$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/D9A63D2E9D0711EBB708700BC4F9AE02.roa File: D9A63D2E9D0711EBB708700BC4F9AE02.roa (raw, json) Hash identifier: 30969h8+LFcyvtNFf7p84B66hvJObpn7Ztt2QmzG7KI= Subject key identifier: B7:D2:5F:C3:A4:E0:5E:D5:58:00:26:CA:A6:DF:58:B4:56:6A:75:70 Certificate issuer: /CN=A91F5AAD/serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Certificate serial: 06DC Authority key identifier: 83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/D9A63D2E9D0711EBB708700BC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:45:01 +0000 ROA not before: Tue 08 Apr 2025 22:33:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142014 IP address blocks: 103.164.224.0/23 maxlen: 23 103.164.224.0/24 maxlen: 24 103.164.225.0/24 maxlen: 24 2407:4340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:06:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1756 (0x6dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAD, serialNumber=832244B302D165CD78BDC3A212B0B7E6F90BFC60 Validity Not Before: Apr 8 22:33:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fc8d-e2c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bb:e3:7e:15:49:2c:61:03:0d:1f:67:4b:41: 01:a5:1c:ac:ac:f4:f8:44:05:41:ba:85:4a:15:d4: 53:fe:e5:13:0c:a8:f3:f8:ce:75:7a:e2:74:8d:65: f4:47:49:b9:e9:93:9e:ed:71:79:1d:1a:c6:ea:71: 00:44:33:33:f8:b9:38:db:54:b8:f4:db:6e:14:2f: 60:a1:9c:00:54:49:12:cb:08:ff:5b:aa:b5:7b:05: c8:b1:df:b4:87:e7:79:44:58:50:26:3c:75:f4:e7: 87:14:80:d7:2f:f4:f4:ed:58:bc:f1:f8:4f:61:6f: af:5f:54:e6:5f:9c:1f:46:91:97:e0:2d:1c:21:90: 4b:cd:91:84:7e:08:e2:fa:8d:6c:2f:c2:43:b7:6f: d9:16:e5:b0:f5:d5:b2:ae:9d:13:42:b2:58:a9:46: 8e:49:fc:00:fd:4d:8a:72:db:87:2d:09:97:00:2b: bb:fe:dc:2e:14:6c:0a:0e:11:c7:d2:d3:d9:da:b7: 26:53:2d:bd:4e:cd:d5:c2:9b:9d:a1:68:45:e9:1c: ed:15:d2:ae:ba:ea:7c:f2:79:3f:33:59:14:85:3e: 72:69:1f:59:5a:fd:08:2d:74:b7:4c:9e:a9:30:3e: 5e:be:bf:63:81:b5:99:78:54:f3:f2:5d:d7:c2:e2: f9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D2:5F:C3:A4:E0:5E:D5:58:00:26:CA:A6:DF:58:B4:56:6A:75:70 X509v3 Authority Key Identifier: keyid:83:22:44:B3:02:D1:65:CD:78:BD:C3:A2:12:B0:B7:E6:F9:0B:FC:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/gyJEswLRZc14vcOiErC35vkL_GA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gyJEswLRZc14vcOiErC35vkL_GA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAD/4B6506588DE911EB905C7315C4F9AE02/D9A63D2E9D0711EBB708700BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.164.224.0/23 IPv6: 2407:4340::/32 Signature Algorithm: sha256WithRSAEncryption 95:9d:e4:91:3d:b7:27:c0:f0:0e:4b:7a:c4:36:ac:8f:d6:e2: e8:98:20:88:05:a3:57:25:1b:17:6d:49:c3:e6:fd:b9:78:0a: 5c:5a:aa:bc:c6:b3:6b:4e:21:b4:8d:05:fa:50:65:c1:6e:c3: 69:01:dc:60:35:c7:54:79:03:9d:8f:5e:40:bf:1a:35:2a:78: d0:55:e1:9f:eb:4e:9c:e8:5e:60:8d:46:23:74:6e:7b:7c:2e: f0:89:1f:bd:6e:2e:b6:94:de:53:54:b7:46:2c:a0:0d:9e:ec: c4:d8:a1:f1:fa:c7:fb:26:7d:44:ff:7c:8d:91:22:69:3b:b2: 98:f3:30:7e:a1:ae:34:a3:d7:83:22:09:d9:77:ec:03:1b:fd: 7d:51:54:83:ea:4c:6d:05:9e:f2:e3:f2:42:91:ad:1b:ff:7b: c3:45:21:1c:49:40:ac:1e:68:e5:8f:ba:07:e0:a2:d2:76:79: ef:87:3e:ac:41:28:d6:90:36:92:66:7c:6c:4b:61:96:9d:46: 6b:6e:b0:67:59:86:0a:78:fb:e8:ef:d8:ac:06:6d:c2:7f:84: 25:b1:97:50:5a:03:fe:43:9a:ac:77:ab:f1:f5:ab:3c:2e:85: a3:d8:b7:6f:5a:98:6f:17:c9:6c:04:6b:4d:c0:2b:be:81:d8: db:6d:c2:4c -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICBtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUQxMTAvBgNVBAUTKDgzMjI0NEIzMDJEMTY1Q0Q3OEJEQzNBMjEyQjBCN0U2 RjkwQkZDNjAwHhcNMjUwNDA4MjIzMzI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmM4ZC1lMmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbvjfhVJLGEDDR9nS0EBpRysrPT4RAVBuoVKFdRT/uUTDKjz+M51euJ0jWX0 R0m56ZOe7XF5HRrG6nEARDMz+Lk421S49NtuFC9goZwAVEkSywj/W6q1ewXIsd+0 h+d5RFhQJjx19OeHFIDXL/T07Vi88fhPYW+vX1TmX5wfRpGX4C0cIZBLzZGEfgji +o1sL8JDt2/ZFuWw9dWyrp0TQrJYqUaOSfwA/U2KctuHLQmXACu7/twuFGwKDhHH 0tPZ2rcmUy29Ts3VwpudoWhF6RztFdKuuup88nk/M1kUhT5yaR9ZWv0ILXS3TJ6p MD5evr9jgbWZeFTz8l3XwuL5KwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLfSX8Ok 4F7VWAAmyqbfWLRWanVwMB8GA1UdIwQYMBaAFIMiRLMC0WXNeL3DohKwt+b5C/xg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBRC80QjY1MDY1ODhE RTkxMUVCOTA1QzczMTVDNEY5QUUwMi9neUpFc3dMUlpjMTR2Y09pRXJDMzV2a0xf R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5SkVzd0xSWmMxNHZjT2lFckMzNXZrTF9HQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjVBQUQvNEI2NTA2NTg4REU5MTFFQjkwNUM3MzE1QzRGOUFFMDIvRDlBNjNEMkU5 RDA3MTFFQkI3MDg3MDBCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ6TgMA0EAgACMAcDBQAkB0NAMA0GCSqGSIb3DQEBCwUAA4IBAQCV neSRPbcnwPAOS3rENqyP1uLomCCIBaNXJRsXbUnD5v25eApcWqq8xrNrTiG0jQX6 UGXBbsNpAdxgNcdUeQOdj15Avxo1KnjQVeGf606c6F5gjUYjdG57fC7wiR+9bi62 lN5TVLdGLKANnuzE2KHx+sf7Jn1E/3yNkSJpO7KY8zB+oa40o9eDIgnZd+wDG/19 UVSD6kxtBZ7y4/JCka0b/3vDRSEcSUCsHmjlj7oH4KLSdnnvhz6sQSjWkDaSZnxs S2GWnUZrbrBnWYYKePvo79isBm3Cf4QlsZdQWgP+Q5qsd6vx9as8LoWj2LdvWphv F8lsBGtNwCu+gdjbbcJM -----END CERTIFICATE-----Generated at Mon Mar 2 17:09:20 2026 by rpki-client