$ rpki-client -vvf rpki.apnic.net/member_repository/A91188EE/3209731AFBAF11EEA6BC3952C4F9AE02/4DC69458F51C11F0B1C1D2E9586F56BC.roa File: 4DC69458F51C11F0B1C1D2E9586F56BC.roa (raw, json) Hash identifier: E5hqQqMyoQ9aOSGCT2wM7hBxXm+pQQiTCiLoJNmSSp0= Subject key identifier: 64:C2:9E:72:55:B3:8C:91:3A:63:AE:D0:12:25:16:D7:55:12:BC:91 Certificate issuer: /CN=A91188EE/serialNumber=3AEDA80407D77BB52848ABD9F7259BD807A5D360 Certificate serial: 01BA Authority key identifier: 3A:ED:A8:04:07:D7:7B:B5:28:48:AB:D9:F7:25:9B:D8:07:A5:D3:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ou2oBAfXe7UoSKvZ9yWb2Ael02A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91188EE/3209731AFBAF11EEA6BC3952C4F9AE02/4DC69458F51C11F0B1C1D2E9586F56BC.roa Signing time: Fri 29 May 2026 04:36:17 +0000 ROA not before: Fri 29 May 2026 04:36:17 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 153473 IP address blocks: 103.15.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91188EE/3209731AFBAF11EEA6BC3952C4F9AE02/Ou2oBAfXe7UoSKvZ9yWb2Ael02A.crl rsync://rpki.apnic.net/member_repository/A91188EE/3209731AFBAF11EEA6BC3952C4F9AE02/Ou2oBAfXe7UoSKvZ9yWb2Ael02A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ou2oBAfXe7UoSKvZ9yWb2Ael02A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 05:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91188EE, serialNumber=3AEDA80407D77BB52848ABD9F7259BD807A5D360 Validity Not Before: May 29 04:36:17 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1917c1-9020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:9e:52:ee:5f:01:c3:ff:32:d0:04:84:91:80: 07:44:0f:77:b9:c8:7a:29:a4:35:10:5c:53:78:d0: 62:e5:7c:90:05:e1:31:f0:3e:da:2d:48:af:3f:b5: ab:13:9a:ea:ba:20:23:d3:6e:3d:20:c9:45:91:13: 84:b5:86:67:7b:3e:34:54:ef:73:e7:ad:c3:41:ca: a9:1b:1c:1c:65:6e:38:40:61:91:eb:bf:d6:0a:28: 76:7a:aa:d7:5b:0f:0c:c5:a7:74:76:59:43:7d:2e: d2:f8:8b:cd:b0:20:0d:24:19:b7:5a:e8:d8:42:65: 9a:a8:25:d5:ec:94:a3:0b:4f:46:39:79:5c:90:67: 18:c3:6c:8e:12:e6:33:c1:db:bb:28:d4:d3:04:cc: 4c:cf:5f:d8:0b:14:0a:b9:f3:b9:0c:b5:13:43:2e: ba:96:08:22:b0:5b:95:f4:04:8f:72:55:fd:50:6e: b1:9e:11:1c:bc:d3:54:44:88:86:6f:f0:6f:a0:9e: 59:4d:ba:d8:68:be:9c:c9:1a:31:49:eb:b0:35:dd: 02:3a:11:8d:bb:df:14:f0:03:07:58:cd:8a:fa:f8: fd:b6:7c:3c:31:54:f1:2f:a9:92:4f:06:75:ca:6d: 68:ea:06:16:f5:dd:46:0a:7c:c4:cd:0b:41:7e:49: 7c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C2:9E:72:55:B3:8C:91:3A:63:AE:D0:12:25:16:D7:55:12:BC:91 X509v3 Authority Key Identifier: keyid:3A:ED:A8:04:07:D7:7B:B5:28:48:AB:D9:F7:25:9B:D8:07:A5:D3:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91188EE/3209731AFBAF11EEA6BC3952C4F9AE02/Ou2oBAfXe7UoSKvZ9yWb2Ael02A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ou2oBAfXe7UoSKvZ9yWb2Ael02A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91188EE/3209731AFBAF11EEA6BC3952C4F9AE02/4DC69458F51C11F0B1C1D2E9586F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.15.156.0/23 Signature Algorithm: sha256WithRSAEncryption 87:2d:22:cf:18:0e:62:35:ab:94:1f:8b:1d:d2:75:97:93:cd: 9b:b5:3b:e6:31:0e:b9:36:58:b6:c2:21:8f:b4:31:53:3e:8f: c4:bd:84:79:4a:85:08:5f:98:d0:ac:c9:ba:04:e3:71:70:05: 71:b8:e5:a5:46:ee:be:98:98:cb:dc:91:db:e0:c6:e2:71:f3: 82:80:62:b4:4d:49:2a:31:aa:b9:16:7a:2c:c8:b8:76:d3:21: 11:4e:77:4a:2b:ff:ee:9c:36:c0:32:b9:b4:87:fd:7a:b1:97: e7:92:5c:4f:a4:54:d1:51:96:96:e0:c1:2e:78:dd:34:85:4d: fd:93:ce:70:f7:e7:66:9e:e3:95:da:aa:c5:e2:bc:33:ae:a2: be:2d:5b:71:4a:4b:06:7f:86:a7:ee:ac:30:fa:15:86:e6:83: 43:91:58:11:e7:49:3c:58:07:52:f4:37:e2:d7:68:09:77:22: 77:5f:09:68:a3:0d:21:9d:96:18:6d:bd:73:bc:12:7d:f5:fa: b6:b9:3b:86:a8:10:e7:31:2d:0d:ca:c6:0f:ea:53:83:7d:78: 90:fd:9f:23:a4:47:6a:50:8c:b3:97:3b:63:9b:dd:59:d5:86: 14:0c:7b:9c:68:61:ad:64:5f:27:f8:67:37:9e:05:34:03:36: 32:ba:5e:5c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4RUUxMTAvBgNVBAUTKDNBRURBODA0MDdENzdCQjUyODQ4QUJEOUY3MjU5QkQ4 MDdBNUQzNjAwHhcNMjYwNTI5MDQzNjE3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE5MTdjMS05MDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkp5S7l8Bw/8y0ASEkYAHRA93uch6KaQ1EFxTeNBi5XyQBeEx8D7aLUivP7Wr E5rquiAj0249IMlFkROEtYZnez40VO9z563DQcqpGxwcZW44QGGR67/WCih2eqrX Ww8Mxad0dllDfS7S+IvNsCANJBm3WujYQmWaqCXV7JSjC09GOXlckGcYw2yOEuYz wdu7KNTTBMxMz1/YCxQKufO5DLUTQy66lggisFuV9ASPclX9UG6xnhEcvNNURIiG b/BvoJ5ZTbrYaL6cyRoxSeuwNd0COhGNu98U8AMHWM2K+vj9tnw8MVTxL6mSTwZ1 ym1o6gYW9d1GCnzEzQtBfkl8IQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGTCnnJV s4yROmOu0BIlFtdVEryRMB8GA1UdIwQYMBaAFDrtqAQH13u1KEir2fclm9gHpdNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODhFRS8zMjA5NzMxQUZC QUYxMUVFQTZCQzM5NTJDNEY5QUUwMi9PdTJvQkFmWGU3VW9TS3ZaOXlXYjJBZWww MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL091Mm9CQWZYZTdVb1NLdlo5eVdiMkFlbDAyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg4RUUvMzIwOTczMUFGQkFGMTFFRUE2QkMzOTUyQzRGOUFFMDIvNERDNjk0NThG NTFDMTFGMEIxQzFEMkU5NTg2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZw+cMA0GCSqGSIb3DQEBCwUAA4IBAQCHLSLPGA5iNauUH4sd0nWX k82btTvmMQ65Nli2wiGPtDFTPo/EvYR5SoUIX5jQrMm6BONxcAVxuOWlRu6+mJjL 3JHb4MbicfOCgGK0TUkqMaq5FnosyLh20yERTndKK//unDbAMrm0h/16sZfnklxP pFTRUZaW4MEueN00hU39k85w9+dmnuOV2qrF4rwzrqK+LVtxSksGf4an7qww+hWG 5oNDkVgR50k8WAdS9Dfi12gJdyJ3Xwloow0hnZYYbb1zvBJ99fq2uTuGqBDnMS0N ysYP6lODfXiQ/Z8jpEdqUIyzlztjm91Z1YYUDHucaGGtZF8n+Gc3ngU0AzYyul5c -----END CERTIFICATE-----Generated at Tue Jun 2 22:23:17 2026 by rpki-client