$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/10238C387B1411EA8C690465C4F9AE02.roa File: 10238C387B1411EA8C690465C4F9AE02.roa (raw, json) Hash identifier: 6zwL+CyahpyzOQDZ6R2F0afujTGC0qWAsIklrEXhVhU= Subject key identifier: 1D:86:43:BF:E7:24:0B:10:C9:50:7E:C4:82:79:D6:FF:5E:8A:68:84 Certificate issuer: /CN=A91A91A2/serialNumber=6E926BCE619E4F500ABFA424FDB0764D258CAB53 Certificate serial: 0A9A Authority key identifier: 6E:92:6B:CE:61:9E:4F:50:0A:BF:A4:24:FD:B0:76:4D:25:8C:AB:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/10238C387B1411EA8C690465C4F9AE02.roa Signing time: Thu 02 Apr 2026 20:21:55 +0000 ROA not before: Thu 02 Apr 2026 20:21:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136477 IP address blocks: 103.89.156.0/22 maxlen: 24 2400:f0c0::/32 maxlen: 36 2400:f0c0:1::/48 maxlen: 48 2400:f0c0:2::/48 maxlen: 48 2400:f0c0:3::/48 maxlen: 48 2400:f0c0:4::/48 maxlen: 48 2400:f0c0:5::/48 maxlen: 48 2400:f0c0:6::/48 maxlen: 48 2400:f0c0:7::/48 maxlen: 48 2400:f0c0:8::/48 maxlen: 48 2400:f0c0:9::/48 maxlen: 48 2400:f0c0:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.crl rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2714 (0xa9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91A2, serialNumber=6E926BCE619E4F500ABFA424FDB0764D258CAB53 Validity Not Before: Apr 2 20:21:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cecfe2-527e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:27:27:f9:8a:35:cf:0a:cc:65:8e:3e:2f:32: 2c:35:51:66:a4:bd:98:de:d1:12:9a:38:4e:ff:aa: a2:e4:99:19:92:42:e8:87:07:06:1f:13:84:2c:5b: e9:f2:57:e3:08:4a:0a:92:a5:55:f7:6c:8e:74:a8: ec:ff:c9:d0:59:7c:bc:bd:19:61:11:37:a1:ef:ff: 58:be:aa:31:bb:e1:2b:a1:e1:65:35:e8:78:4c:bb: e0:e1:25:ae:54:85:2f:10:ac:1a:17:d7:b1:12:c2: 7b:33:ad:45:50:40:f6:ee:76:09:15:1c:7d:9a:a7: bb:3b:49:81:64:f3:bd:02:d6:e3:6d:51:44:a6:c4: 15:34:fb:e7:64:c7:25:82:ae:82:80:26:ce:77:b2: ab:62:3d:af:ca:03:1b:f5:68:41:5e:cc:db:5b:98: ff:7b:8d:6e:6f:67:48:28:50:56:a8:b8:ce:10:dc: 67:b4:85:09:e4:14:c7:25:03:db:1d:b2:3b:78:1e: 21:a7:6a:ae:1e:1b:d8:26:a4:a4:c0:ea:c5:77:d5: b7:b4:b9:ed:dc:9c:5c:8a:46:cf:aa:9f:bc:87:ac: c1:95:d6:ca:62:6c:27:fe:2c:c9:d0:df:56:93:95: 6e:0d:fe:0e:64:be:cc:a7:b1:de:3f:bc:3b:7f:59: b2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:86:43:BF:E7:24:0B:10:C9:50:7E:C4:82:79:D6:FF:5E:8A:68:84 X509v3 Authority Key Identifier: keyid:6E:92:6B:CE:61:9E:4F:50:0A:BF:A4:24:FD:B0:76:4D:25:8C:AB:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/10238C387B1411EA8C690465C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.89.156.0/22 IPv6: 2400:f0c0::/32 Signature Algorithm: sha256WithRSAEncryption a9:9a:b4:10:c5:2f:41:0f:e5:3f:c0:66:2a:22:4f:f5:f4:a2: 35:62:31:81:b9:55:8f:67:1f:1a:03:8b:f4:05:4d:08:63:1b: d8:72:e6:75:43:56:03:b4:ed:c0:6a:5d:c8:34:f0:7c:50:70: 14:2f:9f:17:1c:94:0c:a5:49:9d:9a:40:40:f4:07:94:52:67: ae:e8:e2:a4:15:9d:b4:0a:70:db:5e:2b:54:27:6e:09:82:a1: a0:c1:36:14:5c:17:e5:23:09:4a:bf:64:78:1a:30:df:99:94: 7b:34:89:e6:ba:3c:be:e6:b1:bc:5f:95:7c:30:39:a0:33:4c: d3:e4:41:b9:47:d1:ad:a7:f0:1d:81:d7:43:53:d2:e6:ca:ef: 91:6f:ee:8a:b4:2a:e8:9b:37:3f:82:95:36:a6:bf:39:3c:97: fc:ed:93:61:6e:dc:9b:e2:dc:e2:2b:b8:68:72:27:a7:59:61: ad:8d:69:99:40:99:86:ab:2a:6c:1c:19:ab:51:53:f2:46:bd: 0b:73:a1:cd:47:0c:f7:e4:15:1a:92:33:39:40:59:e7:d1:8a: 30:08:61:86:b2:c1:5f:eb:fb:26:22:2b:f8:6d:40:2c:fe:61: 87:c2:33:72:8c:4f:61:17:d5:9e:11:00:c4:b1:56:75:11:62: c3:2b:4b:50 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQTIxMTAvBgNVBAUTKDZFOTI2QkNFNjE5RTRGNTAwQUJGQTQyNEZEQjA3NjRE MjU4Q0FCNTMwHhcNMjYwNDAyMjAyMTU1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlY2ZlMi01MjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsScn+Yo1zwrMZY4+LzIsNVFmpL2Y3tESmjhO/6qi5JkZkkLohwcGHxOELFvp 8lfjCEoKkqVV92yOdKjs/8nQWXy8vRlhETeh7/9Yvqoxu+EroeFlNeh4TLvg4SWu VIUvEKwaF9exEsJ7M61FUED27nYJFRx9mqe7O0mBZPO9AtbjbVFEpsQVNPvnZMcl gq6CgCbOd7KrYj2vygMb9WhBXszbW5j/e41ub2dIKFBWqLjOENxntIUJ5BTHJQPb HbI7eB4hp2quHhvYJqSkwOrFd9W3tLnt3JxcikbPqp+8h6zBldbKYmwn/izJ0N9W k5VuDf4OZL7Mp7HeP7w7f1mycQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFB2GQ7/n JAsQyVB+xIJ51v9eimiEMB8GA1UdIwQYMBaAFG6Sa85hnk9QCr+kJP2wdk0ljKtT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFBMi84OTcxMzA5QzdC MTIxMUVBQTkyMTBGNjBDNEY5QUUwMi9icEpyem1HZVQxQUt2NlFrX2JCMlRTV01x MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JwSnJ6bUdlVDFBS3Y2UWtfYkIyVFNXTXExTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkxQTIvODk3MTMwOUM3QjEyMTFFQUE5MjEwRjYwQzRGOUFFMDIvMTAyMzhDMzg3 QjE0MTFFQThDNjkwNDY1QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ1mcMA0EAgACMAcDBQAkAPDAMA0GCSqGSIb3DQEBCwUAA4IBAQCp mrQQxS9BD+U/wGYqIk/19KI1YjGBuVWPZx8aA4v0BU0IYxvYcuZ1Q1YDtO3Aal3I NPB8UHAUL58XHJQMpUmdmkBA9AeUUmeu6OKkFZ20CnDbXitUJ24JgqGgwTYUXBfl IwlKv2R4GjDfmZR7NInmujy+5rG8X5V8MDmgM0zT5EG5R9Gtp/AdgddDU9Lmyu+R b+6KtCromzc/gpU2pr85PJf87ZNhbtyb4tziK7hocienWWGtjWmZQJmGqypsHBmr UVPyRr0Lc6HNRwz35BUakjM5QFnn0YowCGGGssFf6/smIiv4bUAs/mGHwjNyjE9h F9WeEQDEsVZ1EWLDK0tQ -----END CERTIFICATE-----Generated at Fri Apr 17 13:54:44 2026 by rpki-client