$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa File: D933655E23B511EBA7BDD50FC4F9AE02.roa (raw, json) Hash identifier: D8eauO5Ji5HlCRuIfjUIlmK4L86PjKaAnDzrks9sonQ= Subject key identifier: 3F:FB:38:79:65:4C:0D:F5:C6:44:6B:9A:84:9D:F1:77:55:18:28:74 Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Certificate serial: 07FD Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:39:38 +0000 ROA not before: Mon 26 May 2025 22:10:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136488 IP address blocks: 103.90.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2045 (0x7fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D37E4, serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Validity Not Before: May 26 22:10:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4095a-363f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2e:17:fc:7f:4b:07:1b:b4:b8:2d:82:39:c6: 6e:2d:ef:20:39:1b:9a:5a:1e:17:b6:e0:ea:00:40: 6f:e3:54:f5:29:32:d3:2a:71:b9:46:2e:c5:e0:5f: 84:72:c1:c3:86:bb:80:c3:f6:be:af:25:cf:06:0a: 59:94:86:e0:23:e8:d0:ed:15:e6:c1:da:79:1e:de: 64:cd:c5:73:0f:67:f4:e6:15:c5:8d:52:4e:4b:12: 5a:19:ae:67:5f:49:6a:aa:0b:3d:ab:47:c0:7b:d9: b9:b0:b3:a0:1d:ef:ac:9a:57:b2:b7:48:a8:d7:01: a3:a8:b7:1f:45:4d:02:00:23:b9:67:f2:30:1f:7d: ad:af:4a:55:38:09:fd:62:fa:6a:cc:8a:d5:d6:98: f9:76:b3:a8:01:c3:83:1c:65:f6:e2:7a:9e:a7:4d: c3:0b:12:c0:d6:87:ca:62:e2:e5:f8:c9:f5:dc:05: 40:a0:43:6a:50:29:02:3d:02:ff:2b:29:95:ae:1e: c8:dd:ac:1b:22:e4:98:68:c5:33:5e:2f:d4:17:46: d4:f5:6c:f0:93:aa:95:b8:37:40:94:db:a3:7d:20: 65:a7:4f:f0:d9:e0:df:38:8d:2a:5a:72:f2:7b:8f: a2:4f:96:16:f8:13:a6:1f:35:b7:b5:65:62:09:c7: 41:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FB:38:79:65:4C:0D:F5:C6:44:6B:9A:84:9D:F1:77:55:18:28:74 X509v3 Authority Key Identifier: keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.90.14.0/24 Signature Algorithm: sha256WithRSAEncryption 35:9a:db:11:ba:79:9b:a4:8c:5f:4d:39:6f:a8:3d:e9:1d:95: f5:71:22:5e:3b:53:e5:b4:a0:32:fe:7c:82:da:55:57:94:1f: cb:da:fd:76:f2:d0:90:37:46:5d:e7:a1:98:1b:29:20:e7:fa: 0a:6f:32:bb:74:77:5c:76:02:19:4a:0a:c7:84:d6:da:33:11: f5:b7:2d:a8:f0:e0:bc:f0:d9:4a:f6:cc:a6:4a:d6:f2:14:13: 02:18:07:7d:40:1d:17:12:49:5d:dd:00:04:35:a5:b2:5a:b6: 08:64:8a:bc:5e:97:d4:67:b4:21:21:74:87:64:c3:ef:b4:eb: a5:33:12:70:ac:ad:10:21:17:16:5b:50:1f:83:14:5e:bb:e9: 5b:ed:52:f6:23:d1:0a:82:e8:21:e1:16:20:6f:72:f2:89:38: 0a:ed:58:a7:be:ef:2e:23:20:14:4b:fb:e3:95:52:27:f5:82: c1:5e:ba:40:2b:0e:ad:b5:4b:87:3c:b0:77:5a:3b:35:71:14: 5d:e8:5b:58:2e:a6:97:fc:ec:94:3e:4f:9a:06:5b:96:32:cd: c4:e2:71:bf:a3:cd:12:7b:d4:80:e9:af:d7:f3:35:cf:48:d8: f7:4c:21:ea:01:45:d1:01:14:7c:be:8c:f4:85:7c:3b:7c:c5: 90:4d:c1:66 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1 NjQyQjlDMkQwHhcNMjUwNTI2MjIxMDE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDk1YS0zNjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzi4X/H9LBxu0uC2COcZuLe8gORuaWh4XtuDqAEBv41T1KTLTKnG5Ri7F4F+E csHDhruAw/a+ryXPBgpZlIbgI+jQ7RXmwdp5Ht5kzcVzD2f05hXFjVJOSxJaGa5n X0lqqgs9q0fAe9m5sLOgHe+smleyt0io1wGjqLcfRU0CACO5Z/IwH32tr0pVOAn9 YvpqzIrV1pj5drOoAcODHGX24nqep03DCxLA1ofKYuLl+Mn13AVAoENqUCkCPQL/ KymVrh7I3awbIuSYaMUzXi/UF0bU9Wzwk6qVuDdAlNujfSBlp0/w2eDfOI0qWnLy e4+iT5YW+BOmHzW3tWViCcdBXwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFD/7OHll TA31xkRrmoSd8XdVGCh0MB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3RTQvMzZGQjExNDQxRDVBMTFFQkI3OTg4RDE3QzRGOUFFMDIvRDkzMzY1NUUy M0I1MTFFQkE3QkRENTBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ1oOMA0GCSqGSIb3DQEBCwUAA4IBAQA1mtsRunmbpIxfTTlvqD3p HZX1cSJeO1PltKAy/nyC2lVXlB/L2v128tCQN0Zd56GYGykg5/oKbzK7dHdcdgIZ SgrHhNbaMxH1ty2o8OC88NlK9symStbyFBMCGAd9QB0XEkld3QAENaWyWrYIZIq8 XpfUZ7QhIXSHZMPvtOulMxJwrK0QIRcWW1AfgxReu+lb7VL2I9EKgugh4RYgb3Ly iTgK7Vinvu8uIyAUS/vjlVIn9YLBXrpAKw6ttUuHPLB3Wjs1cRRd6FtYLqaX/OyU Pk+aBluWMs3E4nG/o80Se9SA6a/X8zXPSNj3TCHqAUXRARR8voz0hXw7fMWQTcFm -----END CERTIFICATE-----Generated at Mon Mar 2 11:39:15 2026 by rpki-client