$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/2BFBE7E687EF11F0BA5DF073C4F9AE02.roa File: 2BFBE7E687EF11F0BA5DF073C4F9AE02.roa (raw, json) Hash identifier: NXbiSnXZUjh8e0dCBVaR6mjHDOPkzJYQhnCA/dP5jgQ= Subject key identifier: CC:25:7A:BB:D0:82:29:D3:40:EF:06:A1:2A:B9:29:CA:9A:42:35:A7 Certificate issuer: /CN=A91C4614/serialNumber=494D771E511E120053BB09B1F274BD8F59D73AA8 Certificate serial: 0D87 Authority key identifier: 49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/2BFBE7E687EF11F0BA5DF073C4F9AE02.roa Signing time: Mon 22 Jun 2026 18:21:17 +0000 ROA not before: Mon 22 Jun 2026 18:21:17 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 137842 IP address blocks: 103.115.156.0/24 maxlen: 24 103.115.157.0/24 maxlen: 24 103.115.159.0/24 maxlen: 24 2402:ea40::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.crl rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 18:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3463 (0xd87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4614, serialNumber=494D771E511E120053BB09B1F274BD8F59D73AA8 Validity Not Before: Jun 22 18:21:17 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a397d1d-7215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:71:a5:43:49:87:40:18:72:a1:8f:57:ae:96: da:71:e2:eb:00:44:d6:8d:9c:19:d9:df:95:81:18: 3e:ef:4d:b2:bd:a9:cb:a0:8a:f8:95:ac:bf:32:0f: b2:d3:92:62:4d:b6:78:6d:4c:99:8e:0f:54:b9:63: ac:bb:2e:23:fb:56:4f:a3:c2:83:14:7a:a7:dc:5f: c5:87:93:71:c1:7a:ee:52:2e:b5:20:83:e0:14:1a: 1e:f6:6a:36:c5:69:74:42:9a:02:2c:4c:5a:11:e5: 79:00:c5:3b:89:f9:2e:2e:6f:55:f9:92:cc:03:14: b1:7e:33:ce:fb:b8:f2:4a:e6:a8:c2:42:5b:45:64: 78:4c:0f:c8:80:9e:93:b3:7b:3f:50:a9:c7:ef:fe: 65:9b:d1:56:6b:7a:61:76:8b:6c:10:bf:0e:32:48: 9e:f5:56:09:0b:2a:9d:f6:38:8f:64:3b:cf:0f:8a: 68:76:96:1a:97:13:53:62:6f:c7:57:00:f0:ed:bd: 59:bf:d9:4b:2f:94:01:64:6e:3e:28:cd:b4:af:20: ba:6f:6d:99:f6:62:f2:95:4b:4a:56:02:8a:f3:45: cd:04:f3:0f:88:47:de:19:46:62:40:be:dc:58:b6: fc:f3:f5:95:ba:a7:d7:7b:da:31:24:12:89:f3:3a: d8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:25:7A:BB:D0:82:29:D3:40:EF:06:A1:2A:B9:29:CA:9A:42:35:A7 X509v3 Authority Key Identifier: keyid:49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/2BFBE7E687EF11F0BA5DF073C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.115.156.0/23 103.115.159.0/24 IPv6: 2402:ea40::/32 Signature Algorithm: sha256WithRSAEncryption 84:a1:b7:e7:7f:ee:9c:af:ff:a5:76:b3:ea:e8:ac:3f:2d:55: 89:1d:fd:9b:a2:ec:d3:ba:36:b5:55:17:34:8a:1f:20:94:b1: 08:6e:7e:b7:92:f2:48:95:2e:76:3a:22:4b:e9:bc:fd:9b:ba: e2:3c:d9:ca:21:37:6f:b5:06:b5:aa:88:d4:35:18:7c:eb:b1: 52:9b:61:b9:f4:b4:0d:a8:92:a1:40:65:69:90:34:87:07:6d: 7a:42:e0:6f:4d:4b:a3:47:b5:31:8a:e1:62:52:25:c4:0b:3b: 0c:01:3e:15:13:04:cd:ba:dd:49:7e:72:1a:76:f9:f0:3f:7a: ed:4d:35:04:5d:c4:36:f9:0c:73:c2:17:cc:c5:0e:96:d5:87: 73:19:6d:1f:14:3b:f9:8e:4f:2e:e1:14:4e:b6:0f:16:73:d6: 11:bf:a3:4a:f0:9e:cf:12:94:68:d2:ce:aa:d6:33:67:0d:7c: df:22:dd:55:5d:24:a7:e6:36:1e:51:39:92:b4:6b:2e:9a:21: 78:12:7c:e8:9c:0d:cd:0e:4c:95:f8:0f:96:38:46:23:5d:c2: 03:31:24:db:dd:9f:69:6a:38:df:57:bc:ae:58:1f:ca:73:3a: be:1d:e8:68:39:b5:2b:cc:1d:45:d0:b2:e2:82:25:60:53:0f: de:51:60:48 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICDYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ2MTQxMTAvBgNVBAUTKDQ5NEQ3NzFFNTExRTEyMDA1M0JCMDlCMUYyNzRCRDhG NTlENzNBQTgwHhcNMjYwNjIyMTgyMTE3WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTM5N2QxZC03MjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXGlQ0mHQBhyoY9XrpbaceLrAETWjZwZ2d+VgRg+702yvanLoIr4lay/Mg+y 05JiTbZ4bUyZjg9UuWOsuy4j+1ZPo8KDFHqn3F/Fh5NxwXruUi61IIPgFBoe9mo2 xWl0QpoCLExaEeV5AMU7ifkuLm9V+ZLMAxSxfjPO+7jySuaowkJbRWR4TA/IgJ6T s3s/UKnH7/5lm9FWa3phdotsEL8OMkie9VYJCyqd9jiPZDvPD4podpYalxNTYm/H VwDw7b1Zv9lLL5QBZG4+KM20ryC6b22Z9mLylUtKVgKK80XNBPMPiEfeGUZiQL7c WLb88/WVuqfXe9oxJBKJ8zrYnQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFMwlervQ ginTQO8GoSq5KcqaQjWnMB8GA1UdIwQYMBaAFElNdx5RHhIAU7sJsfJ0vY9Z1zqo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDYxNC8xQzk0ODk5QUY0 RjAxMUU5QUMyMDJCMURDNEY5QUUwMi9TVTEzSGxFZUVnQlR1d214OG5TOWoxblhP cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVMTNIbEVlRWdCVHV3bXg4blM5ajFuWE9xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQ2MTQvMUM5NDg5OUFGNEYwMTFFOUFDMjAyQjFEQzRGOUFFMDIvMkJGQkU3RTY4 N0VGMTFGMEJBNURGMDczQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQBZ3OcAwQAZ3OfMA0EAgACMAcDBQAkAupAMA0GCSqGSIb3DQEBCwUA A4IBAQCEobfnf+6cr/+ldrPq6Kw/LVWJHf2bouzTuja1VRc0ih8glLEIbn63kvJI lS52OiJL6bz9m7riPNnKITdvtQa1qojUNRh867FSm2G59LQNqJKhQGVpkDSHB216 QuBvTUujR7UxiuFiUiXECzsMAT4VEwTNut1JfnIadvnwP3rtTTUEXcQ2+QxzwhfM xQ6W1YdzGW0fFDv5jk8u4RROtg8Wc9YRv6NK8J7PEpRo0s6q1jNnDXzfIt1VXSSn 5jYeUTmStGsumiF4EnzonA3NDkyV+A+WOEYjXcIDMSTb3Z9pajjfV7yuWB/Kczq+ HehoObUrzB1F0LLigiVgUw/eUWBI -----END CERTIFICATE-----Generated at Wed Jun 24 12:32:37 2026 by rpki-client