$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa File: D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa (raw, json) Hash identifier: +mWwcwjzpPjSVEv9OnV6PLbugEi6LgvVywkhj6tvDeI= Subject key identifier: 08:8C:BA:FF:F5:31:91:6B:81:E7:1F:58:3F:A6:93:48:42:85:C1:05 Certificate issuer: /CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Certificate serial: 1089 Authority key identifier: 30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa Signing time: Thu 04 Jun 2026 18:21:04 +0000 ROA not before: Thu 04 Jun 2026 18:21:04 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 6939 IP address blocks: 103.138.32.0/24 maxlen: 24 103.139.90.0/24 maxlen: 24 2404:bb40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4233 (0x1089) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17E8, serialNumber=3027308159151941AB734C720617DF7FDCC2410C Validity Not Before: Jun 4 18:21:04 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a21c210-7e13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:09:29:f3:6b:19:66:66:7d:09:ad:a6:a1:79: 0c:34:fb:83:7c:01:96:34:8d:3e:ce:06:83:f5:ae: 80:a6:56:d2:5f:50:52:d1:35:f1:89:c7:56:76:ac: 10:db:d8:6b:ac:4e:f0:fd:0d:67:f8:6f:3f:25:4e: 3e:6a:e9:37:9b:16:1a:b3:9f:10:2b:2e:3b:21:82: 69:51:fd:8a:66:e7:da:0e:23:c2:a3:76:d6:62:d1: 64:28:15:4a:8f:af:0d:7c:cb:20:76:b8:5a:ff:dc: f7:f4:fb:13:46:5e:a3:ce:3d:d2:14:14:bc:dc:c6: 1f:4c:10:1b:e6:cc:e3:d5:83:3d:6a:49:35:75:9c: ba:44:14:75:a8:fe:d0:d4:7d:fc:18:b2:f4:6f:f9: bd:c6:cf:83:97:bf:a5:16:f3:51:ed:33:f9:9f:fe: 10:fc:9a:82:8b:04:a2:33:f9:ce:f8:87:4b:d5:20: d5:e2:07:1a:10:20:c4:dd:3a:96:79:c4:ee:10:a4: 02:a8:70:e2:b9:de:d9:01:e4:c2:94:50:5d:9a:48: be:70:2e:33:64:42:45:4f:f8:2e:f8:8d:ff:00:2c: da:91:8e:02:c7:a3:5f:fe:59:57:cd:e3:c7:59:62: 9d:cb:a0:1e:18:d8:59:ed:16:66:cb:09:9e:f6:47: be:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8C:BA:FF:F5:31:91:6B:81:E7:1F:58:3F:A6:93:48:42:85:C1:05 X509v3 Authority Key Identifier: keyid:30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.32.0/24 103.139.90.0/24 IPv6: 2404:bb40::/32 Signature Algorithm: sha256WithRSAEncryption 26:74:0d:e9:2f:8e:57:a3:3e:46:9f:c3:c1:e8:14:71:a4:6e: 9a:2f:e8:d9:80:7c:84:7f:1e:5c:1b:c8:06:4f:53:08:dd:07: db:f0:08:31:94:e8:8b:85:3f:6f:fb:9e:c2:cc:7e:a0:41:ec: 51:1e:cc:29:cc:b2:95:18:56:3d:bd:41:99:24:3b:9c:c4:68: 4c:46:ad:35:ac:f6:fe:cf:10:53:13:35:1c:b2:b1:39:68:49: cc:e4:7c:3c:b8:4f:9c:2d:1e:7b:56:31:60:20:33:86:49:52: 20:fb:cf:60:8f:8a:11:44:32:c8:3c:63:75:51:b5:97:cc:ee: ac:5e:74:43:5f:a9:ce:d7:59:44:c5:aa:c3:86:19:d7:79:63: 0c:87:d6:3c:4c:28:46:58:6c:47:1c:cc:bd:63:af:fd:92:83: 73:a8:3b:35:9f:ef:a1:21:54:5a:d3:c1:6f:c8:e7:1f:00:a0: b5:33:8c:24:3c:98:7e:96:26:ef:be:6b:3a:da:57:f7:ea:e7: 2a:97:d5:54:94:af:b6:2f:21:af:91:f1:c0:07:33:b1:76:7c: bb:c6:8b:a1:01:71:0d:42:36:78:83:b8:8e:a1:be:23:c1:f9: e1:48:e8:6e:26:72:71:7a:bc:55:af:e9:fd:33:75:16:b8:92: e4:4d:0d:59 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICEIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE3RTgxMTAvBgNVBAUTKDMwMjczMDgxNTkxNTE5NDFBQjczNEM3MjA2MTdERjdG RENDMjQxMEMwHhcNMjYwNjA0MTgyMTA0WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIxYzIxMC03ZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Qkp82sZZmZ9Ca2moXkMNPuDfAGWNI0+zgaD9a6AplbSX1BS0TXxicdWdqwQ 29hrrE7w/Q1n+G8/JU4+auk3mxYas58QKy47IYJpUf2KZufaDiPCo3bWYtFkKBVK j68NfMsgdrha/9z39PsTRl6jzj3SFBS83MYfTBAb5szj1YM9akk1dZy6RBR1qP7Q 1H38GLL0b/m9xs+Dl7+lFvNR7TP5n/4Q/JqCiwSiM/nO+IdL1SDV4gcaECDE3TqW ecTuEKQCqHDiud7ZAeTClFBdmki+cC4zZEJFT/gu+I3/ACzakY4Cx6Nf/llXzePH WWKdy6AeGNhZ7RZmywme9ke+bwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFAiMuv/1 MZFrgecfWD+mk0hChcEFMB8GA1UdIwQYMBaAFDAnMIFZFRlBq3NMcgYX33/cwkEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTdFOC9GMTZFMTg1NjVD NTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdVR3JjMHh5QmhmZmY5ekNR UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01DY3dnVmtWR1VHcmMweHlCaGZmZjl6Q1FRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE3RTgvRjE2RTE4NTY1QzUzMTFFOTlBQjVDRjY4QzRGOUFFMDIvRDhDNjlFMkE1 QzU1MTFFOThDNEI2RDZCQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAZ4ogAwQAZ4taMA0EAgACMAcDBQAkBLtAMA0GCSqGSIb3DQEBCwUA A4IBAQAmdA3pL45Xoz5Gn8PB6BRxpG6aL+jZgHyEfx5cG8gGT1MI3Qfb8AgxlOiL hT9v+57CzH6gQexRHswpzLKVGFY9vUGZJDucxGhMRq01rPb+zxBTEzUcsrE5aEnM 5Hw8uE+cLR57VjFgIDOGSVIg+89gj4oRRDLIPGN1UbWXzO6sXnRDX6nO11lExarD hhnXeWMMh9Y8TChGWGxHHMy9Y6/9koNzqDs1n++hIVRa08FvyOcfAKC1M4wkPJh+ libvvms62lf36ucql9VUlK+2LyGvkfHABzOxdny7xouhAXENQjZ4g7iOob4jwfnh SOhuJnJxerxVr+n9M3UWuJLkTQ1Z -----END CERTIFICATE-----Generated at Sat Jun 13 10:00:38 2026 by rpki-client