$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa File: D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa (raw, json) Hash identifier: Fgm+ElVjvC2qk51TNceoRhTvVi14rsJi9VmzJtf4CWk= Subject key identifier: AD:26:C9:57:F0:F9:C8:C1:FD:19:40:DE:5A:DF:DC:93:F4:88:E8:7F Certificate issuer: /CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Certificate serial: 1050 Authority key identifier: 30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:37:38 +0000 ROA not before: Fri 02 May 2025 17:57:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 6939 IP address blocks: 103.138.32.0/24 maxlen: 24 103.139.90.0/24 maxlen: 24 2404:bb40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 17:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4176 (0x1050) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17E8, serialNumber=3027308159151941AB734C720617DF7FDCC2410C Validity Not Before: May 2 17:57:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a44f32-5091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8b:83:44:d8:b7:c5:a3:97:d1:89:f7:13:25: 8d:f8:75:7f:89:3d:6e:f5:15:c4:6c:f9:1c:a0:e1: a9:94:fb:49:7e:7b:a1:d6:36:1b:65:56:2b:8a:98: a8:dc:49:50:1e:4f:9f:0b:71:a7:2f:2c:ac:35:b1: 42:9b:bc:73:4e:d2:23:63:dc:16:8a:18:a9:49:c2: eb:55:2d:17:4b:4d:d2:e1:c1:29:e6:ea:ee:d8:d8: 48:fe:84:01:e7:93:21:0a:e6:9c:74:e4:0f:8c:35: 06:7a:91:bc:24:be:7c:7f:a8:7b:39:76:5a:45:6d: dc:2a:7f:df:b7:49:02:4d:c6:55:5a:40:6d:98:5a: 59:b0:f8:71:4f:f4:de:d0:8e:49:97:e7:a6:cf:a8: d4:e1:18:ff:5c:0f:01:69:04:9d:79:de:97:e7:77: 89:2c:22:9f:32:ac:ba:82:63:3c:9f:f2:70:d2:34: 7b:91:c3:ff:c5:d9:7a:d1:9a:a6:63:01:7c:37:a9: 5d:3a:b6:85:62:47:7a:57:be:8b:be:10:f0:aa:e1: cb:ff:79:59:ae:99:53:06:42:69:3a:88:68:63:6f: 86:f4:a8:9c:72:e7:0e:3c:a5:c2:3a:d7:71:52:19: d1:65:26:ef:e7:92:c9:e7:d8:90:90:b6:63:ac:41: 35:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:26:C9:57:F0:F9:C8:C1:FD:19:40:DE:5A:DF:DC:93:F4:88:E8:7F X509v3 Authority Key Identifier: keyid:30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.138.32.0/24 103.139.90.0/24 IPv6: 2404:bb40::/32 Signature Algorithm: sha256WithRSAEncryption 89:8b:bc:7e:bb:d0:cb:15:db:63:4a:42:47:fd:c0:8a:d4:3e: 0d:da:a6:65:a9:ba:dd:b3:3d:d6:54:f7:5f:49:01:1d:88:6e: a2:5b:88:be:3e:47:91:02:f5:2e:83:1a:d8:e8:b3:69:d7:67: 5e:25:52:78:2d:25:af:7b:59:1d:de:7d:c0:8a:12:ed:6f:80: 45:38:ac:80:1e:8d:c9:50:4d:88:ea:aa:1c:a7:c8:d5:1d:25: d3:39:b3:6c:a4:fa:1a:0d:b9:94:7e:a3:4a:c4:71:73:63:96: cd:33:41:e5:66:1d:cb:e1:3d:a1:1d:0a:a7:fb:9f:dc:5a:aa: 8a:37:e0:52:19:2d:13:97:14:85:8f:c3:fe:ca:81:09:12:df: f0:a0:f3:f0:e4:dc:50:65:fb:0d:68:e5:73:49:5c:db:4a:47: b6:22:87:04:30:55:a2:f3:44:b2:22:c7:2a:eb:f6:04:fc:a7: 8a:f5:c3:70:9e:f4:60:24:52:2d:d3:51:26:99:8b:a6:46:a1: 98:21:09:1c:68:ba:d9:85:cb:a1:34:fc:ea:0a:7f:20:47:fe: 6b:a2:6f:b7:e1:7c:e8:da:66:83:d5:97:37:96:3a:a2:47:ea: af:cb:48:f8:da:eb:8d:82:cb:7d:08:91:e1:cf:d0:13:70:cc: 7b:43:24:5c -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICEFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE3RTgxMTAvBgNVBAUTKDMwMjczMDgxNTkxNTE5NDFBQjczNEM3MjA2MTdERjdG RENDMjQxMEMwHhcNMjUwNTAyMTc1NzM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGYzMi01MDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYuDRNi3xaOX0Yn3EyWN+HV/iT1u9RXEbPkcoOGplPtJfnuh1jYbZVYripio 3ElQHk+fC3GnLyysNbFCm7xzTtIjY9wWihipScLrVS0XS03S4cEp5uru2NhI/oQB 55MhCuacdOQPjDUGepG8JL58f6h7OXZaRW3cKn/ft0kCTcZVWkBtmFpZsPhxT/Te 0I5Jl+emz6jU4Rj/XA8BaQSded6X53eJLCKfMqy6gmM8n/Jw0jR7kcP/xdl60Zqm YwF8N6ldOraFYkd6V76LvhDwquHL/3lZrplTBkJpOohoY2+G9KiccucOPKXCOtdx UhnRZSbv55LJ59iQkLZjrEE1FQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFK0myVfw +cjB/RlA3lrf3JP0iOh/MB8GA1UdIwQYMBaAFDAnMIFZFRlBq3NMcgYX33/cwkEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTdFOC9GMTZFMTg1NjVD NTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdVR3JjMHh5QmhmZmY5ekNR UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01DY3dnVmtWR1VHcmMweHlCaGZmZjl6Q1FRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE3RTgvRjE2RTE4NTY1QzUzMTFFOTlBQjVDRjY4QzRGOUFFMDIvRDhDNjlFMkE1 QzU1MTFFOThDNEI2RDZCQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAZ4ogAwQAZ4taMA0EAgACMAcDBQAkBLtAMA0GCSqGSIb3DQEBCwUA A4IBAQCJi7x+u9DLFdtjSkJH/cCK1D4N2qZlqbrdsz3WVPdfSQEdiG6iW4i+PkeR AvUugxrY6LNp12deJVJ4LSWve1kd3n3AihLtb4BFOKyAHo3JUE2I6qocp8jVHSXT ObNspPoaDbmUfqNKxHFzY5bNM0HlZh3L4T2hHQqn+5/cWqqKN+BSGS0TlxSFj8P+ yoEJEt/woPPw5NxQZfsNaOVzSVzbSke2IocEMFWi80SyIscq6/YE/KeK9cNwnvRg JFIt01EmmYumRqGYIQkcaLrZhcuhNPzqCn8gR/5rom+34Xzo2maD1Zc3ljqiR+qv y0j42uuNgst9CJHhz9ATcMx7QyRc -----END CERTIFICATE-----Generated at Mon Mar 16 11:20:35 2026 by rpki-client