$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/939AAE78B1D511EA8E3DAE1CC4F9AE02.roa File: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (raw, json) Hash identifier: +DpHFB50fImEl6Y9RzefeEY4U7OoTyTS990Apq9JdK0= Subject key identifier: BB:2C:50:CA:9B:6D:15:F0:09:C8:52:C7:D7:E4:12:1A:6A:D4:1D:E7 Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 095F Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/939AAE78B1D511EA8E3DAE1CC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:33:34 +0000 ROA not before: Wed 02 Apr 2025 20:51:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135107 IP address blocks: 103.86.188.0/23 maxlen: 23 103.209.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2399 (0x95f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Apr 2 20:51:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a407ee-f253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:af:69:84:2d:0e:d0:52:71:74:7e:fa:e5:07: ca:4a:2d:4d:5e:e6:29:b1:f7:2b:75:ca:50:ef:60: d5:9b:86:01:1e:c1:25:8c:ab:4f:e6:4f:45:dd:f3: b2:0b:4e:a6:c7:b5:94:48:85:14:11:71:d7:6e:45: df:24:46:72:ed:45:95:8d:43:bc:ea:58:90:b4:d6: a9:3a:5c:56:9f:74:96:d5:65:76:bd:63:5b:3f:98: 3c:e3:93:be:13:a9:e6:9d:c2:66:85:eb:f2:b1:f6: 2e:e1:04:2e:dd:9f:67:fd:f3:93:2c:2a:4f:f8:4b: 68:1e:a1:56:a4:30:0d:06:2f:98:01:ec:fc:39:be: 0c:42:2d:33:4c:60:82:8e:32:95:f7:33:b6:1d:21: b1:3f:19:dc:2b:d1:29:d7:99:8a:9b:d6:0a:03:0b: 96:57:16:b3:ee:8b:6f:5b:03:e8:07:d8:f7:0e:1d: 2d:49:c0:a7:45:e5:11:6a:cc:a9:ba:ec:78:48:46: 42:f8:99:23:5d:ca:17:78:13:dd:1d:04:73:75:b2: 30:4f:49:27:e2:76:97:d6:eb:a5:03:98:c9:ff:ed: 07:b2:97:df:93:e0:e0:eb:a6:ef:76:aa:9c:f8:60: e9:03:89:08:47:42:f0:0a:56:dc:c6:5e:35:bc:da: cf:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:2C:50:CA:9B:6D:15:F0:09:C8:52:C7:D7:E4:12:1A:6A:D4:1D:E7 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/939AAE78B1D511EA8E3DAE1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.188.0/23 103.209.152.0/23 Signature Algorithm: sha256WithRSAEncryption 84:8d:1d:36:d6:8a:b9:60:af:83:9a:18:b0:b3:78:1a:e8:5b: 5e:3b:30:74:cf:11:11:87:52:3a:4e:18:88:78:7f:3e:16:12: 73:f5:ec:aa:fb:e4:99:74:04:d2:20:df:22:a7:2d:ea:86:0f: 16:99:ce:d8:21:28:c2:fe:82:6c:53:1e:ef:4a:5a:a7:61:fd: c9:a2:1f:ce:05:45:05:e8:c9:6d:86:65:0c:2a:75:83:b9:e2: 2e:a4:f9:97:d7:8a:2d:a7:89:62:71:95:eb:64:12:bf:46:7c: f6:10:fd:79:b3:9e:56:1c:bb:ac:02:0f:af:ea:42:6e:a8:3d: 15:29:0e:c0:58:70:a2:35:19:ce:eb:98:99:85:88:57:12:75: ee:01:ee:b4:0a:e9:ef:57:9f:7f:ee:0b:4c:41:2b:37:8e:10: de:98:c9:dd:20:d8:e3:08:bf:b9:0b:83:fa:cc:4a:66:e0:d0: a9:a7:02:1e:e1:c0:5e:f0:36:d2:ee:b1:02:80:f4:ca:0b:5a: 4d:53:2f:03:dd:20:30:90:b6:cf:50:53:c8:48:2b:18:53:1e: 03:f4:3b:b4:71:87:fe:fb:fc:d7:15:fc:93:fc:ef:b2:68:97: 86:82:9e:ab:1e:3c:25:72:77:9c:54:28:0d:bc:d1:4f:b1:65: a3:8e:bf:b1 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjUwNDAyMjA1MTA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDdlZS1mMjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxa9phC0O0FJxdH765QfKSi1NXuYpsfcrdcpQ72DVm4YBHsEljKtP5k9F3fOy C06mx7WUSIUUEXHXbkXfJEZy7UWVjUO86liQtNapOlxWn3SW1WV2vWNbP5g845O+ E6nmncJmhevysfYu4QQu3Z9n/fOTLCpP+EtoHqFWpDANBi+YAez8Ob4MQi0zTGCC jjKV9zO2HSGxPxncK9Ep15mKm9YKAwuWVxaz7otvWwPoB9j3Dh0tScCnReURasyp uux4SEZC+JkjXcoXeBPdHQRzdbIwT0kn4naX1uulA5jJ/+0Hspffk+Dg66bvdqqc +GDpA4kIR0LwClbcxl41vNrPQwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFLssUMqb bRXwCchSx9fkEhpq1B3nMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUyQzYvMUVERkU0OTZCMUQ0MTFFQUE0NkYwMDFBQzRGOUFFMDIvOTM5QUFFNzhC MUQ1MTFFQThFM0RBRTFDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ1a8AwQBZ9GYMA0GCSqGSIb3DQEBCwUAA4IBAQCEjR021oq5YK+D mhiws3ga6FteOzB0zxERh1I6ThiIeH8+FhJz9eyq++SZdATSIN8ipy3qhg8Wmc7Y ISjC/oJsUx7vSlqnYf3Joh/OBUUF6MlthmUMKnWDueIupPmX14otp4licZXrZBK/ Rnz2EP15s55WHLusAg+v6kJuqD0VKQ7AWHCiNRnO65iZhYhXEnXuAe60CunvV59/ 7gtMQSs3jhDemMndINjjCL+5C4P6zEpm4NCppwIe4cBe8DbS7rECgPTKC1pNUy8D 3SAwkLbPUFPISCsYUx4D9Du0cYf++/zXFfyT/O+yaJeGgp6rHjwlcnecVCgNvNFP sWWjjr+x -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:39 2026 by rpki-client