$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa File: CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa (raw, json) Hash identifier: yofMdWFa6G+5IWdYK6Mk2y69/fwGAZwVAxMNAxb1xeg= Subject key identifier: CF:BC:A1:68:02:50:15:DD:23:FF:A2:55:01:D2:E8:F1:96:28:93:2B Certificate issuer: /CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Certificate serial: 084C Authority key identifier: DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa Signing time: Fri 10 Apr 2026 17:21:00 +0000 ROA not before: Fri 10 Apr 2026 17:21:00 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 153038 IP address blocks: 103.83.233.0/24 maxlen: 24 203.89.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:41:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2124 (0x84c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Validity Not Before: Apr 10 17:21:00 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69d9317c-757e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:90:56:3d:f4:0c:11:18:b7:eb:5d:99:3e:57: bd:46:b7:1d:c6:4e:d3:46:f2:82:c3:c9:8f:31:22: 30:40:d3:9d:ee:4a:ca:91:b2:ec:b1:bc:de:c4:9c: ac:77:9a:f5:01:17:ad:34:24:0d:eb:bd:7c:c6:d9: be:4d:29:a9:be:f1:23:e0:ad:f3:42:c5:3c:ec:c6: de:21:9a:0e:89:32:1c:a4:15:0e:f9:3b:bd:c2:d8: a8:21:35:a8:3f:61:5e:f3:18:29:92:9a:f5:62:a2: 0b:77:57:0f:17:3d:8c:90:23:08:11:b0:b7:4d:6e: bb:c2:54:a5:97:39:5d:37:87:7a:93:ad:1e:47:10: 14:e6:d7:6d:d3:ea:5a:38:72:34:b1:13:dd:18:60: 00:82:94:e6:45:8b:e6:21:bc:46:66:0e:37:83:f0: eb:c4:ff:0a:e3:68:b4:75:36:5f:99:31:c6:bd:46: 94:51:ca:df:2e:40:01:44:0c:ca:53:0a:93:f2:ad: be:ce:4c:77:19:4c:c5:c1:9c:ef:18:b5:77:3c:85: b8:8d:55:a9:c7:74:1a:9f:55:f3:ab:f7:35:91:fe: 8a:2b:68:21:17:48:25:7b:29:ee:fb:f9:fb:7d:53: c6:a8:b3:44:b2:cd:bb:ad:b7:6e:6c:5d:f5:c2:8b: 62:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:BC:A1:68:02:50:15:DD:23:FF:A2:55:01:D2:E8:F1:96:28:93:2B X509v3 Authority Key Identifier: keyid:DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/CD0ACC3AD9CE11EFA393BC6AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.83.233.0/24 203.89.126.0/24 Signature Algorithm: sha256WithRSAEncryption 36:8a:d7:47:4b:41:24:0a:04:5b:42:9f:42:03:32:cd:fb:cf: ed:8e:6e:b1:ba:28:34:f0:0b:e7:c7:20:67:1a:0f:2d:98:1f: 2e:09:ca:71:bb:9d:4c:3f:51:32:a3:98:61:2c:63:cd:1d:48: cc:c9:bf:96:f9:7d:42:11:58:b4:39:8a:68:08:4e:ab:c2:ab: ac:9d:6a:7a:49:e6:c2:d7:97:a4:19:62:4f:ca:c4:87:87:e4: 4f:70:fc:7b:17:ea:0c:40:dc:38:ed:e7:18:dd:d1:5d:52:90: 2e:54:23:34:a9:7c:2a:5b:f5:76:9a:98:c4:b4:c3:ad:ed:b1: cd:89:45:9b:fe:3e:b1:86:5d:b6:62:76:72:d9:51:80:ed:74: 74:e1:db:28:c5:24:29:ec:bd:96:e5:24:41:6e:61:58:79:9a: 84:cf:69:c2:14:c3:15:58:ec:29:b6:c9:b6:1d:aa:9c:ab:58: 2c:f7:30:2b:af:8a:86:15:8a:40:90:73:2f:c0:be:49:7b:58: 68:ea:97:42:f8:7a:56:1d:ee:54:d5:54:88:3c:2f:0a:ba:fc: 78:22:bc:2e:bc:ec:5c:ac:48:0f:3e:bc:f8:d3:24:c6:c3:ca: 7d:50:7e:8a:35:52:fc:18:97:69:4f:b4:ba:29:70:5c:d6:1e: de:8e:5f:55 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKERERDUzRjUyMjVFRDJGOERBOEQwOUU3QUFEOTgyQzgw QjZDRUFEQTgwHhcNMjYwNDEwMTcyMTAwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ5MzE3Yy03NTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpBWPfQMERi3612ZPle9Rrcdxk7TRvKCw8mPMSIwQNOd7krKkbLssbzexJys d5r1ARetNCQN6718xtm+TSmpvvEj4K3zQsU87MbeIZoOiTIcpBUO+Tu9wtioITWo P2Fe8xgpkpr1YqILd1cPFz2MkCMIEbC3TW67wlSllzldN4d6k60eRxAU5tdt0+pa OHI0sRPdGGAAgpTmRYvmIbxGZg43g/DrxP8K42i0dTZfmTHGvUaUUcrfLkABRAzK UwqT8q2+zkx3GUzFwZzvGLV3PIW4jVWpx3Qan1Xzq/c1kf6KK2ghF0gleynu+/n7 fVPGqLNEss27rbdubF31wotieQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFM+8oWgC UBXdI/+iVQHS6PGWKJMrMB8GA1UdIwQYMBaAFN3VP1Il7S+NqNCeeq2YLIC2zq2o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0Mm8wSjU2clpnc2dMYk9y YWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNkVV9VaVh0TDQybzBKNTZyWmdzZ0xiT3JhZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU4RUYvRDI0MzM3OTY0QUVDMTFFODg0MTdGMzRBQzRGOUFFMDIvQ0QwQUNDM0FE OUNFMTFFRkEzOTNCQzZBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAZ1PpAwQAy1l+MA0GCSqGSIb3DQEBCwUAA4IBAQA2itdHS0EkCgRb Qp9CAzLN+8/tjm6xuig08AvnxyBnGg8tmB8uCcpxu51MP1Eyo5hhLGPNHUjMyb+W +X1CEVi0OYpoCE6rwqusnWp6SebC15ekGWJPysSHh+RPcPx7F+oMQNw47ecY3dFd UpAuVCM0qXwqW/V2mpjEtMOt7bHNiUWb/j6xhl22YnZy2VGA7XR04dsoxSQp7L2W 5SRBbmFYeZqEz2nCFMMVWOwptsm2Haqcq1gs9zArr4qGFYpAkHMvwL5Je1ho6pdC +HpWHe5U1VSIPC8Kuvx4IrwuvOxcrEgPPrz40yTGw8p9UH6KNVL8GJdpT7S6KXBc 1h7ejl9V -----END CERTIFICATE-----Generated at Fri Apr 17 16:32:12 2026 by rpki-client