$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2A28A576FDA111F08BC1F4B75F6F56BC.roa File: 2A28A576FDA111F08BC1F4B75F6F56BC.roa (raw, json) Hash identifier: i1rnPuXqbnMqAc4PCX48sTcxB0t1JxdfTOj4tcvmsyk= Subject key identifier: 51:BE:2C:37:DB:FA:53:23:0A:55:43:47:C4:93:81:2C:6F:3C:DD:1B Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: E3 Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2A28A576FDA111F08BC1F4B75F6F56BC.roa Signing time: Fri 05 Jun 2026 07:38:29 +0000 ROA not before: Fri 05 Jun 2026 07:38:29 +0000 ROA not after: Thu 30 Sep 2027 00:00:00 +0000 asID: 14576 IP address blocks: 103.152.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 08:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: Jun 5 07:38:29 2026 GMT Not After : Sep 30 00:00:00 2027 GMT Subject: CN=6a227cf5-b0d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f3:d0:20:72:02:0c:ed:15:dd:f8:6e:a9:8a: 2a:f3:cd:5c:56:87:fa:fe:de:4c:0e:67:e2:ee:cb: c3:5c:d7:94:7d:d3:a5:b4:ab:49:a9:2c:06:c9:92: 93:00:44:d7:0f:b1:98:f6:3d:c9:cf:74:4f:92:58: c5:f1:c5:77:dc:af:4f:60:b1:f2:be:9b:7a:08:4f: d5:22:66:b8:68:8a:74:19:41:75:da:28:15:e1:be: 79:24:58:8c:59:64:8c:c8:ac:ec:86:eb:67:70:9f: be:1f:77:d3:09:09:f8:77:f8:d0:b6:c0:42:21:bc: e2:e9:c1:b9:95:f0:71:4d:6c:ec:69:83:29:60:64: 91:dc:26:d7:04:be:f6:25:24:f8:67:c3:67:92:ce: 54:75:ab:93:c8:c5:0f:87:24:43:34:b9:16:e8:9a: c2:3e:72:83:ef:d8:29:a5:11:9a:ce:25:37:ad:28: 10:a1:da:71:10:14:88:a5:00:87:07:4e:9c:3d:80: 29:b8:fc:ad:1b:97:f0:2b:76:ce:d5:3e:16:73:fe: 06:e9:c4:66:54:74:9f:78:36:09:7c:22:f7:ac:cd: fb:79:4a:8f:8a:ae:8e:ec:5e:d7:d1:4a:1a:95:43: 35:e7:f7:ef:ef:82:06:94:1d:9f:79:25:5f:4a:c3: 1c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:BE:2C:37:DB:FA:53:23:0A:55:43:47:C4:93:81:2C:6F:3C:DD:1B X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2A28A576FDA111F08BC1F4B75F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.152.136.0/24 Signature Algorithm: sha256WithRSAEncryption 85:92:27:a6:49:2f:ca:e1:b7:b8:3a:8c:4b:07:d5:a9:96:1b: 82:ac:fd:52:3a:00:ff:61:d7:47:30:3b:c9:bd:01:a3:d5:25: a4:99:41:10:79:e6:ca:c5:c5:ab:10:86:dd:55:31:28:1c:c7: c3:80:be:ef:15:eb:09:af:d0:9b:3e:5c:2f:14:c5:06:1b:64: 30:a5:8c:c4:bc:9c:ab:2e:4c:f1:f7:8f:1e:d8:25:6e:85:fe: 97:75:75:84:b8:7a:07:25:a9:af:61:80:52:63:db:e2:2c:c8: 19:82:85:25:5f:01:3a:d5:95:61:55:89:19:68:a4:7d:d9:10: 6a:ef:c0:a8:99:99:c1:f5:56:47:33:2f:f1:a5:a7:6b:a8:e2: c4:1c:d9:58:6e:a4:63:f9:99:3c:9d:3a:3c:e6:a5:61:31:eb: 89:47:3c:56:4f:92:e7:cb:ad:cc:86:97:04:15:2c:56:1d:aa: af:6c:ee:2e:34:d3:db:3d:5a:f2:ed:57:02:73:0f:e0:81:fd: 73:b1:4b:83:af:50:3a:cd:6c:4a:8c:a2:2d:6a:fe:c0:bc:86: 33:08:1c:04:a1:0b:a5:be:79:1e:02:47:b5:0f:a6:96:0a:f4: e6:36:bc:0d:f2:b6:08:6f:1b:a8:c0:43:45:86:50:9e:05:7a: 5a:09:85:29 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJFREUxMTAvBgNVBAUTKDlEQjI1OEMxNzBCMjMyMjk0RDg2M0Y2MEQyREMwMTIz Q0RBQUU3ODkwHhcNMjYwNjA1MDczODI5WhcNMjcwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyN2NmNS1iMGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPPQIHICDO0V3fhuqYoq881cVof6/t5MDmfi7svDXNeUfdOltKtJqSwGyZKT AETXD7GY9j3Jz3RPkljF8cV33K9PYLHyvpt6CE/VIma4aIp0GUF12igV4b55JFiM WWSMyKzshutncJ++H3fTCQn4d/jQtsBCIbzi6cG5lfBxTWzsaYMpYGSR3CbXBL72 JST4Z8Nnks5UdauTyMUPhyRDNLkW6JrCPnKD79gppRGaziU3rSgQodpxEBSIpQCH B06cPYApuPytG5fwK3bO1T4Wc/4G6cRmVHSfeDYJfCL3rM37eUqPiq6O7F7X0Uoa lUM15/fv74IGlB2feSVfSsMcyQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFG+LDfb +lMjClVDR8STgSxvPN0bMB8GA1UdIwQYMBaAFJ2yWMFwsjIpTYY/YNLcASPNqueJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkVERS81NUNCMkUwNDFB QjQxMUYwODVERDY5NEFDNEY5QUUwMi9uYkpZd1hDeU1pbE5oajlnMHR3Qkk4MnE1 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJFREUvNTVDQjJFMDQxQUI0MTFGMDg1REQ2OTRBQzRGOUFFMDIvMkEyOEE1NzZG REExMTFGMDhCQzFGNEI3NUY2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5iIMA0GCSqGSIb3DQEBCwUAA4IBAQCFkiemSS/K4be4OoxLB9Wp lhuCrP1SOgD/YddHMDvJvQGj1SWkmUEQeebKxcWrEIbdVTEoHMfDgL7vFesJr9Cb PlwvFMUGG2QwpYzEvJyrLkzx948e2CVuhf6XdXWEuHoHJamvYYBSY9viLMgZgoUl XwE61ZVhVYkZaKR92RBq78ComZnB9VZHMy/xpadrqOLEHNlYbqRj+Zk8nTo85qVh MeuJRzxWT5Lny63MhpcEFSxWHaqvbO4uNNPbPVry7VcCcw/ggf1zsUuDr1A6zWxK jKItav7AvIYzCBwEoQulvnkeAke1D6aWCvTmNrwN8rYIbxuowENFhlCeBXpaCYUp -----END CERTIFICATE-----Generated at Thu Jun 11 19:35:39 2026 by rpki-client