$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/86550F680B4311EE8ABEE820C4F9AE02.roa File: 86550F680B4311EE8ABEE820C4F9AE02.roa (raw, json) Hash identifier: i5R8VUyCEsYs87lziXPACinu0ljmmV6mAP0eNfHwrtQ= Subject key identifier: 0E:B7:15:70:E7:91:DB:FC:34:F0:8F:18:06:BE:6A:5C:CA:A6:2E:75 Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 0470 Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/86550F680B4311EE8ABEE820C4F9AE02.roa Signing time: Fri 03 Apr 2026 00:32:55 +0000 ROA not before: Fri 03 Apr 2026 00:32:55 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 140630 IP address blocks: 103.84.44.0/24 maxlen: 24 103.84.45.0/24 maxlen: 24 103.84.46.0/24 maxlen: 24 103.84.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1136 (0x470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6, serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Validity Not Before: Apr 3 00:32:55 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf0ab7-b797 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0c:97:fb:ab:92:f1:5e:31:95:de:03:ac:bc: 14:c1:09:fb:8d:7c:b3:48:89:33:3b:e4:9a:19:a3: 35:4c:02:4b:72:23:c5:7d:2d:b7:1f:5b:28:7f:eb: e2:66:c4:d8:96:0d:57:5e:c5:26:8e:5c:7c:37:4a: fe:9d:28:ae:05:88:99:47:a8:c6:d1:f5:ea:54:08: 32:da:dd:a9:3b:28:95:ec:52:ee:a3:3c:4e:b7:c9: ed:4f:c2:4e:ab:20:b6:77:15:f9:f0:4c:40:db:73: b6:3b:97:60:be:11:83:19:fb:09:68:34:e7:59:4c: b1:96:c2:c1:0a:47:c1:75:59:8e:a4:d2:a9:af:18: e5:9a:51:0f:73:06:ad:15:90:75:3a:d1:da:91:5a: 6e:6b:87:fe:1d:59:c6:2e:a0:2b:ee:78:28:2b:d4: f8:3e:23:da:64:eb:81:b4:0a:78:3c:d1:86:c3:57: df:92:4a:71:4b:aa:02:e3:f1:be:44:40:ce:03:fd: d7:66:8a:fb:21:36:63:78:65:88:d2:ae:3d:ad:58: fa:57:be:01:21:5b:13:9f:29:b0:ff:1d:ce:3a:c8: c9:ca:54:15:f7:88:84:d6:41:89:c7:19:1d:61:10: 5c:0e:9d:80:1c:fe:b2:e4:43:2a:cf:ef:3a:7e:83: 3a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B7:15:70:E7:91:DB:FC:34:F0:8F:18:06:BE:6A:5C:CA:A6:2E:75 X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/86550F680B4311EE8ABEE820C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.84.44.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:09:a4:de:03:5b:4d:33:5f:88:38:7d:33:40:87:72:d6:b0: 66:9b:ab:fb:f3:20:6e:92:4d:a4:9e:b2:96:1a:97:38:1e:cb: 0f:a6:b4:4e:e7:ac:a4:3b:9c:1e:9d:6d:b4:e4:b5:36:9b:0d: 1e:1e:36:8f:2d:37:97:38:ae:fa:b0:e7:6b:4a:5d:5d:3d:41: 05:b5:48:eb:3a:1a:0d:e9:56:98:7f:28:f8:50:61:76:d1:b3: 2f:92:57:51:d8:f6:bd:28:70:c1:78:b3:94:05:c4:59:c2:13: 13:04:8d:d6:01:6c:c9:d6:ee:3b:58:19:b8:48:b0:e8:9f:1f: 56:62:e8:b3:3d:4c:db:a7:73:ca:81:91:21:32:3a:a6:99:41: 3e:5a:b7:e3:19:9c:22:80:74:d3:bb:81:cb:b6:bb:cb:c5:a1: 5b:f5:45:15:5a:58:0a:90:46:4d:6a:96:b9:ed:27:10:88:89: b5:70:25:82:f2:e7:0f:26:00:16:d0:01:11:e7:49:0a:57:dc: 54:30:83:4f:43:17:d1:00:cc:ea:86:82:68:c0:f9:92:4e:a0: f0:78:55:b7:74:6a:df:0e:a4:23:7b:e8:b2:07:00:e6:4f:cb: ab:2f:f7:c2:16:e3:51:1e:c9:ff:08:21:64:c8:63:c7:e8:11: 7f:40:59:cb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjYwNDAzMDAzMjU1WhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGFiNy1iNzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QyX+6uS8V4xld4DrLwUwQn7jXyzSIkzO+SaGaM1TAJLciPFfS23H1sof+vi ZsTYlg1XXsUmjlx8N0r+nSiuBYiZR6jG0fXqVAgy2t2pOyiV7FLuozxOt8ntT8JO qyC2dxX58ExA23O2O5dgvhGDGfsJaDTnWUyxlsLBCkfBdVmOpNKprxjlmlEPcwat FZB1OtHakVpua4f+HVnGLqAr7ngoK9T4PiPaZOuBtAp4PNGGw1ffkkpxS6oC4/G+ REDOA/3XZor7ITZjeGWI0q49rVj6V74BIVsTnymw/x3OOsjJylQV94iE1kGJxxkd YRBcDp2AHP6y5EMqz+86foM6NQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA63FXDn kdv8NPCPGAa+alzKpi51MB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvODY1NTBGNjgw QjQzMTFFRThBQkVFODIwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ1QsMA0GCSqGSIb3DQEBCwUAA4IBAQCOCaTeA1tNM1+IOH0zQIdy 1rBmm6v78yBukk2knrKWGpc4HssPprRO56ykO5wenW205LU2mw0eHjaPLTeXOK76 sOdrSl1dPUEFtUjrOhoN6VaYfyj4UGF20bMvkldR2Pa9KHDBeLOUBcRZwhMTBI3W AWzJ1u47WBm4SLDonx9WYuizPUzbp3PKgZEhMjqmmUE+WrfjGZwigHTTu4HLtrvL xaFb9UUVWlgKkEZNapa57ScQiIm1cCWC8ucPJgAW0AER50kKV9xUMINPQxfRAMzq hoJowPmSTqDweFW3dGrfDqQje+iyBwDmT8urL/fCFuNRHsn/CCFkyGPH6BF/QFnL -----END CERTIFICATE-----Generated at Fri Apr 17 15:28:36 2026 by rpki-client