
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/935947E8234B11F0B6DF721FC4F9AE02.roa
File: 935947E8234B11F0B6DF721FC4F9AE02.roa (raw, json)
Hash identifier: K1/zbDRlaAi+AKeOd0+7gn3zZkekzyJbfVU01DH+vKU=
Subject key identifier: B3:40:F5:BE:A4:14:89:A9:2C:57:13:B9:12:E7:79:58:8B:E0:FD:1A
Certificate issuer: /CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179
Certificate serial: 024A
Authority key identifier: A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/935947E8234B11F0B6DF721FC4F9AE02.roa
Signing time: Sun 05 Jul 2026 03:29:13 +0000
ROA not before: Sun 05 Jul 2026 03:29:13 +0000
ROA not after: Tue 31 Aug 2027 00:00:00 +0000
asID: 151336
IP address blocks: 103.204.2.0/23 maxlen: 24
2400:ff60::/32 maxlen: 33
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl
rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 24 Jul 2026 03:22:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 586 (0x24a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD5B5, serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179
Validity
Not Before: Jul 5 03:29:13 2026 GMT
Not After : Aug 31 00:00:00 2027 GMT
Subject: CN=6a49cf89-5690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:cc:34:79:2c:e1:3f:42:0d:fc:43:4d:f4:f2:
ef:c4:4a:f1:7a:86:d4:44:e5:91:26:05:be:d2:9d:
7f:42:a8:74:cf:a5:89:67:c2:2d:9e:c5:30:5b:9c:
ea:de:de:e1:a2:a6:48:1c:9b:f5:58:5f:4b:00:77:
8f:42:b7:00:c7:f4:df:4b:66:49:f1:53:5b:ea:99:
aa:fa:a5:60:75:67:9a:1a:4b:71:ab:73:37:d7:c2:
ba:3d:6d:0b:6e:5e:d4:ec:ce:73:4f:ea:de:7e:ea:
0f:ed:bf:c8:5f:1e:cc:54:3a:36:1a:68:db:48:83:
c2:c1:94:29:d7:ec:1f:a1:67:17:ae:c5:15:a7:5c:
91:55:cc:48:b7:0a:68:43:58:62:1d:90:64:ab:f5:
8e:38:73:f2:10:a0:a7:4a:72:c0:c9:d0:df:e4:44:
09:51:b5:10:66:63:a7:88:0b:bc:7f:01:6c:cf:61:
49:19:20:10:26:bd:28:49:b1:40:22:9f:d8:17:63:
2d:e9:0b:3a:b3:06:61:0c:02:ae:ec:0d:6b:4a:e8:
e1:d1:c0:fd:ad:cf:03:93:6d:84:77:7e:e4:19:a4:
81:db:4f:46:a9:51:98:46:1e:2b:22:52:02:0d:26:
be:80:0a:91:b4:d2:c5:fd:6c:dc:2f:bd:2b:10:c7:
34:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:40:F5:BE:A4:14:89:A9:2C:57:13:B9:12:E7:79:58:8B:E0:FD:1A
X509v3 Authority Key Identifier:
keyid:A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/935947E8234B11F0B6DF721FC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.204.2.0/23
IPv6:
2400:ff60::/32
Signature Algorithm: sha256WithRSAEncryption
98:08:4c:1a:62:0d:8c:4b:6d:3c:35:a6:28:cb:11:1a:c9:6e:
43:4c:c3:e5:d9:22:75:5f:1f:a0:2c:b2:ea:06:04:28:79:9b:
22:7d:c3:f4:e1:0d:38:3a:0a:a0:34:58:fb:bd:8a:10:91:c9:
62:f0:48:01:92:06:03:ce:d4:3f:37:9e:d6:6f:a6:27:fd:f3:
81:e5:71:bd:1b:6a:f1:c0:7e:5b:b3:e1:c9:a1:b9:5c:1a:01:
e4:ba:d4:7c:d5:42:5c:d6:1d:af:c4:02:04:5b:a1:1d:86:8e:
b7:90:af:67:a9:4a:e3:96:e8:73:69:55:69:2f:e8:2c:b6:4b:
a8:ee:a8:55:c4:aa:1d:09:4d:98:30:d8:48:2e:20:4c:7a:6b:
bf:1f:58:93:37:a4:7f:02:35:41:c3:67:22:c4:55:34:61:20:
50:69:a9:6a:71:43:02:41:bc:ed:c0:9c:10:e7:c2:9f:1b:5f:
78:ea:1a:11:65:b2:b5:a7:a7:ba:eb:24:ac:61:f3:55:69:5d:
25:02:46:c8:89:61:11:c3:4c:de:82:c2:4f:8c:e9:19:da:2b:
ef:2c:a3:0e:17:75:f7:a8:69:17:47:9b:21:f0:2a:ab:3b:7c:
9e:b5:19:a3:bb:ba:a9:1f:b9:29:f9:93:30:84:c4:9e:db:10:
07:69:df:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:16:20 2026 by rpki-client