$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/97D3AF84DCC611EDB75B695EC4F9AE02.roa File: 97D3AF84DCC611EDB75B695EC4F9AE02.roa (raw, json) Hash identifier: 2AfrzMrAR/osDKycuW9w+ksjbI/Sr4aGgIP9IfvJp+I= Subject key identifier: 49:8B:DB:BE:FE:1B:34:AE:A5:D5:E7:43:E5:B0:29:41:2D:59:E1:7B Certificate issuer: /CN=A91557F5/serialNumber=B06F82965AFEE3ABDA1B3A1F2D6017E007278CE5 Certificate serial: 0773 Authority key identifier: B0:6F:82:96:5A:FE:E3:AB:DA:1B:3A:1F:2D:60:17:E0:07:27:8C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sG-Cllr-46vaGzofLWAX4AcnjOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/97D3AF84DCC611EDB75B695EC4F9AE02.roa Signing time: Tue 31 Mar 2026 22:27:53 +0000 ROA not before: Tue 31 Mar 2026 22:27:53 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 141680 IP address blocks: 103.161.248.0/23 maxlen: 24 2001:df5:d880::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/sG-Cllr-46vaGzofLWAX4AcnjOU.crl rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/sG-Cllr-46vaGzofLWAX4AcnjOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sG-Cllr-46vaGzofLWAX4AcnjOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:27:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1907 (0x773) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F5, serialNumber=B06F82965AFEE3ABDA1B3A1F2D6017E007278CE5 Validity Not Before: Mar 31 22:27:53 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cc4a69-23a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:57:d3:78:56:ef:cd:d2:26:dd:17:9d:42:df: 68:42:30:a8:d1:81:d4:f2:ac:b4:b4:29:1a:d8:e5: e9:7a:88:e8:f5:c8:2d:a5:2d:af:21:5d:bf:5e:96: 0b:1f:3a:8a:bb:f4:02:47:cc:b0:11:dd:e2:03:91: 0f:b2:91:38:7d:6b:5a:92:e8:1b:c4:71:b5:2c:b4: ca:73:5f:46:af:0d:93:c2:f3:a1:91:32:6f:5d:15: 7a:e7:71:c5:e1:a7:ef:8f:46:56:09:cf:f5:16:c9: 1e:8b:14:4b:56:c0:3c:80:9d:72:9c:1e:9f:ad:65: e0:d9:17:98:01:68:91:c3:36:e0:74:43:18:ac:28: 63:86:d7:a1:4b:37:b6:94:3f:b3:d8:83:09:0c:40: bb:e6:3b:78:07:f6:45:d2:f9:72:a8:ac:6a:5e:0e: 87:ca:3e:c7:ea:db:c2:93:1c:a7:63:8c:fc:70:f2: 43:86:5b:07:13:0a:4f:9a:1b:39:36:a6:25:09:db: 0f:e6:bd:76:7a:55:70:9e:ca:69:19:29:00:07:e1: 57:a2:a7:a2:a9:fb:8b:e6:fc:af:e9:6e:41:a3:55: ca:05:aa:04:96:01:38:8c:00:58:7c:82:e0:e5:05: 8d:c8:bb:49:43:b5:6d:d6:2d:f3:1f:f6:a4:d3:1a: b4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:8B:DB:BE:FE:1B:34:AE:A5:D5:E7:43:E5:B0:29:41:2D:59:E1:7B X509v3 Authority Key Identifier: keyid:B0:6F:82:96:5A:FE:E3:AB:DA:1B:3A:1F:2D:60:17:E0:07:27:8C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/sG-Cllr-46vaGzofLWAX4AcnjOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sG-Cllr-46vaGzofLWAX4AcnjOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/97D3AF84DCC611EDB75B695EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.161.248.0/23 IPv6: 2001:df5:d880::/47 Signature Algorithm: sha256WithRSAEncryption 17:1c:c6:9a:db:86:f3:73:f7:de:31:6f:68:74:63:a3:7c:5c: 32:44:a6:40:99:61:b4:d1:4f:1e:bd:66:28:9f:78:61:46:3d: 92:51:c3:60:17:22:92:c7:82:cf:70:ba:2c:69:f5:f3:ca:32: b1:82:8b:67:78:0d:52:fc:71:08:ba:20:0c:32:b0:df:14:c5: 22:a2:c4:f3:74:d7:8a:54:72:32:f0:ce:9b:53:69:21:b4:af: c8:22:a3:11:57:45:53:19:26:b2:1e:fa:fa:24:0f:5b:44:d7: 85:ba:c3:bb:6f:da:3f:26:1a:d1:60:93:04:35:64:f9:c5:ac: 43:3a:6c:b8:96:72:73:b7:f1:e4:b4:83:d8:b7:3d:f2:50:38: 6e:8e:d9:53:38:96:fd:de:1a:f5:ab:bf:8e:16:1c:2b:81:10: ce:bd:53:26:10:a2:c5:3a:c7:09:e7:7e:e5:4c:24:61:f4:ed: 19:0f:72:d3:74:1a:28:a4:8f:c6:b5:0c:61:85:78:c3:49:c9: e5:2c:e9:f4:e0:44:b1:f9:e9:e1:f0:23:75:e6:44:73:1a:40: 54:7f:aa:db:d4:e2:46:0e:d7:cc:4e:1a:e4:ac:42:f4:23:0a: 94:a2:bb:c0:da:c4:69:ba:4b:83:f6:f6:62:16:9e:76:af:b7: fe:2c:4c:df -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICB3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjUxMTAvBgNVBAUTKEIwNkY4Mjk2NUFGRUUzQUJEQTFCM0ExRjJENjAxN0Uw MDcyNzhDRTUwHhcNMjYwMzMxMjIyNzUzWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjNGE2OS0yM2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk1fTeFbvzdIm3RedQt9oQjCo0YHU8qy0tCka2OXpeojo9cgtpS2vIV2/XpYL HzqKu/QCR8ywEd3iA5EPspE4fWtakugbxHG1LLTKc19Grw2TwvOhkTJvXRV653HF 4afvj0ZWCc/1FskeixRLVsA8gJ1ynB6frWXg2ReYAWiRwzbgdEMYrChjhtehSze2 lD+z2IMJDEC75jt4B/ZF0vlyqKxqXg6Hyj7H6tvCkxynY4z8cPJDhlsHEwpPmhs5 NqYlCdsP5r12elVwnsppGSkAB+FXoqeiqfuL5vyv6W5Bo1XKBaoElgE4jABYfILg 5QWNyLtJQ7Vt1i3zH/ak0xq0XwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFEmL277+ GzSupdXnQ+WwKUEtWeF7MB8GA1UdIwQYMBaAFLBvgpZa/uOr2hs6Hy1gF+AHJ4zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGNS9FQzQwNUUxNjVD NkYxMUVCQUMzQTg4NTZDNEY5QUUwMi9zRy1DbGxyLTQ2dmFHem9mTFdBWDRBY25q T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHLUNsbHItNDZ2YUd6b2ZMV0FYNEFjbmpPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU3RjUvRUM0MDVFMTY1QzZGMTFFQkFDM0E4ODU2QzRGOUFFMDIvOTdEM0FGODRE Q0M2MTFFREI3NUI2OTVFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6H4MA8EAgACMAkDBwEgAQ312IAwDQYJKoZIhvcNAQELBQADggEB ABccxprbhvNz994xb2h0Y6N8XDJEpkCZYbTRTx69ZiifeGFGPZJRw2AXIpLHgs9w uixp9fPKMrGCi2d4DVL8cQi6IAwysN8UxSKixPN014pUcjLwzptTaSG0r8gioxFX RVMZJrIe+vokD1tE14W6w7tv2j8mGtFgkwQ1ZPnFrEM6bLiWcnO38eS0g9i3PfJQ OG6O2VM4lv3eGvWrv44WHCuBEM69UyYQosU6xwnnfuVMJGH07RkPctN0Giikj8a1 DGGFeMNJyeUs6fTgRLH56eHwI3XmRHMaQFR/qtvU4kYO18xOGuSsQvQjCpSiu8Da xGm6S4P29mIWnnavt/4sTN8= -----END CERTIFICATE-----Generated at Mon Apr 6 11:18:50 2026 by rpki-client