$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/DF3F877ED01D11F09BB99C37C4F9AE02.roa File: DF3F877ED01D11F09BB99C37C4F9AE02.roa (raw, json) Hash identifier: MjpUGxFVne7zJz+pWuXSIalHXmjcz+0TUQ4S4Pxy6UM= Subject key identifier: 64:71:94:F0:07:E1:1E:AC:98:56:39:15:48:7D:3F:6B:08:92:63:D7 Certificate issuer: /CN=A91A1D8C/serialNumber=5193BD59949EF9B7DA12720F7D46EE7C4BCA30EC Certificate serial: 5D Authority key identifier: 51:93:BD:59:94:9E:F9:B7:DA:12:72:0F:7D:46:EE:7C:4B:CA:30:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZO9WZSe-bfaEnIPfUbufEvKMOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/DF3F877ED01D11F09BB99C37C4F9AE02.roa Signing time: Thu 16 Apr 2026 04:53:14 +0000 ROA not before: Thu 16 Apr 2026 04:53:14 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 136308 IP address blocks: 103.89.232.0/22 maxlen: 24 2001:df6:6440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/UZO9WZSe-bfaEnIPfUbufEvKMOw.crl rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/UZO9WZSe-bfaEnIPfUbufEvKMOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZO9WZSe-bfaEnIPfUbufEvKMOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D8C, serialNumber=5193BD59949EF9B7DA12720F7D46EE7C4BCA30EC Validity Not Before: Apr 16 04:53:14 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69e06b3a-997a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:04:5f:4d:3c:32:3b:bf:5e:94:87:49:9d:9e: b9:76:5a:82:5a:6a:71:e7:35:9a:dc:f6:c7:d3:51: 40:07:cc:f5:fc:4b:9d:8c:d3:9b:58:1f:66:52:d1: ab:9c:2e:b0:1f:4b:10:f5:d4:ab:34:70:89:c9:3e: 14:e0:00:fd:92:72:99:d6:46:89:44:00:1d:77:92: 15:2e:0f:5b:ed:5a:dc:26:da:18:22:15:0f:35:6c: 3b:81:f0:1d:76:88:30:ed:82:42:85:d7:46:19:2a: 49:12:c5:b6:22:2d:2b:47:c4:75:18:18:3a:ee:5e: 8b:e5:86:4b:2f:33:70:87:bc:12:eb:ef:4e:8a:03: 7b:9b:02:73:5f:fd:05:10:54:4e:8c:4c:fa:7a:55: ae:14:aa:c2:17:d0:e0:94:3b:b0:62:b4:fe:56:bd: 19:98:18:63:26:7b:dd:cc:b1:48:76:b4:6e:f7:b5: be:71:13:da:b6:4b:a7:a5:b6:13:d5:56:05:d4:fc: b3:c9:bf:0d:70:cb:e1:ef:24:dd:ec:42:70:91:32: ce:92:da:d5:4e:8e:29:57:e3:6b:a1:31:2e:69:40: 1e:67:80:ba:e8:23:97:97:fc:a8:59:57:44:a3:81: 4a:6c:6b:38:89:9d:28:8e:6f:62:74:80:59:24:d4: 5e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:71:94:F0:07:E1:1E:AC:98:56:39:15:48:7D:3F:6B:08:92:63:D7 X509v3 Authority Key Identifier: keyid:51:93:BD:59:94:9E:F9:B7:DA:12:72:0F:7D:46:EE:7C:4B:CA:30:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/UZO9WZSe-bfaEnIPfUbufEvKMOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZO9WZSe-bfaEnIPfUbufEvKMOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/DF3F877ED01D11F09BB99C37C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.89.232.0/22 IPv6: 2001:df6:6440::/48 Signature Algorithm: sha256WithRSAEncryption 01:3c:56:05:6d:27:3a:7d:a4:22:fc:bc:fc:07:c0:73:1a:2a: 18:4d:c1:58:15:d6:38:b3:0c:c1:96:00:47:60:72:bd:bb:02: fc:c3:4e:a0:bd:25:b2:6f:22:88:58:e0:a6:7a:f1:98:e6:39: 7f:68:02:c7:90:77:5e:e6:78:fa:ca:5d:2d:4b:30:ea:b3:17: 19:91:36:15:70:0a:b3:aa:db:7c:86:9f:6b:42:fd:e5:ac:af: 8d:2d:8f:93:31:d9:33:89:8c:a2:98:11:f2:0e:7e:f4:7b:2c: 48:9c:3b:93:de:ee:5c:44:89:b8:6e:6e:64:3a:3b:ed:eb:39: e0:48:20:61:4e:b4:3f:96:49:c5:94:04:23:a0:cc:ef:9a:c7: 76:08:12:48:04:05:57:f8:2f:bb:86:0d:3a:28:65:ca:e8:a9: a3:27:ad:1c:1b:c0:66:b5:19:8c:2d:9c:72:b6:4a:47:b4:4c: 09:5e:74:70:76:a8:42:ed:10:13:88:7e:e7:3c:6c:8a:17:14: 38:cb:8f:bc:c4:a1:a3:1e:ec:46:66:43:4c:87:46:d2:6e:15: cb:4a:39:8d:11:ed:bd:55:6a:0d:e6:7a:8e:f6:e6:77:b4:1d: d5:0d:92:ee:2f:09:91:26:5f:8b:34:18:fc:01:3c:ab:a0:37: 21:54:71:80 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUQ4QzExMC8GA1UEBRMoNTE5M0JENTk5NDlFRjlCN0RBMTI3MjBGN0Q0NkVFN0M0 QkNBMzBFQzAeFw0yNjA0MTYwNDUzMTRaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZTA2YjNhLTk5N2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKBF9NPDI7v16Uh0mdnrl2WoJaanHnNZrc9sfTUUAHzPX8S52M05tYH2ZS0auc LrAfSxD11Ks0cInJPhTgAP2ScpnWRolEAB13khUuD1vtWtwm2hgiFQ81bDuB8B12 iDDtgkKF10YZKkkSxbYiLStHxHUYGDruXovlhksvM3CHvBLr706KA3ubAnNf/QUQ VE6MTPp6Va4UqsIX0OCUO7BitP5WvRmYGGMme93MsUh2tG73tb5xE9q2S6elthPV VgXU/LPJvw1wy+HvJN3sQnCRMs6S2tVOjilX42uhMS5pQB5ngLroI5eX/KhZV0Sj gUpsaziJnSiOb2J0gFkk1F77AgMBAAGjggJxMIICbTAdBgNVHQ4EFgQUZHGU8Afh HqyYVjkVSH0/awiSY9cwHwYDVR0jBBgwFoAUUZO9WZSe+bfaEnIPfUbufEvKMOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExRDhDL0EwODE5OTM0RDAx NjExRjBBRDQ5N0E3RUM0RjlBRTAyL1VaTzlXWlNlLWJmYUVuSVBmVWJ1ZkV2S01P dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVVpPOVdaU2UtYmZhRW5JUGZVYnVmRXZLTU93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ4Qy9BMDgxOTkzNEQwMTYxMUYwQUQ0OTdBN0VDNEY5QUUwMi9ERjNGODc3RUQw MUQxMUYwOUJCOTlDMzdDNEY5QUUwMi5yb2EwMAYIKwYBBQUHAQcBAf8EITAfMAwE AgABMAYDBAJnWegwDwQCAAIwCQMHACABDfZkQDANBgkqhkiG9w0BAQsFAAOCAQEA ATxWBW0nOn2kIvy8/AfAcxoqGE3BWBXWOLMMwZYAR2ByvbsC/MNOoL0lsm8iiFjg pnrxmOY5f2gCx5B3XuZ4+spdLUsw6rMXGZE2FXAKs6rbfIafa0L95ayvjS2PkzHZ M4mMopgR8g5+9HssSJw7k97uXESJuG5uZDo77es54EggYU60P5ZJxZQEI6DM75rH dggSSAQFV/gvu4YNOihlyuipoyetHBvAZrUZjC2ccrZKR7RMCV50cHaoQu0QE4h+ 5zxsihcUOMuPvMShox7sRmZDTIdG0m4Vy0o5jRHtvVVqDeZ6jvbmd7Qd1Q2S7i8J kSZfizQY/AE8q6A3IVRxgA== -----END CERTIFICATE-----Generated at Fri Apr 17 13:48:47 2026 by rpki-client