$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/862D5B3A2C8611EEB04B7B66C4F9AE02.roa File: 862D5B3A2C8611EEB04B7B66C4F9AE02.roa (raw, json) Hash identifier: JgjENRgm+cP4ig92SSnsnPe7s2x9TXGIP7ad+E5lw4A= Subject key identifier: 8E:EB:7B:D5:8E:E3:B0:67:5C:1E:D6:95:81:F7:AF:7F:AC:14:47:E8 Certificate issuer: /CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Certificate serial: 0234 Authority key identifier: B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/862D5B3A2C8611EEB04B7B66C4F9AE02.roa Signing time: Fri 05 Jun 2026 03:34:30 +0000 ROA not before: Fri 05 Jun 2026 03:34:30 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 150371 IP address blocks: 103.204.32.0/24 maxlen: 24 103.204.33.0/24 maxlen: 24 2001:df2:7840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3D2, serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Validity Not Before: Jun 5 03:34:30 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a2243c6-cd07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9c:f0:11:f7:96:4a:bc:6c:d0:ff:35:d8:c0: bc:97:74:4a:14:06:7f:5a:b2:86:b8:c1:8e:b1:07: 95:63:33:55:4d:96:9e:7d:42:81:b3:04:d4:47:9e: 25:0e:1b:81:02:f6:8e:88:d7:86:41:31:28:e0:66: 4e:56:b2:b7:ae:24:0b:2f:49:a1:89:9f:a7:35:cc: 22:f5:b9:2a:20:d0:4f:75:5c:4b:24:29:b8:d9:79: 83:80:14:8b:b4:b4:1e:29:ec:62:46:4f:0b:15:c4: 07:16:4f:b6:c9:ce:d9:7a:f5:5b:e4:61:a7:bb:ec: b0:5b:b7:ee:2d:42:a9:44:98:f1:17:8b:ba:b1:be: 1e:52:b3:6f:6c:31:65:38:c2:4f:ca:77:08:17:42: 03:da:92:26:89:18:ea:00:fa:4a:9a:9e:10:c9:ff: c8:e7:d4:b3:60:bc:d7:0f:62:b0:4b:a5:44:89:48: 4f:59:f4:7e:34:b6:11:a1:00:eb:d3:ba:4b:bf:38: 15:6e:b6:3b:12:e2:79:ce:0f:4b:f7:9c:1a:58:98: 63:23:d4:54:86:c5:fb:ec:da:47:fc:2d:de:2b:c4: b4:4b:d0:16:74:9d:5e:7b:16:1c:b0:e7:f8:f3:be: 12:da:f0:24:b9:a7:68:1b:1a:95:e9:3f:d9:10:81: ab:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:EB:7B:D5:8E:E3:B0:67:5C:1E:D6:95:81:F7:AF:7F:AC:14:47:E8 X509v3 Authority Key Identifier: keyid:B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/862D5B3A2C8611EEB04B7B66C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.204.32.0/23 IPv6: 2001:df2:7840::/48 Signature Algorithm: sha256WithRSAEncryption 2e:af:f7:46:d8:96:2a:2f:25:5a:cd:8d:06:8f:bd:2f:a7:f1: 08:87:2f:d0:ea:6b:89:1c:95:b3:9b:bf:03:04:53:30:6c:68: 5c:77:c9:3f:74:69:3c:39:e2:11:b8:b7:d9:74:68:c8:51:82: 74:44:b4:db:9a:9a:ad:c1:0d:e5:62:b6:92:34:3f:d2:6d:a2: f7:64:04:3d:39:62:f5:b8:e9:a6:08:15:ac:24:83:1d:f8:1f: 6b:c8:c8:09:51:17:ef:be:5a:00:21:64:31:08:e4:7e:74:b8: 77:10:cc:2e:c3:d3:0b:10:29:0b:af:bc:f4:ea:2b:85:22:36: 41:3a:96:15:16:44:83:2c:a3:0c:00:81:b7:fc:fc:ad:6a:d3: ec:ad:9a:90:8a:d4:5f:c8:f1:28:18:1d:1b:ca:39:d8:40:6f: 3b:f5:2b:b8:b3:df:c3:04:ba:63:0c:2f:20:7a:76:7c:89:c2: 10:56:1a:d8:7d:a0:0f:37:10:2c:03:f6:7a:9d:f9:01:14:a9: c0:ca:dc:aa:ac:c0:0d:14:56:4a:03:de:2e:a1:d8:7f:29:87: 0e:fd:db:63:60:1f:fd:a5:e8:f1:7b:d4:9f:a5:1f:42:8b:47: e3:99:a1:24:58:23:32:93:59:fc:fd:ec:5e:1d:2f:e5:c5:e4: fc:d2:c8:b7 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRDIxMTAvBgNVBAUTKEI2NzI3RURGRDM3RDFFMkMxNzVDMTA4MTFBMUQzOEFB MkFDNkM4OUMwHhcNMjYwNjA1MDMzNDMwWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyNDNjNi1jZDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJzwEfeWSrxs0P812MC8l3RKFAZ/WrKGuMGOsQeVYzNVTZaefUKBswTUR54l DhuBAvaOiNeGQTEo4GZOVrK3riQLL0mhiZ+nNcwi9bkqINBPdVxLJCm42XmDgBSL tLQeKexiRk8LFcQHFk+2yc7ZevVb5GGnu+ywW7fuLUKpRJjxF4u6sb4eUrNvbDFl OMJPyncIF0ID2pImiRjqAPpKmp4Qyf/I59SzYLzXD2KwS6VEiUhPWfR+NLYRoQDr 07pLvzgVbrY7EuJ5zg9L95waWJhjI9RUhsX77NpH/C3eK8S0S9AWdJ1eexYcsOf4 874S2vAkuadoGxqV6T/ZEIGrGwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFI7re9WO 47BnXB7WlYH3r3+sFEfoMB8GA1UdIwQYMBaAFLZyft/TfR4sF1wQgRodOKoqxsic MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNEMi80MkMxRDhGODJD ODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhpd1hYQkNCR2gwNHFpckd5 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RuSi0zOU45SGl3WFhCQ0JHaDA0cWlyR3lKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQzRDIvNDJDMUQ4RjgyQzg2MTFFRUE5Qjc0RjQzQzRGOUFFMDIvODYyRDVCM0Ey Qzg2MTFFRUIwNEI3QjY2QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ8wgMA8EAgACMAkDBwAgAQ3yeEAwDQYJKoZIhvcNAQELBQADggEB AC6v90bYliovJVrNjQaPvS+n8QiHL9Dqa4kclbObvwMEUzBsaFx3yT90aTw54hG4 t9l0aMhRgnREtNuamq3BDeVitpI0P9JtovdkBD05YvW46aYIFawkgx34H2vIyAlR F+++WgAhZDEI5H50uHcQzC7D0wsQKQuvvPTqK4UiNkE6lhUWRIMsowwAgbf8/K1q 0+ytmpCK1F/I8SgYHRvKOdhAbzv1K7iz38MEumMMLyB6dnyJwhBWGth9oA83ECwD 9nqd+QEUqcDK3KqswA0UVkoD3i6h2H8phw7922NgH/2l6PF71J+lH0KLR+OZoSRY IzKTWfz97F4dL+XF5PzSyLc= -----END CERTIFICATE-----Generated at Sat Jun 13 17:56:57 2026 by rpki-client