$ rpki-client -vvf rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/6FF4CA0E006311EAB403274DC4F9AE02.roa File: 6FF4CA0E006311EAB403274DC4F9AE02.roa (raw, json) Hash identifier: LKT7IFaOCmRtYDfw8c46CXWIZdujEW6bP/9GOxBiApA= Subject key identifier: 7C:CE:2D:CC:72:DC:E2:FA:9D:B8:CF:F0:C2:EC:EA:1D:0B:78:45:D5 Certificate issuer: /CN=A91870C2/serialNumber=8C78FEC7455920CBFDE030FE544E57F1EC9FC864 Certificate serial: 0D2D Authority key identifier: 8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/6FF4CA0E006311EAB403274DC4F9AE02.roa Signing time: Mon 08 Jun 2026 18:21:42 +0000 ROA not before: Mon 08 Jun 2026 18:21:42 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 133945 IP address blocks: 103.91.52.0/23 maxlen: 23 103.91.52.0/24 maxlen: 24 103.91.53.0/24 maxlen: 24 2001:df3:ea80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3373 (0xd2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870C2, serialNumber=8C78FEC7455920CBFDE030FE544E57F1EC9FC864 Validity Not Before: Jun 8 18:21:42 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a270836-c63d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:14:50:c1:a1:14:7e:23:c5:d1:fb:90:f6:1f: 22:c6:f9:c2:0b:90:31:25:3a:4e:ce:26:56:01:e6: 1e:b5:af:99:e5:a3:44:36:77:b5:ae:23:d7:5d:47: 71:18:ac:70:be:36:c5:f8:0c:1f:1c:b9:a0:a9:a1: a4:59:72:00:09:27:0a:d5:13:74:1c:ed:a1:29:8a: 36:3d:7f:53:e6:36:ba:58:dc:60:81:77:b4:97:02: a2:a4:ad:3e:18:7d:0b:ae:2a:90:ab:9a:4a:91:79: a5:7b:99:ec:4f:20:e2:84:84:a5:f1:2b:46:01:14: af:d8:1d:cb:4b:a9:b3:83:95:35:ff:45:60:c6:0f: c4:06:0b:b6:72:43:9f:20:d3:c1:dc:bc:d6:31:62: 46:6d:fa:5c:d2:d4:f9:ad:f1:e1:51:aa:0a:4d:c6: 79:f3:2d:d7:aa:74:bb:95:b8:94:96:6c:69:4a:6a: f8:f2:27:9a:4f:a8:a5:c2:8d:91:fa:65:b9:4b:c3: 4a:4c:3e:fa:09:40:a6:94:08:2f:1a:d6:eb:0d:c5: 4d:94:8b:99:62:ff:bf:30:a1:eb:45:f7:69:35:1f: 29:b0:51:76:7c:d7:bd:8b:1f:02:3d:1d:ae:73:c6: f9:1b:11:e9:7e:c7:80:49:a6:ec:f7:5f:0b:14:c7: 57:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:CE:2D:CC:72:DC:E2:FA:9D:B8:CF:F0:C2:EC:EA:1D:0B:78:45:D5 X509v3 Authority Key Identifier: keyid:8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/6FF4CA0E006311EAB403274DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.52.0/23 IPv6: 2001:df3:ea80::/48 Signature Algorithm: sha256WithRSAEncryption 2c:9e:c3:c6:57:c7:0f:f9:31:bb:99:ff:04:42:f2:a3:9b:c2: 8e:f5:06:9d:4e:7d:50:c3:ba:bc:20:82:5b:3c:2e:a7:3c:77: c2:21:e3:86:9e:66:f2:e6:c0:2c:2f:5d:c6:7c:1d:5a:2c:80: 3d:d5:eb:87:14:f7:85:07:58:04:42:2b:75:0b:12:b0:55:a1: ba:2a:ee:38:b6:ef:c2:1c:fc:c9:ac:b7:1e:e6:27:62:6f:4b: 07:b1:11:6a:93:fa:ba:44:b7:ee:39:5e:bf:ac:ed:03:16:fb: f5:8f:e3:3e:76:c1:9b:6e:7e:c4:4a:df:de:c8:5d:19:ec:22: 51:dc:b6:7c:fe:21:a4:c0:72:24:70:7c:9f:69:42:6e:45:4d: b4:1a:6c:34:7a:5d:23:f9:3e:18:1b:d8:bf:7b:c7:df:92:58: 97:76:9a:06:0a:ac:fd:7f:ca:c0:a1:b6:55:d5:b5:2b:de:06: 42:cb:0a:d9:63:da:4e:c1:1b:b5:65:97:38:77:50:30:13:cb: d0:5c:3e:7a:3d:91:7b:55:d9:e3:88:a9:a7:74:48:87:01:25: 30:b9:99:59:51:74:8c:aa:00:0c:e4:b6:81:45:89:f5:31:6e: bc:80:de:8f:03:48:3f:a2:0f:15:74:53:a8:fe:92:a1:e3:9d: 82:e6:bb:73 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICDS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQzIxMTAvBgNVBAUTKDhDNzhGRUM3NDU1OTIwQ0JGREUwMzBGRTU0NEU1N0Yx RUM5RkM4NjQwHhcNMjYwNjA4MTgyMTQyWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI3MDgzNi1jNjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxRQwaEUfiPF0fuQ9h8ixvnCC5AxJTpOziZWAeYeta+Z5aNENne1riPXXUdx GKxwvjbF+AwfHLmgqaGkWXIACScK1RN0HO2hKYo2PX9T5ja6WNxggXe0lwKipK0+ GH0LriqQq5pKkXmle5nsTyDihISl8StGARSv2B3LS6mzg5U1/0Vgxg/EBgu2ckOf INPB3LzWMWJGbfpc0tT5rfHhUaoKTcZ58y3XqnS7lbiUlmxpSmr48ieaT6ilwo2R +mW5S8NKTD76CUCmlAgvGtbrDcVNlIuZYv+/MKHrRfdpNR8psFF2fNe9ix8CPR2u c8b5GxHpfseASabs918LFMdXiwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHzOLcxy 3OL6nbjP8MLs6h0LeEXVMB8GA1UdIwQYMBaAFIx4/sdFWSDL/eAw/lROV/Hsn8hk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBDMi84RDcxMkVBMjAw NjIxMUVBQUJFNzNGNENDNEY5QUUwMi9qSGoteDBWWklNdjk0REQtVkU1WDhleWZ5 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pIai14MFZaSU12OTRERC1WRTVYOGV5ZnlHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODcwQzIvOEQ3MTJFQTIwMDYyMTFFQUFCRTczRjRDQzRGOUFFMDIvNkZGNENBMEUw MDYzMTFFQUI0MDMyNzREQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ1s0MA8EAgACMAkDBwAgAQ3z6oAwDQYJKoZIhvcNAQELBQADggEB ACyew8ZXxw/5MbuZ/wRC8qObwo71Bp1OfVDDurwggls8Lqc8d8Ih44aeZvLmwCwv XcZ8HVosgD3V64cU94UHWARCK3ULErBVoboq7ji278Ic/Mmstx7mJ2JvSwexEWqT +rpEt+45Xr+s7QMW+/WP4z52wZtufsRK397IXRnsIlHctnz+IaTAciRwfJ9pQm5F TbQabDR6XSP5Phgb2L97x9+SWJd2mgYKrP1/ysChtlXVtSveBkLLCtlj2k7BG7Vl lzh3UDATy9BcPno9kXtV2eOIqad0SIcBJTC5mVlRdIyqAAzktoFFifUxbryA3o8D SD+iDxV0U6j+kqHjnYLmu3M= -----END CERTIFICATE-----Generated at Sat Jun 13 23:28:50 2026 by rpki-client