$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/D9A63D2E9D0711EBB708700BC4F9AE02.roa File: D9A63D2E9D0711EBB708700BC4F9AE02.roa (raw, json) Hash identifier: cDr/3Xs5cjJWfG7LyYDYX18lP6W3STlLXw7xl6t5lM0= Subject key identifier: 39:A3:6E:CE:51:72:88:CF:6C:E1:F8:62:E3:69:C8:3F:13:AA:9C:EF Certificate issuer: /CN=A91F5AAD/serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Certificate serial: 06F4 Authority key identifier: 83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/D9A63D2E9D0711EBB708700BC4F9AE02.roa Signing time: Wed 08 Apr 2026 22:29:11 +0000 ROA not before: Wed 08 Apr 2026 22:29:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142014 IP address blocks: 103.164.224.0/23 maxlen: 23 103.164.224.0/24 maxlen: 24 103.164.225.0/24 maxlen: 24 2407:4340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1780 (0x6f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAD, serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Validity Not Before: Apr 8 22:29:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d6d6b7-446c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5f:26:8f:6f:85:c8:7d:2c:a7:4f:48:90:92: 2e:ef:e7:92:3a:29:db:9e:71:ab:11:ca:d3:43:b5: 4a:58:f5:9f:79:ea:ac:e0:9e:b4:df:c0:3a:12:35: 4c:f5:92:8e:e5:7a:06:0e:01:ce:e9:d3:72:fc:f0: 07:79:d1:84:01:cf:0d:d2:b8:49:c1:87:4f:7a:b7: 26:61:6c:42:9c:13:62:a5:68:90:b4:d5:c1:ff:b9: a7:a9:af:e5:1c:c0:68:a3:65:c2:98:08:62:cc:92: fd:67:fc:00:83:5d:3e:5e:45:0b:1c:ff:2d:8c:ec: 63:cd:a1:94:04:39:2b:30:35:e8:a6:12:5c:c6:06: f4:f3:02:36:a1:a6:b2:e5:16:f7:1b:31:44:8b:d5: b4:f0:d7:82:c2:c8:de:64:b4:03:fe:08:19:b4:84: 60:eb:84:dc:dd:e4:26:85:9f:ae:14:d3:d0:37:d8: 6a:8e:18:8f:bf:62:d5:ed:80:94:bc:f3:eb:d0:0d: 6d:8f:67:62:47:7f:02:7b:b7:66:45:be:65:31:c6: 8b:5b:7d:de:5e:7a:45:c0:11:08:23:d9:a8:a3:45: a9:e5:bf:b2:6c:16:7c:e6:31:86:a7:d6:9f:c1:d5: 86:1f:e6:4e:e5:9d:fb:e6:12:ce:a1:47:a8:a8:3c: 91:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A3:6E:CE:51:72:88:CF:6C:E1:F8:62:E3:69:C8:3F:13:AA:9C:EF X509v3 Authority Key Identifier: keyid:83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/D9A63D2E9D0711EBB708700BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.164.224.0/23 IPv6: 2407:4340::/32 Signature Algorithm: sha256WithRSAEncryption 5a:d8:11:ed:d7:eb:40:a4:10:36:7d:48:21:64:42:2e:dc:f7: d1:d0:46:0d:01:ee:16:e8:0d:d0:4e:4a:f6:58:c4:6e:4e:86: 83:52:f0:f3:97:9d:12:3a:ad:45:e0:9d:83:fa:df:41:57:6d: e8:73:5b:e2:f7:2a:a0:99:09:10:39:23:4a:99:1c:d1:00:c5: 2c:79:99:a1:22:90:da:48:5e:cb:20:85:27:11:2d:e4:77:d4: a3:36:d0:d2:38:b9:2d:ac:ee:3a:69:7e:cd:91:19:b8:4e:aa: f4:9e:c0:65:6a:e7:0c:14:48:76:b5:50:5c:92:58:2c:be:93: 1b:6b:28:09:69:b4:db:e0:a9:ee:0d:41:78:d1:80:6e:5f:f4: a2:3b:22:e1:d5:b6:64:8c:bf:2a:ac:7c:d4:82:fc:95:3d:3c: ae:26:7b:98:86:ee:9d:c5:42:1c:be:b5:f0:da:69:ad:b1:7c: a2:32:6c:dd:37:0f:3f:68:e7:4d:19:eb:13:0c:59:1c:67:88: 39:5b:73:b5:dd:86:8a:9b:91:23:86:81:d7:9e:9f:c9:65:2d: 6d:63:03:dc:f4:50:66:4b:31:57:b6:83:7c:2b:50:56:19:57: b6:a5:05:ff:59:8c:90:66:d8:2a:bc:6d:e2:7b:af:a5:f4:47: 22:de:b8:bd -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUQxMTAvBgNVBAUTKDgzMjI0NEIzMDJEMTY1Q0Q3OEJEQzNBMjEyQjBCN0U2 RjkwQkZDNjAwHhcNMjYwNDA4MjIyOTExWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2ZDZiNy00NDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtV8mj2+FyH0sp09IkJIu7+eSOinbnnGrEcrTQ7VKWPWfeeqs4J6038A6EjVM 9ZKO5XoGDgHO6dNy/PAHedGEAc8N0rhJwYdPercmYWxCnBNipWiQtNXB/7mnqa/l HMBoo2XCmAhizJL9Z/wAg10+XkULHP8tjOxjzaGUBDkrMDXophJcxgb08wI2oaay 5Rb3GzFEi9W08NeCwsjeZLQD/ggZtIRg64Tc3eQmhZ+uFNPQN9hqjhiPv2LV7YCU vPPr0A1tj2diR38Ce7dmRb5lMcaLW33eXnpFwBEII9moo0Wp5b+ybBZ85jGGp9af wdWGH+ZO5Z375hLOoUeoqDyReQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDmjbs5R cojPbOH4YuNpyD8TqpzvMB8GA1UdIwQYMBaAFIMiRLMC0WXNeL3DohKwt+b5C/xg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBRC80QjY1MDY1ODhE RTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpjMTR2Y09pRXJDMzV2a0xf R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5SkVzd0xSWmMxNHZjT2lFckMzNXZrTF9HQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjVBQUQvNEI2NTA2NTg4REU5MTFFQjkwNUM3MzE1QzRGOUFFMDIvRDlBNjNEMkU5 RDA3MTFFQkI3MDg3MDBCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ6TgMA0EAgACMAcDBQAkB0NAMA0GCSqGSIb3DQEBCwUAA4IBAQBa 2BHt1+tApBA2fUghZEIu3PfR0EYNAe4W6A3QTkr2WMRuToaDUvDzl50SOq1F4J2D +t9BV23oc1vi9yqgmQkQOSNKmRzRAMUseZmhIpDaSF7LIIUnES3kd9SjNtDSOLkt rO46aX7NkRm4Tqr0nsBlaucMFEh2tVBcklgsvpMbaygJabTb4KnuDUF40YBuX/Si OyLh1bZkjL8qrHzUgvyVPTyuJnuYhu6dxUIcvrXw2mmtsXyiMmzdNw8/aOdNGesT DFkcZ4g5W3O13YaKm5EjhoHXnp/JZS1tYwPc9FBmSzFXtoN8K1BWGVe2pQX/WYyQ ZtgqvG3ie6+l9Eci3ri9 -----END CERTIFICATE-----Generated at Fri Apr 17 19:27:35 2026 by rpki-client