$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/9233AB983ED411F0B38CCD78C4F9AE02.roa File: 9233AB983ED411F0B38CCD78C4F9AE02.roa (raw, json) Hash identifier: KE0mpfoQ53HdFtxz9Q1JjWNxOehBt1yE8erg7Afm7o8= Subject key identifier: 95:6A:F0:F5:44:41:35:6E:51:87:13:F9:D4:6A:BB:5A:BC:2D:DC:A9 Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 0429 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/9233AB983ED411F0B38CCD78C4F9AE02.roa Signing time: Fri 05 Jun 2026 00:31:05 +0000 ROA not before: Fri 05 Jun 2026 00:31:05 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 140228 IP address blocks: 103.186.20.0/24 maxlen: 24 103.186.21.0/24 maxlen: 24 2400:6c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 00:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Jun 5 00:31:05 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a2218c9-295e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:36:4c:26:61:7a:74:4d:58:3c:d7:c9:48:33: 3f:88:71:39:12:62:0c:ab:31:0f:94:3a:fc:18:d9: c1:13:da:44:22:68:ad:aa:d0:f2:54:a9:af:55:be: 9e:bc:0d:46:9b:a3:8b:30:eb:25:a6:d9:d4:55:be: 4e:b2:c7:3a:ce:1f:31:0a:37:4e:67:e7:8f:5c:c7: 02:3a:8c:c4:a3:be:99:d2:e4:de:88:d8:ae:06:38: ad:6a:d0:21:8c:f3:63:9a:a1:6d:5d:78:1d:2f:5d: e2:11:e2:ec:ea:08:f2:3c:8e:d2:f1:42:a9:a5:e6: 3f:e8:c1:f1:a3:ac:18:88:69:a5:cd:6d:5c:e1:1f: ba:5e:a7:fc:aa:14:bf:89:df:d6:cf:d4:77:2b:ad: 1a:c5:4c:01:fe:f0:90:fc:57:4e:e6:34:91:40:ab: be:4e:28:02:78:9d:85:5a:4c:fd:3d:69:df:2b:93: 9d:bd:b0:7d:bf:b7:ea:df:45:54:2f:fc:9f:e9:72: 7b:e0:d2:ad:08:cd:dd:64:f9:01:21:46:4c:96:1e: 55:4b:7c:da:bc:4b:e7:bf:a4:a1:d2:5d:39:77:62: cc:d3:65:02:dc:b0:d0:c4:30:65:93:e8:d0:74:8e: 98:e2:95:33:77:d8:36:54:2a:6e:b3:4f:29:6c:e7: b1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:6A:F0:F5:44:41:35:6E:51:87:13:F9:D4:6A:BB:5A:BC:2D:DC:A9 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/9233AB983ED411F0B38CCD78C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.186.20.0/23 IPv6: 2400:6c60::/32 Signature Algorithm: sha256WithRSAEncryption d7:6a:b6:5b:a1:0d:a6:b0:37:a3:15:fa:7e:2b:fa:f3:da:5c: 61:33:7d:20:d7:fe:16:10:a2:87:6c:1e:3e:1d:d1:5b:7b:9f: e0:01:ad:19:2e:2e:88:d4:62:ab:2a:04:af:cb:61:c9:35:09: 87:bf:27:95:71:4e:eb:59:fa:bf:3e:78:68:cc:6d:db:8d:10: a2:72:a5:e9:fb:63:0d:94:cf:f3:cd:84:97:01:3f:86:2c:5f: af:b2:09:c7:0e:e8:12:7c:7b:27:21:a8:08:95:d2:c3:d1:c6: b6:58:09:1d:5b:8d:4c:16:3c:bb:6a:4a:d9:0a:8e:e9:07:e2: a6:7e:ab:52:14:6c:11:9a:a8:ad:34:91:01:a9:79:a2:04:cc: 64:20:30:69:90:c5:23:91:06:c4:a7:7b:87:f1:45:fb:88:4e: a9:7d:30:3c:b2:3d:bb:63:fc:e8:15:29:23:63:96:4b:ee:cc: ea:44:21:1d:2b:a5:78:82:9b:1a:31:16:51:3a:95:b5:4d:b6: aa:c4:0d:c1:fa:56:1e:cc:f7:c3:28:1f:82:34:54:f0:bc:18: c8:6f:91:53:97:8e:47:85:02:43:f2:ee:cb:15:49:71:bb:a9: dc:fd:58:41:37:f1:25:0c:8d:87:75:ff:57:dc:ba:f4:49:62: b0:ac:dc:b3 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjYwNjA1MDAzMTA1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyMThjOS0yOTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DZMJmF6dE1YPNfJSDM/iHE5EmIMqzEPlDr8GNnBE9pEImitqtDyVKmvVb6e vA1Gm6OLMOslptnUVb5Ossc6zh8xCjdOZ+ePXMcCOozEo76Z0uTeiNiuBjitatAh jPNjmqFtXXgdL13iEeLs6gjyPI7S8UKppeY/6MHxo6wYiGmlzW1c4R+6Xqf8qhS/ id/Wz9R3K60axUwB/vCQ/FdO5jSRQKu+TigCeJ2FWkz9PWnfK5OdvbB9v7fq30VU L/yf6XJ74NKtCM3dZPkBIUZMlh5VS3zavEvnv6Sh0l05d2LM02UC3LDQxDBlk+jQ dI6Y4pUzd9g2VCpus08pbOexOQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJVq8PVE QTVuUYcT+dRqu1q8LdypMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCMkQvOTY1QkQ1N0VCODk1MTFFQzgyNDJEMjdFQzRGOUFFMDIvOTIzM0FCOTgz RUQ0MTFGMEIzOENDRDc4QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ7oUMA0EAgACMAcDBQAkAGxgMA0GCSqGSIb3DQEBCwUAA4IBAQDX arZboQ2msDejFfp+K/rz2lxhM30g1/4WEKKHbB4+HdFbe5/gAa0ZLi6I1GKrKgSv y2HJNQmHvyeVcU7rWfq/PnhozG3bjRCicqXp+2MNlM/zzYSXAT+GLF+vsgnHDugS fHsnIagIldLD0ca2WAkdW41MFjy7akrZCo7pB+KmfqtSFGwRmqitNJEBqXmiBMxk IDBpkMUjkQbEp3uH8UX7iE6pfTA8sj27Y/zoFSkjY5ZL7szqRCEdK6V4gpsaMRZR OpW1TbaqxA3B+lYezPfDKB+CNFTwvBjIb5FTl45HhQJD8u7LFUlxu6nc/VhBN/El DI2Hdf9X3Lr0SWKwrNyz -----END CERTIFICATE-----Generated at Sat Jun 13 09:41:58 2026 by rpki-client