$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/D276D68CACDC11F093B6B95AC4F9AE02.roa File: D276D68CACDC11F093B6B95AC4F9AE02.roa (raw, json) Hash identifier: 3yfrgKeAqT2UJ9hoABf1H6+wfUw8pcotIBYIseVLvBY= Subject key identifier: 31:5F:6D:CE:30:A2:F8:2B:AD:96:EA:80:9D:FA:2D:4D:14:29:59:54 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1209 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/D276D68CACDC11F093B6B95AC4F9AE02.roa Signing time: Thu 02 Apr 2026 17:21:59 +0000 ROA not before: Thu 02 Apr 2026 17:21:59 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 136406 IP address blocks: 103.86.193.0/24 maxlen: 24 103.86.195.0/24 maxlen: 24 220.152.114.0/24 maxlen: 24 2400:c640::/32 maxlen: 36 2400:c640:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 17:07:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4617 (0x1209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Apr 2 17:21:59 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cea5b7-cf5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d3:44:76:42:00:fc:d6:67:a4:e4:d9:89:04: b0:62:42:a9:c2:d5:5f:c9:f7:f2:02:49:fe:57:a8: 1c:8c:6f:8f:ec:21:47:12:85:07:58:bd:7c:ec:b8: 51:40:ce:5e:60:84:e7:f3:de:34:df:90:98:c1:72: 2b:39:4b:b6:64:36:de:35:7c:cd:db:39:16:26:4f: 0c:ad:3a:02:83:db:22:d7:d7:48:85:16:b7:6f:31: 07:5a:95:a7:7a:21:a7:ba:58:7e:a3:71:5d:9c:cd: 07:2f:21:12:46:0e:fb:e9:ac:e9:9b:b1:75:fe:51: ba:32:b3:51:a6:a6:af:ab:aa:28:9d:96:a2:f7:a8: 79:c9:67:1f:96:80:ab:4b:88:e8:ec:3e:5f:1a:83: 79:c8:d0:34:29:d7:3f:31:4f:44:21:4b:1a:d3:6e: eb:a4:34:93:04:f1:9d:fd:d0:14:ff:c3:d8:b3:ce: 2c:c0:d6:df:e2:a6:53:fd:e3:ba:89:02:dc:88:69: 76:04:03:b6:91:23:0c:47:56:c7:21:00:d1:d4:c8: 4c:21:2b:4c:3b:9d:6e:c2:a9:57:27:d8:7e:f2:1d: c4:79:76:80:72:12:bc:aa:c3:b2:d4:cb:66:a6:65: a9:dd:1b:d9:d6:ef:fd:19:bb:e3:e9:e2:a3:e5:17: 02:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5F:6D:CE:30:A2:F8:2B:AD:96:EA:80:9D:FA:2D:4D:14:29:59:54 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/D276D68CACDC11F093B6B95AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.193.0/24 103.86.195.0/24 220.152.114.0/24 IPv6: 2400:c640::/32 Signature Algorithm: sha256WithRSAEncryption 50:ac:ae:bf:3f:e9:76:1b:3b:b2:34:3c:38:21:35:71:1b:c8: 9e:0f:79:7b:a0:ef:bf:41:e3:35:b2:91:04:d6:66:a8:f9:aa: 8f:7f:ef:b6:14:9b:e4:be:cf:3e:b4:6d:81:d1:27:18:15:f7: 3b:5d:c9:7b:81:d1:3f:9b:65:69:2f:fe:4b:9e:36:41:ce:85: 78:7b:9b:bb:ca:b3:7c:f1:38:0d:14:e1:32:e5:b3:c7:a0:6f: aa:98:ef:5e:ec:40:95:2d:df:35:0a:2e:2f:f9:c0:01:18:1c: f7:95:64:88:16:8a:46:03:33:66:b9:84:e8:e4:da:16:cd:be: e7:1c:06:da:11:fc:8e:dc:54:ce:58:f7:c2:ba:5c:ce:43:f2: e0:26:be:d3:34:a8:f8:d1:ec:54:20:ec:df:b9:d6:3c:0e:de: 68:95:ef:4c:85:c1:cf:dd:45:b4:e1:d6:62:f4:d2:e5:00:5b: bc:4c:ea:2e:a1:42:c8:53:93:99:dd:f7:d4:c3:da:19:40:ce: 58:49:6b:5a:e6:34:a3:4c:07:cf:1e:f0:0c:9c:26:b0:92:73: 93:f6:78:9a:cb:58:59:53:1d:e6:5a:5b:a3:54:85:6c:a5:a6: 2e:48:8d:d5:f2:01:cc:77:f4:a4:0b:5a:c4:7b:28:56:0a:ba: 3d:83:6d:64 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICEgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjYwNDAyMTcyMTU5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlYTViNy1jZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytNEdkIA/NZnpOTZiQSwYkKpwtVfyffyAkn+V6gcjG+P7CFHEoUHWL187LhR QM5eYITn894035CYwXIrOUu2ZDbeNXzN2zkWJk8MrToCg9si19dIhRa3bzEHWpWn eiGnulh+o3FdnM0HLyESRg776azpm7F1/lG6MrNRpqavq6oonZai96h5yWcfloCr S4jo7D5fGoN5yNA0Kdc/MU9EIUsa027rpDSTBPGd/dAU/8PYs84swNbf4qZT/eO6 iQLciGl2BAO2kSMMR1bHIQDR1MhMIStMO51uwqlXJ9h+8h3EeXaAchK8qsOy1Mtm pmWp3RvZ1u/9Gbvj6eKj5RcCLwIDAQABo4ICezCCAncwHQYDVR0OBBYEFDFfbc4w ovgrrZbqgJ36LU0UKVlUMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvRDI3NkQ2OENB Q0RDMTFGMDkzQjZCOTVBQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQAZ1bBAwQAZ1bDAwQA3JhyMA0EAgACMAcDBQAkAMZAMA0GCSqGSIb3 DQEBCwUAA4IBAQBQrK6/P+l2GzuyNDw4ITVxG8ieD3l7oO+/QeM1spEE1mao+aqP f++2FJvkvs8+tG2B0ScYFfc7Xcl7gdE/m2VpL/5LnjZBzoV4e5u7yrN88TgNFOEy 5bPHoG+qmO9e7ECVLd81Ci4v+cABGBz3lWSIFopGAzNmuYTo5NoWzb7nHAbaEfyO 3FTOWPfCulzOQ/LgJr7TNKj40exUIOzfudY8Dt5ole9MhcHP3UW04dZi9NLlAFu8 TOouoULIU5OZ3ffUw9oZQM5YSWta5jSjTAfPHvAMnCawknOT9niay1hZUx3mWluj VIVspaYuSI3V8gHMd/SkC1rEeyhWCro9g21k -----END CERTIFICATE-----Generated at Sun Apr 19 12:17:57 2026 by rpki-client