$ rpki-client -vvf rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/0EA2B2D62BB011ED90F41820C4F9AE02.roa File: 0EA2B2D62BB011ED90F41820C4F9AE02.roa (raw, json) Hash identifier: N8qUkEIXkMkHDTwZ98ugHoBxhYuOtyd1EmmLiG6Vc80= Subject key identifier: CA:67:23:4F:61:07:FD:05:21:F8:D4:04:0E:13:8A:39:B3:31:5A:5D Certificate issuer: /CN=A91136B5/serialNumber=5AECEAD54CB36CBF1B4A00C4CD410846D23141EF Certificate serial: 02D6 Authority key identifier: 5A:EC:EA:D5:4C:B3:6C:BF:1B:4A:00:C4:CD:41:08:46:D2:31:41:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/0EA2B2D62BB011ED90F41820C4F9AE02.roa Signing time: Fri 03 Apr 2026 01:34:02 +0000 ROA not before: Fri 03 Apr 2026 01:34:02 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 136266 IP address blocks: 103.85.192.0/22 maxlen: 24 2400:af40::/32 maxlen: 32 2400:af40::/33 maxlen: 33 2400:af40:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.crl rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 726 (0x2d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91136B5, serialNumber=5AECEAD54CB36CBF1B4A00C4CD410846D23141EF Validity Not Before: Apr 3 01:34:02 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf190a-8d9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5d:34:14:5e:27:92:83:04:7c:b8:50:42:ae: 07:c9:19:00:09:67:ca:d4:63:3c:1e:76:63:2d:0e: e5:61:de:56:58:fe:b5:d5:7f:c3:5a:79:a8:2a:27: e0:a2:8f:06:20:4f:a6:cc:8b:6a:c5:a5:4c:cd:78: f6:11:0d:64:b2:ca:fa:69:14:a6:ab:d8:12:2e:e8: 4e:b6:45:cd:74:ae:6d:0f:b4:de:22:75:ae:f1:08: aa:c7:c3:56:40:9d:71:9b:eb:2a:9d:e1:e7:03:0b: 57:ce:18:cd:c3:a7:a5:59:91:63:4f:3d:80:59:d9: 56:f2:34:87:b7:f4:da:8e:cd:25:76:26:e4:eb:51: 76:fa:0d:dd:f8:5b:a7:ac:1e:a4:7d:e9:e1:56:74: 03:90:4b:52:00:bc:d6:54:0f:5b:0c:27:0e:2b:1b: c7:d6:f5:4c:da:e0:28:7f:42:f0:b0:a3:f6:ba:6f: 9e:1a:83:32:19:02:dc:a8:d4:1f:56:ff:48:e1:65: b4:e3:b9:ab:04:95:f2:67:53:c1:99:4c:6d:a6:89: 1e:4e:9c:64:68:f0:77:06:cf:28:39:04:f3:28:60: e2:e7:57:e0:68:d7:3f:ef:e6:2a:e5:61:fe:60:71: a8:a3:ca:24:80:ff:a0:8a:a0:3f:24:c7:47:02:25: c3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:67:23:4F:61:07:FD:05:21:F8:D4:04:0E:13:8A:39:B3:31:5A:5D X509v3 Authority Key Identifier: keyid:5A:EC:EA:D5:4C:B3:6C:BF:1B:4A:00:C4:CD:41:08:46:D2:31:41:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/0EA2B2D62BB011ED90F41820C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.85.192.0/22 IPv6: 2400:af40::/32 Signature Algorithm: sha256WithRSAEncryption 1d:b2:ad:5e:e7:25:26:ae:cd:56:68:6c:d3:b4:44:f7:7c:ab: 83:79:d4:f9:e0:ba:33:40:14:98:51:66:fb:3a:0f:0f:9b:79: a9:2f:5a:72:f5:d8:5b:3b:ea:62:d2:ed:69:25:08:7a:55:8e: fa:46:7f:d6:e0:9b:f8:a8:31:ee:31:d4:d4:2c:8b:24:82:62: 2a:6d:fc:e8:c2:af:3f:db:51:63:5e:a7:12:f1:dc:65:0c:e4: 7f:14:99:7b:df:77:73:0c:8f:ae:6f:1e:11:20:33:f7:c6:f4: a3:91:99:b6:23:5c:27:2f:34:c9:bc:3b:c1:ff:3f:f1:19:62: 16:b0:dd:16:87:a2:de:e7:c2:b9:3a:0e:69:9e:ce:fe:d2:79: 70:10:56:cb:1d:3f:7e:8b:d2:d7:ba:53:8a:90:e7:1f:a1:f9: 34:cf:e4:1c:6a:42:98:f6:62:ef:c6:5c:d9:d1:57:29:37:19: 07:77:2d:d7:2d:1e:ad:a6:47:37:fe:eb:93:e5:b9:6f:1e:cf: d4:14:c9:b2:14:c4:dd:97:fb:c0:90:f7:8b:a7:49:6c:ee:32: 35:c7:36:2a:ad:be:7d:76:e9:61:48:02:b0:97:7b:43:3d:24: c5:25:17:f1:f8:c7:86:b3:e7:b0:27:89:c9:9d:c4:09:e0:bf: e2:4e:f4:82 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM2QjUxMTAvBgNVBAUTKDVBRUNFQUQ1NENCMzZDQkYxQjRBMDBDNENENDEwODQ2 RDIzMTQxRUYwHhcNMjYwNDAzMDEzNDAyWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMTkwYS04ZDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl100FF4nkoMEfLhQQq4HyRkACWfK1GM8HnZjLQ7lYd5WWP611X/DWnmoKifg oo8GIE+mzItqxaVMzXj2EQ1kssr6aRSmq9gSLuhOtkXNdK5tD7TeInWu8Qiqx8NW QJ1xm+sqneHnAwtXzhjNw6elWZFjTz2AWdlW8jSHt/Tajs0ldibk61F2+g3d+Fun rB6kfenhVnQDkEtSALzWVA9bDCcOKxvH1vVM2uAof0LwsKP2um+eGoMyGQLcqNQf Vv9I4WW047mrBJXyZ1PBmUxtpokeTpxkaPB3Bs8oOQTzKGDi51fgaNc/7+Yq5WH+ YHGoo8okgP+giqA/JMdHAiXDTQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMpnI09h B/0FIfjUBA4TijmzMVpdMB8GA1UdIwQYMBaAFFrs6tVMs2y/G0oAxM1BCEbSMUHv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzZCNS9GNDExNURCQzJC QUMxMUVEOEQ0MkFCMTlDNEY5QUUwMi9XdXpxMVV5emJMOGJTZ0RFelVFSVJ0SXhR ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d1enExVXl6Ykw4YlNnREV6VUVJUnRJeFFlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTM2QjUvRjQxMTVEQkMyQkFDMTFFRDhENDJBQjE5QzRGOUFFMDIvMEVBMkIyRDYy QkIwMTFFRDkwRjQxODIwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ1XAMA0EAgACMAcDBQAkAK9AMA0GCSqGSIb3DQEBCwUAA4IBAQAd sq1e5yUmrs1WaGzTtET3fKuDedT54LozQBSYUWb7Og8Pm3mpL1py9dhbO+pi0u1p JQh6VY76Rn/W4Jv4qDHuMdTULIskgmIqbfzowq8/21FjXqcS8dxlDOR/FJl733dz DI+ubx4RIDP3xvSjkZm2I1wnLzTJvDvB/z/xGWIWsN0Wh6Le58K5Og5pns7+0nlw EFbLHT9+i9LXulOKkOcfofk0z+QcakKY9mLvxlzZ0VcpNxkHdy3XLR6tpkc3/uuT 5blvHs/UFMmyFMTdl/vAkPeLp0ls7jI1xzYqrb59dulhSAKwl3tDPSTFJRfx+MeG s+ewJ4nJncQJ4L/iTvSC -----END CERTIFICATE-----Generated at Mon Apr 6 11:19:28 2026 by rpki-client