$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa File: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (raw, json) Hash identifier: OXdwgZN4vaFZ6nWyjvt24Xk4nrgBuF6Vr7LgDqZpHIc= Subject key identifier: C6:19:F9:61:DC:15:76:DC:50:66:B5:4D:D8:48:A3:8F:35:3F:C6:D1 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 0343 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:02:11 +0000 ROA not before: Wed 23 Jul 2025 02:09:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133368 IP address blocks: 103.189.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Jul 23 02:09:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a40093-ab46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4b:77:40:f5:25:ec:01:81:5b:5c:4a:2b:ee: d5:63:a9:d8:9e:b7:30:62:7b:74:7b:05:83:22:16: 3d:99:e5:5e:69:97:f9:6c:7d:9a:2f:f1:81:56:4c: 25:bf:71:e3:a9:e5:9c:f1:ab:0d:59:c5:7a:76:4e: 87:1e:da:30:cd:67:a4:2f:dc:b9:c3:86:d8:57:88: 84:62:25:1e:9c:37:69:8c:b8:db:fc:fd:f5:5d:d2: 67:7b:ed:3c:9d:b6:2f:58:d5:69:cc:06:66:eb:cc: 3e:14:f9:c5:7a:24:15:8a:c8:0c:48:9d:f7:bc:f2: 61:b7:ab:4f:37:57:b3:02:db:4e:1a:16:46:e0:cb: aa:69:23:3d:86:d8:80:42:d9:a3:09:45:6d:7d:45: cf:fe:ef:4d:d5:e4:ff:c1:dc:e6:ec:ed:50:8d:56: 11:ea:9d:2c:8d:27:a6:ea:af:2f:92:63:93:35:b8: a3:da:e5:77:2d:7e:3b:8d:e4:e4:bd:54:fd:e3:5d: a2:12:84:37:d8:1b:6c:f1:cc:15:a1:a5:ce:a2:83: f5:57:52:ba:12:36:f3:8c:9a:3a:1c:bd:2e:78:d6: c0:93:3d:13:08:16:c9:a5:2b:06:71:45:7e:e5:c3: 78:9c:8c:a6:b8:2c:a6:47:7b:b0:b7:36:98:02:f4: a9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:19:F9:61:DC:15:76:DC:50:66:B5:4D:D8:48:A3:8F:35:3F:C6:D1 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.189.176.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:31:9c:9f:af:4d:34:35:cc:a7:e4:04:1e:bf:3d:bf:97:b1: 28:c3:c2:a8:b3:8c:3c:92:05:85:18:43:20:3e:44:e8:97:53: f8:99:89:25:39:fa:1f:a2:93:f8:fb:35:24:da:65:4f:ae:87: a2:f1:60:56:46:70:9d:3e:2c:70:96:8e:ae:05:9f:7b:73:cd: 1c:00:9d:c2:bc:40:34:22:aa:ed:07:59:cf:5c:10:d7:50:7f: 28:54:58:de:ed:77:a8:e3:70:5f:c2:74:d3:a3:0a:2e:e2:5e: 1e:11:c5:8c:40:63:56:2a:cb:25:e2:e6:39:fa:d4:e3:ea:ed: 1f:85:82:08:b3:63:aa:c7:a5:ed:8e:b6:4e:de:a0:12:39:0d: 10:82:b9:8c:e7:96:e8:07:50:09:07:69:2a:91:5b:11:cc:54: 01:08:0e:ee:39:35:bd:92:58:18:88:d2:69:81:ff:f1:61:b6: 55:d5:15:07:b6:9e:37:84:92:b0:9b:b0:a7:ab:17:ce:e7:14: 81:e7:d1:2c:25:14:13:23:8c:6b:ce:d4:14:d3:d2:b4:4b:6c: 9e:7d:3d:ec:d4:e4:12:da:28:d7:02:ec:b4:cd:8d:c2:bf:a3: 21:16:15:ad:98:4e:a6:59:f8:29:4b:f6:23:76:e6:b3:1b:bc: 25:98:1e:05 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUwNzIzMDIwOTIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDA5My1hYjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0t3QPUl7AGBW1xKK+7VY6nYnrcwYnt0ewWDIhY9meVeaZf5bH2aL/GBVkwl v3HjqeWc8asNWcV6dk6HHtowzWekL9y5w4bYV4iEYiUenDdpjLjb/P31XdJne+08 nbYvWNVpzAZm68w+FPnFeiQVisgMSJ33vPJht6tPN1ezAttOGhZG4MuqaSM9htiA QtmjCUVtfUXP/u9N1eT/wdzm7O1QjVYR6p0sjSem6q8vkmOTNbij2uV3LX47jeTk vVT9412iEoQ32Bts8cwVoaXOooP1V1K6EjbzjJo6HL0ueNbAkz0TCBbJpSsGcUV+ 5cN4nIymuCymR3uwtzaYAvSpvwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMYZ+WHc FXbcUGa1TdhIo481P8bRMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNCRjIvNTA5MDk2QThGNkMzMTFFQzgzM0FFRjM5QzRGOUFFMDIvNkI3QzMzQzhG NkM4MTFFQ0JERjdERDQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ72wMA0GCSqGSIb3DQEBCwUAA4IBAQCeMZyfr000Ncyn5AQevz2/ l7Eow8Kos4w8kgWFGEMgPkTol1P4mYklOfofopP4+zUk2mVProei8WBWRnCdPixw lo6uBZ97c80cAJ3CvEA0IqrtB1nPXBDXUH8oVFje7Xeo43BfwnTTowou4l4eEcWM QGNWKssl4uY5+tTj6u0fhYIIs2Oqx6XtjrZO3qASOQ0QgrmM55boB1AJB2kqkVsR zFQBCA7uOTW9klgYiNJpgf/xYbZV1RUHtp43hJKwm7CnqxfO5xSB59EsJRQTI4xr ztQU09K0S2yefT3s1OQS2ijXAuy0zY3Cv6MhFhWtmE6mWfgpS/YjduazG7wlmB4F -----END CERTIFICATE-----Generated at Mon Mar 2 12:34:45 2026 by rpki-client