$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/939AAE78B1D511EA8E3DAE1CC4F9AE02.roa File: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (raw, json) Hash identifier: V81dD3x6Xu9JhvlyqWC7cihyerGfmzPLwxY1DFEcyJE= Subject key identifier: F8:A9:D7:AC:2D:5E:51:B9:37:72:14:42:2F:7C:95:6C:D7:8D:5E:D3 Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 0973 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/939AAE78B1D511EA8E3DAE1CC4F9AE02.roa Signing time: Tue 31 Mar 2026 20:26:07 +0000 ROA not before: Tue 31 Mar 2026 20:26:07 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135107 IP address blocks: 103.86.188.0/23 maxlen: 23 103.209.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2419 (0x973) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6, serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Mar 31 20:26:07 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cc2ddf-a7dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d0:10:9a:81:3e:79:9b:60:d0:bf:84:fe:d4: ba:15:1d:28:63:ef:d9:e7:75:e5:49:39:60:05:c5: e6:44:09:1b:f7:57:64:92:5c:15:a0:ff:df:92:03: 61:e0:f7:f6:c8:6a:d2:35:31:09:49:28:f0:10:84: 46:32:27:30:55:a9:c1:4d:f0:e9:c8:47:b1:a5:2f: 4e:7c:fe:0c:72:2f:d8:a3:b6:c5:04:56:09:9c:71: 93:54:d8:54:4f:34:ea:65:bd:2e:9e:dd:1b:67:67: 65:b8:66:79:4e:0b:b9:b4:f2:22:7e:e0:65:84:fd: d7:60:92:18:57:f9:7b:cc:59:9a:15:2e:5a:6b:8e: 09:9e:9f:05:d0:92:67:b9:de:fe:c9:5a:4c:d1:ad: 14:e6:bb:84:0a:05:b3:c3:55:10:57:00:27:19:b5: 3a:96:4f:fa:0a:bd:87:7d:53:8c:81:2e:2f:51:37: d1:e6:dd:6f:24:64:e1:fd:61:64:f3:3b:5c:a5:85: bd:24:06:14:d6:67:a6:cb:80:72:48:81:d7:74:8d: cb:3e:ca:6f:df:9d:8c:a6:cf:5d:45:b7:e5:49:5b: da:69:84:67:21:05:90:77:e7:32:32:f1:b1:a4:53: fb:4f:39:f4:76:2d:eb:fa:0d:ad:4b:0e:74:0d:a8: a9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A9:D7:AC:2D:5E:51:B9:37:72:14:42:2F:7C:95:6C:D7:8D:5E:D3 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/939AAE78B1D511EA8E3DAE1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.188.0/23 103.209.152.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:96:ea:3f:9b:6f:4c:6b:74:bf:1a:c0:16:da:5e:6b:72:71: d5:99:f1:8d:bf:fe:23:36:4d:65:2a:77:6d:85:46:4e:24:70: 21:06:ca:e4:4e:f1:41:8b:d3:66:19:66:a2:9f:95:13:c8:58: ae:5b:b9:71:f6:c6:b3:69:57:a8:7c:5e:c7:82:83:ee:ca:7d: ff:98:81:81:c0:a8:3b:0c:97:bd:7e:ba:c5:0f:41:46:9a:c2: b3:aa:c2:7c:d7:7c:43:14:28:24:69:4b:36:7b:c0:48:24:67: d1:91:c3:74:a6:ff:70:69:ec:f8:bd:90:e3:ea:e7:48:95:84: 8a:9a:69:d0:34:1c:46:ac:3a:70:f2:b9:b1:a6:0e:35:a3:22: 65:81:da:e1:30:11:83:71:a9:31:92:69:8f:8f:b1:99:fc:04: ed:da:15:5f:3b:c8:f2:eb:ee:77:cc:58:bb:03:0d:57:81:d7: ab:c4:b4:9b:9c:68:fe:ae:cc:a1:f4:28:84:22:a4:a3:04:d8: 7a:fe:ff:f1:ad:83:b0:9f:eb:35:87:40:a2:2c:50:8c:03:53: e1:0f:03:12:59:e2:34:52:bc:25:d6:f3:97:8b:4f:68:2b:31: 38:bb:71:5b:26:1d:b5:c5:ed:b4:d7:4c:45:67:1e:20:fc:23: 07:f5:e0:56 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjYwMzMxMjAyNjA3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjMmRkZi1hN2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNAQmoE+eZtg0L+E/tS6FR0oY+/Z53XlSTlgBcXmRAkb91dkklwVoP/fkgNh 4Pf2yGrSNTEJSSjwEIRGMicwVanBTfDpyEexpS9OfP4Mci/Yo7bFBFYJnHGTVNhU TzTqZb0unt0bZ2dluGZ5Tgu5tPIifuBlhP3XYJIYV/l7zFmaFS5aa44Jnp8F0JJn ud7+yVpM0a0U5ruECgWzw1UQVwAnGbU6lk/6Cr2HfVOMgS4vUTfR5t1vJGTh/WFk 8ztcpYW9JAYU1memy4BySIHXdI3LPspv352Mps9dRbflSVvaaYRnIQWQd+cyMvGx pFP7Tzn0di3r+g2tSw50Daip/QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPip16wt XlG5N3IUQi98lWzXjV7TMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUyQzYvMUVERkU0OTZCMUQ0MTFFQUE0NkYwMDFBQzRGOUFFMDIvOTM5QUFFNzhC MUQ1MTFFQThFM0RBRTFDQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQBZ1a8AwQBZ9GYMA0GCSqGSIb3DQEBCwUAA4IBAQAuluo/m29Ma3S/ GsAW2l5rcnHVmfGNv/4jNk1lKndthUZOJHAhBsrkTvFBi9NmGWain5UTyFiuW7lx 9sazaVeofF7HgoPuyn3/mIGBwKg7DJe9frrFD0FGmsKzqsJ813xDFCgkaUs2e8BI JGfRkcN0pv9waez4vZDj6udIlYSKmmnQNBxGrDpw8rmxpg41oyJlgdrhMBGDcakx kmmPj7GZ/ATt2hVfO8jy6+53zFi7Aw1XgderxLSbnGj+rsyh9CiEIqSjBNh6/v/x rYOwn+s1h0CiLFCMA1PhDwMSWeI0Urwl1vOXi09oKzE4u3FbJh21xe2010xFZx4g /CMH9eBW -----END CERTIFICATE-----Generated at Mon Apr 6 10:26:46 2026 by rpki-client