$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa File: DB63CF9A011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: iXoFDC1/xn8eo80BBt5o4qBvONSL8fiFR0NnU+Rlsm4= Subject key identifier: 41:CD:0B:D3:AF:82:20:B2:0D:F2:F6:B5:35:94:6A:EB:35:48:7B:90 Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0D53 Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa Signing time: Thu 04 Jun 2026 18:22:49 +0000 ROA not before: Thu 04 Jun 2026 18:22:49 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 10143 IP address blocks: 43.239.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 18:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3411 (0xd53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE, serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 4 18:22:49 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a21c278-65dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:37:d8:79:ec:72:e1:2d:f3:d2:33:65:c1:07: 83:00:30:71:7c:b8:8c:e4:f0:e8:19:e4:ba:4b:2d: 43:6d:fd:31:17:5f:1d:26:27:cf:61:b1:40:84:61: 7e:76:51:25:09:a3:55:14:e9:c8:d1:8c:be:3a:64: bf:8f:56:d1:52:fd:02:d7:71:60:e9:bc:cf:34:98: c1:87:5c:32:7a:b5:db:fa:8b:ef:fe:f8:6b:2e:13: 32:21:6f:57:db:75:1e:a1:20:a0:16:61:58:98:d6: d4:f6:32:64:9b:e3:4f:aa:9a:62:d3:5a:69:84:bb: 62:99:93:3d:7b:4a:36:f4:ef:34:d6:af:a1:88:18: 4b:19:b7:25:15:7f:e7:0b:10:50:6d:05:4f:8f:23: 78:99:6b:7d:ab:5f:4f:20:07:dc:4d:a4:ed:0f:7b: ed:b2:cb:13:12:af:f1:7c:30:1c:49:ed:38:42:34: e4:c7:b7:44:73:d1:db:fc:53:d3:63:2f:14:ec:bd: aa:58:11:2a:79:8d:7d:07:81:04:af:f2:03:8a:0e: 2a:a9:ed:92:7d:b4:7c:7a:e5:a4:c1:48:7e:a1:23: df:1f:80:92:b3:c8:f2:90:56:bc:d3:85:ac:f3:76: 18:29:77:a5:ae:29:39:7d:d4:d6:da:ac:cd:aa:a0: 9f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:CD:0B:D3:AF:82:20:B2:0D:F2:F6:B5:35:94:6A:EB:35:48:7B:90 X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.239.102.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:f3:f2:91:92:bc:60:e4:62:f4:19:77:d1:30:83:7d:7c:7c: f1:d4:0b:75:b3:71:6c:a6:34:10:f5:cc:7b:83:a6:db:3a:14: 1b:fe:c8:e8:4f:fd:0d:c1:13:61:d9:45:1b:82:a6:29:97:19: ab:bd:3d:e1:f9:76:97:cd:17:05:e9:08:44:f7:4f:ca:e7:93: f1:91:9a:32:83:02:7b:94:19:9e:d9:c4:19:ea:86:ac:b6:11: 73:5c:18:0e:d8:78:28:e5:0f:6e:42:86:25:3e:92:be:f5:ce: 63:f0:c1:76:e5:de:db:62:25:29:ba:9d:2e:4a:45:08:1e:bd: 8b:26:91:19:3b:e7:a1:21:20:e5:cb:37:08:b6:6c:ae:06:49: 37:5b:60:02:28:02:1e:77:27:b7:5f:ff:5b:b3:ed:f5:7f:83: a3:b8:59:6b:7f:0d:73:50:12:b3:25:79:fc:d2:91:30:f6:38: e6:a0:fa:14:01:8c:98:6c:d6:6c:d9:d4:a9:f3:99:38:dc:5e: 51:fa:de:aa:e4:03:bf:90:87:42:26:0f:1d:f1:28:51:23:f6: f6:04:5f:59:af:59:2d:d2:e8:89:80:23:af:18:8f:3d:49:95: 83:6e:9d:6b:8e:94:40:b9:0e:93:b1:fe:b7:39:8f:41:65:b9: e4:93:87:44 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjYwNjA0MTgyMjQ5WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxYzI3OC02NWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlDfYeexy4S3z0jNlwQeDADBxfLiM5PDoGeS6Sy1Dbf0xF18dJifPYbFAhGF+ dlElCaNVFOnI0Yy+OmS/j1bRUv0C13Fg6bzPNJjBh1wyerXb+ovv/vhrLhMyIW9X 23UeoSCgFmFYmNbU9jJkm+NPqppi01pphLtimZM9e0o29O801q+hiBhLGbclFX/n CxBQbQVPjyN4mWt9q19PIAfcTaTtD3vtsssTEq/xfDAcSe04QjTkx7dEc9Hb/FPT Yy8U7L2qWBEqeY19B4EEr/IDig4qqe2SfbR8euWkwUh+oSPfH4CSs8jykFa804Ws 83YYKXelrik5fdTW2qzNqqCflwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEHNC9Ov giCyDfL2tTWUaus1SHuQMB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvREI2M0NGOUEw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAK+9mMA0GCSqGSIb3DQEBCwUAA4IBAQCa8/KRkrxg5GL0GXfRMIN9 fHzx1At1s3FspjQQ9cx7g6bbOhQb/sjoT/0NwRNh2UUbgqYplxmrvT3h+XaXzRcF 6QhE90/K55PxkZoygwJ7lBme2cQZ6oasthFzXBgO2Hgo5Q9uQoYlPpK+9c5j8MF2 5d7bYiUpup0uSkUIHr2LJpEZO+ehISDlyzcItmyuBkk3W2ACKAIedye3X/9bs+31 f4OjuFlrfw1zUBKzJXn80pEw9jjmoPoUAYyYbNZs2dSp85k43F5R+t6q5AO/kIdC Jg8d8ShRI/b2BF9Zr1kt0uiJgCOvGI89SZWDbp1rjpRAuQ6Tsf63OY9BZbnkk4dE -----END CERTIFICATE-----Generated at Sat Jun 13 13:05:44 2026 by rpki-client