$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa File: 3285ADDAA9D911EF9F30DA47C4F9AE02.roa (raw, json) Hash identifier: +Q5nKPGWk+p3UlgUq1iI8faQlTFhbbeU43G1My05KlM= Subject key identifier: 05:BC:43:A1:FC:91:A2:15:36:99:10:28:23:2B:7A:8A:4D:3E:22:4F Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Certificate serial: 01C8 Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa Signing time: Thu 11 Jun 2026 06:41:40 +0000 ROA not before: Thu 11 Jun 2026 06:41:40 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 152698 IP address blocks: 103.14.23.0/24 maxlen: 24 2001:df3:ad40::/48 maxlen: 48 2001:df3:ad41::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 04:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9353, serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Validity Not Before: Jun 11 06:41:40 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a2a58a4-9d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d6:7a:bf:2b:7a:69:16:69:fb:40:15:f2:aa: c5:8c:b8:90:2e:5b:af:04:47:44:da:b1:2a:50:3c: 37:80:f7:0d:5c:13:6b:77:fc:3a:c4:ab:ba:bb:b8: b8:4e:56:2d:5a:52:a6:e4:f4:47:ef:1d:5e:b5:4a: 08:62:2e:8c:f1:f7:31:88:a1:ea:c4:20:0d:b8:aa: 93:bb:e2:42:64:5a:3e:2d:3e:17:41:6b:dd:56:e1: 78:ca:48:ed:cb:50:08:87:46:39:de:bf:20:be:2e: 07:a0:8e:e9:67:71:35:8b:f8:b1:47:3b:22:72:52: 9a:ae:d6:49:cd:41:2a:f0:b9:ce:83:a2:ae:26:e6: c2:72:1a:2d:84:81:85:81:bf:cc:59:b8:a2:bd:9d: de:08:0c:44:38:91:82:9e:3e:62:3a:64:f9:87:7c: 05:4c:d8:5b:20:57:41:d1:ee:c7:09:ff:16:ff:07: 9e:64:c9:8e:65:33:b1:5c:b2:a1:8e:7b:52:90:90: cc:5b:d0:c4:5f:6c:07:30:f2:4b:5c:d6:00:5d:89: 52:cc:a2:29:cc:e8:24:72:01:12:79:48:74:06:8b: 62:39:27:88:3f:fc:ba:fb:c6:00:4a:9b:10:58:11: 73:61:75:76:4b:cd:9b:d1:c2:d0:52:05:7d:79:b1: 07:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:BC:43:A1:FC:91:A2:15:36:99:10:28:23:2B:7A:8A:4D:3E:22:4F X509v3 Authority Key Identifier: keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.14.23.0/24 IPv6: 2001:df3:ad40::/47 Signature Algorithm: sha256WithRSAEncryption ac:e4:6b:af:90:72:ba:e7:62:87:0f:4a:d6:d0:e5:2d:4b:03: fd:71:15:2e:1a:0e:9d:77:3f:36:6f:f1:2f:36:0b:3b:79:4e: ce:31:74:d7:1a:09:0d:9b:19:33:54:db:a1:8a:cd:0a:79:04: 8d:25:20:9b:fb:62:1d:09:b6:93:6e:f2:bb:f3:77:ee:b4:cb: ac:32:fb:14:06:68:8e:9b:6d:7e:4c:38:c3:ff:38:52:0c:b8: 1e:56:9f:8c:69:a4:71:a9:7f:a7:39:b5:4c:18:44:22:92:f1: 52:e3:76:07:72:5f:41:1f:27:61:c5:e4:16:a6:ab:fe:a0:67: e9:c6:09:ff:b3:3d:14:01:47:e7:f4:90:84:08:c1:23:84:55: 30:c0:de:98:97:65:0b:c2:55:35:e6:a5:66:2a:c4:c4:20:dc: ab:fb:2c:f7:53:6f:25:cc:16:bc:36:52:93:3a:c4:1c:9b:91: ad:b3:b1:b5:2a:45:e6:ec:f5:05:8b:a7:08:b2:2b:d7:24:a8: c9:2e:62:fd:95:80:4c:6a:08:eb:f2:dd:17:ac:22:6c:5b:a4: 14:b3:43:12:85:24:91:9b:8e:01:4d:31:5e:f9:d6:97:14:fe: c7:46:4a:63:12:68:14:ef:ef:59:02:05:79:5b:1a:06:09:ba: e3:90:f2:b9 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkzNTMxMTAvBgNVBAUTKEFDRDA0N0QwRDg4RTI2NTdFMTJDRjkxMzAxQzE2MEYx RDNDRDJGMzMwHhcNMjYwNjExMDY0MTQwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJhNThhNC05ZDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdZ6vyt6aRZp+0AV8qrFjLiQLluvBEdE2rEqUDw3gPcNXBNrd/w6xKu6u7i4 TlYtWlKm5PRH7x1etUoIYi6M8fcxiKHqxCANuKqTu+JCZFo+LT4XQWvdVuF4ykjt y1AIh0Y53r8gvi4HoI7pZ3E1i/ixRzsiclKartZJzUEq8LnOg6KuJubCchothIGF gb/MWbiivZ3eCAxEOJGCnj5iOmT5h3wFTNhbIFdB0e7HCf8W/weeZMmOZTOxXLKh jntSkJDMW9DEX2wHMPJLXNYAXYlSzKIpzOgkcgESeUh0BotiOSeIP/y6+8YASpsQ WBFzYXV2S82b0cLQUgV9ebEHTQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAW8Q6H8 kaIVNpkQKCMreopNPiJPMB8GA1UdIwQYMBaAFKzQR9DYjiZX4Sz5EwHBYPHTzS8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTM1My8wODc1RTY0ODA1 QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9yTkJIME5pT0psZmhMUGtUQWNGZzhkUE5M ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOQkgwTmlPSmxmaExQa1RBY0ZnOGRQTkx6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkzNTMvMDg3NUU2NDgwNUM2MTFFRjg5NjIwQTI2QzRGOUFFMDIvMzI4NUFEREFB OUQ5MTFFRjlGMzBEQTQ3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZw4XMA8EAgACMAkDBwEgAQ3zrUAwDQYJKoZIhvcNAQELBQADggEB AKzka6+QcrrnYocPStbQ5S1LA/1xFS4aDp13PzZv8S82Czt5Ts4xdNcaCQ2bGTNU 26GKzQp5BI0lIJv7Yh0JtpNu8rvzd+60y6wy+xQGaI6bbX5MOMP/OFIMuB5Wn4xp pHGpf6c5tUwYRCKS8VLjdgdyX0EfJ2HF5Bamq/6gZ+nGCf+zPRQBR+f0kIQIwSOE VTDA3piXZQvCVTXmpWYqxMQg3Kv7LPdTbyXMFrw2UpM6xBybka2zsbUqRebs9QWL pwiyK9ckqMkuYv2VgExqCOvy3ResImxbpBSzQxKFJJGbjgFNMV751pcU/sdGSmMS aBTv71kCBXlbGgYJuuOQ8rk= -----END CERTIFICATE-----Generated at Sat Jun 13 14:04:44 2026 by rpki-client