$ rpki-client -vvf rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/4214E284606911EFBDF1A71AC4F9AE02.roa File: 4214E284606911EFBDF1A71AC4F9AE02.roa (raw, json) Hash identifier: dXxXH3k4HDVIe0Nszw/qyhG1QYul5iP9wevqRM4orcM= Subject key identifier: 9E:7D:33:B6:FA:0A:F9:8D:74:6D:04:D2:ED:36:C9:CD:0E:F8:5D:04 Certificate issuer: /CN=A91D32F4/serialNumber=69C089B7A48E7DA6EE4F01FEC6A98E0AD2FA810B Certificate serial: 02A3 Authority key identifier: 69:C0:89:B7:A4:8E:7D:A6:EE:4F:01:FE:C6:A9:8E:0A:D2:FA:81:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acCJt6SOfabuTwH-xqmOCtL6gQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/4214E284606911EFBDF1A71AC4F9AE02.roa Signing time: Fri 03 Apr 2026 01:34:32 +0000 ROA not before: Fri 03 Apr 2026 01:34:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 103.185.176.0/23 maxlen: 23 103.185.176.0/24 maxlen: 24 103.185.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/acCJt6SOfabuTwH-xqmOCtL6gQs.crl rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/acCJt6SOfabuTwH-xqmOCtL6gQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acCJt6SOfabuTwH-xqmOCtL6gQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D32F4, serialNumber=69C089B7A48E7DA6EE4F01FEC6A98E0AD2FA810B Validity Not Before: Apr 3 01:34:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cf1928-097c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ed:66:ed:5d:0d:8b:82:57:e2:da:5c:8e:37: b7:81:ac:03:b3:5f:e1:7f:03:af:9c:63:25:b6:70: a1:c0:97:72:3b:0e:5c:d0:67:4b:50:43:30:c8:79: c0:6e:33:13:27:76:80:3e:c9:ab:d4:85:9a:4a:2a: 81:3d:02:ae:f0:10:20:e8:92:c3:69:d1:89:1d:45: c1:97:8e:7e:ef:25:16:57:e6:ce:31:ff:69:e2:ea: fe:d0:16:1c:3e:01:c9:6b:c2:75:89:6a:85:ad:20: 63:bf:db:c1:d2:13:e4:21:dd:90:67:93:77:fd:db: fd:71:26:4e:9a:5e:39:8c:d0:c3:83:d7:49:7d:fa: 93:e6:3c:f7:9a:a4:a5:8c:bd:86:57:fc:fa:24:ad: 3f:93:a8:3d:64:6e:36:90:ae:26:e8:4e:68:5d:c4: 25:4d:76:5f:ad:e8:a9:45:4f:b3:09:42:bf:5c:67: a6:99:1c:a4:59:62:8e:26:9a:8d:37:4a:7c:1b:54: bf:09:2f:28:01:e1:f7:f1:0d:4c:ed:f8:32:60:2f: 08:ef:75:0f:b8:0d:96:08:fc:12:33:b8:55:d7:39: 25:c8:7f:d0:60:c6:f4:64:8c:05:90:3e:67:3b:18: 02:a1:86:67:ad:f5:02:02:2e:d5:00:b4:07:8a:26: 48:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:7D:33:B6:FA:0A:F9:8D:74:6D:04:D2:ED:36:C9:CD:0E:F8:5D:04 X509v3 Authority Key Identifier: keyid:69:C0:89:B7:A4:8E:7D:A6:EE:4F:01:FE:C6:A9:8E:0A:D2:FA:81:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/acCJt6SOfabuTwH-xqmOCtL6gQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acCJt6SOfabuTwH-xqmOCtL6gQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/4214E284606911EFBDF1A71AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.185.176.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:a4:52:45:4c:11:f1:7b:2c:6f:7f:4b:0d:b3:e7:5e:6d:7b: da:df:39:72:ea:a2:3b:e8:d3:f5:60:1b:bf:ff:b8:79:4d:71: 5c:16:e3:50:58:9e:56:db:45:63:3c:4c:52:a4:3b:02:d7:a9: cd:cd:50:4b:1f:a1:f6:8b:34:64:27:d3:62:cf:7e:af:93:a1: 14:da:8d:00:16:6a:4d:5c:55:79:a1:de:69:f7:69:7f:16:96: 59:e0:c8:3d:95:ef:e6:ef:5b:41:78:a6:24:a3:38:ea:37:e0: 02:12:27:ac:31:c7:11:07:cb:ee:fd:bd:8f:13:9d:31:d0:b1: c5:a1:59:1b:35:a6:71:39:54:b6:34:12:d5:78:8b:9d:54:79: 9b:06:b0:4e:1e:86:35:44:d4:73:0c:76:77:8b:42:a9:19:9e: ed:99:f1:2c:ca:44:3c:79:a7:b8:29:0d:49:16:9b:67:8a:02: 67:cc:db:df:af:c4:71:2b:fc:9e:17:33:07:4f:ff:08:85:97: c4:7b:da:c7:c5:05:0a:8a:e0:40:bb:3a:1f:47:bf:1d:89:4e: e7:59:90:c0:c7:bd:ed:52:b2:97:1f:f0:8e:c9:fb:8d:c2:5f: d5:c3:c0:27:4d:cf:9f:2a:28:ce:df:d7:df:17:a4:a1:86:3d: 67:62:02:91 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMyRjQxMTAvBgNVBAUTKDY5QzA4OUI3QTQ4RTdEQTZFRTRGMDFGRUM2QTk4RTBB RDJGQTgxMEIwHhcNMjYwNDAzMDEzNDMyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMTkyOC0wOTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+1m7V0Ni4JX4tpcjje3gawDs1/hfwOvnGMltnChwJdyOw5c0GdLUEMwyHnA bjMTJ3aAPsmr1IWaSiqBPQKu8BAg6JLDadGJHUXBl45+7yUWV+bOMf9p4ur+0BYc PgHJa8J1iWqFrSBjv9vB0hPkId2QZ5N3/dv9cSZOml45jNDDg9dJffqT5jz3mqSl jL2GV/z6JK0/k6g9ZG42kK4m6E5oXcQlTXZfreipRU+zCUK/XGemmRykWWKOJpqN N0p8G1S/CS8oAeH38Q1M7fgyYC8I73UPuA2WCPwSM7hV1zklyH/QYMb0ZIwFkD5n OxgCoYZnrfUCAi7VALQHiiZIaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJ59M7b6 CvmNdG0E0u02yc0O+F0EMB8GA1UdIwQYMBaAFGnAibekjn2m7k8B/sapjgrS+oEL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzJGNC9CNENBNzc5NjRE RTAxMUVEQTZGMDEwNDhDNEY5QUUwMi9hY0NKdDZTT2ZhYnVUd0gteHFtT0N0TDZn UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FjQ0p0NlNPZmFidVR3SC14cW1PQ3RMNmdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDMyRjQvQjRDQTc3OTY0REUwMTFFREE2RjAxMDQ4QzRGOUFFMDIvNDIxNEUyODQ2 MDY5MTFFRkJERjFBNzFBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ7mwMA0GCSqGSIb3DQEBCwUAA4IBAQCcpFJFTBHxeyxvf0sNs+de bXva3zly6qI76NP1YBu//7h5TXFcFuNQWJ5W20VjPExSpDsC16nNzVBLH6H2izRk J9Niz36vk6EU2o0AFmpNXFV5od5p92l/FpZZ4Mg9le/m71tBeKYkozjqN+ACEies MccRB8vu/b2PE50x0LHFoVkbNaZxOVS2NBLVeIudVHmbBrBOHoY1RNRzDHZ3i0Kp GZ7tmfEsykQ8eae4KQ1JFptnigJnzNvfr8RxK/yeFzMHT/8IhZfEe9rHxQUKiuBA uzofR78diU7nWZDAx73tUrKXH/COyfuNwl/Vw8AnTc+fKijO39ffF6Shhj1nYgKR -----END CERTIFICATE-----Generated at Fri Apr 17 12:22:22 2026 by rpki-client