$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa File: CFDF8B8A5B5D11EE967F161DC4F9AE02.roa (raw, json) Hash identifier: Vj7o88kIi1gzoKZrYduw49KYBvPlvY9XiAyKSejHJoM= Subject key identifier: 59:91:A7:FD:2C:B8:09:33:54:FD:27:7B:11:DE:E7:6B:64:86:93:26 Certificate issuer: /CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Certificate serial: 0A9B Authority key identifier: A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa Signing time: Thu 04 Jun 2026 20:23:45 +0000 ROA not before: Thu 04 Jun 2026 20:23:45 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 9370 IP address blocks: 103.26.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 19:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2715 (0xa9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A6C, serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Validity Not Before: Jun 4 20:23:45 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a21ded1-da80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b7:d4:45:09:cc:80:2d:38:c5:d3:64:26:ef: 99:ee:63:b9:d0:e3:50:88:c6:ae:5c:ed:2d:d2:e0: db:b7:3d:62:95:c1:2a:7e:e9:13:e8:26:38:af:fa: 73:e7:25:8f:aa:8f:88:d1:fe:cc:43:ea:58:5b:5d: df:c6:30:91:22:8b:eb:22:46:86:5e:3c:23:5b:76: a8:c5:43:df:ac:5b:0f:30:37:39:83:9a:0f:ff:89: 9b:4f:b1:4c:cf:94:28:fa:40:5b:31:2b:6d:5b:62: 8d:d5:e8:00:8b:d1:76:48:ac:c7:e0:09:ff:c9:e5: bb:4b:a1:72:6d:61:a7:af:5d:ac:53:73:6c:f6:71: 1f:6b:d8:bd:c3:6b:bf:8b:21:76:09:50:c9:26:4b: 48:d1:2d:2e:49:2a:98:4b:f6:48:e6:92:b9:97:d3: 6d:10:97:7a:fe:34:60:59:d1:31:88:02:55:39:b6: 8b:69:3b:45:bf:a9:16:0c:3f:9f:63:0f:0a:af:63: 7b:83:9e:ee:c9:76:4c:bc:ac:ef:b4:06:c0:11:8f: 49:18:d5:e2:3b:8e:cb:78:ea:30:2b:b6:54:fc:8e: d7:fc:ca:18:1b:9e:1a:6a:44:b0:39:6b:de:40:f6: 82:62:13:23:48:d4:5e:e5:cd:32:92:0d:9f:cd:18: 4a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:91:A7:FD:2C:B8:09:33:54:FD:27:7B:11:DE:E7:6B:64:86:93:26 X509v3 Authority Key Identifier: keyid:A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.26.32.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:f2:4c:c9:5e:cd:f7:c7:fb:40:2e:f8:38:e9:c3:51:2d:e8: 9f:ba:8c:8d:31:3e:e9:51:e3:b0:f3:d1:e5:d2:c3:69:13:68: 37:3b:84:44:57:6a:71:6c:76:27:48:0b:a2:7d:0f:75:ea:9e: 6f:6d:b6:a6:7f:76:43:e6:e0:15:ea:63:f3:a7:ff:0e:92:b2: 0e:1b:14:d7:0c:75:86:97:47:5b:53:96:44:31:f0:26:45:95: 70:d0:e8:6c:bd:82:af:74:fa:dc:a4:85:f2:9c:5e:7b:1d:18: 09:36:4a:fc:c6:0c:ec:4a:09:37:3a:59:c2:5b:2a:39:d7:d1: a3:6a:94:c4:3c:0d:70:23:4d:62:95:f0:f9:8d:ed:85:67:9f: 45:f3:ef:27:f8:3a:14:b4:93:a1:2c:5c:f5:51:62:28:03:a0: 8f:c2:29:c4:d5:0d:65:b9:f5:e3:2d:b0:32:48:9e:3b:28:6f: 76:7c:6b:51:4c:95:85:0a:7f:dd:f3:94:27:41:2a:b0:53:a3: 96:17:71:87:99:1b:dd:c4:57:46:dd:28:33:00:4f:d5:a8:77: 30:77:e0:6c:ef:3d:90:28:59:32:d2:5c:f4:21:d0:3d:1d:d0: af:60:41:94:77:7d:37:ff:d8:a2:1b:f9:28:57:ef:14:1c:26: 8b:52:56:c7 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBBNkMxMTAvBgNVBAUTKEE3ODdBNjNFNDlFRThFQzZGOTc1MTE2MDdGMUI3QzVC MERGMTE2NEUwHhcNMjYwNjA0MjAyMzQ1WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxZGVkMS1kYTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LfURQnMgC04xdNkJu+Z7mO50ONQiMauXO0t0uDbtz1ilcEqfukT6CY4r/pz 5yWPqo+I0f7MQ+pYW13fxjCRIovrIkaGXjwjW3aoxUPfrFsPMDc5g5oP/4mbT7FM z5Qo+kBbMSttW2KN1egAi9F2SKzH4An/yeW7S6FybWGnr12sU3Ns9nEfa9i9w2u/ iyF2CVDJJktI0S0uSSqYS/ZI5pK5l9NtEJd6/jRgWdExiAJVObaLaTtFv6kWDD+f Yw8Kr2N7g57uyXZMvKzvtAbAEY9JGNXiO47LeOowK7ZU/I7X/MoYG54aakSwOWve QPaCYhMjSNRe5c0ykg2fzRhKLwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFmRp/0s uAkzVP0nexHe52tkhpMmMB8GA1UdIwQYMBaAFKeHpj5J7o7G+XURYH8bfFsN8RZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEE2Qy9COTE2RjM4ODgy QzIxMUVBOUE1MTQ2MzlDNEY5QUUwMi9wNGVtUGtudWpzYjVkUkZnZnh0OFd3M3hG azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A0ZW1Qa251anNiNWRSRmdmeHQ4V3czeEZrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBBNkMvQjkxNkYzODg4MkMyMTFFQTlBNTE0NjM5QzRGOUFFMDIvQ0ZERjhCOEE1 QjVEMTFFRTk2N0YxNjFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZxogMA0GCSqGSIb3DQEBCwUAA4IBAQA98kzJXs33x/tALvg46cNR LeifuoyNMT7pUeOw89Hl0sNpE2g3O4REV2pxbHYnSAuifQ916p5vbbamf3ZD5uAV 6mPzp/8OkrIOGxTXDHWGl0dbU5ZEMfAmRZVw0OhsvYKvdPrcpIXynF57HRgJNkr8 xgzsSgk3OlnCWyo519GjapTEPA1wI01ilfD5je2FZ59F8+8n+DoUtJOhLFz1UWIo A6CPwinE1Q1lufXjLbAySJ47KG92fGtRTJWFCn/d85QnQSqwU6OWF3GHmRvdxFdG 3SgzAE/VqHcwd+Bs7z2QKFky0lz0IdA9HdCvYEGUd303/9iiG/koV+8UHCaLUlbH -----END CERTIFICATE-----Generated at Sat Jun 13 16:44:23 2026 by rpki-client