$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/438893AC55BE11EDBDE51983C4F9AE02.roa File: 438893AC55BE11EDBDE51983C4F9AE02.roa (raw, json) Hash identifier: gL7cp7BTVKF8NZn2TWA67vSTXMDPVWx2RqBEPS0dmPw= Subject key identifier: 43:59:36:EB:55:CF:3C:18:24:BE:B4:F8:76:15:A7:12:29:73:FD:49 Certificate issuer: /CN=A91B9011/serialNumber=D5167B970787410957E25D9F87508560F005776E Certificate serial: 0662 Authority key identifier: D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/438893AC55BE11EDBDE51983C4F9AE02.roa Signing time: Tue 14 Apr 2026 23:29:00 +0000 ROA not before: Tue 14 Apr 2026 23:29:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142038 IP address blocks: 103.81.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9011, serialNumber=D5167B970787410957E25D9F87508560F005776E Validity Not Before: Apr 14 23:29:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69decdbc-baae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:19:5f:be:dd:4c:28:02:f6:23:86:61:58:ba: 73:94:a4:e8:8f:16:3d:87:b6:a5:2c:ba:2b:75:8c: 0c:e3:ab:59:ac:f8:af:19:ff:dd:81:64:00:9a:52: 1b:fb:95:2a:4b:a6:7b:81:8a:51:16:13:aa:9e:4f: c9:0f:aa:9d:66:94:7f:be:aa:bf:73:73:0f:38:c8: 9c:73:29:56:92:c4:c6:73:d2:4c:ca:0d:8e:4f:ba: 45:87:c4:dc:ab:ad:7e:30:01:86:d1:24:ad:5d:6e: 3c:43:dc:ae:14:29:41:7e:79:31:8d:c8:b9:a9:1b: fc:1c:8f:f3:60:33:3c:82:23:d0:2c:4c:f3:58:ae: c6:8c:7c:46:a3:f3:6e:04:76:52:e5:2a:92:70:e7: c7:2d:18:9c:96:03:7a:27:cf:e1:a9:0a:b9:64:3a: 62:03:61:8a:e2:a9:70:c5:d6:d1:20:b1:d0:1d:e0: ed:87:2e:d6:a6:29:e8:63:ab:23:f9:55:4a:f1:7d: e3:24:51:63:4f:0d:75:15:26:7d:f3:3c:4a:9d:e2: b4:c1:1b:60:52:98:d2:28:9a:93:75:8e:7f:6d:d5: c1:59:a1:27:44:e6:7e:a5:d2:0c:f9:23:01:dc:19: f1:6d:14:d4:74:2a:eb:59:b6:1d:8f:4b:7a:9c:dd: b7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:59:36:EB:55:CF:3C:18:24:BE:B4:F8:76:15:A7:12:29:73:FD:49 X509v3 Authority Key Identifier: keyid:D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/438893AC55BE11EDBDE51983C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.81.245.0/24 Signature Algorithm: sha256WithRSAEncryption d0:45:d1:75:4a:d6:fe:44:00:1c:0c:97:b4:c6:97:0d:ee:ff: 1d:7f:b2:90:34:66:29:18:c7:be:f4:38:99:91:70:dd:34:a5: d6:98:07:d0:f1:00:d3:f9:a1:b9:42:a5:13:88:6e:f8:7d:47: f9:56:26:96:e4:fa:e6:ea:a8:f5:17:48:99:01:da:20:0d:47: 92:3e:49:cf:12:da:08:a0:ba:96:ce:16:49:68:24:a4:a0:64: 7d:ed:e7:ff:d9:52:a7:b3:42:f4:b4:87:f8:eb:81:08:74:32: 34:25:11:f0:67:b7:fc:7b:cd:cd:ee:22:b6:54:5d:98:71:51: f7:80:0f:33:6d:3d:5b:b8:71:fb:ce:1e:78:ab:89:80:0c:ac: 8a:c4:92:3c:2b:9d:14:44:c4:5c:d8:43:25:0f:99:1f:ab:bb: 73:3f:60:a4:75:38:d2:32:7e:d8:80:51:0b:bb:9d:df:07:68: e6:38:c2:54:c1:f4:aa:e3:cd:3e:5b:99:93:3b:fb:78:fa:fb: 5c:55:0f:b2:61:ca:a5:0e:7e:92:2e:c4:51:b6:bc:39:22:a4: 7f:5e:72:cb:5d:48:43:75:7e:24:60:47:8b:a9:d4:9c:b6:18: 25:ed:c9:28:6f:b3:95:5c:93:be:87:27:9d:e0:8a:8c:00:8f: 38:58:9f:d4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkwMTExMTAvBgNVBAUTKEQ1MTY3Qjk3MDc4NzQxMDk1N0UyNUQ5Rjg3NTA4NTYw RjAwNTc3NkUwHhcNMjYwNDE0MjMyOTAwWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWRlY2RiYy1iYWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhlfvt1MKAL2I4ZhWLpzlKTojxY9h7alLLordYwM46tZrPivGf/dgWQAmlIb +5UqS6Z7gYpRFhOqnk/JD6qdZpR/vqq/c3MPOMiccylWksTGc9JMyg2OT7pFh8Tc q61+MAGG0SStXW48Q9yuFClBfnkxjci5qRv8HI/zYDM8giPQLEzzWK7GjHxGo/Nu BHZS5SqScOfHLRiclgN6J8/hqQq5ZDpiA2GK4qlwxdbRILHQHeDthy7WpinoY6sj +VVK8X3jJFFjTw11FSZ98zxKneK0wRtgUpjSKJqTdY5/bdXBWaEnROZ+pdIM+SMB 3BnxbRTUdCrrWbYdj0t6nN23CQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFENZNutV zzwYJL60+HYVpxIpc/1JMB8GA1UdIwQYMBaAFNUWe5cHh0EJV+Jdn4dQhWDwBXdu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTAxMS8zODg4RTBDNEM3 M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFRbFg0bDJmaDFDRllQQUZk MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFSWjdsd2VIUVFsWDRsMmZoMUNGWVBBRmQyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkwMTEvMzg4OEUwQzRDNzNBMTFFQjkwMDc1NTEwQzRGOUFFMDIvNDM4ODkzQUM1 NUJFMTFFREJERTUxOTgzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1H1MA0GCSqGSIb3DQEBCwUAA4IBAQDQRdF1Stb+RAAcDJe0xpcN 7v8df7KQNGYpGMe+9DiZkXDdNKXWmAfQ8QDT+aG5QqUTiG74fUf5ViaW5Prm6qj1 F0iZAdogDUeSPknPEtoIoLqWzhZJaCSkoGR97ef/2VKns0L0tIf464EIdDI0JRHw Z7f8e83N7iK2VF2YcVH3gA8zbT1buHH7zh54q4mADKyKxJI8K50URMRc2EMlD5kf q7tzP2CkdTjSMn7YgFELu53fB2jmOMJUwfSq480+W5mTO/t4+vtcVQ+yYcqlDn6S LsRRtrw5IqR/XnLLXUhDdX4kYEeLqdScthgl7ckob7OVXJO+hyed4IqMAI84WJ/U -----END CERTIFICATE-----Generated at Sat Apr 18 04:59:59 2026 by rpki-client