$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/9233AB983ED411F0B38CCD78C4F9AE02.roa File: 9233AB983ED411F0B38CCD78C4F9AE02.roa (raw, json) Hash identifier: TmJRJHlikih7mVaiGT9Ey8UviADYMdHN3E98cghtS8o= Subject key identifier: 64:EF:D4:0E:29:69:D0:DB:7D:8E:36:D9:B2:86:AB:A6:D1:13:B5:34 Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 03F4 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/9233AB983ED411F0B38CCD78C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:20:11 +0000 ROA not before: Sun 01 Jun 2025 11:24:40 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 140228 IP address blocks: 103.186.20.0/24 maxlen: 24 103.186.21.0/24 maxlen: 24 2400:6c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1012 (0x3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Jun 1 11:24:40 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3e8ab-f1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:ad:43:8c:77:bc:26:97:34:74:95:95:51: c0:ff:60:df:50:23:c1:30:38:af:51:ad:49:c8:7a: 01:91:65:5f:bc:d8:7f:ba:07:94:88:26:e1:cf:6c: 53:71:b1:92:61:be:6b:88:e2:73:a3:b2:87:a2:60: 45:da:57:85:c1:ba:3d:79:21:b4:9a:70:b3:8f:83: c3:44:3d:b8:e8:e6:06:30:cf:40:df:53:78:5b:54: 32:78:aa:0d:27:0d:6d:d0:80:fa:d9:db:de:b4:a2: 6e:76:82:f3:4e:f8:1d:2f:c6:05:95:88:0e:c9:b9: 2f:a6:6d:5c:f3:74:24:3b:92:1c:ce:83:63:be:78: b5:9e:56:fb:60:20:0d:30:bb:aa:27:67:9c:fa:26: f9:79:b7:83:7b:1c:ef:12:6e:d1:d8:dd:89:3b:85: c0:a4:bb:bf:93:62:c5:7e:c7:7c:d8:cb:30:86:27: cc:f2:4a:ae:9a:00:5b:11:d1:34:b3:cc:92:76:c0: 61:60:7a:c5:d1:67:4b:08:0f:77:bb:67:5b:6f:c0: 5c:7b:00:05:e3:f4:82:35:69:bd:8c:29:78:ba:3c: 66:89:dd:70:34:c9:48:02:62:45:19:63:a7:bc:1a: 0a:67:61:e8:94:12:bd:b4:83:e2:c7:9c:66:f1:60: e6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:EF:D4:0E:29:69:D0:DB:7D:8E:36:D9:B2:86:AB:A6:D1:13:B5:34 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/9233AB983ED411F0B38CCD78C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.20.0/23 IPv6: 2400:6c60::/32 Signature Algorithm: sha256WithRSAEncryption bf:11:d7:f5:f7:6e:63:f3:a1:2f:64:41:11:53:0e:98:73:59: c0:bf:a7:51:3d:ec:43:86:3e:e6:67:4e:3d:d5:df:9d:18:41: 1a:6a:1b:2b:4a:68:d2:b8:b6:2c:f1:6c:bd:61:87:95:30:53: 2c:2a:1a:26:c5:b4:3c:24:45:26:c7:73:62:e5:69:78:48:96: b5:39:89:ea:b1:ec:7c:7b:56:b7:2d:ab:d7:32:2f:39:ff:cf: a2:9c:6b:a9:62:e1:f5:61:53:3e:0e:6b:16:28:76:9d:0e:c2: b4:c4:ae:df:87:e4:55:21:34:fa:c7:5b:73:a7:cb:74:c2:f5: aa:89:f2:db:15:87:e8:65:40:c0:47:98:66:19:23:6e:da:f2: ae:76:cb:38:f0:f4:0c:0c:67:b0:a7:70:74:8b:f3:1a:0d:cd: 92:b6:30:b7:1d:ac:d5:ef:5d:1b:d9:4a:61:34:a6:52:51:a9: 9f:3a:40:8d:74:04:a7:58:88:0d:ce:63:d5:3e:36:ac:69:23: 68:8e:3c:e2:fc:93:55:e5:5c:2d:76:48:36:9b:4f:4e:0a:9c: ce:62:f6:51:33:b4:8a:68:95:04:ab:23:5f:03:35:ba:04:d2: 1b:3a:97:07:8d:60:3c:8a:dd:81:f2:da:c0:07:06:68:90:60: 11:d0:3f:8d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICA/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwNjAxMTEyNDQwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZThhYi1mMWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRytQ4x3vCaXNHSVlVHA/2DfUCPBMDivUa1JyHoBkWVfvNh/ugeUiCbhz2xT cbGSYb5riOJzo7KHomBF2leFwbo9eSG0mnCzj4PDRD246OYGMM9A31N4W1QyeKoN Jw1t0ID62dvetKJudoLzTvgdL8YFlYgOybkvpm1c83QkO5IczoNjvni1nlb7YCAN MLuqJ2ec+ib5ebeDexzvEm7R2N2JO4XApLu/k2LFfsd82MswhifM8kqumgBbEdE0 s8ySdsBhYHrF0WdLCA93u2dbb8BcewAF4/SCNWm9jCl4ujxmid1wNMlIAmJFGWOn vBoKZ2HolBK9tIPix5xm8WDmYQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGTv1A4p adDbfY422bKGq6bRE7U0MB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCMkQvOTY1QkQ1N0VCODk1MTFFQzgyNDJEMjdFQzRGOUFFMDIvOTIzM0FCOTgz RUQ0MTFGMEIzOENDRDc4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7oUMA0EAgACMAcDBQAkAGxgMA0GCSqGSIb3DQEBCwUAA4IBAQC/ Edf1925j86EvZEERUw6Yc1nAv6dRPexDhj7mZ0491d+dGEEaahsrSmjSuLYs8Wy9 YYeVMFMsKhomxbQ8JEUmx3Ni5Wl4SJa1OYnqsex8e1a3LavXMi85/8+inGupYuH1 YVM+DmsWKHadDsK0xK7fh+RVITT6x1tzp8t0wvWqifLbFYfoZUDAR5hmGSNu2vKu dss48PQMDGewp3B0i/MaDc2StjC3HazV710b2UphNKZSUamfOkCNdASnWIgNzmPV PjasaSNojjzi/JNV5Vwtdkg2m09OCpzOYvZRM7SKaJUEqyNfAzW6BNIbOpcHjWA8 it2B8trABwZokGAR0D+N -----END CERTIFICATE-----Generated at Mon Mar 2 09:09:45 2026 by rpki-client