$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/8628E1BA210611F082BE7E10C4F9AE02.roa File: 8628E1BA210611F082BE7E10C4F9AE02.roa (raw, json) Hash identifier: 6GOb57PaiaApAF0iXlJZz9FHSsE1JEzbnMGnVso/Dyc= Subject key identifier: 83:E0:0B:5D:CF:87:23:3C:DE:68:49:76:82:BD:24:F7:FE:1A:50:36 Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 04EC Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/8628E1BA210611F082BE7E10C4F9AE02.roa Signing time: Sun 29 Mar 2026 00:32:59 +0000 ROA not before: Sun 29 Mar 2026 00:32:59 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152605 IP address blocks: 103.148.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1260 (0x4ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Mar 29 00:32:59 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c8733a-fccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a4:10:ed:8f:1e:bf:81:d7:d2:ad:15:24:ea: 9b:dd:21:52:27:f3:35:a7:d9:12:16:84:fd:3f:d6: b4:73:ab:19:77:7c:ca:7b:5a:7a:bf:c5:12:b5:c4: 96:be:81:02:79:88:fe:ca:15:66:a3:13:4b:c0:a8: 3b:fd:89:16:b9:a0:24:da:9e:c0:ed:03:66:0a:de: 7b:79:8d:3c:93:5b:14:8b:32:a2:90:1f:d9:b8:58: 38:bd:7b:9b:dd:ef:52:1f:2d:8b:02:c8:19:bb:c3: 64:cc:e9:29:d8:78:a1:d6:46:48:1d:07:33:6e:00: b6:22:a0:0a:25:b8:c9:cc:f7:3b:46:71:27:c0:7a: 26:63:4d:f9:c8:5d:3f:78:9a:13:8f:ea:63:f8:f0: 9e:4e:5b:3f:5f:96:b4:20:25:52:98:6c:4e:d2:03: 99:c0:19:6c:65:61:61:f7:82:27:b5:9d:fa:30:66: 7b:4d:3d:b8:27:08:1c:79:15:99:bb:f1:76:3d:b7: 51:f5:71:c2:0c:2b:c3:d7:53:73:b8:a1:9d:82:cc: a3:ec:c5:b2:12:68:57:01:67:98:8d:86:a3:52:78: 21:6f:6b:55:9f:97:ab:f2:7f:6c:9c:8e:78:ee:52: ed:a1:b3:b1:08:1b:27:83:92:c7:9d:b3:27:02:da: 4f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E0:0B:5D:CF:87:23:3C:DE:68:49:76:82:BD:24:F7:FE:1A:50:36 X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/8628E1BA210611F082BE7E10C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.148.93.0/24 Signature Algorithm: sha256WithRSAEncryption 25:fd:86:07:8f:4d:c8:67:8e:01:70:b5:b5:0a:d6:9a:e7:55: db:65:cf:c9:a7:b9:52:82:34:80:40:96:58:dd:95:f6:3d:7d: e2:74:3d:2a:97:66:21:83:59:ca:2f:ae:4e:5f:ac:b2:50:75: b6:df:dd:e5:1e:ee:39:c9:2a:17:8f:38:f2:41:06:ca:f8:db: 17:e6:16:64:23:87:d3:a6:35:ba:8b:fa:ca:ee:b2:26:21:c3: 9f:90:ff:c0:1d:5f:bf:15:d9:87:a2:98:47:e7:e5:0c:0b:96: 31:01:f0:41:d0:de:79:1d:49:7b:bc:fa:80:a7:57:60:ff:84: 58:32:63:19:e7:01:0d:70:f2:75:cc:63:a3:09:0f:8a:d6:3c: b0:d9:b9:20:bb:9c:4c:09:04:02:bd:94:fa:07:89:fa:0d:6b: 76:c8:0c:43:08:40:41:42:46:ed:5f:f9:b1:08:39:51:17:e9: a2:fd:f9:25:9e:7e:2d:b7:ee:a5:5f:b9:09:84:06:91:af:aa: 5f:9d:80:b4:b2:f3:3c:fa:e1:50:47:0a:f1:a5:62:aa:78:ec: 47:19:da:09:cc:44:41:f2:06:9b:c7:79:56:76:0e:4b:00:47: 0d:00:fc:4d:e7:22:34:22:d0:0e:79:52:6d:52:c7:70:2b:5f: e8:b7:34:6c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjYwMzI5MDAzMjU5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4NzMzYS1mY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaQQ7Y8ev4HX0q0VJOqb3SFSJ/M1p9kSFoT9P9a0c6sZd3zKe1p6v8UStcSW voECeYj+yhVmoxNLwKg7/YkWuaAk2p7A7QNmCt57eY08k1sUizKikB/ZuFg4vXub 3e9SHy2LAsgZu8NkzOkp2Hih1kZIHQczbgC2IqAKJbjJzPc7RnEnwHomY035yF0/ eJoTj+pj+PCeTls/X5a0ICVSmGxO0gOZwBlsZWFh94IntZ36MGZ7TT24JwgceRWZ u/F2PbdR9XHCDCvD11NzuKGdgsyj7MWyEmhXAWeYjYajUnghb2tVn5er8n9snI54 7lLtobOxCBsng5LHnbMnAtpPOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIPgC13P hyM83mhJdoK9JPf+GlA2MB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM4MTQvMjU0MkI0MjI1RDcxMTFFQzk5MDg5MTREQzRGOUFFMDIvODYyOEUxQkEy MTA2MTFGMDgyQkU3RTEwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5RdMA0GCSqGSIb3DQEBCwUAA4IBAQAl/YYHj03IZ44BcLW1Ctaa 51XbZc/Jp7lSgjSAQJZY3ZX2PX3idD0ql2Yhg1nKL65OX6yyUHW2393lHu45ySoX jzjyQQbK+NsX5hZkI4fTpjW6i/rK7rImIcOfkP/AHV+/FdmHophH5+UMC5YxAfBB 0N55HUl7vPqAp1dg/4RYMmMZ5wENcPJ1zGOjCQ+K1jyw2bkgu5xMCQQCvZT6B4n6 DWt2yAxDCEBBQkbtX/mxCDlRF+mi/fklnn4tt+6lX7kJhAaRr6pfnYC0svM8+uFQ RwrxpWKqeOxHGdoJzERB8gabx3lWdg5LAEcNAPxN5yI0ItAOeVJtUsdwK1/otzRs -----END CERTIFICATE-----Generated at Fri Apr 17 09:45:03 2026 by rpki-client