$ rpki-client -vvf rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/5D21607ADDF211EDA14C0C56C4F9AE02.roa File: 5D21607ADDF211EDA14C0C56C4F9AE02.roa (raw, json) Hash identifier: u18PyOf6WCGxWY2aATMIM9qv2GW3Pt67w7d5BWo1AFo= Subject key identifier: D4:3A:BA:DD:69:30:15:EC:50:C5:4E:04:A2:62:3A:48:FC:11:09:CD Certificate issuer: /CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Certificate serial: 02AF Authority key identifier: 87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/5D21607ADDF211EDA14C0C56C4F9AE02.roa Signing time: Wed 01 Apr 2026 02:34:07 +0000 ROA not before: Wed 01 Apr 2026 02:34:07 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135377 IP address blocks: 103.86.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C621, serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Validity Not Before: Apr 1 02:34:07 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cc841f-f066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3a:b7:d0:5f:e0:9f:f6:28:cb:3f:d0:b1:3e: d1:70:5e:10:86:7f:9d:a6:64:0b:44:1b:63:91:9e: 24:f5:8c:54:e7:70:c8:f7:d4:fc:67:a0:7f:1c:ec: 0d:ee:81:65:8f:37:3b:22:60:69:dd:e5:7b:41:0b: 79:4e:b5:21:0d:de:ef:5f:1c:b8:e2:53:99:0b:f5: f4:93:be:32:1d:2b:eb:fd:9d:41:01:d8:ba:fa:1c: 01:73:27:1d:9c:05:ca:8f:5d:58:99:8a:65:63:b6: 19:22:89:16:e7:3b:29:bc:f5:84:0d:01:af:5c:b8: 47:e9:7f:39:8b:d3:18:16:cc:09:ae:ed:04:6f:8d: 46:ed:78:af:6e:f4:f2:24:8b:cc:ef:63:6b:ef:f0: e3:e2:bf:86:d6:92:31:fb:8a:3e:a2:a6:98:44:71: 97:6b:87:6b:a6:23:3a:c8:1b:03:98:cd:72:bf:cf: 25:6d:6d:b6:2e:ce:ae:a6:f9:40:eb:99:60:bb:e1: 6d:07:69:74:ae:de:51:8d:f8:12:36:85:1f:a7:6b: a7:08:fa:3a:09:61:ee:e5:60:8d:a9:7a:82:97:59: dc:4f:fc:d0:bc:41:23:5e:3b:af:16:dd:69:6a:f9: 66:53:bb:d8:e7:ea:8c:23:1a:f4:db:6a:c5:a2:d8: 85:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:3A:BA:DD:69:30:15:EC:50:C5:4E:04:A2:62:3A:48:FC:11:09:CD X509v3 Authority Key Identifier: keyid:87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/5D21607ADDF211EDA14C0C56C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.123.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:e6:5b:5b:18:5e:f6:84:81:c2:18:9d:d3:4f:94:38:98:81: 72:08:87:17:14:fc:01:46:c7:da:e1:a1:70:1c:3f:22:d7:c1: 47:70:64:cb:f1:37:29:5c:52:e7:5d:9b:d2:0d:6e:19:1b:79: be:d2:81:b1:f7:03:a7:1e:c3:3b:44:83:0e:fc:35:18:f1:82: b7:5a:64:3e:44:3d:f8:e9:80:21:f8:c5:11:c3:b2:9e:f9:aa: 68:11:aa:5f:c6:8c:c0:94:22:09:cb:eb:38:55:19:26:73:7d: ce:a1:2f:aa:8d:8b:7a:04:81:cc:28:31:73:66:fe:72:15:43: 3e:c4:18:54:a1:26:34:f9:83:4e:3e:30:82:8a:bf:45:aa:29: 8f:a9:3a:5f:09:7e:2c:ba:91:a9:75:94:91:fb:09:55:e7:6a: 7c:25:9b:d4:20:37:2a:7c:35:98:44:76:52:ec:da:ea:17:ad: 3d:81:ae:1e:26:29:6a:e5:2f:61:6d:7e:a2:2d:69:51:b2:ef: c0:d6:52:6b:de:8e:cb:4f:b3:cd:f3:17:78:d4:4f:27:c3:ad: cd:d3:a9:63:a2:aa:94:12:72:54:98:87:cf:52:4b:7c:04:7b: 74:96:42:2f:47:dc:f3:79:e4:fe:92:ec:53:dc:01:50:c6:e6: d4:2e:aa:67 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MjExMTAvBgNVBAUTKDg3QTQ3RjI3RTc1RTdDMjgzOUMxMzMzNTFEQTI1MTE0 ODJDNkY5QjQwHhcNMjYwNDAxMDIzNDA3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjODQxZi1mMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTq30F/gn/Yoyz/QsT7RcF4Qhn+dpmQLRBtjkZ4k9YxU53DI99T8Z6B/HOwN 7oFljzc7ImBp3eV7QQt5TrUhDd7vXxy44lOZC/X0k74yHSvr/Z1BAdi6+hwBcycd nAXKj11YmYplY7YZIokW5zspvPWEDQGvXLhH6X85i9MYFswJru0Eb41G7XivbvTy JIvM72Nr7/Dj4r+G1pIx+4o+oqaYRHGXa4drpiM6yBsDmM1yv88lbW22Ls6upvlA 65lgu+FtB2l0rt5RjfgSNoUfp2unCPo6CWHu5WCNqXqCl1ncT/zQvEEjXjuvFt1p avlmU7vY5+qMIxr022rFotiFCwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNQ6ut1p MBXsUMVOBKJiOkj8EQnNMB8GA1UdIwQYMBaAFIekfyfnXnwoOcEzNR2iURSCxvm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYyMS9GN0QwMEJFRTc0 MzkxMUVEOTg2RDczODVDNEY5QUUwMi9oNlJfSi1kZWZDZzV3VE0xSGFKUkZJTEct YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2Ul9KLWRlZkNnNXdUTTFIYUpSRklMRy1iUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MjEvRjdEMDBCRUU3NDM5MTFFRDk4NkQ3Mzg1QzRGOUFFMDIvNUQyMTYwN0FE REYyMTFFREExNEMwQzU2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1Z7MA0GCSqGSIb3DQEBCwUAA4IBAQCK5ltbGF72hIHCGJ3TT5Q4 mIFyCIcXFPwBRsfa4aFwHD8i18FHcGTL8TcpXFLnXZvSDW4ZG3m+0oGx9wOnHsM7 RIMO/DUY8YK3WmQ+RD346YAh+MURw7Ke+apoEapfxozAlCIJy+s4VRkmc33OoS+q jYt6BIHMKDFzZv5yFUM+xBhUoSY0+YNOPjCCir9FqimPqTpfCX4supGpdZSR+wlV 52p8JZvUIDcqfDWYRHZS7NrqF609ga4eJilq5S9hbX6iLWlRsu/A1lJr3o7LT7PN 8xd41E8nw63N06ljoqqUEnJUmIfPUkt8BHt0lkIvR9zzeeT+kuxT3AFQxubULqpn -----END CERTIFICATE-----Generated at Fri Apr 17 18:15:23 2026 by rpki-client