$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/D276D68CACDC11F093B6B95AC4F9AE02.roa File: D276D68CACDC11F093B6B95AC4F9AE02.roa (raw, json) Hash identifier: gqE+x20QnU3Jprst8DEUKF8tGWKOyyNqVQpNtO3Q028= Subject key identifier: 61:DB:03:FF:04:13:68:C1:79:11:1C:87:22:D1:00:1A:E7:70:F0:AD Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 11F2 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/D276D68CACDC11F093B6B95AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:35:52 +0000 ROA not before: Sun 19 Oct 2025 11:14:47 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136406 IP address blocks: 103.86.193.0/24 maxlen: 24 103.86.195.0/24 maxlen: 24 220.152.114.0/24 maxlen: 24 2400:c640::/32 maxlen: 36 2400:c640:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4594 (0x11f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Oct 19 11:14:47 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a48708-a5f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1a:2b:88:9b:83:2f:c0:c5:d8:32:09:72:ce: 4c:b2:4b:3b:6b:79:9c:9b:d2:99:e6:e4:4c:ce:be: 1b:2b:81:b4:44:dd:64:56:f1:81:11:4c:8b:d8:cd: 5f:1c:3c:7b:45:8d:f8:3b:88:f0:d0:53:09:0a:d1: b7:24:89:c2:dc:09:de:e9:4c:2c:61:03:27:aa:10: c3:da:bc:69:87:81:91:ef:61:a1:1c:b1:d4:8e:33: da:f9:86:63:d3:2e:5c:e7:86:2d:cd:5b:a3:ce:56: 8f:37:bb:ea:14:dd:ba:7e:eb:e2:37:e2:ee:13:c3: e8:29:90:a6:c3:b6:03:71:b4:23:28:42:a0:e0:21: 88:92:96:8f:a3:88:c0:59:65:97:88:5c:d9:25:ec: 72:60:07:e4:8d:ce:73:f0:4e:c0:f5:17:ba:90:d0: 67:ab:14:07:7b:30:f3:3f:e2:c9:9c:9f:53:26:1c: 8d:78:2f:b1:1c:56:51:69:e6:6f:08:0a:18:db:2c: cc:73:ea:c4:db:a7:73:3a:22:f3:66:9f:0e:d9:da: 25:ba:a4:a9:63:6a:0b:cf:65:d8:14:22:1e:fc:e8: 0a:08:d6:7e:6f:f8:27:a5:c0:51:59:e7:d2:7a:86: 18:11:65:9e:8d:c8:48:5e:25:33:ce:6b:99:cb:fc: f6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DB:03:FF:04:13:68:C1:79:11:1C:87:22:D1:00:1A:E7:70:F0:AD X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/D276D68CACDC11F093B6B95AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.193.0/24 103.86.195.0/24 220.152.114.0/24 IPv6: 2400:c640::/32 Signature Algorithm: sha256WithRSAEncryption 9f:08:2f:3a:8d:e3:1f:81:af:a7:7d:ba:c8:62:49:97:fd:53: 3a:3b:55:f3:ca:86:07:a7:5b:04:f4:21:2b:6a:da:3f:5d:7a: 89:a7:83:b6:d9:b2:f2:f1:d2:3d:94:a9:33:02:4e:0d:ed:04: 9a:25:fd:6b:7e:2c:a1:9a:24:fb:a7:55:37:16:53:2b:fd:f6: fd:5b:92:60:1d:91:21:f7:70:35:cf:da:bb:1d:0e:a4:95:81: 61:b7:c9:11:a7:c7:9e:14:7d:eb:62:16:40:88:45:e8:60:21: 92:83:da:3a:f1:f2:65:94:5c:5d:5f:15:be:12:10:81:f2:4e: fd:24:a3:51:7f:ea:bb:0b:3a:b8:ca:ee:cf:86:40:90:ae:72: 38:0f:b6:19:a4:e3:e5:91:88:2c:3b:f9:c1:ba:8c:9f:ad:e7: bc:18:d5:cf:24:db:bb:44:8e:48:81:ee:7d:c4:00:5d:2c:0d: 91:07:fa:76:7c:94:bd:06:f6:8a:04:ac:ee:5c:33:79:77:d1: 6a:3c:37:9b:4a:9e:49:57:f8:4a:00:56:e4:70:2f:30:5f:db: 96:b5:63:00:63:1a:a0:61:5a:04:99:db:65:b2:af:07:a2:59: 25:f9:7a:75:b1:73:c0:d9:d4:fa:6c:e2:ea:13:14:89:68:cf: 94:0d:e2:e1 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICEfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUxMDE5MTExNDQ3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODcwOC1hNWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApBoriJuDL8DF2DIJcs5Msks7a3mcm9KZ5uRMzr4bK4G0RN1kVvGBEUyL2M1f HDx7RY34O4jw0FMJCtG3JInC3Ane6UwsYQMnqhDD2rxph4GR72GhHLHUjjPa+YZj 0y5c54YtzVujzlaPN7vqFN26fuviN+LuE8PoKZCmw7YDcbQjKEKg4CGIkpaPo4jA WWWXiFzZJexyYAfkjc5z8E7A9Re6kNBnqxQHezDzP+LJnJ9TJhyNeC+xHFZRaeZv CAoY2yzMc+rE26dzOiLzZp8O2doluqSpY2oLz2XYFCIe/OgKCNZ+b/gnpcBRWefS eoYYEWWejchIXiUzzmuZy/z2GQIDAQABo4ICezCCAncwHQYDVR0OBBYEFGHbA/8E E2jBeREchyLRABrncPCtMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvRDI3NkQ2OENB Q0RDMTFGMDkzQjZCOTVBQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQAZ1bBAwQAZ1bDAwQA3JhyMA0EAgACMAcDBQAkAMZAMA0GCSqGSIb3 DQEBCwUAA4IBAQCfCC86jeMfga+nfbrIYkmX/VM6O1XzyoYHp1sE9CErato/XXqJ p4O22bLy8dI9lKkzAk4N7QSaJf1rfiyhmiT7p1U3FlMr/fb9W5JgHZEh93A1z9q7 HQ6klYFht8kRp8eeFH3rYhZAiEXoYCGSg9o68fJllFxdXxW+EhCB8k79JKNRf+q7 Czq4yu7PhkCQrnI4D7YZpOPlkYgsO/nBuoyfree8GNXPJNu7RI5Ige59xABdLA2R B/p2fJS9BvaKBKzuXDN5d9FqPDebSp5JV/hKAFbkcC8wX9uWtWMAYxqgYVoEmdtl sq8Holkl+Xp1sXPA2dT6bOLqExSJaM+UDeLh -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:30 2026 by rpki-client