$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa File: D933655E23B511EBA7BDD50FC4F9AE02.roa (raw, json) Hash identifier: C86QSzMPJfidhhZAtCALwlPi6LGTUSBetHOGRrIMSeU= Subject key identifier: 4D:F1:73:26:78:9E:54:07:B6:57:10:88:F4:F0:A9:95:57:8E:9A:38 Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Certificate serial: 082E Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa Signing time: Tue 26 May 2026 21:30:15 +0000 ROA not before: Tue 26 May 2026 21:30:15 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 136488 IP address blocks: 103.90.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 21:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2094 (0x82e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D37E4, serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Validity Not Before: May 26 21:30:15 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1610e7-c3b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a4:f0:4e:08:51:69:6e:19:21:ca:7b:f2:2e: d5:65:38:3d:45:5c:18:c2:7c:21:97:7a:35:7d:c1: f4:1a:f2:65:38:53:05:f2:fa:c4:5f:e1:60:52:6e: 24:ad:7c:8f:95:01:0a:cf:24:e3:94:dd:03:58:3c: 8c:e5:5e:b8:7d:51:12:f7:7b:b3:50:29:69:b3:61: d4:3e:87:6b:1d:12:e2:aa:ab:3e:ad:05:41:44:05: 2f:03:7b:35:33:ff:3d:ff:13:f6:f5:ba:53:6e:29: 74:cf:dc:f8:ee:13:87:63:fa:61:45:4c:79:92:b6: 71:16:1f:17:fa:23:a9:dc:e4:12:80:37:5c:70:a1: 1e:a2:f0:03:ab:a6:8b:69:dc:cc:b0:ae:f2:70:40: c0:fb:2d:e4:10:b9:52:31:95:4d:7c:5a:38:10:3c: 32:4c:5a:1a:0d:d6:1e:11:9e:30:3e:b2:0d:5c:33: c5:b5:de:b4:b9:82:87:37:9f:76:5f:cf:26:bb:3f: c0:cb:0a:0a:99:be:7f:26:e9:45:c4:1d:4f:53:f8: 05:c0:f8:d2:58:ea:6d:60:a0:b9:cf:e3:ad:46:11: fe:ad:04:c0:be:64:d7:f2:48:88:5d:1d:ff:52:43: ad:39:c4:2c:90:40:67:23:c4:3d:3b:93:29:ee:fc: c2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F1:73:26:78:9E:54:07:B6:57:10:88:F4:F0:A9:95:57:8E:9A:38 X509v3 Authority Key Identifier: keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.90.14.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:fe:1a:ad:ad:23:f6:00:cb:d1:e0:57:0f:7a:ed:05:d9:74: 84:cd:4a:2b:b4:52:18:23:af:20:4c:c6:59:40:f2:f2:f6:a7: f5:95:cd:51:a8:d4:81:f1:88:60:fc:63:6b:29:05:b0:90:45: e3:3b:7e:ca:cc:bc:80:ee:9b:b8:3e:5c:a8:75:d0:1d:3c:7f: 5d:5a:92:f0:50:31:26:0c:7b:7a:f7:1e:51:69:f0:c5:15:67: 73:ba:0d:d0:10:1b:f4:c8:d5:95:80:53:3d:38:42:8c:c3:40: f2:17:8c:82:05:f5:4a:5b:b4:c2:6f:38:04:93:c8:42:e6:2a: f6:d8:43:54:24:c8:00:40:50:1e:df:15:08:ab:bf:60:c1:7b: 65:1d:71:74:b8:28:f7:42:8b:5d:a5:5b:f7:75:9a:fa:bb:62: b5:01:c3:03:77:2f:4b:82:0b:d9:e4:5c:79:05:07:3c:53:fa: 47:86:7f:39:6e:bb:ef:84:bf:fe:28:79:b0:d1:b5:5e:23:ae: 94:2b:c1:79:77:df:97:a1:0f:e1:73:1d:e8:3d:bd:12:59:7f: 35:38:63:c6:5d:c3:e3:14:b3:07:78:d6:fb:00:ee:54:73:27: 88:94:78:82:1a:55:89:fd:15:06:93:8e:b0:ef:9e:cf:83:37: ba:84:43:a6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1 NjQyQjlDMkQwHhcNMjYwNTI2MjEzMDE1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2MTBlNy1jM2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqTwTghRaW4ZIcp78i7VZTg9RVwYwnwhl3o1fcH0GvJlOFMF8vrEX+FgUm4k rXyPlQEKzyTjlN0DWDyM5V64fVES93uzUClps2HUPodrHRLiqqs+rQVBRAUvA3s1 M/89/xP29bpTbil0z9z47hOHY/phRUx5krZxFh8X+iOp3OQSgDdccKEeovADq6aL adzMsK7ycEDA+y3kELlSMZVNfFo4EDwyTFoaDdYeEZ4wPrINXDPFtd60uYKHN592 X88muz/AywoKmb5/JulFxB1PU/gFwPjSWOptYKC5z+OtRhH+rQTAvmTX8kiIXR3/ UkOtOcQskEBnI8Q9O5Mp7vzCXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE3xcyZ4 nlQHtlcQiPTwqZVXjpo4MB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3RTQvMzZGQjExNDQxRDVBMTFFQkI3OTg4RDE3QzRGOUFFMDIvRDkzMzY1NUUy M0I1MTFFQkE3QkRENTBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1oOMA0GCSqGSIb3DQEBCwUAA4IBAQAu/hqtrSP2AMvR4FcPeu0F 2XSEzUortFIYI68gTMZZQPLy9qf1lc1RqNSB8Yhg/GNrKQWwkEXjO37KzLyA7pu4 PlyoddAdPH9dWpLwUDEmDHt69x5RafDFFWdzug3QEBv0yNWVgFM9OEKMw0DyF4yC BfVKW7TCbzgEk8hC5ir22ENUJMgAQFAe3xUIq79gwXtlHXF0uCj3QotdpVv3dZr6 u2K1AcMDdy9LggvZ5Fx5BQc8U/pHhn85brvvhL/+KHmw0bVeI66UK8F5d9+XoQ/h cx3oPb0SWX81OGPGXcPjFLMHeNb7AO5UcyeIlHiCGlWJ/RUGk46w757Pgze6hEOm -----END CERTIFICATE-----Generated at Sun Jun 14 05:23:10 2026 by rpki-client