$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/624C3E865DB011F0875D570FC4F9AE02.roa File: 624C3E865DB011F0875D570FC4F9AE02.roa (raw, json) Hash identifier: vugsK16sJjvSr8OK0LSYKyoQkwn8bb1O/z7sIhYr5Cs= Subject key identifier: 85:7C:06:09:29:42:5A:0E:D0:2B:A5:C0:08:79:D1:32:DD:E9:37:58 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 01E8 Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/624C3E865DB011F0875D570FC4F9AE02.roa Signing time: Thu 09 Apr 2026 14:04:09 +0000 ROA not before: Thu 09 Apr 2026 14:04:09 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151964 IP address blocks: 103.65.140.0/24 maxlen: 24 2001:df3:940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Apr 9 14:04:09 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69d7b1d8-dd60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:6e:9f:ff:30:6a:b9:3f:f0:29:c7:63:86: d9:5c:ee:04:d8:52:60:28:db:52:f5:a1:77:fb:9a: 7d:16:ee:25:e0:42:c8:24:48:9b:fb:7d:b3:86:8a: 3d:17:0f:df:f4:58:02:8a:93:4b:2d:09:d9:3b:12: 0f:f6:c3:3e:05:c5:d9:c8:59:c8:d8:35:c0:3d:42: 08:94:54:0f:6b:6f:d4:be:7b:52:0e:5b:81:ee:15: a9:e5:cf:6c:b4:06:52:b7:32:60:83:f6:07:77:a5: fc:44:07:16:bb:68:ca:6d:f0:dd:6b:0d:b1:7a:d7: 70:af:71:1f:7e:02:ab:eb:75:8f:e5:62:9a:da:8b: c5:13:45:f7:36:ac:1b:a6:d7:bc:71:21:2a:0a:6d: 99:3c:44:92:82:64:78:6e:49:49:4b:55:8e:28:e8: b8:87:71:b8:9d:91:3c:f2:65:62:6f:1f:bc:4b:2f: b8:d8:b5:f7:b6:77:78:24:54:82:40:1b:48:32:9c: f9:97:0d:8b:df:c1:fe:f1:0e:3c:97:28:70:07:15: da:ac:4b:38:7c:cb:4c:dd:44:b7:90:2a:2f:80:a7: 45:bd:a4:99:a2:c1:1b:2c:3f:26:d0:f7:b8:ed:ec: 91:50:86:3d:f0:a6:53:fd:7d:d3:d2:1d:df:91:f0: 17:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7C:06:09:29:42:5A:0E:D0:2B:A5:C0:08:79:D1:32:DD:E9:37:58 X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/624C3E865DB011F0875D570FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.65.140.0/24 IPv6: 2001:df3:940::/48 Signature Algorithm: sha256WithRSAEncryption 47:88:a6:c7:db:a3:a5:04:11:35:e4:10:db:db:1f:fd:39:7c: 22:6c:84:94:f9:8d:9d:4f:43:68:f4:c2:74:de:d1:55:f5:d0: 54:77:f5:a4:76:93:ca:09:fa:28:cd:5d:14:e7:5e:31:b2:59: 43:93:64:79:57:e7:29:6b:44:68:37:9f:60:88:8a:67:87:53: 16:ad:db:2e:02:77:9b:a7:86:66:7b:ef:26:83:73:89:fb:e2: a1:fb:fc:28:4d:48:b8:34:66:4b:7d:0b:db:54:e5:73:b2:44: 0a:ba:e3:79:62:1b:2e:2a:23:5b:c2:8a:a2:c5:78:f3:27:fd: f3:cc:47:0d:0c:7c:24:7d:da:75:f4:6b:dc:be:a5:c5:5c:1f: b6:2e:c8:59:ce:fc:ef:03:74:ca:5f:4f:97:fb:59:23:f4:00: 13:36:4b:3b:7f:69:e1:49:71:c3:ab:08:53:7b:df:60:a6:b0: b8:28:52:ad:03:0b:b2:f3:ef:63:fd:f9:86:66:0e:ef:21:78: 6b:96:e2:b3:32:6e:e0:4d:9d:01:c3:45:33:0f:39:1d:5a:91: 3c:cf:66:40:62:c8:d6:0e:76:cf:60:58:1e:58:99:dc:72:7c: 9f:6a:91:a1:44:02:07:c2:40:10:01:13:94:a4:a9:9d:21:e4: 3a:9f:21:23 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjYwNDA5MTQwNDA5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3YjFkOC1kZDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq1un/8wark/8CnHY4bZXO4E2FJgKNtS9aF3+5p9Fu4l4ELIJEib+32zhoo9 Fw/f9FgCipNLLQnZOxIP9sM+BcXZyFnI2DXAPUIIlFQPa2/UvntSDluB7hWp5c9s tAZStzJgg/YHd6X8RAcWu2jKbfDdaw2xetdwr3EffgKr63WP5WKa2ovFE0X3Nqwb pte8cSEqCm2ZPESSgmR4bklJS1WOKOi4h3G4nZE88mVibx+8Sy+42LX3tnd4JFSC QBtIMpz5lw2L38H+8Q48lyhwBxXarEs4fMtM3US3kCovgKdFvaSZosEbLD8m0Pe4 7eyRUIY98KZT/X3T0h3fkfAXwQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFIV8Bgkp QloO0CulwAh50TLd6TdYMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk3QTIvQjNERkM4ODQ2RDYyMTFFRUIzMDdDRTE5QzRGOUFFMDIvNjI0QzNFODY1 REIwMTFGMDg3NUQ1NzBGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ0GMMA8EAgACMAkDBwAgAQ3zCUAwDQYJKoZIhvcNAQELBQADggEB AEeIpsfbo6UEETXkENvbH/05fCJshJT5jZ1PQ2j0wnTe0VX10FR39aR2k8oJ+ijN XRTnXjGyWUOTZHlX5ylrRGg3n2CIimeHUxat2y4Cd5unhmZ77yaDc4n74qH7/ChN SLg0Zkt9C9tU5XOyRAq643liGy4qI1vCiqLFePMn/fPMRw0MfCR92nX0a9y+pcVc H7YuyFnO/O8DdMpfT5f7WSP0ABM2Szt/aeFJccOrCFN732CmsLgoUq0DC7Lz72P9 +YZmDu8heGuW4rMybuBNnQHDRTMPOR1akTzPZkBiyNYOds9gWB5YmdxyfJ9qkaFE AgfCQBABE5SkqZ0h5DqfISM= -----END CERTIFICATE-----Generated at Fri Apr 17 15:47:44 2026 by rpki-client