$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/935947E8234B11F0B6DF721FC4F9AE02.roa File: 935947E8234B11F0B6DF721FC4F9AE02.roa (raw, json) Hash identifier: /CH8I5GqlBiWA4mIBiiBTBBXA06LtTv7f+HzqPdpy8Q= Subject key identifier: E7:0D:AF:76:B3:18:9A:62:F5:22:0F:B1:5B:75:2E:6D:18:67:2D:8D Certificate issuer: /CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Certificate serial: 0208 Authority key identifier: A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/935947E8234B11F0B6DF721FC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:43:55 +0000 ROA not before: Fri 27 Jun 2025 03:41:48 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151336 IP address blocks: 103.204.2.0/23 maxlen: 24 2400:ff60::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 02:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD5B5, serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Validity Not Before: Jun 27 03:41:48 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5860b-277d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d2:81:a7:9a:f4:49:21:a0:16:fa:1a:b8:80: 23:77:b6:b3:16:8e:30:01:4b:ad:a4:dd:bd:54:1c: d0:e8:cd:dd:9a:2e:69:46:8f:88:75:8f:cb:71:ee: e8:83:4b:84:3e:b3:38:2f:e4:bb:f7:04:3f:11:8a: 92:64:80:ad:a0:c8:4d:cd:8d:65:8b:db:3a:d2:cd: c6:39:b0:14:ac:72:c6:c9:3c:28:8d:4a:e2:3b:4c: 94:28:22:26:98:db:4c:95:21:c1:8c:55:42:ca:a8: 71:de:9b:0e:50:e8:a0:bd:1b:40:31:e4:fa:d5:4e: ad:7e:35:4a:37:e2:1a:bf:84:d6:1f:0b:a7:30:77: 77:d8:a6:70:34:bd:4f:2c:14:fa:79:82:97:9f:52: 14:3b:71:02:f7:db:53:43:2c:1f:c9:9e:21:b1:21: a3:87:4a:c6:fd:66:72:04:b1:76:73:16:8b:ee:12: 95:95:1e:86:f8:d2:aa:81:21:87:a8:f3:69:dd:ef: b1:6a:64:28:83:2a:a7:7b:38:2c:27:8c:66:fb:25: 2c:d5:7d:eb:ce:c7:a3:75:9b:00:f3:c4:66:51:55: 53:21:79:4e:fa:4a:8a:c4:ff:27:cf:84:79:eb:5a: 4d:ac:af:ea:f5:5c:5b:6e:af:be:ac:8f:5c:44:3a: bb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0D:AF:76:B3:18:9A:62:F5:22:0F:B1:5B:75:2E:6D:18:67:2D:8D X509v3 Authority Key Identifier: keyid:A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/935947E8234B11F0B6DF721FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.204.2.0/23 IPv6: 2400:ff60::/32 Signature Algorithm: sha256WithRSAEncryption 4f:f0:7a:fd:d3:4e:b5:9c:0b:01:40:5d:9d:a3:21:a6:c4:2e: 84:5f:e6:e8:61:03:27:b2:5b:d7:01:bc:6b:12:b5:38:8f:fb: 53:84:ed:67:b7:b9:23:69:19:f6:a4:d2:e2:3a:dc:d8:0a:aa: 2a:16:36:71:a1:41:4c:79:86:df:85:c2:55:ec:c0:a2:ac:09: 8d:60:c9:c8:08:24:a2:f8:bf:01:8f:d3:3e:68:99:8d:45:cc: 86:38:3a:9b:1f:38:84:0a:36:cf:2c:ec:e7:f2:c7:40:28:a0: 3f:c4:c8:02:f8:d5:d9:a8:01:49:e5:0d:9c:b9:94:8d:c8:8e: c2:0b:ea:e0:21:14:a4:41:cb:25:a1:a1:de:92:22:20:ec:8d: 3c:21:73:c0:93:7b:be:1d:fa:63:ca:cf:81:d9:1f:66:61:69: 9c:36:f4:94:31:3f:1e:60:9a:31:ad:97:75:27:aa:40:33:58: 5d:14:f0:64:ec:b5:f5:34:36:4c:26:2d:11:fe:6f:0e:aa:bf: ea:de:1e:55:19:44:53:ad:32:09:94:7e:1c:5d:bd:bf:2c:1a: 6d:ee:38:52:61:7b:55:b8:c6:a9:2f:b9:28:98:6f:29:2e:06: 65:3f:5a:0d:31:cb:90:6f:ab:e7:95:4f:00:c3:3c:4f:37:73: b5:c3:01:46 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q1QjUxMTAvBgNVBAUTKEE1NTBFRTk5NDQyODJGQ0ZDMzg0QjA4MkJGRkE4OEY4 NkRCMDQxNzkwHhcNMjUwNjI3MDM0MTQ4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODYwYi0yNzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNKBp5r0SSGgFvoauIAjd7azFo4wAUutpN29VBzQ6M3dmi5pRo+IdY/Lce7o g0uEPrM4L+S79wQ/EYqSZICtoMhNzY1li9s60s3GObAUrHLGyTwojUriO0yUKCIm mNtMlSHBjFVCyqhx3psOUOigvRtAMeT61U6tfjVKN+Iav4TWHwunMHd32KZwNL1P LBT6eYKXn1IUO3EC99tTQywfyZ4hsSGjh0rG/WZyBLF2cxaL7hKVlR6G+NKqgSGH qPNp3e+xamQogyqnezgsJ4xm+yUs1X3rzsejdZsA88RmUVVTIXlO+kqKxP8nz4R5 61pNrK/q9Vxbbq++rI9cRDq7SQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFOcNr3az GJpi9SIPsVt1Lm0YZy2NMB8GA1UdIwQYMBaAFKVQ7plEKC/Pw4Swgr/6iPhtsEF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDVCNS9BNDZCOTkxMjE2 NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4X0RoTENDdl9xSS1HMndR WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BWRHVtVVFvTDhfRGhMQ0N2X3FJLUcyd1FYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Q1QjUvQTQ2Qjk5MTIxNjREMTFFRTk2ODU4NTM0QzRGOUFFMDIvOTM1OTQ3RTgy MzRCMTFGMEI2REY3MjFGQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ8wCMA0EAgACMAcDBQAkAP9gMA0GCSqGSIb3DQEBCwUAA4IBAQBP 8Hr90061nAsBQF2doyGmxC6EX+boYQMnslvXAbxrErU4j/tThO1nt7kjaRn2pNLi OtzYCqoqFjZxoUFMeYbfhcJV7MCirAmNYMnICCSi+L8Bj9M+aJmNRcyGODqbHziE CjbPLOzn8sdAKKA/xMgC+NXZqAFJ5Q2cuZSNyI7CC+rgIRSkQcsloaHekiIg7I08 IXPAk3u+Hfpjys+B2R9mYWmcNvSUMT8eYJoxrZd1J6pAM1hdFPBk7LX1NDZMJi0R /m8Oqr/q3h5VGURTrTIJlH4cXb2/LBpt7jhSYXtVuMapL7komG8pLgZlP1oNMcuQ b6vnlU8AwzxPN3O1wwFG -----END CERTIFICATE-----Generated at Wed Mar 4 19:17:27 2026 by rpki-client