$ rpki-client -vvf rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/B4D2B6A2C1A811EA80577A47C4F9AE02.roa File: B4D2B6A2C1A811EA80577A47C4F9AE02.roa (raw, json) Hash identifier: bHhObXwS8QIF5fzJY5QrnaYgPl3Za2os310J3YG8M98= Subject key identifier: C3:29:5A:02:51:B7:57:FA:AB:D9:06:FB:45:37:8D:0C:7B:E1:E3:6A Certificate issuer: /CN=A91C254D/serialNumber=8D41336CB5D0AFFF1028216D9534BB7E02C3E785 Certificate serial: 0942 Authority key identifier: 8D:41:33:6C:B5:D0:AF:FF:10:28:21:6D:95:34:BB:7E:02:C3:E7:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/B4D2B6A2C1A811EA80577A47C4F9AE02.roa Signing time: Thu 04 Jun 2026 20:25:31 +0000 ROA not before: Thu 04 Jun 2026 20:25:31 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 140633 IP address blocks: 103.151.150.0/23 maxlen: 23 2001:df3:c680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.crl rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2370 (0x942) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C254D, serialNumber=8D41336CB5D0AFFF1028216D9534BB7E02C3E785 Validity Not Before: Jun 4 20:25:31 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a21df3b-4009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3c:5b:30:ae:3a:1a:52:79:63:af:36:5c:15: 32:14:41:42:d4:54:c2:37:ae:01:db:80:c7:8f:72: 23:6f:b1:73:7d:41:1c:dc:f6:3d:95:a4:75:5a:46: 07:3c:1e:19:c9:45:69:a1:66:46:a8:9c:3a:cd:9a: 97:93:80:15:b0:1a:66:06:a3:06:48:01:71:6e:04: 18:bb:d5:bb:aa:f1:90:bb:e1:e2:6e:12:d2:25:d8: b3:b5:83:14:51:ef:20:28:9f:9a:97:34:52:54:ea: cf:79:e4:68:c7:36:bb:39:bc:97:1c:28:0a:52:0f: 8f:38:aa:81:90:c7:af:07:28:7d:5e:1e:3f:0c:c3: 27:29:9c:a9:7c:72:b1:92:69:64:9e:b9:7d:32:18: b2:d7:32:5f:07:f6:64:c8:b7:6e:d5:d6:d4:85:e2: 8d:f7:b1:da:96:ac:b5:00:09:cd:f7:a9:a0:02:f3: 06:5b:14:ef:96:7c:7a:fb:3a:92:25:e8:ba:fe:d7: 8c:74:16:1e:8b:aa:40:3d:da:4c:76:0f:49:7c:bf: 64:b1:41:4d:43:ad:df:30:6e:97:96:5b:48:2f:68: 47:f7:60:75:f3:70:84:25:7c:b1:7b:06:fe:9b:97: 69:1b:3d:0b:ae:2a:1a:47:e2:52:85:7e:75:03:4c: 52:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:29:5A:02:51:B7:57:FA:AB:D9:06:FB:45:37:8D:0C:7B:E1:E3:6A X509v3 Authority Key Identifier: keyid:8D:41:33:6C:B5:D0:AF:FF:10:28:21:6D:95:34:BB:7E:02:C3:E7:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/jUEzbLXQr_8QKCFtlTS7fgLD54U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUEzbLXQr_8QKCFtlTS7fgLD54U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C254D/8CE62DFAC1A711EA9D6B8743C4F9AE02/B4D2B6A2C1A811EA80577A47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.151.150.0/23 IPv6: 2001:df3:c680::/48 Signature Algorithm: sha256WithRSAEncryption 8a:57:52:62:bd:1d:79:6f:7e:0b:9a:8c:37:24:24:ec:ea:dc: 1c:2a:b6:04:2b:e3:8f:41:4b:27:96:21:0a:ab:3d:9c:b3:bc: b5:75:b3:b0:8d:97:45:9c:26:b9:12:13:9b:c6:8b:78:e0:dd: 8b:dc:7e:7f:26:e3:b8:04:05:b5:f4:a6:4d:98:e8:2f:38:90: 7d:9b:37:25:7e:1e:83:81:9c:6e:98:5c:fa:07:1e:74:cc:ec: 92:46:84:54:50:cb:b2:b1:5d:01:fd:df:f3:30:55:7a:b8:8b: a7:2a:29:ac:19:2c:23:9f:b0:de:8b:2b:f2:47:ac:1c:06:42: ce:18:b2:50:24:db:11:78:7a:e8:fa:1e:e3:bd:d5:80:d3:66: 02:c3:74:b1:99:06:10:36:f6:92:db:c5:ae:2d:db:cc:04:46: a2:6b:dd:c7:89:83:12:fc:44:50:d3:dd:bc:69:3b:b5:51:d7: 41:60:b9:ed:d1:84:71:d4:ee:6e:ba:f7:bd:53:f6:e6:f6:13: 3a:34:33:48:8b:58:19:7c:9e:0c:e3:11:20:06:d9:a8:85:70: f7:23:09:9c:21:4d:77:0d:14:8c:e1:82:f7:bc:1f:97:31:29: d5:36:f5:b2:cb:50:ae:72:0b:80:ce:dd:68:46:c0:ed:48:dc: db:08:80:50 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICCUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI1NEQxMTAvBgNVBAUTKDhENDEzMzZDQjVEMEFGRkYxMDI4MjE2RDk1MzRCQjdF MDJDM0U3ODUwHhcNMjYwNjA0MjAyNTMxWhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxZGYzYi00MDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDxbMK46GlJ5Y682XBUyFEFC1FTCN64B24DHj3Ijb7FzfUEc3PY9laR1WkYH PB4ZyUVpoWZGqJw6zZqXk4AVsBpmBqMGSAFxbgQYu9W7qvGQu+HibhLSJdiztYMU Ue8gKJ+alzRSVOrPeeRoxza7ObyXHCgKUg+POKqBkMevByh9Xh4/DMMnKZypfHKx kmlknrl9Mhiy1zJfB/ZkyLdu1dbUheKN97Halqy1AAnN96mgAvMGWxTvlnx6+zqS Jei6/teMdBYei6pAPdpMdg9JfL9ksUFNQ63fMG6XlltIL2hH92B183CEJXyxewb+ m5dpGz0LrioaR+JShX51A0xSoQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMMpWgJR t1f6q9kG+0U3jQx74eNqMB8GA1UdIwQYMBaAFI1BM2y10K//ECghbZU0u34Cw+eF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjU0RC84Q0U2MkRGQUMx QTcxMUVBOUQ2Qjg3NDNDNEY5QUUwMi9qVUV6YkxYUXJfOFFLQ0Z0bFRTN2ZnTEQ1 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVRXpiTFhRcl84UUtDRnRsVFM3ZmdMRDU0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI1NEQvOENFNjJERkFDMUE3MTFFQTlENkI4NzQzQzRGOUFFMDIvQjREMkI2QTJD MUE4MTFFQTgwNTc3QTQ3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5eWMA8EAgACMAkDBwAgAQ3zxoAwDQYJKoZIhvcNAQELBQADggEB AIpXUmK9HXlvfguajDckJOzq3BwqtgQr449BSyeWIQqrPZyzvLV1s7CNl0WcJrkS E5vGi3jg3Yvcfn8m47gEBbX0pk2Y6C84kH2bNyV+HoOBnG6YXPoHHnTM7JJGhFRQ y7KxXQH93/MwVXq4i6cqKawZLCOfsN6LK/JHrBwGQs4YslAk2xF4euj6HuO91YDT ZgLDdLGZBhA29pLbxa4t28wERqJr3ceJgxL8RFDT3bxpO7VR10Fgue3RhHHU7m66 971T9ub2Ezo0M0iLWBl8ngzjESAG2aiFcPcjCZwhTXcNFIzhgve8H5cxKdU29bLL UK5yC4DO3WhGwO1I3NsIgFA= -----END CERTIFICATE-----Generated at Sat Jun 13 16:07:38 2026 by rpki-client