$ rpki-client -vvf rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/81368CD6594B11EE924DCC64C4F9AE02.roa File: 81368CD6594B11EE924DCC64C4F9AE02.roa (raw, json) Hash identifier: n9Ra6ZUeLorL3l67bNk1doH1FFp1jz1cR04L4Fo/Y0E= Subject key identifier: AF:91:F0:75:87:5A:D1:4A:4E:6D:84:F1:2E:31:CC:A5:6C:FF:34:5F Certificate issuer: /CN=A9154AFB/serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Certificate serial: 17F2 Authority key identifier: D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/81368CD6594B11EE924DCC64C4F9AE02.roa Signing time: Tue 28 Apr 2026 17:22:06 +0000 ROA not before: Tue 28 Apr 2026 17:22:06 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135003 IP address blocks: 103.86.132.0/22 maxlen: 24 203.6.208.0/22 maxlen: 24 2400:bf40:1::/48 maxlen: 48 2400:bf40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 16:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6130 (0x17f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154AFB, serialNumber=D4E3176CB9F4893E74C4E805FA7FB5D90A4A7B0A Validity Not Before: Apr 28 17:22:06 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69f0ecbe-2f22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:00:d8:22:49:33:ce:77:8c:0b:0d:8b:07:cc: 86:8f:0d:43:78:fb:44:29:29:ee:55:67:ea:58:43: a0:c0:d9:e8:59:04:77:88:17:98:08:29:e6:76:c2: b4:ad:ef:00:b4:06:d1:e0:c0:28:dc:0b:54:16:df: 0b:2e:01:7b:8a:7e:74:87:79:e1:fb:df:0a:fa:e6: 2c:27:33:d3:8f:b6:e1:e9:e7:bb:59:2a:72:48:f4: bd:40:eb:d8:5f:6b:08:f6:71:b6:9a:ba:64:a1:b5: 3c:b1:36:12:9d:eb:fd:b5:b8:4f:31:2c:c2:c0:da: 13:f0:9b:5e:3f:47:bc:68:a6:91:15:40:a9:6d:df: ab:82:31:1c:ad:48:88:87:b7:35:f4:3b:64:39:fb: e3:94:5d:42:b9:e1:d2:f5:49:c2:92:74:e3:49:56: 83:e1:7e:e2:9c:bf:16:5c:d8:1a:26:a8:9f:19:d0: a0:a8:fc:87:4f:d3:60:5a:ef:27:93:75:92:9d:d8: 21:cf:40:c7:02:5f:c6:c6:e5:75:1d:45:19:b3:53: 39:3f:e9:c6:c2:f5:05:60:07:39:d1:9b:ec:2d:f4: 8d:b6:1a:f7:8a:ec:f0:83:e9:de:4e:97:1c:30:82: 28:1e:a1:64:b0:6b:8d:48:f1:97:c8:a7:3f:1a:b2: 5b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:91:F0:75:87:5A:D1:4A:4E:6D:84:F1:2E:31:CC:A5:6C:FF:34:5F X509v3 Authority Key Identifier: keyid:D4:E3:17:6C:B9:F4:89:3E:74:C4:E8:05:FA:7F:B5:D9:0A:4A:7B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/1OMXbLn0iT50xOgF-n-12QpKewo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OMXbLn0iT50xOgF-n-12QpKewo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154AFB/78A04E4CE32F11E7B6CED42FC4F9AE02/81368CD6594B11EE924DCC64C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.86.132.0/22 203.6.208.0/22 IPv6: 2400:bf40:1::-2400:bf40:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 30:3d:bc:85:60:9c:c0:e1:ca:a7:a0:40:49:14:1c:38:28:bb: c7:a6:32:0f:31:86:1a:cf:a4:6d:f2:26:2b:ac:ce:a4:f6:08: 89:4f:2a:b7:21:20:37:f3:92:c2:5b:6e:a4:3e:06:5c:23:8a: 05:21:7d:27:00:0b:c7:b7:98:cb:70:dc:74:90:a6:a2:d7:1b: 81:72:c5:6f:0f:5d:26:c5:9c:48:88:95:b2:b7:40:b7:4f:76: ac:c6:72:7d:67:81:73:ac:f9:2b:0e:ae:fd:80:a5:b2:41:24: 10:74:68:63:25:7b:f2:0f:cb:c9:50:77:2b:b0:07:22:33:ef: 5c:fa:fd:af:80:dd:15:b7:12:f0:d6:75:ae:a4:31:ad:0b:88: e6:74:a4:17:d3:a4:9d:32:24:51:25:dc:2d:19:4f:68:aa:43: ea:39:04:86:35:6e:dc:ae:46:93:d5:d9:9d:9a:12:d0:bb:42: 00:4e:04:86:fe:d3:5d:9d:4e:b4:78:6a:fb:81:7d:4b:eb:1d: a2:d6:c8:67:ac:8c:94:b3:fe:94:2f:0b:b3:2c:cd:c4:06:cf: f1:99:4a:79:75:fc:17:56:da:9b:6a:32:52:d4:c9:21:ed:7a: 3c:90:16:c7:87:7a:1f:b7:0d:28:ae:dd:d4:03:fb:64:a3:e9: c0:57:12:ac -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICF/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRBRkIxMTAvBgNVBAUTKEQ0RTMxNzZDQjlGNDg5M0U3NEM0RTgwNUZBN0ZCNUQ5 MEE0QTdCMEEwHhcNMjYwNDI4MTcyMjA2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWYwZWNiZS0yZjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ADYIkkzzneMCw2LB8yGjw1DePtEKSnuVWfqWEOgwNnoWQR3iBeYCCnmdsK0 re8AtAbR4MAo3AtUFt8LLgF7in50h3nh+98K+uYsJzPTj7bh6ee7WSpySPS9QOvY X2sI9nG2mrpkobU8sTYSnev9tbhPMSzCwNoT8JteP0e8aKaRFUCpbd+rgjEcrUiI h7c19DtkOfvjlF1CueHS9UnCknTjSVaD4X7inL8WXNgaJqifGdCgqPyHT9NgWu8n k3WSndghz0DHAl/GxuV1HUUZs1M5P+nGwvUFYAc50ZvsLfSNthr3iuzwg+neTpcc MIIoHqFksGuNSPGXyKc/GrJbewIDAQABo4ICgjCCAn4wHQYDVR0OBBYEFK+R8HWH WtFKTm2E8S4xzKVs/zRfMB8GA1UdIwQYMBaAFNTjF2y59Ik+dMToBfp/tdkKSnsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEFGQi83OEEwNEU0Q0Uz MkYxMUU3QjZDRUQ0MkZDNEY5QUUwMi8xT01YYkxuMGlUNTB4T2dGLW4tMTJRcEtl d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPTVhiTG4waVQ1MHhPZ0Ytbi0xMlFwS2V3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRBRkIvNzhBMDRFNENFMzJGMTFFN0I2Q0VENDJGQzRGOUFFMDIvODEzNjhDRDY1 OTRCMTFFRTkyNERDQzY0QzRGOUFFMDIucm9hMEEGCCsGAQUFBwEHAQH/BDIwMDAS BAIAATAMAwQCZ1aEAwQCywbQMBoEAgACMBQwEgMHACQAv0AAAQMHACQAv0AAAjAN BgkqhkiG9w0BAQsFAAOCAQEAMD28hWCcwOHKp6BASRQcOCi7x6YyDzGGGs+kbfIm K6zOpPYIiU8qtyEgN/OSwltupD4GXCOKBSF9JwALx7eYy3DcdJCmotcbgXLFbw9d JsWcSIiVsrdAt092rMZyfWeBc6z5Kw6u/YClskEkEHRoYyV78g/LyVB3K7AHIjPv XPr9r4DdFbcS8NZ1rqQxrQuI5nSkF9OknTIkUSXcLRlPaKpD6jkEhjVu3K5Gk9XZ nZoS0LtCAE4Ehv7TXZ1OtHhq+4F9S+sdotbIZ6yMlLP+lC8LsyzNxAbP8ZlKeXX8 F1bam2oyUtTJIe16PJAWx4d6H7cNKK7d1AP7ZKPpwFcSrA== -----END CERTIFICATE-----Generated at Thu May 21 11:14:15 2026 by rpki-client