$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/21A9C2D4221211EF9624DB0CC4F9AE02.roa File: 21A9C2D4221211EF9624DB0CC4F9AE02.roa (raw, json) Hash identifier: gjazV/iVCkpQTSN3FdEKb8gzMy16E4WeeBKJNLMtc/Y= Subject key identifier: 0F:F7:1C:9E:E1:73:19:15:2C:C4:DE:55:6B:E6:04:A6:AC:7D:2E:22 Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0D40 Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/21A9C2D4221211EF9624DB0CC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:53:00 +0000 ROA not before: Wed 30 Apr 2025 18:28:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133895 IP address blocks: 103.6.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3392 (0xd40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: Apr 30 18:28:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a444bc-6c21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:17:17:cb:23:d7:8b:66:6a:f1:13:1d:05:b9: dd:c2:76:29:26:c7:29:12:d7:53:3b:af:a2:30:65: b2:ca:ad:a7:5e:a7:8d:91:0a:33:88:65:49:60:5e: 1a:25:32:96:b5:d7:b5:28:03:2d:6c:15:fa:fc:6d: 16:75:01:ce:69:22:ee:26:27:d1:19:81:67:91:41: 1a:14:e2:82:e0:30:c6:de:1d:73:da:66:c6:6b:c5: ba:b7:47:54:da:9a:17:a7:8d:41:01:1d:ec:c8:26: e6:48:f8:75:09:b1:d5:b9:ff:6b:3a:0c:19:30:52: 6d:71:28:31:f3:3c:f4:5d:5d:81:b7:d1:db:87:b7: 83:30:e5:61:75:16:76:13:74:af:18:49:7b:7e:10: 48:b7:d2:bf:c4:13:47:f1:24:db:00:ed:ce:25:22: c7:29:c8:6f:31:59:e1:ff:8c:d8:d4:11:89:2f:ca: 25:b3:79:65:a6:35:7c:c5:61:48:9c:55:df:f9:5b: 16:64:bc:71:5c:c4:4f:9b:f5:4c:2a:1e:be:17:5f: 1f:ac:bb:9b:a2:76:32:71:35:69:9c:ed:18:96:9a: f1:66:c4:f5:7d:bd:f0:16:d4:54:8e:1f:62:ac:f2: 03:1d:b8:67:a2:d7:fd:e1:49:f6:80:64:f7:7e:d0: 2e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F7:1C:9E:E1:73:19:15:2C:C4:DE:55:6B:E6:04:A6:AC:7D:2E:22 X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/21A9C2D4221211EF9624DB0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.6.209.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:ff:e8:26:a2:f7:8a:44:cb:4c:f9:e0:18:e2:9d:27:74:02: f0:c0:51:fc:4a:95:87:db:02:cc:0e:96:79:cc:e3:e7:55:91: 2a:3d:dd:52:e1:84:97:97:c4:81:d1:ff:1e:7f:a7:90:2e:e1: 13:7b:df:3d:6b:4c:17:ba:ef:f3:2d:76:56:46:79:6a:f5:2b: 01:fc:e7:2e:04:fc:33:df:ee:c1:e7:8b:14:c7:6f:56:52:d2: 8c:22:b3:9b:0a:6c:0b:36:f1:41:8b:04:e8:4d:6c:a6:04:b6: ad:10:cf:c0:8a:37:f9:ed:b0:5c:7c:14:ba:ec:62:b1:60:4c: 3b:16:4b:c9:a7:89:74:89:e7:16:f9:d0:9d:7c:16:f9:10:e3: 60:f1:22:95:c4:b9:fc:b4:f8:11:56:1c:5c:44:33:6d:0c:3b: f7:29:98:86:b6:11:62:7b:0d:85:23:78:20:65:55:36:4c:b7: ea:7b:4a:74:d2:84:18:be:8f:41:5c:2d:f0:5d:45:f2:a2:36: 4a:93:48:8a:f5:8d:91:46:66:01:2d:40:1b:79:30:5c:91:a0: b9:a2:8c:41:c6:e3:fc:2a:bc:5c:d9:f2:51:ff:ab:02:94:89: fe:4f:fe:9e:7f:e4:46:88:2e:25:09:65:4a:66:89:93:4c:c0: 43:fc:d0:fa -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjUwNDMwMTgyODE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDRiYy02YzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RcXyyPXi2Zq8RMdBbndwnYpJscpEtdTO6+iMGWyyq2nXqeNkQoziGVJYF4a JTKWtde1KAMtbBX6/G0WdQHOaSLuJifRGYFnkUEaFOKC4DDG3h1z2mbGa8W6t0dU 2poXp41BAR3syCbmSPh1CbHVuf9rOgwZMFJtcSgx8zz0XV2Bt9Hbh7eDMOVhdRZ2 E3SvGEl7fhBIt9K/xBNH8STbAO3OJSLHKchvMVnh/4zY1BGJL8ols3llpjV8xWFI nFXf+VsWZLxxXMRPm/VMKh6+F18frLubonYycTVpnO0YlprxZsT1fb3wFtRUjh9i rPIDHbhnotf94Un2gGT3ftAuUQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA/3HJ7h cxkVLMTeVWvmBKasfS4iMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJBODAvQjk4RTgxRDYwNUI5MTFFQTgyMDg5OTZFQzRGOUFFMDIvMjFBOUMyRDQy MjEyMTFFRjk2MjREQjBDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZwbRMA0GCSqGSIb3DQEBCwUAA4IBAQBt/+gmoveKRMtM+eAY4p0n dALwwFH8SpWH2wLMDpZ5zOPnVZEqPd1S4YSXl8SB0f8ef6eQLuETe989a0wXuu/z LXZWRnlq9SsB/OcuBPwz3+7B54sUx29WUtKMIrObCmwLNvFBiwToTWymBLatEM/A ijf57bBcfBS67GKxYEw7FkvJp4l0iecW+dCdfBb5EONg8SKVxLn8tPgRVhxcRDNt DDv3KZiGthFiew2FI3ggZVU2TLfqe0p00oQYvo9BXC3wXUXyojZKk0iK9Y2RRmYB LUAbeTBckaC5ooxBxuP8Krxc2fJR/6sClIn+T/6ef+RGiC4lCWVKZomTTMBD/ND6 -----END CERTIFICATE-----Generated at Mon Mar 2 20:36:21 2026 by rpki-client