$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/685F0CBA031211F1BBBCC8A9163D8C67.roa File: 685F0CBA031211F1BBBCC8A9163D8C67.roa (raw, json) Hash identifier: NxlgbUimOupPTjcXRwh01KDTfYdr+Bp3csROuFT6/PM= Subject key identifier: 21:19:47:13:F7:4B:28:A7:99:E6:44:5F:54:0E:37:47:4E:90:0B:5A Certificate issuer: /CN=A91A5B07/serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Certificate serial: 03DB Authority key identifier: F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/685F0CBA031211F1BBBCC8A9163D8C67.roa Signing time: Fri 03 Apr 2026 00:34:36 +0000 ROA not before: Fri 03 Apr 2026 00:34:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135377 IP address blocks: 103.211.194.0/24 maxlen: 24 103.211.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B07, serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Validity Not Before: Apr 3 00:34:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cf0b1b-65cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:99:a1:15:18:e6:eb:d2:a7:63:c8:4b:75:18: 81:7d:62:a2:c6:5c:00:f5:3f:27:ce:40:d4:4f:93: 38:04:22:7b:aa:29:20:d1:bf:e4:ac:04:32:fb:2b: db:f1:78:64:9e:5e:f7:63:4d:37:f9:4f:cd:25:e6: 10:4a:ea:13:ba:1a:20:5e:37:89:97:06:35:4f:b2: 00:3a:e8:84:6c:22:b3:a5:98:a9:11:a3:c1:41:a1: ec:f3:22:51:f6:51:b9:59:54:01:83:6d:8a:49:d7: e1:b6:19:b1:8a:cd:fb:ac:27:a1:a5:f2:01:12:16: 6f:fc:10:88:ed:c6:9f:22:2e:03:fd:9f:a1:6a:a2: e3:26:a0:8e:12:14:5d:0c:a4:4c:2c:34:1d:ef:6c: c9:e9:0b:3e:ee:24:1b:7e:54:8a:20:b8:17:71:ef: 06:18:be:96:e9:76:5b:b7:aa:28:df:f6:35:9e:94: 9f:81:38:68:6e:aa:b9:fe:40:c2:45:88:7b:18:b8: f0:d8:a5:f0:a4:94:23:e4:ce:55:c8:3a:f5:dd:00: f4:ad:15:cf:65:83:b5:57:ea:73:99:5d:85:bd:29: 8a:26:1a:8e:40:06:b3:0a:ff:c5:93:d8:0a:07:0b: 92:35:38:cf:5b:de:8e:14:a3:70:ca:56:89:cc:b5: 68:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:19:47:13:F7:4B:28:A7:99:E6:44:5F:54:0E:37:47:4E:90:0B:5A X509v3 Authority Key Identifier: keyid:F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/685F0CBA031211F1BBBCC8A9163D8C67.roa sbgp-ipAddrBlock: critical IPv4: 103.211.194.0/23 Signature Algorithm: sha256WithRSAEncryption 85:48:a5:c4:27:39:a4:16:1a:0b:57:58:48:dd:47:af:c6:4e: b9:b5:7f:c6:58:45:45:59:88:9f:ef:50:f3:05:16:39:19:54: f6:4a:96:36:92:4f:89:ec:d5:0e:b7:b0:4e:c2:b3:ff:8d:5f: dd:27:7b:65:2b:b3:40:07:26:23:ed:93:e3:bf:94:50:55:c8: 21:ee:90:9c:8f:82:3a:22:76:37:aa:1e:e1:df:ea:bd:1e:6c: 3d:13:2e:24:7a:8e:d5:bc:12:55:eb:01:02:35:37:67:74:2a: 2c:0a:17:46:e8:13:b5:ca:15:f0:a3:1e:d0:67:50:89:d2:47: 5d:b4:e9:12:51:f2:57:1f:5f:e2:03:3d:25:cd:87:6d:01:61: e4:ec:1c:ec:6c:01:f5:13:bd:59:be:12:37:f6:57:33:86:17: f8:f9:8c:8c:16:8b:cc:5d:0a:f2:ca:eb:59:68:c4:fc:ea:9f: 59:10:67:06:9a:a9:de:7b:bd:b6:2f:d9:c3:7a:11:43:61:d1: 42:00:3a:b5:39:be:60:d8:d4:71:11:43:df:c1:f6:b2:31:bb: b8:7d:86:05:3f:c3:75:3b:69:ad:47:28:f2:fb:1d:eb:57:a4: e7:62:25:96:4c:ae:fb:32:0f:58:d6:f7:d7:64:ce:57:d6:25: dd:28:b0:43 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCMDcxMTAvBgNVBAUTKEY0RkZGRTYwRTdENjNCRTRGMTgxOUJCQTg0Q0Q1QjIw NDc0QzkxQzYwHhcNMjYwNDAzMDAzNDM2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGIxYi02NWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pmhFRjm69KnY8hLdRiBfWKixlwA9T8nzkDUT5M4BCJ7qikg0b/krAQy+yvb 8Xhknl73Y003+U/NJeYQSuoTuhogXjeJlwY1T7IAOuiEbCKzpZipEaPBQaHs8yJR 9lG5WVQBg22KSdfhthmxis37rCehpfIBEhZv/BCI7cafIi4D/Z+haqLjJqCOEhRd DKRMLDQd72zJ6Qs+7iQbflSKILgXce8GGL6W6XZbt6oo3/Y1npSfgThobqq5/kDC RYh7GLjw2KXwpJQj5M5VyDr13QD0rRXPZYO1V+pzmV2FvSmKJhqOQAazCv/Fk9gK BwuSNTjPW96OFKNwylaJzLVoWwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCEZRxP3 SyinmeZEX1QON0dOkAtaMB8GA1UdIwQYMBaAFPT//mDn1jvk8YGbuoTNWyBHTJHG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUIwNy83MkE0OEE3NkND RTExMUVDQkJBMDVDMkNDNEY5QUUwMi85UF8tWU9mV08tVHhnWnU2aE0xYklFZE1r Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQXy1ZT2ZXTy1UeGdadTZoTTFiSUVkTWtjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVCMDcvNzJBNDhBNzZDQ0UxMTFFQ0JCQTA1QzJDQzRGOUFFMDIvNjg1RjBDQkEw MzEyMTFGMUJCQkNDOEE5MTYzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ9PCMA0GCSqGSIb3DQEBCwUAA4IBAQCFSKXEJzmkFhoLV1hI3Uev xk65tX/GWEVFWYif71DzBRY5GVT2SpY2kk+J7NUOt7BOwrP/jV/dJ3tlK7NAByYj 7ZPjv5RQVcgh7pCcj4I6InY3qh7h3+q9Hmw9Ey4keo7VvBJV6wECNTdndCosChdG 6BO1yhXwox7QZ1CJ0kddtOkSUfJXH1/iAz0lzYdtAWHk7BzsbAH1E71ZvhI39lcz hhf4+YyMFovMXQryyutZaMT86p9ZEGcGmqnee722L9nDehFDYdFCADq1Ob5g2NRx EUPfwfayMbu4fYYFP8N1O2mtRyjy+x3rV6TnYiWWTK77Mg9Y1vfXZM5X1iXdKLBD -----END CERTIFICATE-----Generated at Fri Apr 17 17:46:28 2026 by rpki-client