$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa File: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (raw, json) Hash identifier: Z03RugePbg56cpD4tmLticyJWdpNtFUntyNpe/qgjRY= Subject key identifier: 4A:16:03:27:AB:96:19:35:4D:68:AB:24:04:FC:91:E2:F6:4B:AF:9F Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 0419 Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa Signing time: Fri 03 Apr 2026 00:34:09 +0000 ROA not before: Fri 03 Apr 2026 00:34:09 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 136520 IP address blocks: 103.91.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1049 (0x419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: Apr 3 00:34:09 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf0b01-300b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ea:47:fa:8e:13:df:c4:d9:f5:61:76:0e:60: 9e:44:7b:31:e6:8a:d1:70:39:4b:bf:0a:a2:d9:5e: b7:12:78:e2:c4:8f:94:be:09:b3:a6:01:2b:7e:a5: 4a:bf:d0:24:96:e4:79:5f:22:12:a3:61:7e:b3:cd: 19:a5:64:29:4f:7a:7f:ac:98:77:15:4f:5a:2a:f8: a0:c4:2f:cd:5d:d1:d8:75:28:c8:38:df:d3:28:1c: e8:22:d7:fb:20:04:54:d0:fa:df:3e:09:4a:8b:f6: 7a:d0:b2:2a:4e:c6:94:b6:42:1f:50:f0:e1:03:7c: c6:34:2f:68:b8:a4:de:aa:f3:8a:d3:42:50:4a:31: 78:b9:14:09:41:c5:f6:3f:57:d3:61:55:1f:4a:d8: c2:15:e7:38:98:eb:08:f1:3c:05:35:e1:82:08:d3: 0d:62:6b:e5:2b:2a:64:be:e0:aa:4b:00:de:ef:9a: 93:5d:f1:6e:6f:fd:47:04:e2:b4:27:5f:af:63:42: 12:34:c9:ab:47:38:01:45:f2:34:d3:75:14:4e:fd: 99:58:8b:d5:13:23:ac:e5:bc:d9:34:99:f9:d9:08: e8:ca:6c:2f:e5:55:24:ce:5d:50:54:95:39:95:01: 6c:cc:1e:d9:8f:d2:c7:98:32:be:f3:8e:81:8c:e9: 55:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:16:03:27:AB:96:19:35:4D:68:AB:24:04:FC:91:E2:F6:4B:AF:9F X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.194.0/24 Signature Algorithm: sha256WithRSAEncryption 76:12:43:d0:62:18:48:df:77:f7:4d:59:b6:7d:09:cc:1b:78: e7:a8:b1:63:97:c8:0c:36:dc:52:92:db:3d:2d:c8:33:1c:e1: ad:b9:7a:5d:7e:c6:e3:5d:4d:65:ce:50:21:21:77:fd:b1:7e: db:1a:14:b0:1a:23:b5:22:10:e3:4e:1c:19:6d:23:78:c4:df: ef:de:9c:da:2d:3d:b4:8f:97:e3:03:02:42:28:06:a6:f2:be: 75:92:06:73:ea:b5:8e:38:6b:1c:6b:e6:32:e6:1f:9a:9a:07: d4:6e:36:fd:e9:79:6c:cc:9e:96:a0:2d:ba:46:00:0f:80:f8: 99:f0:05:d3:51:07:01:aa:39:5a:d3:2b:bd:33:6f:81:0e:0a: 56:35:6e:a5:51:03:19:70:60:67:c4:bc:aa:e0:65:b3:d0:d7: a7:3c:0e:86:79:12:62:2a:fc:50:b4:35:16:fb:a1:e6:cf:4f: a3:48:50:d4:6a:93:42:48:4b:d4:cf:6b:72:4e:77:c6:8d:d2: 2d:a0:1d:7d:e9:ab:92:eb:90:ba:25:18:db:5c:c6:64:4b:d3: 98:42:05:27:f0:60:e9:e3:a6:0b:fa:f6:8f:3b:d9:03:91:b1: ee:34:e2:b5:a1:a0:5a:f7:8a:9f:7b:45:b6:36:cf:22:49:ec: ee:9c:02:60 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjYwNDAzMDAzNDA5WhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGIwMS0zMDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOpH+o4T38TZ9WF2DmCeRHsx5orRcDlLvwqi2V63EnjixI+UvgmzpgErfqVK v9AkluR5XyISo2F+s80ZpWQpT3p/rJh3FU9aKvigxC/NXdHYdSjION/TKBzoItf7 IARU0PrfPglKi/Z60LIqTsaUtkIfUPDhA3zGNC9ouKTeqvOK00JQSjF4uRQJQcX2 P1fTYVUfStjCFec4mOsI8TwFNeGCCNMNYmvlKypkvuCqSwDe75qTXfFub/1HBOK0 J1+vY0ISNMmrRzgBRfI003UUTv2ZWIvVEyOs5bzZNJn52Qjoymwv5VUkzl1QVJU5 lQFszB7Zj9LHmDK+846BjOlVRwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEoWAyer lhk1TWirJAT8keL2S6+fMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE5NkEvMjg3ODVGNjBCRkJGMTFFQ0FFRDQ4QzcxQzRGOUFFMDIvMkRFNEM4QUE5 QjYxMTFFRjk5QTk3QjUyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1vCMA0GCSqGSIb3DQEBCwUAA4IBAQB2EkPQYhhI33f3TVm2fQnM G3jnqLFjl8gMNtxSkts9LcgzHOGtuXpdfsbjXU1lzlAhIXf9sX7bGhSwGiO1IhDj ThwZbSN4xN/v3pzaLT20j5fjAwJCKAam8r51kgZz6rWOOGsca+Yy5h+amgfUbjb9 6XlszJ6WoC26RgAPgPiZ8AXTUQcBqjla0yu9M2+BDgpWNW6lUQMZcGBnxLyq4GWz 0NenPA6GeRJiKvxQtDUW+6Hmz0+jSFDUapNCSEvUz2tyTnfGjdItoB196auS65C6 JRjbXMZkS9OYQgUn8GDp46YL+vaPO9kDkbHuNOK1oaBa94qfe0W2Ns8iSezunAJg -----END CERTIFICATE-----Generated at Fri Apr 17 18:57:15 2026 by rpki-client