd:fb:13: 9a:7b:7a:35:f8:8b:f4:eb:6d:a2:3a:50:be:fd:3c: 7b:6d:2f:75:22:aa:8a:c6:39:08:82:81:bc:ae:58: 4b:04:9b:df:28:13:eb:1b:6a:67:d9:47:1e:2a:c7: e0:10:fa:1d:2c:82:7a:6c:b7:b9:b1:24:d6:25:5e: e3:26:e3:60:64:92:52:39:42:e9:1a:ef:d3:b3:37: 5a:7c:18:6c:0f:5f:02:28:42:6f:c5:9e:ae:b5:b6: b9:c4:be:a3:1c:26:96:c3:03:d2:50:df:d9:57:76: 12:1d:3e:4a:c2:59:a7:50:c2:73:de:32:f2:48:f5: b2:c8:07:f1:19:0f:21:42:c6:66:89:9e:f4:2d:be: d0:26:22:20:df:ef:51:a4:90:10:af:18:98:4a:cf: 24:a2:47:70:3e:a4:90:7d:94:07:41:b2:5b:d6:3c: 34:51:c4:c4:a6:91:64:1c:a6:de:07:9c:83:7e:2d: 8f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4E:47:C4:CC:2D:9E:F4:15:06:3A:A2:D4:2F:9A:5C:12:7B:CF:DB X509v3 Authority Key Identifier: keyid:52:BE:9D:DE:95:68:FE:4A:DC:A0:F3:45:B3:61:7A:63:C3:07:58:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur6d3pVo_krcoPNFs2F6Y8MHWEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9467/770B4F1A526F11ECBC50EB17C4F9AE02/9D9B2E7A6D3211F0A68A8A58C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.150.152.0/23 202.12.80.0/22 IPv6: 2405:3e40::/32 Signature Algorithm: sha256WithRSAEncryption 26:f8:de:cf:1d:ce:dc:b5:7e:dc:1a:b1:6d:92:57:fd:8d:fa: 7e:82:ee:94:4c:80:2c:42:e9:4f:a2:87:df:11:ae:7e:23:8b: 2b:6f:5a:c5:34:3f:4d:a8:cc:4a:93:77:ea:a0:b8:ae:0c:10: 0e:33:4c:fc:45:6a:ff:f5:92:cb:2e:26:15:44:3d:81:9d:5d: e7:db:05:04:69:ac:d7:e5:d2:8f:4f:2e:5d:d1:f8:39:7e:cc: b4:cf:6b:96:36:2c:f2:a5:65:2c:e1:33:a7:ca:0a:99:4e:96: 2f:5b:5b:1a:00:1c:95:f4:2f:4a:63:c6:cc:da:e6:ae:eb:ec: 66:3c:73:c8:b1:ab:d5:97:87:67:16:9d:35:f1:fe:ee:95:a5: 14:3f:ed:fe:f7:45:89:35:75:4c:0b:fe:ec:64:52:7a:8b:b4: 7f:2a:dd:d5:04:e2:1b:da:a4:79:29:ce:4f:f0:4b:52:eb:b5: da:00:67:93:96:ea:c3:5d:72:b8:3f:c7:7d:36:18:37:2b:b9: e1:9f:06:0a:26:bd:1a:e9:df:34:42:4d:57:37:19:75:69:6c: ed:99:8d:c9:25:87:13:d2:cd:1c:24:3d:12:62:10:77:56:02: 76:81:4e:a7:20:77:7b:09:d7:c4:cb:b1:33:a6:71:be:f9:8a: 95:af:0d:b8 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICBU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0NjcxMTAvBgNVBAUTKDUyQkU5RERFOTU2OEZFNEFEQ0EwRjM0NUIzNjE3QTYz QzMwNzU4NDUwHhcNMjYwMzA0MDgzMTM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE3ZWRlYS1kMzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp45P+TOgiUCUUyRA5sjx1rX05uyVJ/fDWKh40ApnIW0gCXE/W1KwlTehljIW KHTz0YTi0jMaw4ZLVczDqLTNmnJRuD5FZwnd+xOae3o1+Iv0622iOlC+/Tx7bS91 IqqKxjkIgoG8rlhLBJvfKBPrG2pn2UceKsfgEPodLIJ6bLe5sSTWJV7jJuNgZJJS OULpGu/TszdafBhsD18CKEJvxZ6utba5xL6jHCaWwwPSUN/ZV3YSHT5KwlmnUMJz 3jLySPWyyAfxGQ8hQsZmiZ70Lb7QJiIg3+9RpJAQrxiYSs8kokdwPqSQfZQHQbJb 1jw0UcTEppFkHKbeB5yDfi2PuQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFBZOR8TM LZ70FQY6otQvmlwSe8/bMB8GA1UdIwQYMBaAFFK+nd6VaP5K3KDzRbNhemPDB1hF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQ2Ny83NzBCNEYxQTUy NkYxMUVDQkM1MEVCMTdDNEY5QUUwMi9VcjZkM3BWb19rcmNvUE5GczJGNlk4TUhX RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VyNmQzcFZvX2tyY29QTkZzMkY2WThNSFdFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk0NjcvNzcwQjRGMUE1MjZGMTFFQ0JDNTBFQjE3QzRGOUFFMDIvOUQ5QjJFN0E2 RDMyMTFGMEE2OEE4QTU4QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ5aYAwQCygxQMA0EAgACMAcDBQAkBT5AMA0GCSqGSIb3DQEBCwUA A4IBAQAm+N7PHc7ctX7cGrFtklf9jfp+gu6UTIAsQulPooffEa5+I4srb1rFND9N qMxKk3fqoLiuDBAOM0z8RWr/9ZLLLiYVRD2BnV3n2wUEaazX5dKPTy5d0fg5fsy0 z2uWNizypWUs4TOnygqZTpYvW1saAByV9C9KY8bM2uau6+xmPHPIsavVl4dnFp01 8f7ulaUUP+3+90WJNXVMC/7sZFJ6i7R/Kt3VBOIb2qR5Kc5P8EtS67XaAGeTlurD XXK4P8d9Nhg3K7nhnwYKJr0a6d80Qk1XNxl1aWztmY3JJYcT0s0cJD0SYhB3VgJ2 gU6nIHd7CdfEy7EzpnG++YqVrw24 -----END CERTIFICATE-----Generated at Thu Mar 26 12:41:28 2026 by rpki-client