$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2B1F9250FDA111F08BC1F4B75F6F56BC.roa File: 2B1F9250FDA111F08BC1F4B75F6F56BC.roa (raw, json) Hash identifier: 9XVTTsK1JeE28Aq3qvoIFUpxYW3yzAOh3tPhanTDLuI= Subject key identifier: 69:9E:B9:CA:98:FE:8B:F6:54:BF:0B:FF:CB:BB:F5:14:06:8B:8B:5D Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: E2 Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2B1F9250FDA111F08BC1F4B75F6F56BC.roa Signing time: Fri 05 Jun 2026 07:38:26 +0000 ROA not before: Fri 05 Jun 2026 07:38:26 +0000 ROA not after: Thu 30 Sep 2027 00:00:00 +0000 asID: 140902 IP address blocks: 103.152.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 08:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: Jun 5 07:38:26 2026 GMT Not After : Sep 30 00:00:00 2027 GMT Subject: CN=6a227cf2-12be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ad:d2:cf:5e:80:5d:e1:83:c7:78:20:fd:fb: a2:20:84:de:cd:9e:b3:04:9c:52:2b:37:2e:8c:6a: 08:f3:a1:c7:c8:2f:3d:d8:26:8d:53:42:cd:28:9b: ce:ce:75:cb:30:2f:a1:73:f6:53:96:68:e4:ad:35: ec:2d:e7:a1:16:c9:47:cb:ce:c9:f4:c1:fa:6a:df: e4:05:78:5f:a1:0f:79:ab:0a:ac:27:63:84:5b:f7: 6c:20:56:bf:70:5f:5f:41:19:81:35:9d:85:fa:66: 68:cb:db:b4:30:de:81:a9:83:af:f1:4d:c8:e3:ca: 93:5b:2d:3e:23:c5:db:33:cf:8f:74:38:66:9a:2a: 61:00:52:3f:cf:c5:33:b6:b4:64:d6:fe:70:05:92: 4b:85:22:64:d3:58:1b:a8:3c:1e:a9:43:14:74:1f: 48:21:14:dd:27:1c:38:9d:d3:d9:38:6d:5d:e8:a3: 7d:a8:4d:c8:6b:6c:47:ca:5d:22:6a:07:83:a6:73: 1c:5a:f1:a5:82:fa:a9:ad:1a:13:df:1e:94:dd:d1: 22:d4:64:5c:e1:15:c5:61:41:5b:00:90:eb:c5:6a: 3d:92:3e:20:ed:6d:3c:37:82:eb:96:ee:7f:89:42: f7:22:e7:c4:69:13:af:d5:96:c2:3a:5a:5b:74:0d: 56:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:9E:B9:CA:98:FE:8B:F6:54:BF:0B:FF:CB:BB:F5:14:06:8B:8B:5D X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/2B1F9250FDA111F08BC1F4B75F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 103.152.137.0/24 Signature Algorithm: sha256WithRSAEncryption a0:a1:a9:b1:a0:4f:b9:d5:bc:76:a1:f8:c4:57:2b:83:ca:53: a4:9b:a8:1c:36:64:38:c4:64:88:5b:67:c4:0e:72:e8:33:01: cc:25:a7:34:a0:41:99:21:ed:13:f0:d5:f4:88:da:87:6e:1c: fe:d0:f6:2c:6a:d8:3e:81:21:96:97:6a:46:29:59:96:c2:90: fd:a5:7b:28:7c:a5:37:64:23:e9:a5:1f:34:1d:4e:a6:f5:97: 65:85:21:c9:8e:76:e2:4b:eb:06:35:1a:29:80:88:53:6b:09: 3c:4f:0e:57:1e:b4:47:b3:d9:26:cb:20:ea:3a:60:5e:44:ce: 3d:b5:3b:90:a1:dc:48:ea:fb:4f:5e:f7:42:9b:96:e3:38:bf: 41:78:cb:d8:45:ef:9a:1b:0f:3a:2b:6a:c3:53:17:55:38:42: 0a:a9:ec:bd:03:56:9f:90:d3:35:35:de:23:30:68:7d:16:3e: 31:90:fd:2a:22:fc:fd:e1:6a:e6:4b:0f:aa:0f:24:31:e8:23: 77:29:77:91:91:d4:e7:db:a1:5e:3d:00:69:76:26:50:b9:1e: eb:33:8f:9a:2f:e2:02:0d:c1:34:6c:30:8b:ce:22:0b:07:1c: 22:85:5c:02:79:3d:f3:17:ec:f6:46:00:6b:1c:b7:9e:1f:f2: da:e2:63:cb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJFREUxMTAvBgNVBAUTKDlEQjI1OEMxNzBCMjMyMjk0RDg2M0Y2MEQyREMwMTIz Q0RBQUU3ODkwHhcNMjYwNjA1MDczODI2WhcNMjcwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyN2NmMi0xMmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa3Sz16AXeGDx3gg/fuiIITezZ6zBJxSKzcujGoI86HHyC892CaNU0LNKJvO znXLMC+hc/ZTlmjkrTXsLeehFslHy87J9MH6at/kBXhfoQ95qwqsJ2OEW/dsIFa/ cF9fQRmBNZ2F+mZoy9u0MN6BqYOv8U3I48qTWy0+I8XbM8+PdDhmmiphAFI/z8Uz trRk1v5wBZJLhSJk01gbqDweqUMUdB9IIRTdJxw4ndPZOG1d6KN9qE3Ia2xHyl0i ageDpnMcWvGlgvqprRoT3x6U3dEi1GRc4RXFYUFbAJDrxWo9kj4g7W08N4Lrlu5/ iUL3IufEaROv1ZbCOlpbdA1WlQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGmeucqY /ov2VL8L/8u79RQGi4tdMB8GA1UdIwQYMBaAFJ2yWMFwsjIpTYY/YNLcASPNqueJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkVERS81NUNCMkUwNDFB QjQxMUYwODVERDY5NEFDNEY5QUUwMi9uYkpZd1hDeU1pbE5oajlnMHR3Qkk4MnE1 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJFREUvNTVDQjJFMDQxQUI0MTFGMDg1REQ2OTRBQzRGOUFFMDIvMkIxRjkyNTBG REExMTFGMDhCQzFGNEI3NUY2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZ5iJMA0GCSqGSIb3DQEBCwUAA4IBAQCgoamxoE+51bx2ofjEVyuD ylOkm6gcNmQ4xGSIW2fEDnLoMwHMJac0oEGZIe0T8NX0iNqHbhz+0PYsatg+gSGW l2pGKVmWwpD9pXsofKU3ZCPppR80HU6m9ZdlhSHJjnbiS+sGNRopgIhTawk8Tw5X HrRHs9kmyyDqOmBeRM49tTuQodxI6vtPXvdCm5bjOL9BeMvYRe+aGw86K2rDUxdV OEIKqey9A1afkNM1Nd4jMGh9Fj4xkP0qIvz94WrmSw+qDyQx6CN3KXeRkdTn26Fe PQBpdiZQuR7rM4+aL+ICDcE0bDCLziILBxwihVwCeT3zF+z2RgBrHLeeH/La4mPL -----END CERTIFICATE-----Generated at Thu Jun 11 21:50:37 2026 by rpki-client