$ rpki-client -vvf rpki.apnic.net/member_repository/A91B809B/7678F2FEBA9111EAAAB5CC57C4F9AE02/2D4BDDA29D8E11EDBEBECE73C4F9AE02.roa File: 2D4BDDA29D8E11EDBEBECE73C4F9AE02.roa (raw, json) Hash identifier: Kd24lArMd4vmj1rs5gdPzeRVBVTTdutT9hMWCVkccQM= Subject key identifier: B5:DB:77:2A:D1:BC:31:EE:AA:2B:4A:3C:D9:9D:85:35:89:17:2B:80 Certificate issuer: /CN=A91B809B/serialNumber=1FF4E33ED7730DCE3231D2EDB54D96D9EAB5F7F6 Certificate serial: 0973 Authority key identifier: 1F:F4:E3:3E:D7:73:0D:CE:32:31:D2:ED:B5:4D:96:D9:EA:B5:F7:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H_TjPtdzDc4yMdLttU2W2eq19_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B809B/7678F2FEBA9111EAAAB5CC57C4F9AE02/2D4BDDA29D8E11EDBEBECE73C4F9AE02.roa Signing time: Sat 06 Jun 2026 20:24:25 +0000 ROA not before: Sat 06 Jun 2026 20:24:25 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 136533 IP address blocks: 103.91.240.0/22 maxlen: 22 123.253.72.0/22 maxlen: 22 123.253.74.0/24 maxlen: 24 2401:17c0::/32 maxlen: 32 2401:17c0::/48 maxlen: 48 2401:17c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B809B/7678F2FEBA9111EAAAB5CC57C4F9AE02/H_TjPtdzDc4yMdLttU2W2eq19_Y.crl rsync://rpki.apnic.net/member_repository/A91B809B/7678F2FEBA9111EAAAB5CC57C4F9AE02/H_TjPtdzDc4yMdLttU2W2eq19_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H_TjPtdzDc4yMdLttU2W2eq19_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2419 (0x973) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B809B, serialNumber=1FF4E33ED7730DCE3231D2EDB54D96D9EAB5F7F6 Validity Not Before: Jun 6 20:24:25 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a2481f9-bf32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:72:4b:d6:39:a1:c7:44:09:4d:e4:21:a5:3f: 62:31:6f:60:2d:7a:42:0d:f4:03:46:09:a8:6e:12: 65:01:54:b4:eb:18:25:8c:95:33:22:17:05:d1:d3: 88:8b:6c:0f:56:ce:a1:0d:b1:8c:71:d7:a2:0b:25: 85:0f:cc:e2:29:30:a8:74:69:96:a4:34:bc:20:36: d1:49:e2:a1:47:0a:f6:e5:03:91:43:63:a7:66:b2: c3:c2:22:8c:d2:ec:4a:1f:b7:95:57:d8:d8:bd:12: 9f:3e:8d:d1:ee:a5:3b:4f:7c:5f:45:c1:35:f4:4b: 84:f6:5d:bd:e5:90:69:b8:a5:88:3f:84:f4:d7:7b: 3b:82:de:96:e1:d5:ea:b5:78:92:0d:c2:6e:af:34: 78:fb:42:bd:39:89:e4:3e:5a:e4:f5:b5:03:69:02: 50:4e:38:fc:5d:8d:94:0f:4a:bd:34:44:26:18:5b: ba:6e:22:d4:2a:55:23:a6:20:91:f9:1e:d0:09:e9: 4c:8f:74:54:11:d7:89:d7:2c:60:46:cd:c0:18:8f: ee:93:8c:11:ad:f3:0d:79:cc:91:56:0e:a1:e0:79: 5c:93:70:c3:cd:11:d4:43:35:f3:b5:f4:69:5a:4a: 24:d4:29:ae:fd:34:a7:8e:44:d5:e4:f9:f9:fa:56: 83:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DB:77:2A:D1:BC:31:EE:AA:2B:4A:3C:D9:9D:85:35:89:17:2B:80 X509v3 Authority Key Identifier: keyid:1F:F4:E3:3E:D7:73:0D:CE:32:31:D2:ED:B5:4D:96:D9:EA:B5:F7:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B809B/7678F2FEBA9111EAAAB5CC57C4F9AE02/H_TjPtdzDc4yMdLttU2W2eq19_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H_TjPtdzDc4yMdLttU2W2eq19_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B809B/7678F2FEBA9111EAAAB5CC57C4F9AE02/2D4BDDA29D8E11EDBEBECE73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.91.240.0/22 123.253.72.0/22 IPv6: 2401:17c0::/32 Signature Algorithm: sha256WithRSAEncryption 66:26:15:76:bc:e3:b5:12:1e:b7:a2:03:cc:0a:29:f2:6a:c0: b3:bb:48:02:a3:37:80:9d:eb:bb:3f:71:34:1a:14:ad:29:fa: 23:d8:4c:3a:65:e0:a5:57:2b:a9:ff:8f:27:55:3f:c1:1a:d4: 24:d7:c1:d8:8c:50:e9:3a:f6:ee:6a:2d:59:9a:b9:59:ee:1d: b2:88:b6:0d:9d:2b:19:35:9f:d3:02:47:bb:7c:ee:32:4c:4f: ee:5e:fa:a3:60:fa:c6:e9:0d:d1:a9:3e:6d:29:79:73:28:19: 30:e3:b2:40:58:58:e2:fa:fb:94:b1:cb:48:ca:ac:d8:02:38: 67:3d:7f:d6:a1:60:49:4c:b8:08:63:d9:53:29:f8:6a:b2:43: c0:12:6e:48:90:17:ad:3a:c8:df:be:da:fb:8f:92:11:93:91: 63:d3:37:ff:b0:0c:29:9e:02:f4:cd:32:d0:2a:7b:12:3d:8c: 80:33:35:03:10:84:74:b1:d4:d5:eb:9d:cd:f9:e1:f6:89:8e: 04:e6:4e:17:71:54:7d:ac:19:ad:00:b0:ce:b6:70:bc:01:0b: 33:a5:da:52:f3:82:17:90:d4:6e:a1:18:e6:88:03:4e:bf:68: c9:81:b7:92:6d:f5:de:3e:22:1e:09:49:b8:25:28:fd:a8:a1: d5:44:b0:c4 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwOUIxMTAvBgNVBAUTKDFGRjRFMzNFRDc3MzBEQ0UzMjMxRDJFREI1NEQ5NkQ5 RUFCNUY3RjYwHhcNMjYwNjA2MjAyNDI1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI0ODFmOS1iZjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnJL1jmhx0QJTeQhpT9iMW9gLXpCDfQDRgmobhJlAVS06xgljJUzIhcF0dOI i2wPVs6hDbGMcdeiCyWFD8ziKTCodGmWpDS8IDbRSeKhRwr25QORQ2OnZrLDwiKM 0uxKH7eVV9jYvRKfPo3R7qU7T3xfRcE19EuE9l295ZBpuKWIP4T013s7gt6W4dXq tXiSDcJurzR4+0K9OYnkPlrk9bUDaQJQTjj8XY2UD0q9NEQmGFu6biLUKlUjpiCR +R7QCelMj3RUEdeJ1yxgRs3AGI/uk4wRrfMNecyRVg6h4Hlck3DDzRHUQzXztfRp Wkok1Cmu/TSnjkTV5Pn5+laDfQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFLXbdyrR vDHuqitKPNmdhTWJFyuAMB8GA1UdIwQYMBaAFB/04z7Xcw3OMjHS7bVNltnqtff2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODA5Qi83Njc4RjJGRUJB OTExMUVBQUFCNUNDNTdDNEY5QUUwMi9IX1RqUHRkekRjNHlNZEx0dFUyVzJlcTE5 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hfVGpQdGR6RGM0eU1kTHR0VTJXMmVxMTlfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgwOUIvNzY3OEYyRkVCQTkxMTFFQUFBQjVDQzU3QzRGOUFFMDIvMkQ0QkREQTI5 RDhFMTFFREJFQkVDRTczQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCZ1vwAwQCe/1IMA0EAgACMAcDBQAkARfAMA0GCSqGSIb3DQEBCwUA A4IBAQBmJhV2vOO1Eh63ogPMCinyasCzu0gCozeAneu7P3E0GhStKfoj2Ew6ZeCl Vyup/48nVT/BGtQk18HYjFDpOvbuai1ZmrlZ7h2yiLYNnSsZNZ/TAke7fO4yTE/u XvqjYPrG6Q3RqT5tKXlzKBkw47JAWFji+vuUsctIyqzYAjhnPX/WoWBJTLgIY9lT KfhqskPAEm5IkBetOsjfvtr7j5IRk5Fj0zf/sAwpngL0zTLQKnsSPYyAMzUDEIR0 sdTV653N+eH2iY4E5k4XcVR9rBmtALDOtnC8AQszpdpS84IXkNRuoRjmiANOv2jJ gbeSbfXePiIeCUm4JSj9qKHVRLDE -----END CERTIFICATE-----Generated at Sat Jun 13 10:57:56 2026 by rpki-client